Prosím o kontrolu logu Vyřešeno

[jaro3]

Ještě to další.

[Reklama]

[Negrhegr]

Je normální, že zoek trvá i několik hodin? Už mi jel klidně dvě hodiny, ale dál nijak nereagoval, mám tedy to dál nechat nebo je v něčem chyba?

[Orcus]

Ano, je to normální. Nech ho běžet přes noc, jestli tě to nějak omezuje.

[Negrhegr]

Ten zoek mi jel už přes 30 hodin a furt byl zaseklej na stejním příkazovém řádku, to se mi fakt nezdá

[jerabina]

Ano, to už je moc... zkus ho v nouzovém režimu, pokud se nedokončí do 2 hodin, přeskoč ho a udělej ComboFix. Pro informaci, na jakém řádku se zastaví?

[Negrhegr]

Dnes jsem to opět nechal běžet, už v nouzovém řežimu, a ani po osmi hodinách se to nedokončilo. Vždy to skončí na řádku ---Firefox Extensions

[jaro3]

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.
V případě vyšších kapacit RAM je třeba Memtest spustit několikrát , pro 2GB ( jednotlivá největší kapacita RAM) 2x , pro 4GB 3x , pro 8Gb 4x ap.

Ještě zkontrolovat HDD na chyby ,popř. zkusit jeho defragmentaci ..


Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

[Negrhegr]

