Posielanie požiadavky...

[Jokerko]

Ahojte!

Chcel by som sa vás opýtať, či by mi niekto nevedel poradiť, prečo keď zadám nejakú adresu do prehliadača, tak v stavovom riadku mi dosť dlho svieti "Posielanie požiadavky" a nič. Po 20-30 sek. mi vypíše, že stránku nebolo možné načítať, dám refresh, a bum, za sekundu je tam. A takto mi to robí stále dookola, a už ma to pomaly ale isto prestáva baviť (rýchlosti internetu mám v poriadku, aj ping (10-30ms).. a vôbec nemám poňatia, kde by mohla byť chyba.

Vopred ďakujem pekne za pomoc!!!

[Rudy]

Zdravím!
Můžeme se podívat, jestli nemáte v PC nějaké viry, nebo zbytečnosti. Dejte log RSIT: http://forum.viry.cz/viewtopic.php?t=81939 .

[Jokerko]

Nechcel som zakladať novú tému, tak to postujem sem:

Logfile of random's system information tool 1.09 (written by random/random)
Run by Jokerko at 2013-05-24 21:44:42
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 179 GB (59%) free of 305 GB
Total RAM: 3767 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:44:49, on 24.05.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16483)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe
C:\Users\Jokerko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Jokerko.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://packardbell.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe,
O1 - Hosts: ˙ţ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [Spotify Web Helper] "C:\Users\Jokerko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-4042239806-550433839-999547381-1009\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-4042239806-550433839-999547381-1009\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: Download all links with IDM - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Pridať do blogu - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Pridať do blogu v programe Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O20 - AppInit_DLLs: C:\Windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Active File Monitor V8 (AdobeActiveFileMonitor8.0) - Adobe Systems Incorporated - c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - Unknown owner - (no file)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira Scheduler (AntiVirSchedulerService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira Real-Time Protection (AntiVirService) - Avira Operations GmbH & Co. KG - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: AtherosSvc - Atheros Commnucations - C:\Program Files (x86)\Bluetooth Suite\adminservice.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe
O23 - Service: HP SI Service (HPSIService) - Unknown owner - C:\Windows\system32\HPSIsvc.exe (file missing)
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: OpenVPN Access Client (OpenVPNAccessClient) - Unknown owner - C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Spybot-S&D 2 Scanner Service (SDScannerService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe
O23 - Service: Spybot-S&D 2 Updating Service (SDUpdateService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe
O23 - Service: Spybot-S&D 2 Security Center Service (SDWSCService) - Safer-Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WD Backup (WDBackup) - Western Digital - C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe
O23 - Service: WD Drive Manager (WDDriveService) - Western Digital - C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe
O23 - Service: WD Rules (WDRulesService) - Western Digital - C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 11808 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Windows\system32\nvvsvc.exe"
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
"taskhost.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe"
"C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\NvTmru.exe"
"C:\Users\Jokerko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe"
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
"C:\Program Files (x86)\Launch Manager\LManager.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Bluetooth Suite\adminservice.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe"
"C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe"
C:\Windows\system32\HPSIsvc.exe
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe"
"C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe" -Embedding
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe"
"C:\Program Files (x86)\Launch Manager\MMDx64Fx.exe"
"C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe"
"C:\Program Files (x86)\Launch Manager\LMworker.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe"
"C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe"
WLIDSvcM.exe 3208
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerEvent.exe"
"C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_00000860
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"C:\Windows\system32\wuauclt.exe"
taskeng.exe {6B6085A5-0EC6-474D-ADBE-0CDA17203AEB}
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe" /autoupdate /silent /autoclose
"taskhost.exe"
"C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe" --type=gpu-process --channel="4440.0.198908688\1560617777" --supports-dual-gpus=false --reduce-gpu-sandbox --gpu-vendor-id=0x8086 --gpu-device-id=0x0046 --gpu-driver-vendor="Intel Corporation" --gpu-driver-version=8.15.10.2622 --ignored=" --type=renderer " /prefetch:822062411
"C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/NewStyle/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/5/OneClickSignIn/Standard/OverlappedReadImpact/OverlappedReadDisabled/Prerender/PrerenderEnabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_26/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/ --extension-process --disable-client-side-phishing-detection --renderer-print-preview --enable-threaded-compositing --channel="4440.2.1715625610\1895984095" /prefetch:673131151
"C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/NewStyle/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/5/OneClickSignIn/Standard/OverlappedReadImpact/OverlappedReadDisabled/Prerender/PrerenderEnabled/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_26/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/ --extension-process --disable-client-side-phishing-detection --renderer-print-preview --enable-threaded-compositing --channel="4440.3.1313830759\267295939" /prefetch:673131151
"C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/NewStyle/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/5/OneClickSignIn/Standard/OverlappedReadImpact/OverlappedReadDisabled/Prerender/PrerenderEnabled/SpdyCwnd/cwnd16/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_26/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/ --disable-client-side-phishing-detection --renderer-print-preview --enable-threaded-compositing --channel="4440.5.79600328\176755274" /prefetch:673131151
"C:\Users\Jokerko\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=sk --force-fieldtrials=AutocompleteDynamicTrial_1/DefaultControl/ForceCompositingMode/thread/InfiniteCache/No/NewMenuStyle/NewStyle/OmniboxHQPReplaceHUPProhibitTrumpingInlineableResult/Standard/OmniboxSearchSuggestTrialStarted2013Q1/5/OneClickSignIn/Standard/OverlappedReadImpact/OverlappedReadDisabled/Prerender/PrerenderEnabled/PrerenderFromOmnibox/OmniboxPrerenderEnabled/SpdyCwnd/cwnd16/Test0PercentDefault/group_01/UMA-Dynamic-Binary-Uniformity-Trial/default/UMA-Session-Randomized-Uniformity-Trial-5-Percent/group_03/UMA-Uniformity-Trial-1-Percent/group_26/UMA-Uniformity-Trial-10-Percent/group_06/UMA-Uniformity-Trial-20-Percent/group_04/UMA-Uniformity-Trial-5-Percent/group_10/UMA-Uniformity-Trial-50-Percent/group_01/ --disable-client-side-phishing-detection --renderer-print-preview --enable-threaded-compositing --channel="4440.10.334048369\875280741" /prefetch:673131151
C:\Windows\system32\wbem\wmiprvse.exe
"D:\DOWNLOADS\RSITx64.exe"
C:\Windows\System32\svchost.exe -k WerSvcGroup

