Prosím o kontrolu PC jede strašně pomalu

[skillex44]

Zoek.exe v5.0.0.0 Updated 13-February-2015
Tool run by Radovan on st 25. 02. 2015 at 20:33:07,91.
Microsoft Windows 8 6.2.9200 x64
Running in: Normal Mode No Internet Access Detected
Launched: C:\Users\Radovan\Desktop\zoek.exe [Scan all users] [Script inserted]

==== System Restore Info ======================

25. 2. 2015 20:34:51 Zoek.exe System Restore Point Created Succesfully.

==== Reset Hosts File ======================

# Copyright (c) 1993-2006 Microsoft Corp.
#
# This is a sample HOSTS file used by Microsoft TCP/IP for Windows.
#
# This file contains the mappings of IP addresses to host names. Each
# entry should be kept on an individual line. The IP address should
# be placed in the first column followed by the corresponding host name.
# The IP address and the host name should be separated by at least one
# space.
#
# Additionally, comments (such as these) may be inserted on individual
# lines or following the machine name denoted by a '#' symbol.
#
# For example:
#
# 102.54.94.97 rhino.acme.com # source server
# 38.25.63.10 x.acme.com # x client host

# localhost name resolution is handle within DNS itself.
127.0.0.1 localhost
::1 localhost

==== Deleting CLSID Registry Keys ======================


==== Deleting CLSID Registry Values ======================


==== Deleting Services ======================


==== Chromium Look ======================

Chrome Currency Converter - Radovan\AppData\Local\Google\Chrome\User Data\Default\Extensions\anbfhidldjknonaihbalghlebaijealk
AdBlock - Radovan\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom

==== Set IE to Default ======================

Old Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

New Values:
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main]
"Start Page"="http://go.microsoft.com/fwlink/p/?LinkId=255141"

==== All HKCU SearchScopes ======================

HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\SearchScopes
"DefaultScope"="{0633EE93-D776-472f-A0FF-E1416B8B2E3A}"
{012E1000-F331-11DB-8314-0800200C9A66} Google Url="http://www.google.com/search?q={searchTerms}"
{0633EE93-D776-472f-A0FF-E1416B8B2E3A} Bing Url="http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC"
{CF01C9D5-3BA1-416E-B2E0-9873A7ADCD57} Unknown Url="Not_Found"

==== Reset Google Chrome ======================

C:\Users\Radovan\AppData\Local\Google\Chrome\User Data\Default\Preferences was reset successfully
C:\Users\Radovan\AppData\Local\Google\Chrome\User Data\Default\Web Data was reset successfully

==== Deleting CLSID Registry Keys ======================

HKEY_USERS\S-1-5-21-267069006-3299626273-4116139261-1002\Software\Microsoft\Internet Explorer\SearchScopes\{CF01C9D5-3BA1-416E-B2E0-9873A7ADCD57} deleted successfully

==== Deleting CLSID Registry Values ======================


==== Empty IE Cache ======================

C:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\Users\Radovan\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully
C:\windows\SysNative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5 emptied successfully

==== Empty FireFox Cache ======================

No FireFox Profiles found

==== Empty Chrome Cache ======================

C:\Users\Radovan\AppData\Local\Google\Chrome\User Data\Default\Cache emptied successfully

==== Empty All Flash Cache ======================

Flash Cache Emptied Successfully

==== Empty All Java Cache ======================

No Java Cache Found

==== C:\zoek_backup content ======================

C:\zoek_backup (files=0 folders=0 0 bytes)

==== Empty Temp Folders ======================

C:\Users\Default\AppData\Local\Temp emptied successfully
C:\Users\Default User\AppData\Local\Temp emptied successfully
C:\Users\Radovan\AppData\Local\Temp will be emptied at reboot
C:\Users\UpdatusUser\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\networkservice\AppData\Local\Temp emptied successfully
C:\windows\serviceprofiles\Localservice\AppData\Local\Temp emptied successfully
C:\windows\Temp will be emptied at reboot

==== After Reboot ======================

==== Empty Temp Folders ======================

C:\windows\Temp successfully emptied
C:\Users\Radovan\AppData\Local\Temp successfully emptied

==== Empty Recycle Bin ======================

C:\$RECYCLE.BIN successfully emptied

==== EOF on st 25. 02. 2015 at 20:44:59,45 ======================

[Reklama]

[skillex44]

Je to už lepší co se týče chodu prohlížeče, někdy se mi načítaly stránky delší dobu.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:49:17, on 25. 2. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17183)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Users\Radovan\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://lenovo13.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [mcui_exe] "C:\Program Files\McAfee.com\Agent\mcagent.exe" /runkey
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [KrakenLauncher] C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe /start
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: @oem19.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RzKLService - Razer Inc. - C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 8120 bytes

[jaro3]

Zavři ostatní aplikace a prohlížeče, odpoj se od netu a fixni v HJT:
Návod

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

[skillex44]