ComboFix 16-12-06.01 - Jura 13.12.2016 23:30:21.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4094.3038 [GMT 1:00]
Spuštěný z: c:\users\Jura\Desktop\ComboFix.exe
AV: Avast Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: Avast Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\security\Database\tmp.edb
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2016-11-13 do 2016-12-13 )))))))))))))))))))))))))))))))
.
.
2016-12-13 22:36 . 2016-12-13 22:36 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-12-13 09:08 . 2016-12-13 09:08 -------- d-----w- C:\zoek
2016-12-06 18:35 . 2016-12-10 08:37 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2016-12-06 18:35 . 2016-12-06 19:24 -------- d-----w- c:\programdata\RogueKiller
2016-12-06 17:57 . 2016-12-06 17:57 -------- d-----w- c:\programdata\Sophos
2016-12-06 17:56 . 2016-12-06 17:56 -------- d-----w- c:\program files (x86)\Sophos
2016-12-04 11:41 . 2016-12-10 08:04 192216 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2016-12-04 11:41 . 2016-03-10 13:09 64896 ----a-w- c:\windows\system32\drivers\mwac.sys
2016-12-04 11:41 . 2016-03-10 13:08 140672 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2016-12-04 11:41 . 2016-03-10 13:08 27008 ----a-w- c:\windows\system32\drivers\mbam.sys
2016-12-04 11:41 . 2016-12-04 11:41 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2016-12-04 11:41 . 2016-12-04 11:41 -------- d-----w- c:\programdata\Malwarebytes
2016-12-04 11:40 . 2016-12-04 11:40 -------- d-----w- c:\users\Jura\AppData\Local\Programs
2016-12-04 11:19 . 2016-12-04 11:30 -------- d-----w- C:\AdwCleaner
2016-12-04 11:13 . 2016-12-04 11:13 -------- d-----w- c:\users\Jura\AppData\Local\AMD
2016-12-04 11:12 . 2016-12-04 11:12 -------- d-----w- c:\users\Jura\AppData\Local\ATI
2016-12-04 11:12 . 2016-12-04 11:12 -------- d-----w- c:\users\Jura\AppData\Local\CEF
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-12-13 08:56 . 2016-08-06 14:23 65536 ----a-w- c:\windows\system32\spu_storage.bin
2016-11-02 15:36 . 2016-11-09 04:16 382696 ----a-w- c:\windows\system32\atmfd.dll
2016-11-02 15:32 . 2016-11-09 04:16 41472 ----a-w- c:\windows\system32\lpk.dll
2016-11-02 15:32 . 2016-11-09 04:16 100864 ----a-w- c:\windows\system32\fontsub.dll
2016-11-02 15:32 . 2016-11-09 04:16 14336 ----a-w- c:\windows\system32\dciman32.dll
2016-11-02 15:32 . 2016-11-09 04:16 46080 ----a-w- c:\windows\system32\atmlib.dll
2016-11-02 15:22 . 2016-11-09 04:16 308456 ----a-w- c:\windows\SysWow64\atmfd.dll
2016-11-02 15:16 . 2016-11-09 04:16 25600 ----a-w- c:\windows\SysWow64\lpk.dll
2016-11-02 15:16 . 2016-11-09 04:16 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2016-11-02 15:16 . 2016-11-09 04:16 10240 ----a-w- c:\windows\SysWow64\dciman32.dll
2016-11-02 14:53 . 2016-11-09 04:16 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2016-10-28 03:59 . 2016-11-09 04:16 394440 ----a-w- c:\windows\system32\iedkcs32.dll
2016-10-27 19:13 . 2016-11-09 04:16 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2016-10-27 19:13 . 2016-11-09 04:16 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2016-10-27 18:55 . 2016-11-09 04:16 66560 ----a-w- c:\windows\system32\iesetup.dll
2016-10-27 18:54 . 2016-11-09 04:16 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2016-10-27 18:54 . 2016-11-09 04:16 417792 ----a-w- c:\windows\system32\html.iec
2016-10-27 18:53 . 2016-11-09 04:16 88064 ----a-w- c:\windows\system32\MshtmlDac.dll
2016-10-27 18:53 . 2016-11-09 04:16 576000 ----a-w- c:\windows\system32\vbscript.dll
2016-10-27 18:51 . 2016-11-09 04:16 2896384 ----a-w- c:\windows\system32\iertutil.dll
2016-10-27 18:44 . 2016-11-09 04:16 54784 ----a-w- c:\windows\system32\jsproxy.dll
2016-10-27 18:43 . 2016-11-09 04:16 34304 ----a-w- c:\windows\system32\iernonce.dll
2016-10-27 18:38 . 2016-11-09 04:16 615936 ----a-w- c:\windows\system32\ieui.dll
2016-10-27 18:37 . 2016-11-09 04:16 114688 ----a-w- c:\windows\system32\ieetwcollector.exe
2016-10-27 18:37 . 2016-11-09 04:16 144384 ----a-w- c:\windows\system32\ieUnatt.exe
2016-10-27 18:37 . 2016-11-09 04:16 814080 ----a-w- c:\windows\system32\jscript9diag.dll
2016-10-27 18:37 . 2016-11-09 04:16 817664 ----a-w- c:\windows\system32\jscript.dll
2016-10-27 18:28 . 2016-11-09 04:16 25763328 ----a-w- c:\windows\system32\mshtml.dll
2016-10-27 18:28 . 2016-11-09 04:16 968704 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2016-10-27 18:24 . 2016-11-09 04:16 489984 ----a-w- c:\windows\system32\dxtmsft.dll