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2012-02-16 371552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 532336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-05-07 75656]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2012-02-16 222640]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files (x86)\Spybot - Search & Destroy 2\SDHelper.dll [2012-11-13 3214392]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2012-10-26 449512]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2012-10-26 155384]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Acer ePower Management"=C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerTray.exe [2011-01-06 860040]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2012-01-10 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2012-01-10 392984]
"Persistence"=C:\Windows\system32\igfxpers.exe [2012-01-10 417560]
"SynTPEnh"=C:\Program Files\synaptics\syntp\syntpenh.exe [2009-12-10 1890088]
"AthBtTray"=c:\program files (x86)\bluetooth suite\athbttray.exe [2010-07-29 377504]
"AtherosBtStack"=c:\program files (x86)\bluetooth suite\btvstack.exe [2010-07-29 594080]
"Nvtmru"=C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe [2013-05-16 1012000]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"=C:\Users\Jokerko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe [2013-05-15 1105408]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-02-18 3465216]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\BackupManagerTray.exe [2010-06-29 263936]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IAStorIcon]
c:\program files (x86)\intel\intel(r) rapid storage technology\iastoricon.exe [2010-04-13 284696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2012-02-18 3465216]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2010-08-10 975952]
"amd_dc_opt"=C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe [2008-07-22 77824]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2013-05-22 345312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2012-01-10 390656]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoThumbnailCache"=1
"NoDriveTypeAutoRun"=221

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-05-24 21:44:42 ----D---- C:\rsit
2013-05-24 12:16:25 ----D---- C:\ProgramData\IsolatedStorage
2013-05-24 11:34:05 ----D---- C:\Windows\SYSWOW64\NV
2013-05-24 11:34:05 ----D---- C:\Windows\system32\NV
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nvvsvc.exe
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nvsvcr.dll
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nvsvc64.dll
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nvshext.dll
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nvmctray.dll
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nvcpl.dll
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nv3dappshextr.dll
2013-05-24 11:30:57 ----A---- C:\Windows\system32\nv3dappshext.dll
2013-05-24 11:30:14 ----D---- C:\ProgramData\NVIDIA Corporation
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvwgf2um.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvumdshim.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvopencl.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvoglv32.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvoglshim32.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvinit.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\NvIFR.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\NvFBC.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvd3dum.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvcuvid.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvcuvenc.dll
2013-05-24 11:24:14 ----A---- C:\Windows\SYSWOW64\nvcuda.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvwgf2umx.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvumdshimx.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvopencl.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvoglv64.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvoglshim64.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvinitx.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\NvIFR64.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\NvFBC64.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvdispgenco6432018.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvdispco6432018.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvd3dumx.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvcuvid.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvcuvenc.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\nvcuda.dll
2013-05-24 11:24:14 ----A---- C:\Windows\system32\drivers\nvpciflt.sys
2013-05-24 11:24:14 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2013-05-24 11:24:13 ----A---- C:\Windows\SYSWOW64\nvcompiler.dll
2013-05-24 11:24:13 ----A---- C:\Windows\SYSWOW64\nvapi.dll
2013-05-24 11:24:13 ----A---- C:\Windows\system32\nvcompiler.dll
2013-05-24 11:24:13 ----A---- C:\Windows\system32\nvapi64.dll
2013-05-24 10:26:19 ----A---- C:\Windows\system32\drivers\athrx.sys
2013-05-24 07:07:23 ----SHD---- C:\Config.Msi
2013-05-23 16:09:14 ----D---- C:\ProgramData\boost_interprocess
2013-05-22 15:32:45 ----A---- C:\Windows\system32\drivers\avnetflt.sys
2013-05-22 12:17:06 ----D---- C:\Program Files\Defraggler
2013-05-22 12:04:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-05-22 12:04:31 ----A---- C:\Windows\system32\mshtml.dll
2013-05-22 12:03:39 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2013-05-22 12:03:39 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2013-05-22 12:03:39 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-05-22 12:03:39 ----A---- C:\Windows\system32\mshtmled.dll
2013-05-22 12:03:39 ----A---- C:\Windows\system32\iertutil.dll
2013-05-22 12:03:38 ----A---- C:\Windows\SYSWOW64\url.dll
2013-05-22 12:03:38 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2013-05-22 12:03:38 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-05-22 12:03:38 ----A---- C:\Windows\system32\ieUnatt.exe
2013-05-22 12:03:38 ----A---- C:\Windows\system32\ieui.dll
2013-05-22 12:03:37 ----A---- C:\Windows\system32\url.dll
2013-05-22 12:03:35 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-05-22 12:03:35 ----A---- C:\Windows\system32\urlmon.dll
2013-05-22 12:03:35 ----A---- C:\Windows\system32\jscript9.dll
2013-05-22 12:03:33 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-05-22 12:03:33 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2013-05-22 12:03:33 ----A---- C:\Windows\system32\wininet.dll
2013-05-22 12:03:33 ----A---- C:\Windows\system32\msfeeds.dll
2013-05-22 12:03:32 ----A---- C:\Windows\system32\jsproxy.dll
2013-05-22 12:03:31 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-05-22 12:03:31 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-05-22 12:03:31 ----A---- C:\Windows\SYSWOW64\jscript.dll
2013-05-22 12:03:31 ----A---- C:\Windows\system32\vbscript.dll
2013-05-22 12:03:31 ----A---- C:\Windows\system32\jscript.dll
2013-05-22 12:03:21 ----A---- C:\Windows\system32\ieframe.dll
2013-05-22 12:03:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-05-22 12:02:24 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2013-05-22 12:02:24 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2013-05-22 12:02:24 ----A---- C:\Windows\system32\cdd.dll
2013-05-22 12:02:22 ----A---- C:\Windows\system32\wwansvc.dll
2013-05-22 12:02:22 ----A---- C:\Windows\system32\wwanprotdim.dll
2013-05-22 12:02:22 ----A---- C:\Windows\system32\win32k.sys
2013-05-22 12:02:04 ----A---- C:\Windows\system32\shell32.dll
2013-05-22 12:02:02 ----A---- C:\Windows\system32\shdocvw.dll
2013-05-22 12:02:02 ----A---- C:\Windows\system32\authui.dll
2013-05-22 12:02:01 ----A---- C:\Windows\SYSWOW64\shell32.dll
2013-05-22 12:02:01 ----A---- C:\Windows\SYSWOW64\shdocvw.dll
2013-05-22 12:02:01 ----A---- C:\Windows\SYSWOW64\authui.dll
2013-05-22 12:02:01 ----A---- C:\Windows\system32\consent.exe
2013-05-22 12:02:01 ----A---- C:\Windows\system32\appinfo.dll
2013-05-22 09:28:39 ----D---- C:\Users\Jokerko\AppData\Roaming\Avira
2013-05-22 09:26:19 ----D---- C:\ProgramData\Avira
2013-05-22 09:26:19 ----D---- C:\Program Files (x86)\Avira
2013-05-22 09:26:19 ----A---- C:\Windows\system32\drivers\avkmgr.sys
2013-05-22 09:26:19 ----A---- C:\Windows\system32\drivers\avipbb.sys
2013-05-22 09:26:19 ----A---- C:\Windows\system32\drivers\avgntflt.sys
2013-05-21 23:59:26 ----D---- C:\Program Files (x86)\UPC Fiber Power Optimizer
2013-05-18 23:34:08 ----A---- C:\AdwCleaner[S1].txt
2013-05-18 23:10:16 ----A---- C:\AdwCleaner[R1].txt
2013-05-18 15:59:48 ----D---- C:\Users\Jokerko\AppData\Roaming\wargaming.net
2013-05-18 14:26:41 ----D---- C:\Games
2013-05-16 22:49:02 ----D---- C:\Program Files\trend micro
2013-05-16 18:58:56 ----D---- C:\Program Files (x86)\MetaGeek
2013-05-15 19:17:30 ----A---- C:\Windows\SYSWOW64\FlashPlayerInstaller.exe
2013-05-15 18:03:42 ----D---- C:\Program Files (x86)\Spotify
2013-05-15 17:42:32 ----D---- C:\Users\Jokerko\AppData\Roaming\Spotify
2013-05-15 17:38:22 ----D---- C:\Users\Jokerko\AppData\Roaming\PrivateTunnel
2013-05-15 17:37:53 ----D---- C:\Program Files (x86)\OpenVPN Technologies
2013-05-13 19:05:30 ----D---- C:\Program Files (x86)\EA GAMES
2013-05-09 19:05:03 ----D---- C:\Program Files\Western Digital
2013-05-09 19:04:35 ----D---- C:\Program Files (x86)\Western Digital
2013-05-09 19:04:19 ----D---- C:\ProgramData\Western Digital
2013-05-07 01:12:09 ----A---- C:\Windows\system32\SmartDefragBootTime.exe
2013-05-07 01:11:56 ----A---- C:\Windows\system32\drivers\SmartDefragDriver.sys
2013-04-29 19:23:45 ----A---- C:\Windows\system32\drivers\ntfs.sys