ComboFix 15-02-16.01 - Radovan . 02. 2015 13:18:04.1.4 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.8058.6412 [GMT 1:00]
Spuštěný z: c:\users\Radovan\Desktop\ComboFix.exe
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Radovan\AppData\Local\Temp\1871KrakenDevProps.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-01-26 do 2015-02-26 )))))))))))))))))))))))))))))))
.
.
2015-02-26 12:22 . 2015-02-26 12:22 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2015-02-26 12:22 . 2015-02-26 12:22 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-02-25 19:42 . 2015-02-25 19:33 24064 ----a-w- c:\windows\zoek-delete.exe
2015-02-25 19:33 . 2015-02-25 19:33 -------- d-----w- C:\zoek_backup
2015-02-25 08:41 . 2015-02-25 19:13 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-02-25 08:41 . 2015-02-25 08:41 -------- d-----w- c:\programdata\RogueKiller
2015-02-25 02:00 . 2012-06-23 23:24 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E3647353-32E3-46AB-8F04-C8DDD24B35EF}\mpengine.dll
2015-02-24 17:07 . 2014-12-10 20:43 129600 ----a-w- c:\windows\system32\drivers\rzpnk.sys
2015-02-24 15:54 . 2014-07-15 22:51 71168 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2015-02-24 15:37 . 2012-10-12 06:13 109568 ----a-w- c:\windows\system32\dskquota.dll
2015-02-24 15:37 . 2012-10-12 05:39 82944 ----a-w- c:\windows\SysWow64\dskquota.dll
2015-02-24 15:35 . 2014-07-03 01:59 1824784 ----a-w- c:\windows\system32\ntdll.dll
2015-02-24 15:34 . 2013-07-08 22:46 414208 ----a-w- c:\windows\system32\wwanconn.dll
2015-02-24 15:32 . 2014-04-29 22:32 126464 ----a-w- c:\windows\system32\Robocopy.exe
2015-02-24 15:30 . 2014-07-17 01:45 61440 ----a-w- c:\windows\system32\drivers\en-US\srv2.sys.mui
2015-02-24 15:29 . 2012-11-06 04:18 11459584 ----a-w- c:\windows\system32\glcndFilter.dll
2015-02-24 15:25 . 2014-05-29 04:04 94552 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2015-02-24 15:25 . 2014-03-01 08:07 1075200 ----a-w- c:\windows\SysWow64\gpedit.dll
2015-02-24 15:25 . 2014-03-01 09:47 1258496 ----a-w- c:\windows\system32\kernel32.dll
2015-02-24 15:25 . 2014-03-01 09:47 1120768 ----a-w- c:\windows\system32\gpedit.dll
2015-02-24 15:25 . 2014-02-15 04:15 78336 ----a-w- c:\windows\system32\drivers\IPMIDrv.sys
2015-02-24 15:25 . 2013-11-25 23:17 83968 ----a-w- c:\windows\system32\drivers\hidclass.sys
2015-02-24 14:52 . 2015-02-24 14:53 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-02-24 14:51 . 2015-02-24 14:51 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-02-24 14:51 . 2015-02-24 14:51 -------- d-----w- c:\programdata\Malwarebytes
2015-02-24 14:51 . 2014-11-21 05:14 64216 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-02-24 14:51 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-02-24 14:51 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-02-24 14:48 . 2015-02-25 08:31 -------- d-----w- C:\AdwCleaner
2015-02-24 14:15 . 2015-02-03 19:29 714184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-02-24 14:15 . 2015-02-03 19:29 106440 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-02-24 14:07 . 2015-02-24 14:07 -------- d-s---w- c:\windows\system32\CompatTel
2015-02-24 14:07 . 2015-02-24 14:07 -------- d-----w- c:\windows\system32\appraiser
2015-02-24 13:36 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll
2015-02-24 13:36 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2015-02-24 13:36 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll
2015-02-24 13:36 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe
2015-02-24 13:36 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll
2015-02-24 13:15 . 2013-10-31 05:56 915968 ----a-w- c:\windows\system32\MPSSVC.dll
2015-02-24 13:15 . 2013-10-31 05:56 758784 ----a-w- c:\windows\system32\FirewallAPI.dll
2015-02-24 13:15 . 2013-10-31 04:01 550400 ----a-w- c:\windows\SysWow64\FirewallAPI.dll
2015-02-24 13:15 . 2013-10-13 20:49 100696 ----a-w- c:\windows\system32\drivers\disk.sys
2015-02-24 13:15 . 2013-08-27 05:21 227840 ----a-w- c:\windows\system32\WebClnt.dll
2015-02-24 13:15 . 2013-10-31 03:42 74752 ----a-w- c:\windows\system32\drivers\mpsdrv.sys
2015-02-24 13:15 . 2013-08-27 05:19 104448 ----a-w- c:\windows\system32\davclnt.dll
2015-02-24 13:15 . 2013-08-26 22:29 199168 ----a-w- c:\windows\SysWow64\WebClnt.dll
2015-02-24 13:15 . 2013-08-26 22:28 86016 ----a-w- c:\windows\SysWow64\davclnt.dll
2015-02-24 13:15 . 2012-10-11 05:44 105984 ----a-w- c:\windows\system32\icfupgd.dll
2015-02-24 13:15 . 2012-10-11 05:46 24576 ----a-w- c:\windows\system32\wfapigp.dll
2015-02-24 13:15 . 2012-10-11 05:07 19968 ----a-w- c:\windows\SysWow64\wfapigp.dll
2015-02-24 13:01 . 2010-06-02 03:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2015-02-24 13:01 . 2010-06-02 03:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2015-02-24 13:01 . 2010-06-02 03:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2015-02-24 13:01 . 2010-06-02 03:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2015-02-24 13:01 . 2010-06-02 03:55 239960 ----a-w- c:\windows\SysWow64\xactengine3_7.dll