2016-10-27 18:19 . 2016-11-09 04:16 6047744 ----a-w- c:\windows\system32\jscript9.dll
2016-10-27 18:15 . 2016-11-09 04:16 77824 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2016-10-27 18:13 . 2016-11-09 04:16 107520 ----a-w- c:\windows\system32\inseng.dll
2016-10-27 18:09 . 2016-11-09 04:16 199680 ----a-w- c:\windows\system32\msrating.dll
2016-10-27 18:08 . 2016-11-09 04:16 92160 ----a-w- c:\windows\system32\mshtmled.dll
2016-10-27 18:05 . 2016-11-09 04:16 315392 ----a-w- c:\windows\system32\dxtrans.dll
2016-10-27 18:02 . 2016-11-09 04:16 152064 ----a-w- c:\windows\system32\occache.dll
2016-10-27 17:49 . 2016-11-09 04:16 262144 ----a-w- c:\windows\system32\webcheck.dll
2016-10-27 17:46 . 2016-11-09 04:16 725504 ----a-w- c:\windows\system32\ie4uinit.exe
2016-10-27 17:46 . 2016-11-09 04:16 806912 ----a-w- c:\windows\system32\msfeeds.dll
2016-10-27 17:44 . 2016-11-09 04:16 1359360 ----a-w- c:\windows\system32\mshtmlmedia.dll
2016-10-27 17:44 . 2016-11-09 04:16 2131456 ----a-w- c:\windows\system32\inetcpl.cpl
2016-10-27 17:17 . 2016-11-09 04:16 15257088 ----a-w- c:\windows\system32\ieframe.dll
2016-10-27 17:16 . 2016-11-09 04:16 2920448 ----a-w- c:\windows\system32\wininet.dll
2016-10-27 17:03 . 2016-11-09 04:16 1543680 ----a-w- c:\windows\system32\urlmon.dll
2016-10-27 16:54 . 2016-11-09 04:16 800768 ----a-w- c:\windows\system32\ieapfltr.dll
2016-10-25 15:02 . 2016-11-09 04:16 3219456 ----a-w- c:\windows\system32\win32k.sys
2016-10-22 17:54 . 2016-11-09 04:16 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2016-10-22 17:36 . 2016-11-09 04:16 62464 ----a-w- c:\windows\SysWow64\iesetup.dll
2016-10-22 17:36 . 2016-11-09 04:16 47616 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2016-10-22 17:35 . 2016-11-09 04:16 498688 ----a-w- c:\windows\SysWow64\vbscript.dll
2016-10-22 17:35 . 2016-11-09 04:16 341504 ----a-w- c:\windows\SysWow64\html.iec
2016-10-22 17:34 . 2016-11-09 04:16 64000 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2016-10-22 17:21 . 2016-11-09 04:16 115712 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2016-10-22 17:20 . 2016-11-09 04:16 620032 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2016-10-22 17:04 . 2016-11-09 04:16 60416 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2016-10-22 16:44 . 2016-11-09 04:16 4608000 ----a-w- c:\windows\SysWow64\jscript9.dll
2016-10-22 16:43 . 2016-11-09 04:16 2055680 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2016-10-22 16:43 . 2016-11-09 04:16 1155072 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2016-10-22 16:12 . 2016-11-09 04:16 2444800 ----a-w- c:\windows\SysWow64\wininet.dll
2016-10-21 11:58 . 2016-08-16 19:55 796352 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2016-10-21 11:58 . 2016-08-16 19:55 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2016-10-15 15:31 . 2016-11-09 04:16 976896 ----a-w- c:\windows\system32\inetcomm.dll
2016-10-15 15:31 . 2016-11-09 04:16 84480 ----a-w- c:\windows\system32\INETRES.dll
2016-10-15 15:13 . 2016-11-09 04:16 741888 ----a-w- c:\windows\SysWow64\inetcomm.dll
2016-10-15 15:13 . 2016-11-09 04:16 84480 ----a-w- c:\windows\SysWow64\INETRES.dll
2016-10-13 18:35 . 2016-08-06 14:39 293352 ----a-w- c:\windows\system32\drivers\aswvmm.sys
2016-10-11 15:37 . 2016-11-09 04:16 370920 ----a-w- c:\windows\system32\clfs.sys
2016-10-11 15:31 . 2016-11-09 04:16 1068544 ----a-w- c:\windows\system32\msctf.dll
2016-10-11 15:31 . 2016-11-09 04:16 878080 ----a-w- c:\windows\system32\IMJP10K.DLL
2016-10-11 15:31 . 2016-11-09 04:16 176128 ----a-w- c:\windows\system32\tintlgnt.ime
2016-10-11 15:31 . 2016-11-09 04:16 175104 ----a-w- c:\windows\system32\quick.ime
2016-10-11 15:31 . 2016-11-09 04:16 175104 ----a-w- c:\windows\system32\qintlgnt.ime
2016-10-11 15:31 . 2016-11-09 04:16 175104 ----a-w- c:\windows\system32\phon.ime
2016-10-11 15:31 . 2016-11-09 04:16 175104 ----a-w- c:\windows\system32\chajei.ime
2016-10-11 15:31 . 2016-11-09 04:16 175104 ----a-w- c:\windows\system32\cintlgnt.ime
2016-10-11 15:31 . 2016-11-09 04:16 132608 ----a-w- c:\windows\system32\pintlgnt.ime
2016-10-11 15:31 . 2016-11-09 04:16 1148416 ----a-w- c:\windows\system32\IMJP10.IME
2016-10-11 15:31 . 2016-11-09 04:16 457216 ----a-w- c:\windows\system32\imkr80.ime
2016-10-11 15:31 . 2016-11-09 04:16 246784 ----a-w- c:\windows\system32\input.dll