======List of files/folders modified in the last 1 month======

2013-05-24 21:44:47 ----D---- C:\Windows\Temp
2013-05-24 21:25:00 ----D---- C:\Users\Jokerko\AppData\Roaming\uTorrent
2013-05-24 20:34:24 ----D---- C:\Windows\system32\wfp
2013-05-24 20:34:24 ----D---- C:\Windows\system32\wbem
2013-05-24 20:34:21 ----D---- C:\Windows\registration
2013-05-24 20:34:18 ----SHD---- C:\Windows\Installer
2013-05-24 20:32:20 ----SHD---- C:\System Volume Information
2013-05-24 16:37:34 ----D---- C:\Users\Jokerko\AppData\Roaming\DMCache
2013-05-24 12:16:25 ----HD---- C:\ProgramData
2013-05-24 11:48:44 ----D---- C:\Windows\system32\config
2013-05-24 11:40:25 ----D---- C:\Windows\System32
2013-05-24 11:40:25 ----D---- C:\Windows\inf
2013-05-24 11:40:25 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-05-24 11:34:39 ----A---- C:\Windows\SYSWOW64\log.txt
2013-05-24 11:34:05 ----D---- C:\Windows\SysWOW64
2013-05-24 11:34:05 ----D---- C:\ProgramData\NVIDIA
2013-05-24 11:31:49 ----RSD---- C:\Windows\assembly
2013-05-24 11:30:56 ----D---- C:\Windows\Help
2013-05-24 11:30:56 ----D---- C:\Program Files\NVIDIA Corporation
2013-05-24 11:30:08 ----D---- C:\Windows\system32\drivers
2013-05-24 11:30:07 ----D---- C:\Program Files (x86)\NVIDIA Corporation
2013-05-24 11:30:04 ----D---- C:\Windows\system32\catroot
2013-05-24 11:29:59 ----D---- C:\Windows\system32\DriverStore
2013-05-24 11:28:27 ----D---- C:\Windows\system32\catroot2
2013-05-24 10:36:15 ----D---- C:\Windows\Minidump
2013-05-24 10:36:09 ----D---- C:\Windows
2013-05-23 18:19:21 ----D---- C:\Windows\system32\NDF
2013-05-23 14:01:15 ----D---- C:\Users\Jokerko\AppData\Roaming\Skype
2013-05-23 13:30:18 ----D---- C:\Users\Jokerko\AppData\Roaming\vlc
2013-05-22 19:03:33 ----D---- C:\Windows\winsxs
2013-05-22 19:00:33 ----D---- C:\Windows\SYSWOW64\sk-SK
2013-05-22 19:00:33 ----D---- C:\Windows\system32\sk-SK
2013-05-22 19:00:33 ----D---- C:\Windows\AppPatch
2013-05-22 19:00:32 ----D---- C:\Windows\SYSWOW64\migration
2013-05-22 19:00:32 ----D---- C:\Program Files (x86)\Internet Explorer
2013-05-22 19:00:31 ----D---- C:\Windows\system32\migration
2013-05-22 19:00:30 ----D---- C:\Program Files\Internet Explorer
2013-05-22 19:00:01 ----D---- C:\Users\Jokerko\AppData\Roaming\SoftGrid Client
2013-05-22 13:33:02 ----D---- C:\Windows\Microsoft.NET
2013-05-22 12:17:06 ----RD---- C:\Program Files
2013-05-22 12:12:23 ----D---- C:\Program Files (x86)\LOLReplay
2013-05-22 12:11:31 ----D---- C:\Program Files (x86)\Wise
2013-05-22 12:10:47 ----D---- C:\Windows\debug
2013-05-22 12:10:46 ----A---- C:\Windows\system32\MRT.exe
2013-05-22 11:48:56 ----D---- C:\Users\Jokerko\AppData\Roaming\IDM
2013-05-22 09:26:19 ----D---- C:\Program Files (x86)
2013-05-22 09:00:08 ----D---- C:\Users\Jokerko\AppData\Roaming\TS3Client
2013-05-22 09:00:08 ----D---- C:\Users\Jokerko\AppData\Roaming\DAEMON Tools Lite
2013-05-22 09:00:05 ----D---- C:\Windows\Logs
2013-05-22 08:55:03 ----D---- C:\Program Files (x86)\Heroes & Generals
2013-05-22 08:54:20 ----D---- C:\Program Files (x86)\Valve
2013-05-22 08:51:33 ----D---- C:\Program Files (x86)\osu!
2013-05-22 08:49:57 ----D---- C:\Program Files (x86)\StepMania 5
2013-05-21 20:05:02 ----D---- C:\Program Files\TeamSpeak 3 Client
2013-05-18 21:27:47 ----D---- C:\Riot Games
2013-05-18 21:02:22 ----D---- C:\Windows\system32\drivers\etc
2013-05-18 21:02:12 ----D---- C:\Windows\Tasks
2013-05-18 17:27:37 ----D---- C:\ProgramData\Skype
2013-05-18 17:27:33 ----RD---- C:\Program Files (x86)\Skype
2013-05-18 15:05:31 ----D---- C:\Windows\SYSWOW64\directx
2013-05-18 11:15:45 ----D---- C:\Program Files (x86)\War Thunder
2013-05-15 19:17:42 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-05-15 18:10:38 ----D---- C:\Windows\SoftwareDistribution
2013-05-14 05:00:54 ----D---- C:\Program Files (x86)\uTorrent
2013-05-12 23:42:27 ----A---- C:\Windows\SYSWOW64\OpenCL.dll
2013-05-12 23:42:27 ----A---- C:\Windows\system32\OpenCL.dll
2013-05-09 19:04:35 ----D---- C:\Program Files (x86)\Common Files
2013-05-08 00:25:42 ----D---- C:\Program Files (x86)\SpeedFan
2013-05-07 01:12:09 ----D---- C:\Windows\system32\Tasks
2013-05-07 01:10:03 ----D---- C:\Windows\ModemLogs
2013-05-07 01:09:24 ----D---- C:\Program Files\CCleaner
2013-05-02 17:29:56 ----N---- C:\Windows\system32\MpSigStub.exe
2013-04-29 19:19:22 ----D---- C:\Windows\SYSWOW64\config