2015-02-24 13:01 . 2010-06-02 03:55 176984 ----a-w- c:\windows\system32\xactengine3_7.dll
2015-02-24 13:01 . 2010-05-26 10:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2015-02-24 12:39 . 2015-02-24 12:39 269992 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin
2015-02-24 12:17 . 2015-02-24 12:17 -------- d--h--r- c:\users\Public\AccountPictures
2015-02-24 12:01 . 2015-02-24 12:01 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2015-02-24 12:01 . 2015-02-24 12:01 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2015-02-24 10:49 . 2015-02-24 10:52 -------- d-----w- c:\windows\system32\MRT
2015-02-24 10:43 . 2013-04-09 04:51 3552768 ----a-w- c:\windows\system32\tquery.dll
2015-02-24 10:42 . 2013-05-04 06:59 13644288 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2015-02-24 10:42 . 2013-05-04 06:57 1131520 ----a-w- c:\windows\system32\AppXDeploymentServer.dll
2015-02-24 10:42 . 2013-05-04 04:57 10788864 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll
2015-02-24 10:42 . 2013-05-04 06:58 328192 ----a-w- c:\windows\system32\ubpm.dll
2015-02-24 10:42 . 2013-05-04 06:58 1332736 ----a-w- c:\windows\system32\sysmain.dll
2015-02-24 10:42 . 2013-05-04 06:57 389120 ----a-w- c:\windows\system32\BCP47Langs.dll
2015-02-24 10:42 . 2013-05-04 04:47 427520 ----a-w- c:\windows\system32\drivers\rdbss.sys
2015-02-24 10:42 . 2013-05-04 06:58 1820672 ----a-w- c:\program files\Windows Photo Viewer\PhotoViewer.dll
2015-02-24 10:42 . 2013-05-04 06:58 470528 ----a-w- c:\windows\system32\netprofmsvc.dll
2015-02-24 10:42 . 2013-05-04 04:57 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2015-02-24 10:40 . 2013-03-02 08:22 357888 ----a-w- c:\windows\SysWow64\netcfgx.dll
2015-02-24 10:39 . 2012-08-31 00:52 17888 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2015-02-24 10:39 . 2012-08-31 00:53 17888 ----a-w- c:\windows\SysWow64\msvcr100_clr0400.dll
2015-02-24 10:36 . 2014-10-11 07:44 3248640 ----a-w- c:\windows\system32\rdpcorets.dll
2015-02-24 10:36 . 2012-10-12 08:08 27880 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-02-24 10:36 . 2014-05-03 03:34 235520 ----a-w- c:\windows\system32\rdpudd.dll
2015-02-24 10:36 . 2012-10-12 06:14 36352 ----a-w- c:\windows\system32\rfxvmt.dll
2015-02-24 10:35 . 2012-10-10 07:04 94208 ----a-w- c:\windows\system32\synceng.dll
2015-02-24 10:35 . 2012-10-10 06:31 72192 ----a-w- c:\windows\SysWow64\synceng.dll
2015-02-24 10:35 . 2014-07-31 23:40 1287680 ----a-w- c:\windows\system32\schedsvc.dll
2015-02-24 10:34 . 2014-10-30 07:20 1890816 ----a-w- c:\windows\system32\crypt32.dll
2015-02-24 10:34 . 2014-10-30 05:22 1569792 ----a-w- c:\windows\SysWow64\crypt32.dll
2015-02-24 10:34 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2015-02-24 10:34 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2015-02-24 10:34 . 2014-08-09 08:29 144896 ----a-w- c:\windows\system32\tssdisai.dll
2015-02-24 10:34 . 2014-08-09 08:30 148480 ----a-w- c:\windows\system32\poqexec.exe
2015-02-24 10:32 . 2015-01-12 06:49 1084928 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2015-02-24 10:29 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-02-24 10:29 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-02-24 10:29 . 2014-12-08 06:48 391168 ----a-w- c:\windows\system32\scesrv.dll
2015-02-24 10:29 . 2014-12-08 05:04 318464 ----a-w- c:\windows\SysWow64\scesrv.dll
2015-02-24 10:27 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2015-02-24 10:27 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2015-02-24 10:24 . 2014-06-05 01:12 678600 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2015-02-24 10:22 . 2014-12-19 06:48 210432 ----a-w- c:\windows\system32\profsvc.dll
2015-02-24 10:19 . 2014-06-02 22:42 1413632 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll
2015-02-24 10:19 . 2014-06-02 22:42 1029120 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\journal.dll
2015-02-24 10:19 . 2014-06-02 22:33 1617920 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2015-02-24 10:19 . 2014-06-02 22:33 1318912 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2015-02-24 10:19 . 2014-06-02 22:33 1306624 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2015-02-24 10:19 . 2014-06-02 22:33 1272320 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-02-24 10:19 . 2013-04-10 22:35 2035200 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2015-02-24 10:19 . 2014-06-02 22:33 627712 ----a-w- c:\program files\Windows Journal\MSPVWCTL.DLL
2015-02-24 10:19 . 2014-06-02 22:33 881152 ----a-w- c:\program files\Windows Journal\InkSeg.dll
2015-02-24 10:19 . 2014-06-02 22:33 336384 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkDiv.dll
