Prosím kontrolu logu z Combofix - tuhnutí PC

[Vary]

Dobrý den,
poprosil bych o kontrolu logu - mám problém z tuhnutím PC a při zapnutí/restartu se nechce rozjet nebo až na několikerý pokus. Také jel např. pořád na 100% výkonu...
Děkuji

ComboFix 13-05-18.04 - Hynek 20.05.2013 14:08:57.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.6142.4552 [GMT 2:00]
Spuštěný z: c:\stahovani\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Hynek\AppData\Local\Temp\_MEI33362\_ctypes.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\_elementtree.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\_hashlib.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\_multiprocessing.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\_socket.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\_ssl.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\pyexpat.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\pysqlite2._sqlite.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\python27.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\pythoncom27.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\PyWinTypes27.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\select.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\unicodedata.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32api.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32com.shell.shell.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32crypt.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32event.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32file.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32inet.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32pdh.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32process.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32profile.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32security.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\win32ts.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\windows._cacheinvalidation.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._controls_.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._core_.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._gdi_.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._html2.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._misc_.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._windows_.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wx._wizard.pyd
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wxbase294u_net_vc90.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wxbase294u_vc90.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wxmsw294u_adv_vc90.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wxmsw294u_core_vc90.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wxmsw294u_html_vc90.dll
c:\users\Hynek\AppData\Local\Temp\_MEI33362\wxmsw294u_webview_vc90.dll
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\funmoods.css
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\funmoods.xul
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\arwDwn.gif
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ae.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\bg.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\cn.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\cz.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\de.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\eg.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\en.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\es.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\fr.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\gr.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\he.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ch.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\il.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\it.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ja.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\jp.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\nl.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\no.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\pl.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\pt.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ro.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ru.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\sa.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\se.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\sv.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\tr.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\ua.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\flgs\us.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\help_16.gif
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\home.gif
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\logo.png
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\privecy_16_hot.gif
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\imgs\tellafriend.gif
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\loader.xul
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\mtstart.js
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\tmplt.js
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\content\uninsthk.js
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\chrome.manifest
c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ffxtlbr@funmoods.com\install.rdf
c:\windows\IsUn0405.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-04-20 do 2013-05-20 )))))))))))))))))))))))))))))))
.
.
2013-05-20 10:27 . 2013-05-20 10:27 -------- d-----w- c:\program files\Yamicsoft
2013-05-20 07:54 . 2013-05-20 08:50 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2013-05-20 07:54 . 2009-01-25 10:14 17272 ----a-w- c:\windows\system32\sdnclean64.exe