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-04-13 540696]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2013-05-12 30496]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2011-03-04 55856]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2011-03-18 29592]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2013-05-22 130016]
R1 avkmgr;avkmgr; C:\Windows\system32\DRIVERS\avkmgr.sys [2013-05-22 28600]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-22 283200]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2013-05-22 100712]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2012-02-08 149640]
R2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-05-11 2229608]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2010-07-29 28832]
R3 HECIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2012-01-10 12311904]
R3 Impcd;Impcd; C:\Windows\system32\DRIVERS\Impcd.sys [2010-02-27 158976]
R3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 287232]
R3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
R3 NTIDrvr;NTIDrvr; \??\C:\Windows\system32\drivers\NTIDrvr.sys [2009-05-06 18432]
R3 Sftfs;Sftfs; C:\Windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
R3 Sftplay;Sftplay; C:\Windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
R3 Sftredir;Sftredir; C:\Windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
R3 Sftvol;Sftvol; C:\Windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2009-12-10 301104]
R3 tapoas;TAP-Win32 Adapter OAS; C:\Windows\system32\DRIVERS\tapoas.sys [2012-07-15 30720]
R3 UBHelper;UBHelper; \??\C:\Windows\system32\drivers\UBHelper.sys [2009-05-06 16896]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S2 Angelnt;Angelnt; C:\Windows\System32\Drivers\ANGELNT.SYS []
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2010-07-29 36000]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2010-07-29 295072]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2010-07-29 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2010-07-29 51872]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2010-07-29 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2010-07-29 270496]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 E1G60;Intel(R) PRO/1000 NDIS 6 Adapter Driver; C:\Windows\system32\DRIVERS\E1G6032E.sys [2009-06-10 145792]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\IntcAzAudAddService.sys []
S3 ManyCam;ManyCam Virtual Webcam; C:\Windows\system32\DRIVERS\mcvidrv_x64.sys [2012-01-11 34304]
S3 mcaudrv_simple;ManyCam Virtual Microphone; C:\Windows\system32\drivers\mcaudrv_x64.sys [2012-02-22 28160]
S3 mvusbews;USB EWS Device; C:\Windows\System32\Drivers\mvusbews.sys [2011-04-27 20480]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2012-04-17 82816]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver; C:\Windows\system32\DRIVERS\point64.sys [2012-11-02 50856]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-11-18 19456]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2010-09-22 243712]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-11-18 57856]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 WDC_SAM;WD SCSI Pass Thru driver; C:\Windows\system32\DRIVERS\wdcsam64.sys [2012-06-13 14464]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Real Temp\WinRing0x64.sys [2008-07-26 14544]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-10 65640]
R2 AntiVirService;Avira Real-Time Protection; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2013-05-22 110816]
R2 AntiVirSchedulerService;Avira Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2013-05-22 86752]
R2 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2010-07-29 52896]
R2 cvhsvc;Client Virtualization Handler; C:\Program Files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-01-06 867712]
R2 GREGService;GREGService; C:\Program Files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
R2 HPSIService;HP SI Service; C:\Windows\system32\HPSIsvc.exe [2010-04-07 127800]
R2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
R2 NTI IScheduleSvc;NTI IScheduleSvc; C:\Program Files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-29 255744]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2013-05-12 884512]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2013-05-16 1826592]
R2 OpenVPNAccessClient;OpenVPN Access Client; C:\Program Files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe [2012-10-12 24064]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-12-17 76888]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
R2 sftlist;Application Virtualization Client; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
R2 UNS;Intel(R) Management & Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
R2 Updater Service;Updater Service; C:\Program Files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-29 243232]
R2 WDBackup;WD Backup; C:\Program Files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2012-06-14 1151424]
R2 WDDriveService;WD Drive Manager; C:\Program Files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2012-06-13 248248]
R2 WDRulesService;WD Rules; C:\Program Files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [2012-06-14 1177536]
R3 sftvsa;Application Virtualization Service Agent; C:\Program Files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
S2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
S3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8; c:\Program Files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-15 256904]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2012-02-21 867080]
S3 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [2010-01-15 935208]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-02-22 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

[Rudy]

1. Odinsrtalujte Advanced System Care. Tento čínský šmejd v rukou laika dokáže poškodit systém.
2. Spusťte tuto utilitu:

Stáhněte AdwCleaner http://www.stahuj.centrum.cz/utility_a_ ... dwcleaner/
Uložte na plochu
Ukončete všechny programy
Klikněte na Search (hledat)
Proběhne skenováni a pak se objeví log, který sem vložte.

[Jokerko]

Pokiaľ dobre viem, ASC som odinštaloval už dávnejšie, jediné čo mi po ňom ostalo bola inštalačka (v odinštalovaní programov, ani cez ccleaner som ho medzi programami na odinštalovanie nenašiel)

log z adwcleaner:

# AdwCleaner v2.301 - Log vytvorený 24/05/2013 o 23:02:18
# Aktualizované 16/05/2013 Xplode
# Operaený systém : Windows 7 Home Premium Service Pack 1 (64 bits)
# Uživateľ : Jokerko - JOKERKO-PC
# Spustený systém : Normálny
# Spustené z : C:\Users\Jokerko\Desktop\adwcleaner.exe
# Voľba [Prehľada?]


***** [Služby] *****


***** [Súbory / Adresáre] *****

Adresár Nájdené : C:\ProgramData\boost_interprocess
Adresár Nájdené : C:\Users\Jokerko\AppData\Local\PackageAware

***** [Registre] *****


***** [Internetové prehliadaee] *****

-\\ Internet Explorer v9.0.8112.16483

[OK] Registre sú eisté.

-\\ Mozilla Firefox v [Nemôžem získa? verziu]

Súbor : C:\Users\Jokerko\AppData\Roaming\Mozilla\Firefox\Profiles\emtubtop.default\prefs.js

[OK] Súbor je eistý.

-\\ Google Chrome v27.0.1453.94

Súbor : C:\Users\Jokerko\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] Súbor je eistý.

*************************

AdwCleaner[R1].txt - [3740 octets] - [18/05/2013 23:10:16]
AdwCleaner[R2].txt - [1027 octets] - [24/05/2013 23:02:18]
AdwCleaner[S1].txt - [3935 octets] - [18/05/2013 23:34:08]

########## EOF - C:\AdwCleaner[R2].txt - [1147 octets] ##########

[Rudy]

Nic tam není. Zkuste pročistit PC CCleanerem: http://forum.viry.cz/viewtopic.php?f=46&t=7478 (soubory i registry).

[Jokerko]

Skúsil som, ale problém pretrváva naďalej...