2015-02-24 10:19 . 2014-06-02 22:33 265216 ----a-w- c:\windows\system32\InkEd.dll
2015-02-24 10:15 . 2014-10-11 07:45 10115072 ----a-w- c:\windows\system32\twinui.dll
2015-02-24 10:15 . 2014-10-11 05:58 8858624 ----a-w- c:\windows\SysWow64\twinui.dll
2015-02-24 10:15 . 2014-10-11 07:44 2885632 ----a-w- c:\windows\system32\msi.dll
2015-02-24 10:15 . 2014-10-11 05:57 2416640 ----a-w- c:\windows\SysWow64\msi.dll
2015-02-24 10:15 . 2014-06-12 23:29 2146304 ----a-w- c:\windows\system32\actxprxy.dll
2015-02-24 10:15 . 2014-10-11 07:44 393216 ----a-w- c:\windows\system32\msihnd.dll
2015-02-24 10:15 . 2014-10-11 07:43 2307072 ----a-w- c:\windows\system32\authui.dll
2015-02-24 10:15 . 2014-10-11 05:56 2037760 ----a-w- c:\windows\SysWow64\authui.dll
2015-02-24 10:15 . 2014-06-12 23:34 754176 ----a-w- c:\windows\SysWow64\actxprxy.dll
2015-02-24 10:15 . 2014-10-11 05:57 295424 ----a-w- c:\windows\SysWow64\msihnd.dll
2015-02-24 10:14 . 2015-02-02 23:18 1098752 ----a-w- c:\windows\system32\aeinv.dll
2015-02-24 10:14 . 2014-12-03 01:48 192000 ----a-w- c:\windows\system32\aepic.dll
2015-02-24 10:14 . 2015-02-04 09:54 609280 ----a-w- c:\windows\system32\generaltel.dll
2015-02-24 10:14 . 2015-02-04 09:52 761856 ----a-w- c:\windows\system32\invagent.dll
2015-02-24 10:14 . 2015-02-04 09:52 414208 ----a-w- c:\windows\system32\devinv.dll
2015-02-24 10:14 . 2015-02-04 09:52 227328 ----a-w- c:\windows\system32\aepdu.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-24 07:05 . 2012-07-26 08:13 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-12-30 09:28 . 2014-12-30 09:28 990720 ----a-w- c:\windows\SysWow64\rzdevicedll.dll
2014-12-30 09:28 . 2014-12-30 09:28 78848 ----a-w- c:\windows\SysWow64\rzvirtualdev.dll
2014-12-30 09:28 . 2014-12-30 09:28 89088 ----a-w- c:\windows\SysWow64\rzdevinfo.dll
2014-12-30 09:28 . 2014-12-30 09:28 155136 ----a-w- c:\windows\SysWow64\rztouchdll.dll
2014-12-30 09:28 . 2014-12-30 09:28 117248 ----a-w- c:\windows\SysWow64\rzdisplaydll.dll
2014-12-30 09:28 . 2014-12-30 09:28 419840 ----a-w- c:\windows\SysWow64\rzaudiodll.dll
2014-12-19 03:22 . 2014-12-19 03:22 9728 ----a-w- c:\windows\SysWow64\RzStats.IPC.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-02-18 2874048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-07-26 508656]
"331BigDog"="c:\program files (x86)\USB Camera\VM331STI.EXE" [2012-05-02 548864]
"YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2012-07-27 136488]
"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-07-27 167024]
"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-19 217088]
"RemoteControl10"="c:\program files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" [2012-03-29 91432]
"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2015-01-06 585536]
"KrakenLauncher"="c:\program files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe" [2014-06-12 1486128]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2012-11-16 525080]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S2 BcmBtRSupport;Bluetooth Radio Control Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe;c:\windows\SYSNATIVE\CxAudMsg64.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 RzKLService;RzKLService;c:\program files (x86)\Razer\Razer Cortex\RzKLService.exe;c:\program files (x86)\Razer\Razer Cortex\RzKLService.exe [x]
S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 vm331avs;Digital Camera 1;c:\windows\System32\Drivers\vm331avs.sys;c:\windows\SYSNATIVE\Drivers\vm331avs.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-02-24 07:22 1084744 ----a-w- c:\program files (x86)\Google\Chrome\Application\40.0.2214.115\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24 07:21]
.
2015-02-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-02-24 07:21]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-07 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-07 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-07 440640]
"SmartAudio"="c:\program files\CONEXANT\SAII\SACpl.exe" [2012-06-13 1647616]
"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [2012-06-15 887968]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2013-02-20 17079376]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2013-02-20 191568]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 86.61.133.1 84.16.96.2
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-mcui_exe - c:\program files\McAfee.com\Agent\mcagent.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
c:\program files (x86)\Steam\bin\steamwebhelper.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\SysWOW64\RunDll32.exe
.
**************************************************************************
.
Celkový čas: 2015-02-26 13:30:54 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-02-26 12:30
.
Před spuštěním: 885 914 894 336 bytes free
Po spuštění: 885 786 423 296 bytes free
.
- - End Of File - - 589ACD5A7551C17F0D7513D3FEE27724