2013-05-20 07:54 . 2013-05-20 07:54 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2013-05-20 07:54 . 2013-05-20 07:54 -------- d-----w- c:\users\Hynek\AppData\Local\Programs
2013-05-20 07:47 . 2003-02-02 18:06 153088 ----a-w- c:\windows\SysWow64\UNRAR3.dll
2013-05-20 07:47 . 2002-03-05 23:00 75264 ----a-w- c:\windows\SysWow64\unacev2.dll
2013-05-20 07:47 . 2013-05-20 07:47 -------- d-----w- c:\program files (x86)\Trojan Remover
2013-05-20 07:47 . 2013-05-20 07:47 -------- d-----w- c:\users\Hynek\AppData\Roaming\Simply Super Software
2013-05-20 07:47 . 2013-05-20 07:47 -------- d-----w- c:\programdata\Simply Super Software
2013-05-20 07:27 . 2013-05-20 07:27 -------- d-----w- c:\program files (x86)\DLLSuite
2013-05-17 08:45 . 2013-05-17 08:46 -------- d-----w- c:\program files\Microsoft IntelliPoint
2013-05-17 08:05 . 2013-05-13 23:48 9460464 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EBA0DB24-AE51-4ADC-815E-9AE1E91C60E2}\mpengine.dll
2013-05-16 12:46 . 2013-05-16 12:46 -------- d-----w- c:\programdata\GFI Software
2013-05-16 12:28 . 2013-05-16 12:28 -------- d-----w- c:\program files (x86)\Nsasoft
2013-05-15 21:26 . 2013-05-20 10:28 -------- d-----w- c:\program files (x86)\SimpleSpeedy
2013-05-15 21:26 . 2013-05-15 21:26 -------- d-----w- c:\programdata\StarApp
2013-05-15 12:07 . 2013-05-15 12:07 -------- d-----w- c:\program files (x86)\CCleaner
2013-05-15 10:55 . 2013-04-05 06:50 19231232 ----a-w- c:\windows\system32\mshtml.dll
2013-05-15 10:55 . 2013-04-05 06:50 15404032 ----a-w- c:\windows\system32\ieframe.dll
2013-05-14 16:06 . 2012-04-08 22:40 79360 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2013-05-14 16:06 . 2013-05-14 16:06 -------- d-----w- c:\program files (x86)\ffdshow
2013-05-14 16:06 . 2013-05-15 11:13 -------- d-----w- c:\users\Hynek\AppData\Roaming\Yontoo
2013-05-14 16:05 . 2013-05-16 13:25 -------- d-----w- c:\program files (x86)\hdvidcodec.com
2013-05-08 13:09 . 2013-05-08 13:09 -------- d-----w- C:\Game
2013-05-08 13:04 . 2013-05-08 13:04 -------- d-----w- c:\users\Hynek\AppData\Local\Marias
2013-04-30 15:55 . 2013-04-30 15:55 -------- d-----w- c:\users\Hynek\AppData\Local\PutLockerDownloader
2013-04-29 21:07 . 2013-04-29 21:07 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-04-29 21:07 . 2013-04-04 03:35 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-04-27 18:01 . 2013-04-27 18:01 647168 ----a-w- c:\windows\AutoKMS.exe
2013-04-27 18:00 . 2013-05-20 12:19 78848 ----a-w- c:\windows\KMSEmulator.exe
2013-04-26 07:56 . 2012-01-20 11:01 1355776 ----a-w- c:\windows\SysWow64\MSVBVM50.DLL
2013-04-24 07:27 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-17 19:53 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-05-17 19:53 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-05-15 11:34 . 2012-06-25 17:23 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-15 11:34 . 2012-06-25 17:23 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 11:02 . 2012-06-25 12:37 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-02 00:06 . 2012-06-25 12:21 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-15 10:15 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-15 10:15 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-15 10:15 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-15 10:15 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-15 10:15 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-15 10:15 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-04-09 09:19 . 2012-09-28 16:29 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-04-09 09:19 . 2012-09-28 16:29 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-03-30 02:02 . 2013-03-30 02:02 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-03-30 02:02 . 2013-03-30 02:02 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-03-30 02:02 . 2013-03-30 02:02 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-03-30 02:02 . 2013-03-30 02:02 81408 ----a-w- c:\windows\system32\icardie.dll
2013-03-30 02:02 . 2013-03-30 02:02 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-03-30 02:02 . 2013-03-30 02:02 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-03-30 02:02 . 2013-03-30 02:02 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-03-30 02:02 . 2013-03-30 02:02 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-03-30 02:02 . 2013-03-30 02:02 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-03-30 02:02 . 2013-03-30 02:02 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-03-30 02:02 . 2013-03-30 02:02 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-03-30 02:02 . 2013-03-30 02:02 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-03-30 02:02 . 2013-03-30 02:02 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-03-30 02:02 . 2013-03-30 02:02 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-03-30 02:02 . 2013-03-30 02:02 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-03-30 02:02 . 2013-03-30 02:02 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-03-30 02:02 . 2013-03-30 02:02 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-03-30 02:02 . 2013-03-30 02:02 441856 ----a-w- c:\windows\system32\html.iec
2013-03-30 02:02 . 2013-03-30 02:02 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-03-30 02:02 . 2013-03-30 02:02 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-03-30 02:02 . 2013-03-30 02:02 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-03-30 02:02 . 2013-03-30 02:02 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-03-30 02:02 . 2013-03-30 02:02 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-03-30 02:02 . 2013-03-30 02:02 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-03-30 02:02 . 2013-03-30 02:02 235008 ----a-w- c:\windows\system32\url.dll
2013-03-30 02:02 . 2013-03-30 02:02 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-03-30 02:02 . 2013-03-30 02:02 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-03-30 02:02 . 2013-03-30 02:02 216064 ----a-w- c:\windows\system32\msls31.dll