[Rudy]

Dejte log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

[Jokerko]

ComboFix 13-05-25.02 - Jokerko 25.05.2013 15:05:14.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.3767.2559 [GMT 2:00]
Running from: d:\downloads\ComboFix.exe
AV: ESET Smart Security 6.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 6.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\SecureW2
c:\program files (x86)\SecureW2\Uninstall.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\SecureW2
c:\programdata\Microsoft\Windows\Start Menu\Programs\SecureW2\TTLS Manager.lnk
c:\programdata\Microsoft\Windows\Start Menu\Programs\SecureW2\Uninstall.lnk
c:\users\Jokerko\AppData\Roaming\edxLabs
c:\users\Jokerko\AppData\Roaming\edxLabs\edxSilkroadLoader\edxSilkroadLoader.ini
c:\users\Jokerko\AppData\Roaming\inst.exe
c:\users\Jokerko\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SecureW2
c:\windows\PFRO.log
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Files Created from 2013-04-25 to 2013-05-25 )))))))))))))))))))))))))))))))
.
.
2013-05-25 13:27 . 2013-05-25 13:27 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-05-25 13:27 . 2013-05-25 13:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-05-24 19:44 . 2013-05-24 19:44 -------- d-----w- C:\rsit
2013-05-24 10:16 . 2013-05-24 10:16 -------- d-----w- c:\users\Jokerko\AppData\Local\RapidSharing.eu
2013-05-24 10:16 . 2013-05-24 10:16 -------- d-----w- c:\programdata\IsolatedStorage
2013-05-24 09:34 . 2013-05-24 09:34 -------- d-----w- c:\windows\SysWow64\NV
2013-05-24 09:34 . 2013-05-24 09:34 -------- d-----w- c:\windows\system32\NV
2013-05-24 09:33 . 2013-05-24 09:33 -------- d-----w- c:\users\UpdatusUser\AppData\Local\CrashDumps
2013-05-24 09:30 . 2013-05-12 20:34 6491936 ----a-w- c:\windows\system32\nvcpl.dll
2013-05-24 09:30 . 2013-05-12 20:34 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-05-24 09:30 . 2013-05-12 20:34 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-05-24 09:30 . 2013-05-12 20:34 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-05-24 09:30 . 2013-05-12 20:34 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-05-24 09:30 . 2013-05-12 20:34 67072 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-05-24 09:30 . 2013-05-12 20:34 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-05-24 09:30 . 2013-05-12 20:34 1025312 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-05-24 09:30 . 2013-05-08 14:13 3165737 ----a-w- c:\windows\system32\nvcoproc.bin
2013-05-24 09:30 . 2013-05-24 09:35 -------- d-----w- c:\programdata\NVIDIA Corporation
2013-05-24 08:26 . 2010-05-11 10:11 2229608 ----a-w- c:\windows\system32\drivers\athrx.sys
2013-05-23 14:09 . 2013-05-24 12:40 -------- d-----w- c:\programdata\boost_interprocess
2013-05-22 13:32 . 2013-05-22 13:32 83160 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-05-22 10:17 . 2013-05-22 10:17 -------- d-----w- c:\program files\Defraggler
2013-05-22 10:04 . 2013-05-05 21:36 17818624 ----a-w- c:\windows\system32\mshtml.dll
2013-05-22 10:04 . 2013-05-05 21:16 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-22 10:04 . 2013-05-05 19:12 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-05-22 10:02 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-05-22 07:28 . 2013-05-22 07:28 -------- d-----w- c:\users\Jokerko\AppData\Roaming\Avira
2013-05-22 07:26 . 2013-05-22 07:26 -------- d-----w- c:\programdata\Avira
2013-05-22 07:26 . 2013-05-22 07:26 -------- d-----w- c:\program files (x86)\Avira
2013-05-22 07:26 . 2013-05-22 07:23 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-05-22 07:26 . 2013-05-22 07:23 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-05-22 07:26 . 2013-05-22 07:23 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-05-21 21:59 . 2013-05-21 21:59 -------- d-----w- c:\program files (x86)\UPC Fiber Power Optimizer
2013-05-21 21:58 . 2013-05-21 21:58 -------- d-----w- c:\users\Jokerko\AppData\Local\PackageAware
2013-05-18 13:59 . 2013-05-18 13:59 -------- d-----w- c:\users\Jokerko\AppData\Roaming\wargaming.net
2013-05-18 12:26 . 2013-05-18 12:26 -------- d-----w- C:\Games
2013-05-18 07:34 . 2013-05-18 07:34 512 ----a-w- C:\PhysicalMBR.bin
2013-05-16 20:49 . 2013-05-24 19:44 -------- d-----w- c:\program files\trend micro
2013-05-16 16:59 . 2013-05-16 16:59 -------- d-sh--w- c:\users\Jokerko\AppData\Local\ms-drivers
2013-05-16 16:59 . 2013-05-16 16:59 -------- d-----w- c:\users\Jokerko\AppData\Local\MetaGeek,_LLC
2013-05-16 16:59 . 2013-05-16 16:59 -------- d-----w- c:\users\Jokerko\AppData\Local\IsolatedStorage
2013-05-16 16:58 . 2013-05-16 16:58 -------- d-----w- c:\program files (x86)\MetaGeek
2013-05-15 17:17 . 2013-05-15 17:17 17613192 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-05-15 16:03 . 2013-05-15 16:03 -------- d-----w- c:\program files (x86)\Spotify
2013-05-15 15:42 . 2013-05-24 14:08 -------- d-----w- c:\users\Jokerko\AppData\Local\Spotify
2013-05-15 15:42 . 2013-05-24 17:57 -------- d-----w- c:\users\Jokerko\AppData\Roaming\Spotify
2013-05-15 15:38 . 2013-05-24 14:46 -------- d-----w- c:\users\Jokerko\AppData\Roaming\PrivateTunnel
2013-05-15 15:37 . 2013-05-15 15:37 -------- d-----w- c:\program files (x86)\OpenVPN Technologies
2013-05-13 17:09 . 2013-05-13 17:10 -------- d-----w- c:\users\Jokerko\AppData\Local\NFS Underground 2
2013-05-13 17:05 . 2013-05-13 17:05 -------- d-----w- c:\program files (x86)\EA GAMES
2013-05-09 17:06 . 2013-05-09 17:06 -------- d-----w- c:\users\Jokerko\AppData\Local\Western_Digital
2013-05-09 17:05 . 2013-05-09 17:05 -------- d-----w- c:\program files\Western Digital
2013-05-09 17:04 . 2013-05-09 17:05 -------- d-----w- c:\program files (x86)\Western Digital
2013-05-09 17:04 . 2013-05-09 17:04 -------- d-----w- c:\program files (x86)\Common Files\Western Digital
2013-05-09 17:04 . 2013-05-09 17:06 -------- d-----w- c:\programdata\Western Digital
2013-05-08 09:22 . 2013-05-08 09:22 -------- d-----w- c:\users\Public\Games
2013-05-06 23:12 . 2012-05-08 16:34 32600 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2013-05-06 23:11 . 2010-11-26 16:02 17720 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2013-04-29 17:23 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-26 17:34 . 2013-04-26 17:34 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10144.bin
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-22 10:10 . 2012-02-24 20:55 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 17:17 . 2012-03-31 08:56 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 17:17 . 2012-02-21 13:18 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-12 21:42 . 2012-09-14 10:37 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-05-12 21:42 . 2012-09-14 10:37 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-05-02 15:29 . 2012-02-21 12:49 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-22 10:02 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-22 10:02 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-22 10:02 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-22 10:02 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-22 10:02 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-22 10:02 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-03-19 06:04 . 2013-04-18 09:57 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-18 09:57 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-18 09:57 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-18 09:57 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-18 09:57 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-18 09:57 112640 ----a-w- c:\windows\system32\smss.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="c:\users\Jokerko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-05-15 1105408]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2012-02-18 3465216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-05-22 345312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoThumbnailCache"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; [x]
R2 Angelnt;Angelnt;c:\windows\System32\Drivers\ANGELNT.SYS [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe [2012-10-12 24064]
R2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
R2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2010-07-29 36000]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2010-07-29 295072]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2010-07-29 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2010-07-29 51872]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2010-07-29 154272]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2010-07-29 270496]
R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys [2012-01-11 34304]
R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys [2012-02-22 28160]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2011-04-27 20480]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2012-04-17 82816]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-11-18 19456]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-09-22 243712]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-11-18 57856]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-22 1255736]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2012-06-13 14464]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\real temp\WinRing0x64.sys [2008-07-26 14544]
R3 X6va002;X6va002; [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2013-05-12 30496]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-03-04 55856]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-05-22 28600]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-22 283200]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2013-05-22 86752]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2010-07-29 52896]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-01-05 867712]
S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2010-04-07 127800]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2012-02-08 149640]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-28 255744]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-28 243232]
S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2012-06-14 1151424]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2012-06-13 248248]
S2 WDRulesService;WD Rules;c:\program files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [2012-06-14 1177536]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2010-07-29 28832]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 287232]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2012-11-02 50856]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys [2012-07-15 30720]
.
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-02-08 00:49 23432 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer ePower Management"="c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" [2011-01-05 860040]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-10 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-10 392984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-10 417560]
"AthBtTray"="c:\program files (x86)\bluetooth suite\athbttray.exe" [2010-07-29 377504]
"AtherosBtStack"="c:\program files (x86)\bluetooth suite\btvstack.exe" [2010-07-29 594080]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uStart Page =
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL =
mStart Page = hxxp://packardbell.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Download all links with IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\synaptics\syntp\syntpenh.exe
AddRemove-SecureW2 EAP Suite - c:\program files (x86)\SecureW2\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (LocalSystem)
"{0055C089-8582-441B-A0BF-17B458C2A3A8}"=hex:51,66,7a,6c,4c,1d,38,12,e7,c3,46,
04,b0,cb,75,01,df,a9,54,f4,5d,9c,e7,bc
"{0FB6A909-6086-458F-BD92-1F8EE10042A0}"=hex:51,66,7a,6c,4c,1d,38,12,67,aa,a5,
0b,b4,2e,e1,00,c2,84,5c,ce,e4,5e,06,b4
"{18DF081C-E8AD-4283-A596-FA578C2EBDC3}"=hex:51,66,7a,6c,4c,1d,38,12,72,0b,cc,
1c,9f,a6,ed,07,da,80,b9,17,89,70,f9,d7
"{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}"=hex:51,66,7a,6c,4c,1d,38,12,d5,94,07,
72,c2,98,42,03,c9,fd,97,9a,f4,87,69,57
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,38,12,0a,d7,23,
94,30,02,d1,0f,f1,da,12,24,73,56,27,d2
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,38,12,2a,03,db,
df,77,ea,35,06,c3,62,df,65,c4,9b,cc,bd
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*L!ým *€]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*L!ým *€\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Ľ.ý**€*\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001_Classes\Wow6432Node\CLSID\{3fa4f6ad-3934-4c34-8d22-40701f759482}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
"scansk"=hex(0):fa,88,53,e3,73,fc,95,19,0b,94,d4,0b,87,1a,ea,ea,60,f1,fc,e3,19,
39,c9,ba,0b,b8,95,69,19,e6,be,3d,7d,af,19,4c,b9,33,5e,49,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_202.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-05-25 15:29:34
ComboFix-quarantined-files.txt 2013-05-25 13:29
.
Pre-Run: 184 204 861 440 bytes free
Post-Run: 183 858 601 984 bytes free
.
- - End Of File - - 64D4284608F99071452DF1D00C90716B