[jaro3]

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::
File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\program files (x86)\Skype\Updater

Driver::
SkypeUpdate
c:\program files (x86)\Google\Update

Registry::
[-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]

RegNull::
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
 00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[skillex44]

ComboFix 15-02-16.01 - Radovan . 02. 2015 19:58:59.2.4 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.8058.6383 [GMT 1:00]
Spuštěný z: c:\users\Radovan\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Radovan\Desktop\CFScript.txt
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\users\Radovan\AppData\Local\Temp\1871KrakenDevProps.dll
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-01-26 do 2015-02-26 )))))))))))))))))))))))))))))))
.
.
2015-02-26 19:03 . 2015-02-26 19:03 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2015-02-26 19:03 . 2015-02-26 19:03 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-02-25 19:42 . 2015-02-25 19:33 24064 ----a-w- c:\windows\zoek-delete.exe
2015-02-25 19:33 . 2015-02-25 19:33 -------- d-----w- C:\zoek_backup
2015-02-25 08:41 . 2015-02-25 19:13 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-02-25 08:41 . 2015-02-25 08:41 -------- d-----w- c:\programdata\RogueKiller
2015-02-25 02:00 . 2012-06-23 23:24 9013136 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{E3647353-32E3-46AB-8F04-C8DDD24B35EF}\mpengine.dll
2015-02-24 17:07 . 2014-12-10 20:43 129600 ----a-w- c:\windows\system32\drivers\rzpnk.sys
2015-02-24 15:54 . 2014-07-15 22:51 71168 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2015-02-24 15:37 . 2012-10-12 06:13 109568 ----a-w- c:\windows\system32\dskquota.dll
2015-02-24 15:37 . 2012-10-12 05:39 82944 ----a-w- c:\windows\SysWow64\dskquota.dll
2015-02-24 15:35 . 2014-07-03 01:59 1824784 ----a-w- c:\windows\system32\ntdll.dll
2015-02-24 15:34 . 2013-07-08 22:46 414208 ----a-w- c:\windows\system32\wwanconn.dll
2015-02-24 15:32 . 2014-04-29 22:32 126464 ----a-w- c:\windows\system32\Robocopy.exe
2015-02-24 15:30 . 2014-07-17 01:45 61440 ----a-w- c:\windows\system32\drivers\en-US\srv2.sys.mui
2015-02-24 15:29 . 2012-11-06 04:18 11459584 ----a-w- c:\windows\system32\glcndFilter.dll
2015-02-24 15:25 . 2014-05-29 04:04 94552 ----a-w- c:\windows\system32\drivers\mountmgr.sys
2015-02-24 15:25 . 2014-03-01 08:07 1075200 ----a-w- c:\windows\SysWow64\gpedit.dll
2015-02-24 15:25 . 2014-03-01 09:47 1258496 ----a-w- c:\windows\system32\kernel32.dll
2015-02-24 15:25 . 2014-03-01 09:47 1120768 ----a-w- c:\windows\system32\gpedit.dll
2015-02-24 15:25 . 2014-02-15 04:15 78336 ----a-w- c:\windows\system32\drivers\IPMIDrv.sys
2015-02-24 15:25 . 2013-11-25 23:17 83968 ----a-w- c:\windows\system32\drivers\hidclass.sys
2015-02-24 14:52 . 2015-02-24 14:53 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-02-24 14:51 . 2015-02-24 14:51 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2015-02-24 14:51 . 2015-02-24 14:51 -------- d-----w- c:\programdata\Malwarebytes
2015-02-24 14:51 . 2014-11-21 05:14 64216 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-02-24 14:51 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-02-24 14:51 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-02-24 14:48 . 2015-02-25 08:31 -------- d-----w- C:\AdwCleaner
2015-02-24 14:15 . 2015-02-03 19:29 714184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-02-24 14:15 . 2015-02-03 19:29 106440 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-02-24 14:07 . 2015-02-24 14:07 -------- d-s---w- c:\windows\system32\CompatTel
2015-02-24 14:07 . 2015-02-24 14:07 -------- d-----w- c:\windows\system32\appraiser
2015-02-24 13:36 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll
2015-02-24 13:36 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2015-02-24 13:36 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll
2015-02-24 13:36 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe
2015-02-24 13:36 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll
2015-02-24 13:15 . 2013-10-31 05:56 915968 ----a-w- c:\windows\system32\MPSSVC.dll
2015-02-24 13:15 . 2013-10-31 05:56 758784 ----a-w- c:\windows\system32\FirewallAPI.dll
2015-02-24 13:15 . 2013-10-31 04:01 550400 ----a-w- c:\windows\SysWow64\FirewallAPI.dll
2015-02-24 13:15 . 2013-10-13 20:49 100696 ----a-w- c:\windows\system32\drivers\disk.sys
2015-02-24 13:15 . 2013-08-27 05:21 227840 ----a-w- c:\windows\system32\WebClnt.dll
2015-02-24 13:15 . 2013-10-31 03:42 74752 ----a-w- c:\windows\system32\drivers\mpsdrv.sys
2015-02-24 13:15 . 2013-08-27 05:19 104448 ----a-w- c:\windows\system32\davclnt.dll
2015-02-24 13:15 . 2013-08-26 22:29 199168 ----a-w- c:\windows\SysWow64\WebClnt.dll
2015-02-24 13:15 . 2013-08-26 22:28 86016 ----a-w- c:\windows\SysWow64\davclnt.dll
2015-02-24 13:15 . 2012-10-11 05:44 105984 ----a-w- c:\windows\system32\icfupgd.dll
2015-02-24 13:15 . 2012-10-11 05:46 24576 ----a-w- c:\windows\system32\wfapigp.dll
2015-02-24 13:15 . 2012-10-11 05:07 19968 ----a-w- c:\windows\SysWow64\wfapigp.dll
2015-02-24 13:01 . 2010-06-02 03:55 77656 ----a-w- c:\windows\system32\XAPOFX1_5.dll
2015-02-24 13:01 . 2010-06-02 03:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2015-02-24 13:01 . 2010-06-02 03:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2015-02-24 13:01 . 2010-06-02 03:55 518488 ----a-w- c:\windows\system32\XAudio2_7.dll