2013-03-30 02:02 . 2013-03-30 02:02 197120 ----a-w- c:\windows\system32\msrating.dll
2013-03-30 02:02 . 2013-03-30 02:02 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-03-30 02:02 . 2013-03-30 02:02 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-03-30 02:02 . 2013-03-30 02:02 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-03-30 02:02 . 2013-03-30 02:02 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-03-30 02:02 . 2013-03-30 02:02 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-03-30 02:02 . 2013-03-30 02:02 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-03-30 02:02 . 2013-03-30 02:02 149504 ----a-w- c:\windows\system32\occache.dll
2013-03-30 02:02 . 2013-03-30 02:02 144896 ----a-w- c:\windows\system32\wextract.exe
2013-03-30 02:02 . 2013-03-30 02:02 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-03-30 02:02 . 2013-03-30 02:02 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-03-30 02:02 . 2013-03-30 02:02 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-03-30 02:02 . 2013-03-30 02:02 13824 ----a-w- c:\windows\system32\mshta.exe
2013-03-30 02:02 . 2013-03-30 02:02 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-03-30 02:02 . 2013-03-30 02:02 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-03-30 02:02 . 2013-03-30 02:02 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-03-30 02:02 . 2013-03-30 02:02 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-03-30 02:02 . 2013-03-30 02:02 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-03-30 02:02 . 2013-03-30 02:02 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-03-30 02:02 . 2013-03-30 02:02 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-30 02:02 . 2013-03-30 02:02 102912 ----a-w- c:\windows\system32\inseng.dll
2013-03-19 06:04 . 2013-04-10 08:06 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-10 08:06 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-10 08:06 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-10 08:06 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-10 08:06 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-10 08:06 112640 ----a-w- c:\windows\system32\smss.exe
2013-03-06 23:33 . 2013-03-17 10:11 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 23:33 . 2013-03-17 10:11 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 23:33 . 2012-06-25 18:38 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2012-06-25 18:38 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2012-06-25 18:38 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2012-06-25 18:38 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2012-06-25 18:38 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:33 . 2012-06-25 18:38 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:32 . 2012-06-25 18:37 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2012-06-25 18:38 287840 ----a-w- c:\windows\system32\aswBoot.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-04-16 19662744]
"Spybot-S&D Cleaning"="c:\program files (x86)\Spybot - Search & Destroy 2\SDCleaner.exe" [2012-11-13 3713032]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-12-19 642808]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-18 946352]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"TrojanScanner"="c:\program files (x86)\Trojan Remover\Trjscan.exe" [2013-05-20 1648400]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2012-11-13 3825176]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Dual Package.lnk - c:\program files (x86)\LG Soft India Pvt Ltd\Dual Package\bin\Dual Package.exe [2012-9-25 913920]
TrueColorFinder.lnk - c:\program files (x86)\LG Soft India Pvt Ltd\TrueColorFinder Software\bin\TrueColorFinder.exe [2012-9-25 1556480]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0\0sdnclean64.exe
.
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREdrv.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP LaserJet Service;HP LaserJet Service;c:\program files (x86)\HP\HPLaserJetService\HPLaserJetService.exe [2010-10-27 145920]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-07 161384]
R3 aswVmm;aswVmm; [x]
R3 HPFXBULKLEDM;HPFXBULKLEDM;c:\windows\system32\drivers\hppdbulkio.sys [2011-10-10 22040]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys [2009-11-02 33736]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [2012-12-07 36928]
R3 LGDDCDevice;LGDDCDevice;c:\windows\system32\LGI2CDriver.sys [x]
R3 LGII2CDevice;LGII2CDevice;c:\windows\system32\LGPII2CDriver.sys [x]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files (x86)\MSI\Live Update 5\msibios64_100507.sys [2010-05-10 33592]
R3 MSICDSetup;MSICDSetup;O:\CDriver64.sys [x]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files (x86)\MSI\Live Update 5\NTIOLib_X64.sys [2010-10-22 14136]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 Sony PC Companion;Sony PC Companion;c:\program files (x86)\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-06-25 1255736]
R4 Freemake Improver;Freemake Improver;c:\programdata\Freemake\FreemakeUtilsService\FreemakeUtilsService.exe [2012-09-07 100864]
R4 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2012-12-07 167424]
R4 Yontoo Desktop Updater;Yontoo Desktop Updater;c:\program files (x86)\Yontoo\Y2Desktop.Updater.exe [x]
S0 aswRvrt;aswRvrt; [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-07-14 283200]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-12-19 240640]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 HP DS Service;HP DS Service;c:\program files (x86)\HP\HPBDSService\HPBDSService.exe [2010-10-27 13824]
S2 HTCMonitorService;HTCMonitorService;c:\program files (x86)\HTC\HTC Sync Manager\HSMServiceEntry.exe [2013-01-29 87368]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-04-15 3289208]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [2013-03-06 3560288]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-11-06 96256]