A pozerám že tam stále mám nejaký ESET ale pritom nikde neviem nič nájsť, už dávno som ho odinštalovával, vedel by si mi pomôcť prosím odstrániť ho?

[Rudy]

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

RegLock::
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\Approved Extensions]
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*L!ým *€]
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*L!ým *€\OpenWithList]
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Ľ.ý**€*\OpenWithList]
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001_Classes\Wow6432Node\CLSID\{3fa4f6ad-3934-4c34-8d22-40701f759482}]
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

[Jokerko]

neviem síce čo si tam urobil, ale po reštarte mi nejde absolútne nič spustiť.. vyhadzuje mi chybu:
"Vyskytol sa pokus o nepovolenú operáciu s kľúčom databázy Registry, ktorý bol označený na odstránenie."

Robí to pri všetkom.. chrome som zapol len na "Spustiť ako správca" a aj to som musel ísť až do AppData/Local a tam ho nájsť lebo ani cez štart - programy mi ho nechcelo spustiť.. taktiež mi toto isté vyhodí aj explorer.exe atd.... prikladám aj log, ale prosím ťa naprav to nejako:

ComboFix 13-05-25.02 - Jokerko 25.05.2013 19:40:48.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.421.1051.18.3767.2368 [GMT 2:00]
Running from: d:\downloads\ComboFix.exe
Command switches used :: d:\downloads\CFScript.txt
AV: ESET Smart Security 6.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET Personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 6.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Spybot - Search and Destroy *Enabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Files Created from 2013-04-25 to 2013-05-25 )))))))))))))))))))))))))))))))
.
.
2013-05-25 17:45 . 2013-05-25 17:45 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-05-24 19:44 . 2013-05-24 19:44 -------- d-----w- C:\rsit
2013-05-24 10:16 . 2013-05-24 10:16 -------- d-----w- c:\users\Jokerko\AppData\Local\RapidSharing.eu
2013-05-24 10:16 . 2013-05-24 10:16 -------- d-----w- c:\programdata\IsolatedStorage
2013-05-24 09:34 . 2013-05-24 09:34 -------- d-----w- c:\windows\SysWow64\NV
2013-05-24 09:34 . 2013-05-24 09:34 -------- d-----w- c:\windows\system32\NV
2013-05-24 09:33 . 2013-05-24 09:33 -------- d-----w- c:\users\UpdatusUser\AppData\Local\CrashDumps
2013-05-24 09:30 . 2013-05-12 20:34 6491936 ----a-w- c:\windows\system32\nvcpl.dll
2013-05-24 09:30 . 2013-05-12 20:34 3514656 ----a-w- c:\windows\system32\nvsvc64.dll
2013-05-24 09:30 . 2013-05-12 20:34 884512 ----a-w- c:\windows\system32\nvvsvc.exe
2013-05-24 09:30 . 2013-05-12 20:34 63776 ----a-w- c:\windows\system32\nvshext.dll
2013-05-24 09:30 . 2013-05-12 20:34 2555680 ----a-w- c:\windows\system32\nvsvcr.dll
2013-05-24 09:30 . 2013-05-12 20:34 67072 ----a-w- c:\windows\system32\nv3dappshextr.dll
2013-05-24 09:30 . 2013-05-12 20:34 237856 ----a-w- c:\windows\system32\nvmctray.dll
2013-05-24 09:30 . 2013-05-12 20:34 1025312 ----a-w- c:\windows\system32\nv3dappshext.dll
2013-05-24 09:30 . 2013-05-08 14:13 3165737 ----a-w- c:\windows\system32\nvcoproc.bin
2013-05-24 09:30 . 2013-05-24 09:35 -------- d-----w- c:\programdata\NVIDIA Corporation
2013-05-24 08:26 . 2010-05-11 10:11 2229608 ----a-w- c:\windows\system32\drivers\athrx.sys
2013-05-23 14:09 . 2013-05-24 12:40 -------- d-----w- c:\programdata\boost_interprocess
2013-05-22 13:32 . 2013-05-22 13:32 83160 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-05-22 10:17 . 2013-05-22 10:17 -------- d-----w- c:\program files\Defraggler
2013-05-22 10:04 . 2013-05-05 21:36 17818624 ----a-w- c:\windows\system32\mshtml.dll
2013-05-22 10:04 . 2013-05-05 21:16 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2013-05-22 10:04 . 2013-05-05 19:12 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-05-22 10:02 . 2013-04-10 06:01 265064 ----a-w- c:\windows\system32\drivers\dxgmms1.sys
2013-05-22 07:28 . 2013-05-22 07:28 -------- d-----w- c:\users\Jokerko\AppData\Roaming\Avira
2013-05-22 07:26 . 2013-05-22 07:26 -------- d-----w- c:\programdata\Avira
2013-05-22 07:26 . 2013-05-22 07:26 -------- d-----w- c:\program files (x86)\Avira
2013-05-22 07:26 . 2013-05-22 07:23 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-05-22 07:26 . 2013-05-22 07:23 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-05-22 07:26 . 2013-05-22 07:23 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-05-21 21:59 . 2013-05-21 21:59 -------- d-----w- c:\program files (x86)\UPC Fiber Power Optimizer
2013-05-21 21:58 . 2013-05-21 21:58 -------- d-----w- c:\users\Jokerko\AppData\Local\PackageAware
2013-05-18 13:59 . 2013-05-18 13:59 -------- d-----w- c:\users\Jokerko\AppData\Roaming\wargaming.net
2013-05-18 12:26 . 2013-05-18 12:26 -------- d-----w- C:\Games
2013-05-18 07:34 . 2013-05-18 07:34 512 ----a-w- C:\PhysicalMBR.bin
2013-05-16 20:49 . 2013-05-24 19:44 -------- d-----w- c:\program files\trend micro
2013-05-16 16:59 . 2013-05-16 16:59 -------- d-sh--w- c:\users\Jokerko\AppData\Local\ms-drivers
2013-05-16 16:59 . 2013-05-16 16:59 -------- d-----w- c:\users\Jokerko\AppData\Local\MetaGeek,_LLC
2013-05-16 16:59 . 2013-05-16 16:59 -------- d-----w- c:\users\Jokerko\AppData\Local\IsolatedStorage
2013-05-16 16:58 . 2013-05-16 16:58 -------- d-----w- c:\program files (x86)\MetaGeek
2013-05-15 17:17 . 2013-05-15 17:17 17613192 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-05-15 16:03 . 2013-05-15 16:03 -------- d-----w- c:\program files (x86)\Spotify
2013-05-15 15:42 . 2013-05-25 14:09 -------- d-----w- c:\users\Jokerko\AppData\Local\Spotify
2013-05-15 15:42 . 2013-05-25 14:09 -------- d-----w- c:\users\Jokerko\AppData\Roaming\Spotify
2013-05-15 15:38 . 2013-05-24 14:46 -------- d-----w- c:\users\Jokerko\AppData\Roaming\PrivateTunnel
2013-05-15 15:37 . 2013-05-15 15:37 -------- d-----w- c:\program files (x86)\OpenVPN Technologies
2013-05-13 17:09 . 2013-05-13 17:10 -------- d-----w- c:\users\Jokerko\AppData\Local\NFS Underground 2
2013-05-13 17:05 . 2013-05-13 17:05 -------- d-----w- c:\program files (x86)\EA GAMES
2013-05-09 17:06 . 2013-05-09 17:06 -------- d-----w- c:\users\Jokerko\AppData\Local\Western_Digital
2013-05-09 17:05 . 2013-05-09 17:05 -------- d-----w- c:\program files\Western Digital
2013-05-09 17:04 . 2013-05-09 17:05 -------- d-----w- c:\program files (x86)\Western Digital
2013-05-09 17:04 . 2013-05-09 17:04 -------- d-----w- c:\program files (x86)\Common Files\Western Digital
2013-05-09 17:04 . 2013-05-09 17:06 -------- d-----w- c:\programdata\Western Digital
2013-05-08 09:22 . 2013-05-08 09:22 -------- d-----w- c:\users\Public\Games
2013-05-06 23:12 . 2012-05-08 16:34 32600 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2013-05-06 23:11 . 2010-11-26 16:02 17720 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2013-04-29 17:23 . 2013-04-12 14:45 1656680 ----a-w- c:\windows\system32\drivers\ntfs.sys
2013-04-26 17:34 . 2013-04-26 17:34 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10144.bin
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-22 10:10 . 2012-02-24 20:55 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-15 17:17 . 2012-03-31 08:56 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-05-15 17:17 . 2012-02-21 13:18 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-05-12 21:42 . 2012-09-14 10:37 61216 ----a-w- c:\windows\system32\OpenCL.dll
2013-05-12 21:42 . 2012-09-14 10:37 53024 ----a-w- c:\windows\SysWow64\OpenCL.dll
2013-05-02 15:29 . 2012-02-21 12:49 278800 ------w- c:\windows\system32\MpSigStub.exe