2015-02-24 13:01 . 2010-06-02 03:55 239960 ----a-w- c:\windows\SysWow64\xactengine3_7.dll
2015-02-24 13:01 . 2010-06-02 03:55 176984 ----a-w- c:\windows\system32\xactengine3_7.dll
2015-02-24 13:01 . 2010-05-26 10:41 2526056 ----a-w- c:\windows\system32\D3DCompiler_43.dll
2015-02-24 12:39 . 2015-02-24 12:39 269992 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10248.bin
2015-02-24 12:17 . 2015-02-24 12:17 -------- d--h--r- c:\users\Public\AccountPictures
2015-02-24 12:01 . 2015-02-24 12:01 50784 ----a-w- c:\programdata\Microsoft\windowsfiltering\Sqm\Manifest\Sqm3.bin
2015-02-24 12:01 . 2015-02-24 12:01 17536 ----a-w- c:\programdata\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2015-02-24 10:49 . 2015-02-24 10:52 -------- d-----w- c:\windows\system32\MRT
2015-02-24 10:43 . 2013-04-09 04:51 3552768 ----a-w- c:\windows\system32\tquery.dll
2015-02-24 10:42 . 2013-05-04 06:59 13644288 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2015-02-24 10:42 . 2013-05-04 06:57 1131520 ----a-w- c:\windows\system32\AppXDeploymentServer.dll
2015-02-24 10:42 . 2013-05-04 04:57 10788864 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll
2015-02-24 10:42 . 2013-05-04 06:58 328192 ----a-w- c:\windows\system32\ubpm.dll
2015-02-24 10:42 . 2013-05-04 06:58 1332736 ----a-w- c:\windows\system32\sysmain.dll
2015-02-24 10:42 . 2013-05-04 06:57 389120 ----a-w- c:\windows\system32\BCP47Langs.dll
2015-02-24 10:42 . 2013-05-04 04:47 427520 ----a-w- c:\windows\system32\drivers\rdbss.sys
2015-02-24 10:42 . 2013-05-04 06:58 1820672 ----a-w- c:\program files\Windows Photo Viewer\PhotoViewer.dll
2015-02-24 10:42 . 2013-05-04 06:58 470528 ----a-w- c:\windows\system32\netprofmsvc.dll
2015-02-24 10:42 . 2013-05-04 04:57 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2015-02-24 10:40 . 2013-03-02 08:22 357888 ----a-w- c:\windows\SysWow64\netcfgx.dll
2015-02-24 10:39 . 2012-08-31 00:52 17888 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2015-02-24 10:39 . 2012-08-31 00:53 17888 ----a-w- c:\windows\SysWow64\msvcr100_clr0400.dll
2015-02-24 10:36 . 2014-10-11 07:44 3248640 ----a-w- c:\windows\system32\rdpcorets.dll
2015-02-24 10:36 . 2012-10-12 08:08 27880 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-02-24 10:36 . 2014-05-03 03:34 235520 ----a-w- c:\windows\system32\rdpudd.dll
2015-02-24 10:36 . 2012-10-12 06:14 36352 ----a-w- c:\windows\system32\rfxvmt.dll
2015-02-24 10:35 . 2012-10-10 07:04 94208 ----a-w- c:\windows\system32\synceng.dll
2015-02-24 10:35 . 2012-10-10 06:31 72192 ----a-w- c:\windows\SysWow64\synceng.dll
2015-02-24 10:35 . 2014-07-31 23:40 1287680 ----a-w- c:\windows\system32\schedsvc.dll
2015-02-24 10:34 . 2014-10-30 07:20 1890816 ----a-w- c:\windows\system32\crypt32.dll
2015-02-24 10:34 . 2014-10-30 05:22 1569792 ----a-w- c:\windows\SysWow64\crypt32.dll
2015-02-24 10:34 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2015-02-24 10:34 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2015-02-24 10:34 . 2014-08-09 08:29 144896 ----a-w- c:\windows\system32\tssdisai.dll
2015-02-24 10:34 . 2014-08-09 08:30 148480 ----a-w- c:\windows\system32\poqexec.exe
2015-02-24 10:32 . 2015-01-12 06:49 1084928 ----a-w- c:\program files\Common Files\Microsoft Shared\VGX\VGX.dll
2015-02-24 10:29 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-02-24 10:29 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-02-24 10:29 . 2014-12-08 06:48 391168 ----a-w- c:\windows\system32\scesrv.dll
2015-02-24 10:29 . 2014-12-08 05:04 318464 ----a-w- c:\windows\SysWow64\scesrv.dll
2015-02-24 10:27 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2015-02-24 10:27 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2015-02-24 10:24 . 2014-06-05 01:12 678600 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2015-02-24 10:22 . 2014-12-19 06:48 210432 ----a-w- c:\windows\system32\profsvc.dll
2015-02-24 10:19 . 2014-06-02 22:42 1413632 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\InkObj.dll
2015-02-24 10:19 . 2014-06-02 22:42 1029120 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Ink\journal.dll
2015-02-24 10:19 . 2014-06-02 22:33 1617920 ----a-w- c:\program files\Windows Journal\NBDoc.DLL
2015-02-24 10:19 . 2014-06-02 22:33 1318912 ----a-w- c:\program files\Windows Journal\JNWDRV.dll
2015-02-24 10:19 . 2014-06-02 22:33 1306624 ----a-w- c:\program files\Windows Journal\JNTFiltr.dll
2015-02-24 10:19 . 2014-06-02 22:33 1272320 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\journal.dll
2015-02-24 10:19 . 2013-04-10 22:35 2035200 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkObj.dll
2015-02-24 10:19 . 2014-06-02 22:33 627712 ----a-w- c:\program files\Windows Journal\MSPVWCTL.DLL
2015-02-24 10:19 . 2014-06-02 22:33 881152 ----a-w- c:\program files\Windows Journal\InkSeg.dll
2015-02-24 10:19 . 2014-06-02 22:33 336384 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\InkDiv.dll
2015-02-24 10:19 . 2014-06-02 22:33 265216 ----a-w- c:\windows\system32\InkEd.dll
2015-02-24 10:15 . 2014-10-11 07:45 10115072 ----a-w- c:\windows\system32\twinui.dll
2015-02-24 10:15 . 2014-10-11 05:58 8858624 ----a-w- c:\windows\SysWow64\twinui.dll
2015-02-24 10:15 . 2014-10-11 07:44 2885632 ----a-w- c:\windows\system32\msi.dll
2015-02-24 10:15 . 2014-10-11 05:57 2416640 ----a-w- c:\windows\SysWow64\msi.dll
2015-02-24 10:15 . 2014-06-12 23:29 2146304 ----a-w- c:\windows\system32\actxprxy.dll
2015-02-24 10:15 . 2014-10-11 07:44 393216 ----a-w- c:\windows\system32\msihnd.dll