2016-10-11 15:18 . 2016-11-09 04:16 829952 ----a-w- c:\windows\SysWow64\msctf.dll
2016-10-11 15:18 . 2016-11-09 04:16 90112 ----a-w- c:\windows\SysWow64\pintlgnt.ime
2016-10-11 15:18 . 2016-11-09 04:16 126976 ----a-w- c:\windows\SysWow64\tintlgnt.ime
2016-10-11 15:18 . 2016-11-09 04:16 125952 ----a-w- c:\windows\SysWow64\cintlgnt.ime
2016-10-11 15:18 . 2016-11-09 04:16 701440 ----a-w- c:\windows\SysWow64\IMJP10K.DLL
2016-10-11 15:18 . 2016-11-09 04:16 430080 ----a-w- c:\windows\SysWow64\imkr80.ime
2016-10-11 15:18 . 2016-11-09 04:16 125952 ----a-w- c:\windows\SysWow64\quick.ime
2016-10-11 15:18 . 2016-11-09 04:16 125952 ----a-w- c:\windows\SysWow64\qintlgnt.ime
2016-10-11 15:18 . 2016-11-09 04:16 125952 ----a-w- c:\windows\SysWow64\phon.ime
2016-10-11 15:18 . 2016-11-09 04:16 125952 ----a-w- c:\windows\SysWow64\chajei.ime
2016-10-11 15:18 . 2016-11-09 04:16 1027584 ----a-w- c:\windows\SysWow64\IMJP10.IME
2016-10-11 15:18 . 2016-11-09 04:16 202240 ----a-w- c:\windows\SysWow64\input.dll
2016-10-11 13:33 . 2016-11-09 04:16 187392 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2016-10-11 13:06 . 2016-11-09 04:16 221184 ----a-w- c:\windows\system32\UIAnimation.dll
2016-10-10 15:38 . 2016-11-09 04:16 95464 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2016-10-10 15:38 . 2016-11-09 04:16 154856 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2016-10-10 15:34 . 2016-11-09 04:16 86528 ----a-w- c:\windows\system32\TSpkg.dll
2016-10-10 15:34 . 2016-11-09 04:16 210432 ----a-w- c:\windows\system32\wdigest.dll
2016-10-10 15:34 . 2016-11-09 04:16 28672 ----a-w- c:\windows\system32\sspisrv.dll
2016-10-10 15:34 . 2016-11-09 04:16 135680 ----a-w- c:\windows\system32\sspicli.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite Automount"="c:\program files\DAEMON Tools Lite\DTAgent.exe" [2016-08-29 4299968]
"Steam"="d:\steam\steam.exe" [2016-10-13 2860832]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2016-07-13 8891608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON"="c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
"PlaysTV"="c:\program files (x86)\Raptr Inc\PlaysTV\playstv_launcher.exe" [2016-11-18 51984]
"Raptr"="c:\program files (x86)\Raptr Inc\Raptr\raptrstub.exe" [2016-09-28 58584]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-08-06 642216]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2016-11-15 9080768]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.1;AODDriver4.1;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 PlaysService;Plays.tv Update Service (PlaysService);c:\program files (x86)\Raptr Inc\PlaysTV\plays_service.exe;c:\program files (x86)\Raptr Inc\PlaysTV\plays_service.exe [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusServiceLite.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 dtliteusbbus;DAEMON Tools Lite Virtual USB Bus;c:\windows\system32\DRIVERS\dtliteusbbus.sys;c:\windows\SYSNATIVE\DRIVERS\dtliteusbbus.sys [x]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
Obsah adresáře 'Naplánované úlohy'
.
2016-12-13 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2016-08-16 11:58]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2016-09-09 18:35 1031520 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2012-06-11 12503184]
"StartCN"="c:\program files\AMD\CNext\CNext\RadeonSettings.exe" [2016-07-18 6626696]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jura\AppData\Roaming\Mozilla\Firefox\Profiles\jtuid7wa.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-{050d4fc8-5d48-4b8f-8972-47c82c46020f} - c:\programdata\Package Cache\{050d4fc8-5d48-4b8f-8972-47c82c46020f}\vcredist_x64.exe
AddRemove-{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f} - c:\programdata\Package Cache\{33d1fd90-4274-48a1-9bc1-97e33d9c2d6f}\vcredist_x86.exe
AddRemove-{462f63a8-6347-4894-a1b3-dbfe3a4c981d} - c:\programdata\Package Cache\{462f63a8-6347-4894-a1b3-dbfe3a4c981d}\VC_redist.x86.exe
AddRemove-{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6} - c:\programdata\Package Cache\{ca67548a-5ebe-413a-b50c-4b9ceb6d66c6}\vcredist_x64.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2016-12-13 23:38:12
ComboFix-quarantined-files.txt 2016-12-13 22:38
.
Před spuštěním: Volných bajtů: 383 260 450 816
Po spuštění: Volných bajtů: 383 076 524 032
.
- - End Of File - - AADD8AA789AFA714160F41E31525BF47
A36C5E4F47E84449FF07ED3517B43A31