S3 Point64;Microsoft IntelliPoint Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2011-08-01 45416]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2013-05-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-06-25 11:34]
.
2013-05-20 c:\windows\Tasks\AutoKMS.job
- c:\windows\AutoKMS.exe [2013-04-27 18:01]
.
2013-05-20 c:\windows\Tasks\AutoKMSDaily.job
- c:\windows\AutoKMS.exe [2013-04-27 18:01]
.
2013-05-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-27 20:34]
.
2013-05-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-08-27 20:34]
.
2013-05-19 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1194987995-1742697247-2291408486-1000Core.job
- c:\users\Hynek\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-25 13:17]
.
2013-05-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1194987995-1742697247-2291408486-1000UA.job
- c:\users\Hynek\AppData\Local\Google\Update\GoogleUpdate.exe [2012-06-25 13:17]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-04-16 14:10 776144 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IntelliPoint"="c:\program files\Microsoft IntelliPoint\ipoint.exe" [2011-08-01 2417032]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplňkový sken -------
.
uStart Page = hxxp://websearch.searchmainia.info/?unqvl=15
mStart Page = hxxp://websearch.searchmainia.info/?unqvl=15
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Prevést cíl vazby do Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: {{781B39EC-2E18-41FC-9B00-B84E4FFCA85F} - c:\program files (x86)\ICQ7M\ICQ.exe
TCP: Interfaces\{0B45EF7E-7D25-4BD4-BC86-6E59227EF2F6}: NameServer = 62.129.50.20,85.135.32.100
FF - ProfilePath - c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\
FF - prefs.js: browser.search.defaulturl - hxxp://websearch.searchmainia.info/?unqvl=15&l=1&q=
FF - prefs.js: browser.search.selectedEngine - WebSearch
FF - prefs.js: browser.startup.homepage - hxxp://websearch.searchmainia.info/?unqvl=15
FF - prefs.js: keyword.URL - hxxp://websearch.searchmainia.info/?unqvl=15&l=1&q=
FF - ExtSQL: 2013-04-11 17:54; ftdownloader3@ftdownloader.com; c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\ftdownloader3@ftdownloader.com.xpi
FF - ExtSQL: 2013-04-17 15:50; hdvc@hdvc.com; c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\hdvc@hdvc.com.xpi
FF - ExtSQL: 2013-04-30 09:22; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - ExtSQL: 2013-04-30 17:55; hftakte@h-c.net; c:\users\Hynek\AppData\Roaming\Mozilla\Firefox\Profiles\xqc3hwcn.default\extensions\hftakte@h-c.net
FF - user.js: extensions.incredibar_i.newTab - false
FF - user.js: extensions.incredibar_i.tlbrSrchUrl - hxxp://mystart.Incredibar.com/?a=6PQJR0VKPb&loc=IB_TB&i=26&search=
FF - user.js: extensions.incredibar_i.id - d47dac92000000000000001a4d58fb78
FF - user.js: extensions.incredibar_i.instlDay - 15599
FF - user.js: extensions.incredibar_i.vrsn - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsni - 1.5.11.14
FF - user.js: extensions.incredibar_i.vrsnTs - 1.5.11.1423:00
FF - user.js: extensions.incredibar_i.prtnrId - Incredibar
FF - user.js: extensions.incredibar_i.prdct - incredibar
FF - user.js: extensions.incredibar_i.aflt - orgnl
FF - user.js: extensions.incredibar_i.smplGrp - none
FF - user.js: extensions.incredibar_i.tlbrId - base
FF - user.js: extensions.incredibar_i.instlRef -
FF - user.js: extensions.incredibar_i.dfltLng -
FF - user.js: extensions.incredibar_i.excTlbr - false
FF - user.js: extensions.incredibar_i.ms_url_id -
FF - user.js: extensions.incredibar_i.upn2 - 6PQJR0VKPb
FF - user.js: extensions.incredibar_i.upn2n - 92543593201339893
FF - user.js: extensions.incredibar_i.productid - 26
FF - user.js: extensions.incredibar_i.installerproductid - 26
FF - user.js: extensions.incredibar_i.did - 10650
FF - user.js: extensions.incredibar_i.ppd - 95%5F4
FF - user.js: extensions.funmoods_i.hmpg - true
FF - user.js: extensions.funmoods_i.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ddrnw
FF - user.js: extensions.funmoods_i.dfltSrch - true
FF - user.js: extensions.funmoods_i.srchPrvdr - Search
FF - user.js: extensions.funmoods_i.dnsErr - true
FF - user.js: extensions.funmoods_i.newTab - true
FF - user.js: extensions.funmoods_i.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ddrnw
FF - user.js: extensions.funmoods_i.tlbrSrchUrl - hxxp://start.funmoods.com/results.php?f=3&a=ddrnw&q=
FF - user.js: extensions.funmoods_i.id - d47dac92000000000000001a4d58fb78
FF - user.js: extensions.funmoods_i.instlDay - 15611
FF - user.js: extensions.funmoods_i.vrsn - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsni - 1.5.11.16
FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.11.1617:44
FF - user.js: extensions.funmoods_i.prtnrId - funmoods
FF - user.js: extensions.funmoods_i.prdct - funmoods
FF - user.js: extensions.funmoods_i.aflt - ddrnw
FF - user.js: extensions.funmoods_i.smplGrp - none
FF - user.js: extensions.funmoods_i.tlbrId - base
FF - user.js: extensions.funmoods_i.instlRef -
FF - user.js: extensions.funmoods_i.dfltLng -
FF - user.js: extensions.funmoods_i.excTlbr - false
FF - user.js: extentions.y2layers.installId - 7a773045-1b6a-4931-ab72-166979b5d494
FF - user.js: extentions.y2layers.defaultEnableAppsList - DropDownDeals,buzzdock,YontooNewOffers
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{FD72061E-9FDE-484D-A58A-0BAB4151CAD8} - (no file)
Wow6432Node-HKCU-Run-AdobeBridge - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Notify-SDWinLogon - SDWinLogon.dll
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\HTC\HTC Sync Manager\HTC Sync\adb.exe
.
**************************************************************************
.
Celkový čas: 2013-05-20 14:24:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-05-20 12:24
.
Před spuštěním: Volných bajtů: 12 272 148 480
Po spuštění: Volných bajtů: 11 763 347 456
.
- - End Of File - - F357DDD4C453BF6A95298E263A9ADB1A