2015-02-24 10:15 . 2014-10-11 07:43 2307072 ----a-w- c:\windows\system32\authui.dll
2015-02-24 10:15 . 2014-10-11 05:56 2037760 ----a-w- c:\windows\SysWow64\authui.dll
2015-02-24 10:15 . 2014-06-12 23:34 754176 ----a-w- c:\windows\SysWow64\actxprxy.dll
2015-02-24 10:15 . 2014-10-11 05:57 295424 ----a-w- c:\windows\SysWow64\msihnd.dll
2015-02-24 10:14 . 2015-02-02 23:18 1098752 ----a-w- c:\windows\system32\aeinv.dll
2015-02-24 10:14 . 2014-12-03 01:48 192000 ----a-w- c:\windows\system32\aepic.dll
2015-02-24 10:14 . 2015-02-04 09:54 609280 ----a-w- c:\windows\system32\generaltel.dll
2015-02-24 10:14 . 2015-02-04 09:52 761856 ----a-w- c:\windows\system32\invagent.dll
2015-02-24 10:14 . 2015-02-04 09:52 414208 ----a-w- c:\windows\system32\devinv.dll
2015-02-24 10:14 . 2015-02-04 09:52 227328 ----a-w- c:\windows\system32\aepdu.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-24 07:05 . 2012-07-26 08:13 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-12-30 09:28 . 2014-12-30 09:28 990720 ----a-w- c:\windows\SysWow64\rzdevicedll.dll
2014-12-30 09:28 . 2014-12-30 09:28 78848 ----a-w- c:\windows\SysWow64\rzvirtualdev.dll
2014-12-30 09:28 . 2014-12-30 09:28 89088 ----a-w- c:\windows\SysWow64\rzdevinfo.dll
2014-12-30 09:28 . 2014-12-30 09:28 155136 ----a-w- c:\windows\SysWow64\rztouchdll.dll
2014-12-30 09:28 . 2014-12-30 09:28 117248 ----a-w- c:\windows\SysWow64\rzdisplaydll.dll
2014-12-30 09:28 . 2014-12-30 09:28 419840 ----a-w- c:\windows\SysWow64\rzaudiodll.dll
2014-12-19 03:22 . 2014-12-19 03:22 9728 ----a-w- c:\windows\SysWow64\RzStats.IPC.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2015-02-18 2874048]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Dolby Advanced Audio v2"="c:\program files (x86)\Dolby Advanced Audio v2\pcee4.exe" [2012-07-26 508656]
"331BigDog"="c:\program files (x86)\USB Camera\VM331STI.EXE" [2012-05-02 548864]
"YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2012-07-27 136488]
"YouCam Tray"="c:\program files (x86)\Lenovo\YouCam\YouCamTray.exe" [2012-07-27 167024]
"UpdateP2GShortCut"="c:\program files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" [2012-04-19 217088]
"RemoteControl10"="c:\program files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe" [2012-03-29 91432]
"Intel AppUp(SM) center"="c:\program files (x86)\Intel\IntelAppStore\bin\ismagent.exe" [2012-07-12 155488]
"Razer Synapse"="c:\program files (x86)\Razer\Synapse\RzSynapse.exe" [2015-01-06 585536]
"KrakenLauncher"="c:\program files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe" [2014-06-12 1486128]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2012-11-16 525080]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R3 RSUSBVSTOR;RtsUVStor.Sys Realtek USB Card Reader;c:\windows\System32\Drivers\RtsUVStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUVStor.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys;c:\windows\SYSNATIVE\DRIVERS\wsvd.sys [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys;c:\windows\SYSNATIVE\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys;c:\windows\SYSNATIVE\DRIVERS\nvpciflt.sys [x]
S2 BcmBtRSupport;Bluetooth Radio Control Service;c:\windows\system32\BtwRSupportService.exe;c:\windows\SYSNATIVE\BtwRSupportService.exe [x]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe;c:\windows\SYSNATIVE\CxAudMsg64.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 RzKLService;RzKLService;c:\program files (x86)\Razer\Razer Cortex\RzKLService.exe;c:\program files (x86)\Razer\Razer Cortex\RzKLService.exe [x]
S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\System32\drivers\AcpiVpc.sys;c:\windows\SYSNATIVE\drivers\AcpiVpc.sys [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 L1C;NDIS Miniport Driver for Qualcomm Atheros AR81xx PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C63x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C63x64.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S3 vm331avs;Digital Camera 1;c:\windows\System32\Drivers\vm331avs.sys;c:\windows\SYSNATIVE\Drivers\vm331avs.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-02-24 07:22 1084744 ----a-w- c:\program files (x86)\Google\Chrome\Application\40.0.2214.115\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2012-05-14 17:39 463952 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-08-07 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-08-07 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-08-07 440640]
"SmartAudio"="c:\program files\CONEXANT\SAII\SACpl.exe" [2012-06-13 1647616]
"cAudioFilterAgent"="c:\program files\Conexant\cAudioFilterAgent\cAudioFilterAgent64.exe" [2012-06-15 887968]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2013-02-20 17079376]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2013-02-20 191568]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 86.61.133.1 84.16.96.2
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
c:\program files (x86)\Steam\bin\steamwebhelper.exe
c:\program files (x86)\Common Files\Steam\SteamService.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\SysWOW64\RunDll32.exe
.
**************************************************************************
.
Celkový čas: 2015-02-26 20:10:05 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-02-26 19:10
ComboFix2.txt 2015-02-26 12:30
.
Před spuštěním: 885 730 983 936 bytes free
Po spuštění: 885 232 222 208 bytes free
.
- - End Of File - - E2427FAF9B84DE9E90C9E029364821C5