[jaro3]

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Ještě ten Memtest a CDI.

[Negrhegr]

----------------------------------------------------------------------------
CrystalDiskInfo 5.6.2 (C) 2008-2013 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2016/12/17 20:35:12

-- Controller Map ----------------------------------------------------------
- ATA Channel 0 (0) [ATA]
- ATA Channel 1 (1) [ATA]
+ ATA Channel 0 (0) [ATA]
- SAMSUNG HD103SJ ATA Device
- ATA Channel 1 (1) [ATA]
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
+ ATA Channel 0 (0)
- HL-DT-ST DVD-RAM GH22NP20 ATA Device
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ PCI Standardní dvoukanálový řadič IDE [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ DAEMON Tools Lite Virtual SCSI Bus [SCSI]
- DiscSoft Virtual SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) SAMSUNG HD103SJ : 1000,2 GB [0/0/1, pd1]

----------------------------------------------------------------------------
(1) SAMSUNG HD103SJ
----------------------------------------------------------------------------
Model : SAMSUNG HD103SJ
Firmware : 1AJ10001
Serial Number : S246J9EZ905579
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : 32767 KB
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 6
Transfer Mode : SATA/300
Power On Hours : 19410 hod.
Power On Count : 4496 krát
Temparature : 37 C (98 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, AAM, 48bit LBA, NCQ
APM Level : 0000h [OFF]
AAM Level : FE00h [OFF]

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 100 _51 000000000C60 Počet chyb čtení
02 252 252 __0 000000000000 Průchodnost disku
03 _71 _71 _25 000000002288 Čas na roztočení ploten
04 _96 _96 __0 00000000118F Počet spuštění/zastavení
05 252 252 _10 000000000000 Počet přemapovaných sektorů
07 252 252 _51 000000000000 Počet chybných hledání
08 252 252 _15 000000000000 Čas potřebný na vyhledání
09 100 100 __0 000000004BD2 Hodin v činnosti
0A 252 252 _51 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000001 Počet pokusů o překalibrování
0C _96 _96 __0 000000001190 Počet cyklů zapnutí zařízení
BF 100 100 __0 000000000023 Počet udalostí zaznamenaných otřesovým senzorem
C0 252 252 __0 000000000000 Počet vypnutí disku
C2 _63 _52 __0 003000100025 Teplota
C3 100 100 __0 000000000000 Počet oprav chybného čtení
C4 252 252 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 252 252 __0 000000000000 Počet podezřelých sektorů
C6 252 252 __0 000000000000 Počet neopravitelných sektorů
C7 100 100 __0 000000000007 Počet chyb v kontrolním součtu UltraDMA
C8 __1 __1 __0 00000000B7DD Počet chyb při zápisu sektorů
DF 100 100 __0 000000000001 Zatížení budiče magnetických hlav způsobené opakovanými úkony
E1 100 100 __0 0000000011A1 Počet cyklů načítání/vymazání

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 5332 3436 4A39 455A 3930 3535 3739 2020 2020 2020
020: 0000 FFFF 0050 3141 4A31 3030 3031 5341 4D53 554E
030: 4720 4844 3130 3353 4A20 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 1706 0000 004C 0040
080: 01FF 0028 746B 7F69 4123 7469 BC41 4123 407F 004B
090: 004B 0000 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 4000 0000 5002 4E92
110: 034C 61D1 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 003F 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 101F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 0400 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 50A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 64 64 60 0C 00 00 00 00 00 02 26
010: 00 FC FC 00 00 00 00 00 00 00 03 23 00 47 47 88
020: 22 00 00 00 00 00 04 32 00 60 60 8F 11 00 00 00
030: 00 00 05 33 00 FC FC 00 00 00 00 00 00 00 07 2E
040: 00 FC FC 00 00 00 00 00 00 00 08 24 00 FC FC 00
050: 00 00 00 00 00 00 09 32 00 64 64 D2 4B 00 00 00
060: 00 00 0A 32 00 FC FC 00 00 00 00 00 00 00 0B 32
070: 00 64 64 01 00 00 00 00 00 00 0C 32 00 60 60 90
080: 11 00 00 00 00 00 BF 22 00 64 64 23 00 00 00 00
090: 00 00 C0 22 00 FC FC 00 00 00 00 00 00 00 C2 02
0A0: 00 3F 34 25 00 10 00 30 00 00 C3 3A 00 64 64 00
0B0: 00 00 00 00 00 00 C4 32 00 FC FC 00 00 00 00 00
0C0: 00 00 C5 32 00 FC FC 00 00 00 00 00 00 00 C6 30
0D0: 00 FC FC 00 00 00 00 00 00 00 C7 36 00 64 64 07
0E0: 00 00 00 00 00 00 C8 2A 00 01 01 DD B7 00 00 00
0F0: 00 00 DF 32 00 64 64 01 00 00 00 00 00 00 E1 32
100: 00 64 64 A1 11 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 CC 24 00 5B
170: 03 00 01 00 02 9D 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 83