2013-04-13 05:49 . 2013-05-22 10:02 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-04-13 05:49 . 2013-05-22 10:02 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-04-13 05:49 . 2013-05-22 10:02 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-04-13 05:49 . 2013-05-22 10:02 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-04-13 04:45 . 2013-05-22 10:02 474624 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-04-13 04:45 . 2013-05-22 10:02 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-03-19 06:04 . 2013-04-18 09:57 5550424 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-03-19 05:46 . 2013-04-18 09:57 43520 ----a-w- c:\windows\system32\csrsrv.dll
2013-03-19 05:04 . 2013-04-18 09:57 3968856 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-03-19 05:04 . 2013-04-18 09:57 3913560 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-03-19 04:47 . 2013-04-18 09:57 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2013-03-19 03:06 . 2013-04-18 09:57 112640 ----a-w- c:\windows\system32\smss.exe
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Spotify Web Helper"="c:\users\Jokerko\AppData\Roaming\Spotify\Data\SpotifyWebHelper.exe" [2013-05-15 1105408]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2012-02-18 3465216]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-08-10 975952]
"amd_dc_opt"="c:\program files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-05-22 345312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoThumbnailCache"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; [x]
R2 Angelnt;Angelnt;c:\windows\System32\Drivers\ANGELNT.SYS [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-28 161384]
R3 AdobeActiveFileMonitor8.0;Adobe Active File Monitor V8;c:\program files (x86)\Adobe\Elements Organizer 8.0\PhotoshopElementsFileAgent.exe [2009-10-09 169312]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2010-07-29 36000]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2010-07-29 295072]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2010-07-29 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2010-07-29 51872]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2010-07-29 154272]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2010-07-29 270496]
R3 ManyCam;ManyCam Virtual Webcam;c:\windows\system32\DRIVERS\mcvidrv_x64.sys [2012-01-11 34304]
R3 mcaudrv_simple;ManyCam Virtual Microphone;c:\windows\system32\drivers\mcaudrv_x64.sys [2012-02-22 28160]
R3 mvusbews;USB EWS Device;c:\windows\system32\Drivers\mvusbews.sys [2011-04-27 20480]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [2012-04-17 82816]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-11-18 19456]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-09-22 243712]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-11-18 57856]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-22 1255736]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [2012-06-13 14464]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\real temp\WinRing0x64.sys [2008-07-26 14544]
R3 X6va002;X6va002; [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2013-05-12 30496]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2011-03-04 55856]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys [2013-05-22 28600]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-22 283200]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [2013-05-22 86752]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2010-07-29 52896]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2012-01-04 822624]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2010-08-10 321104]
S2 ePowerSvc;Acer ePower Service;c:\program files\Packard Bell\Packard Bell Power Management\ePowerSvc.exe [2011-01-05 867712]
S2 GREGService;GREGService;c:\program files (x86)\Packard Bell\Registration\GREGsvc.exe [2010-01-08 23584]
S2 HPSIService;HP SI Service;c:\windows\system32\HPSIsvc.exe [2010-04-07 127800]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2010-04-13 13336]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [2012-02-08 149640]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Packard Bell MyBackup\IScheduleSvc.exe [2010-06-28 255744]
S2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files (x86)\OpenVPN Technologies\PrivateTunnel\core\capiws.exe [2012-10-12 24064]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2012-11-13 1103392]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2012-11-13 1369624]
S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2012-11-13 168384]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2011-10-01 508776]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2009-11-02 13784]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 Updater Service;Updater Service;c:\program files\Packard Bell\Packard Bell Updater\UpdaterService.exe [2010-01-28 243232]
S2 WDBackup;WD Backup;c:\program files (x86)\Western Digital\WD SmartWare\WDBackupEngine.exe [2012-06-14 1151424]
S2 WDDriveService;WD Drive Manager;c:\program files (x86)\Western Digital\WD Drive Manager\WDDriveService.exe [2012-06-13 248248]
S2 WDRulesService;WD Rules;c:\program files (x86)\Western Digital\WD SmartWare\WDRulesEngine.exe [2012-06-14 1177536]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2010-07-29 28832]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [2010-02-26 158976]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-06-21 287232]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2010-05-15 384040]
S3 Point64;Microsoft Mouse and Keyboard Center Filter Driver;c:\windows\system32\DRIVERS\point64.sys [2012-11-02 50856]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [2011-10-01 764264]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [2011-10-01 268648]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [2011-10-01 25960]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [2011-10-01 22376]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2011-10-01 219496]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys [2012-07-15 30720]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-02-08 00:49 23432 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Acer ePower Management"="c:\program files\Packard Bell\Packard Bell Power Management\ePowerTray.exe" [2011-01-05 860040]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-01-10 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-01-10 392984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-01-10 417560]
"SynTPEnh"="c:\program files (x86)\synaptics\syntp\syntpenh.exe" [BU]
"AthBtTray"="c:\program files (x86)\bluetooth suite\athbttray.exe" [2010-07-29 377504]
"AtherosBtStack"="c:\program files (x86)\bluetooth suite\btvstack.exe" [2010-07-29 594080]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-05-16 1012000]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Supplementary Scan -------
.
uStart Page =
uLocal Page = c:\windows\system32\blank.htm
mDefault_Page_URL =
mStart Page = hxxp://packardbell.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Download all links with IDM - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
IE: Download with IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.2.1
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-SecureW2 EAP Suite - c:\program files (x86)\SecureW2\Uninstall.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*L!ým *€]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*L!ým *€\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_USERS\S-1-5-21-4042239806-550433839-999547381-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*Ľ.ý**€*\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\ComUpdatus.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\OpenVPN Technologies\PrivateTunnel\core\ovpntray.exe
.
**************************************************************************
.
Completion time: 2013-05-25 19:51:25 - machine was rebooted
ComboFix-quarantined-files.txt 2013-05-25 17:51
ComboFix2.txt 2013-05-25 13:29
.
Pre-Run: 183 858 905 088 bytes free
Post-Run: 183 792 676 864 bytes free
.
- - End Of File - - 02743017D048A3777D4A8FF6A1259A3F