[skillex44]

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:21:52, on 26. 2. 2015
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.17183)


Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Steam\Steam.exe
C:\Program Files (x86)\USB Camera\VM331STI.EXE
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe
C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe
C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe
C:\Program Files (x86)\Steam\bin\steamwebhelper.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files\lenovo\lenovo solution center\lsc.exe
C:\Users\Radovan\Downloads\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
O4 - HKLM\..\Run: [Dolby Advanced Audio v2] "C:\Program Files (x86)\Dolby Advanced Audio v2\pcee4.exe" -autostart
O4 - HKLM\..\Run: [331BigDog] C:\Program Files (x86)\USB Camera\VM331STI.EXE
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCamTray.exe" /s
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [RemoteControl10] "C:\Program Files (x86)\Lenovo\PowerDVD10\PDVD10Serv.exe"
O4 - HKLM\..\Run: [Intel AppUp(SM) center] "C:\Program Files (x86)\Intel\IntelAppStore\bin\ismagent.exe" --domain-id F0399437-FD0C-4A48-B101-F0314A6172E4
O4 - HKLM\..\Run: [Razer Synapse] "C:\Program Files (x86)\Razer\Synapse\RzSynapse.exe"
O4 - HKLM\..\Run: [KrakenLauncher] C:\Program Files (x86)\Razer\Razer_Kraken_Driver\Drivers\SysAudio\KrakenSysAudioLauncher.exe /start
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - Global Startup: Bluetooth.lnk = ?
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: @oem19.inf,%BcmBtRSupport.SVCNAME%;Bluetooth Radio Control Service (BcmBtRSupport) - Unknown owner - C:\windows\system32\BtwRSupportService.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: Intel(R) Content Protection HECI Service (cphs) - Intel Corporation - C:\windows\SysWow64\IntelCpHeciSvc.exe
O23 - Service: @C:\windows\system32\CxAudMsg64.exe,-100 (CxAudMsg) - Unknown owner - C:\windows\system32\CxAudMsg64.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Intel(R) Capability Licensing Service Interface - Intel(R) Corporation - C:\Program Files\Intel\iCLS Client\HeciServer.exe
O23 - Service: Intel(R) Dynamic Application Loader Host Interface Service (jhi_service) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: Razer Game Scanner (Razer Game Scanner Service) - Unknown owner - C:\Program Files (x86)\Razer\Razer Services\GSS\GameScannerService.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: RzKLService - Razer Inc. - C:\Program Files (x86)\Razer\Razer Cortex\RzKLService.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7672 bytes

[skillex44]

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2015-02-26 20:23:34
-----------------------------
20:23:34.681 OS Version: Windows x64 6.2.9200
20:23:34.681 Number of processors: 4 586 0x3A09
20:23:34.682 ComputerName: IDEA-PC UserName: Radovan
20:23:36.385 Initialize success
20:23:36.386 VM: initialized successfully
20:23:36.387 VM: Intel CPU BiosDisabled
20:23:43.206 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000037
20:23:43.209 Disk 0 Vendor: ST1000LM024_HN-M101MBB 2AR10001 Size: 953869MB BusType: 11
20:23:43.370 Disk 0 MBR read successfully
20:23:43.375 Disk 0 MBR scan
20:23:43.378 Disk 0 unknown MBR code
20:23:43.382 Disk 0 Partition 1 00 EE GPT 2097151 MB offset 1
20:23:43.413 Disk 0 scanning C:\windows\system32\drivers
20:23:50.384 Service scanning
20:24:06.290 Modules scanning
20:24:06.299 Disk 0 trace - called modules:
20:24:06.333 ntoskrnl.exe CLASSPNP.SYS disk.sys storport.sys hal.dll iaStorA.sys
20:24:06.339 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8009358060]
20:24:06.348 3 CLASSPNP.SYS[fffff88000a54e0a] -> nt!IofCallDriver -> \Device\00000037[0xfffffa800799b060]
20:24:06.355 Disk 0 statistics 111435/0/0 @ 11,42 MB/s
20:24:06.358 Scan finished successfully
20:24:14.725 Disk 0 MBR has been saved successfully to "C:\Users\Radovan\Desktop\MBR.dat"
20:24:14.731 The log file has been saved successfully to "C:\Users\Radovan\Desktop\aswMBR.txt"

[Orcus]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

====================================================

Vyčisti systém CCleanerem

====================================================

Stáhni si zde DelFix
http://general-changelog-team.fr/fr/dow ... e/9-delfix

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore) .
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci.

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem. Jinak je zpráva zde:
v C: \ DelFix.txt

Co problémy?

[skillex44]

# DelFix v10.8 - Logfile created 27/02/2015 at 09:42:26
# Updated 29/07/2014 by Xplode
# Username : Radovan - IDEA-PC
# Operating System : Windows 8 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\zoek_backup
Deleted : C:\AdwCleaner
Deleted : C:\ComboFix.txt
Deleted : C:\zoek-results.log
Deleted : C:\Users\Radovan\Desktop\AdwCleaner.exe
Deleted : C:\Users\Radovan\Desktop\aswmbr.exe
Deleted : C:\Users\Radovan\Desktop\aswMBR.txt
Deleted : C:\Users\Radovan\Desktop\JRT.exe
Deleted : C:\Users\Radovan\Desktop\JRT.txt
Deleted : C:\Users\Radovan\Desktop\MBR.dat
Deleted : C:\Users\Radovan\Desktop\zoek.exe
Deleted : C:\Users\Radovan\Downloads\AdwCleaner.exe
Deleted : C:\Users\Radovan\Downloads\ComboFix.exe
Deleted : C:\Users\Radovan\Downloads\JRT.exe
Deleted : C:\Users\Radovan\Downloads\HijackThis.exe
Deleted : C:\Users\Radovan\Downloads\hijackthis.log
Deleted : C:\Users\Radovan\Downloads\RogueKillerX64.exe
Deleted : C:\Users\Radovan\Downloads\TFC.exe
Deleted : C:\Users\Radovan\Downloads\zoek.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Services\aswMBR

~ Cleaning system restore ...

Deleted : RP #3 [ComboFix created restore point | 02/27/2015 08:36:20]

New restore point created !

########## - EOF - ##########

[Orcus]

Co problémy?

[skillex44]

Přinde mi, že se to o trochu zlepšilo, ale asi jako dřív to už nebude.