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 00 00 00 00 00 00 00 00 00 00 02 00
010: 00 00 00 00 00 00 00 00 00 00 03 19 00 00 00 00
020: 00 00 00 00 00 00 04 00 00 00 00 00 00 00 00 00
030: 00 00 05 0A 00 00 00 00 00 00 00 00 00 00 07 33
040: 00 00 00 00 00 00 00 00 00 00 08 0F 00 00 00 00
050: 00 00 00 00 00 00 09 00 00 00 00 00 00 00 00 00
060: 00 00 0A 33 00 00 00 00 00 00 00 00 00 00 0B 00
070: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
080: 00 00 00 00 00 00 BF 00 00 00 00 00 00 00 00 00
090: 00 00 C0 00 00 00 00 00 00 00 00 00 00 00 C2 00
0A0: 00 00 00 00 00 00 00 00 00 00 C3 00 00 00 00 00
0B0: 00 00 00 00 00 00 C4 00 00 00 00 00 00 00 00 00
0C0: 00 00 C5 00 00 00 00 00 00 00 00 00 00 00 C6 00
0D0: 00 00 00 00 00 00 00 00 00 00 C7 00 00 00 00 00
0E0: 00 00 00 00 00 00 C8 00 00 00 00 00 00 00 00 00
0F0: 00 00 DF 00 00 00 00 00 00 00 00 00 00 00 E1 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 3B

[Negrhegr]

aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2016-12-17 21:36:58
-----------------------------
21:36:58.479 OS Version: Windows x64 6.1.7601 Service Pack 1
21:36:58.479 Number of processors: 4 586 0x403
21:36:58.479 ComputerName: JURA-PC UserName: Jura
21:36:59.919 Initialize success
21:36:59.944 VM: initialized successfully
21:36:59.944 VM: Amd CPU BiosDisabled
21:37:08.200 AVAST engine defs: 16121700
21:37:11.900 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T1L0-7
21:37:11.900 Disk 0 Vendor: SAMSUNG_HD103SJ 1AJ10001 Size: 953869MB BusType: 3
21:37:12.070 Disk 0 MBR read successfully
21:37:12.075 Disk 0 MBR scan
21:37:12.465 Disk 0 Windows 7 default MBR code
21:37:12.475 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
21:37:12.485 Disk 0 Boot: NTFS code=2
21:37:12.570 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 477446 MB offset 206848
21:37:12.620 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 476320 MB offset 978016256
21:37:12.715 Disk 0 scanning C:\Windows\system32\drivers
21:37:25.075 Service scanning
21:37:41.834 Modules scanning
21:37:41.839 Disk 0 trace - called modules:
21:37:41.864 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
21:37:41.864 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a6d060]
21:37:41.869 3 CLASSPNP.SYS[fffff8800187543f] -> nt!IofCallDriver -> [0xfffffa8004991920]
21:37:41.874 5 ACPI.sys[fffff88000ef27a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T1L0-7[0xfffffa8004a87060]
21:37:42.264 AVAST engine scan C:\Windows
21:37:43.469 AVAST engine scan C:\Windows\system32
21:39:34.472 AVAST engine scan C:\Windows\system32\drivers
21:39:41.152 AVAST engine scan C:\Users\Jura
21:41:17.162 File: C:\Users\Jura\Desktop\zoek.exe **INFECTED** Win32:Malware-gen
21:41:36.228 AVAST engine scan C:\ProgramData
21:42:27.357 Disk 0 statistics 3687055/0/0 @ 7,92 MB/s
21:42:27.362 Scan finished successfully
21:47:01.202 Disk 0 MBR has been saved successfully to "C:\Users\Jura\Desktop\MBR.dat"
21:47:01.207 The log file has been saved successfully to "C:\Users\Jura\Desktop\aswMBR.txt"

[jaro3]

000000002288 Čas na roztočení ploten
000000000023 Počet udalostí zaznamenaných otřesovým senzorem

Udělej ještě jednou CrystalDiskInfo.

Co Memtest?