[Rudy]

Log je již OK. Nastala nějaká změna?

[Jokerko]

Log je již OK. Nastala nějaká změna?

Áno, napísal som ju ešte pred logom:

neviem síce čo si tam urobil, ale po reštarte mi nejde absolútne nič spustiť.. vyhadzuje mi chybu:
"Vyskytol sa pokus o nepovolenú operáciu s kľúčom databázy Registry, ktorý bol označený na odstránenie."

Robí to pri všetkom.. chrome som zapol len na "Spustiť ako správca" a aj to som musel ísť až do AppData/Local a tam ho nájsť lebo ani cez štart - programy mi ho nechcelo spustiť.. taktiež mi toto isté vyhodí aj explorer.exe atd....

No dobre.... tak som to vyriešil (reštart PC ) ... zatiaľ to vyzerá celkom dobre.. a vedel by si mi ešte povedať že čím by to mohlo byť spôsobené alebo resp. čo to znamená to "Posielanie požiadavky"?? A ešte že tento combofix mi stále písal niečo o ESET Smart Security 6, ale neviem o tom žeby tam bol.. odstránili sme teda to čo po ňom ostalo?

[Rudy]

Někdy jsou 2 restarty nutné. To "Posielam požiadavky" je hláška prohlížeče, že vyslal požadavek na příslušnou IP. Je to jen informace a pokud je tam dlouho zobrazena, znamená to, že je zpomalen PC, nebo internet. ESS tam někdy byl, a pokud byl odinstalován, něco po něm zbylo, co CF identifikoval. Zbytky odstraníte speciálním odinstalátorem: http://www.softpedia.com/get/Tweak/Unin ... ller.shtml .

[Jokerko]

Tak ja už vážne neviem... tento môj notebook stále akosi nejde tak ako by mal, a to sme spolu prešli cez niekoľko programov. Myslíš žeby sa mu zišla kompletná preinštalácia?