[Rudy]

Zdravím!
1. Váš operační systém asi moc legální nebude, že?
2. Spouštíte ComboFix, utilitu určenou pouze profesinálům, bez konzultace s rádcem. Hodláte si nabořit systém?

[Vary]

Také zdravím
add 1. systém sem "sdědil" spolu s PC - čili je to možné. Budu to muset asi napravit. Jsou sedmičky vhodná volba popř. která verze dostačuje pro grafické programy a stand. užívání
add 2. myslel sem si, asi chybně, že právě z tohoto logu se dá něco vyčíst příp. který log je tedy potřeba
Je ten systém nějak nabourán?
Děkuji

[Rudy]

ad1. Verze Ultimate nikdy není na domácím PC/NB (tedy pokud si ji tam uživatel nenainstaluje sám, ať už koupenou, nebo cracklou). Takový PC by byl vzhledem k ceně verze Ultimate (cca 6000Kč) jako domácí zcela neprodejný. Autenticitu systému si můžete ověřit: http://www.microsoft.com/genuine/valida ... laylang=cs. Pro domácí použití bohatě vyhoví verze HomePremium. Na zobrazení mají vliv jiné věci, než samotný oper. systém.

ad2. ComboFix je profesionální utilita a běžný uživatel nemá přístup k supportu autora. Sice vám odstraní vir, ale může smazat některé potřebné věci a v některých sw konfiguracích i naboří systém (to poznáte tak, že se po použití CF začne chovat jinak). K použití CF vyžadujeme kontrolu jinou utilitou (kdybyste si přečetl pravidla, věděl byste, že je to RSIT). Rádce posoudí stav systému a podle toho poradí další postup. Pokud usoudí, že je třeba použít ComboFix, dá vám přesný návod a na dočištění napíše skript.

Vzheldem k tomu, že naše fórum nepodporuje softwarové pirátství, neřeší ani problémy s nelegálním operačním systémem.

[Vary]

ok chápu a zatím díky

[Rudy]

Nemáte zač!