Nefunguje obnovení systému

[Daumal]

Dobrý den, když zkouším obnovení systému vyskočí mi hláška, že neproběhlo úspěšně a došlo k nespecifikované chybě 0xc0000022. Prosím o kontrolu logu z RSIT. Děkuji za pomoc

Logfile of random's system information tool 1.08 (written by random/random)
Run by OEM at 2014-08-02 16:56:56
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 49 GB (49%) free of 100 GB
Total RAM: 8138 MB (83% free)

HijackThis download failed

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
winlogon.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
atieclxx
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
HydraDM64.exe -h:65892 "Maximalizovat na celou plochu" "Maximalizovat k rohům okna" "Obnovit pracovní plochu"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
-BootProc
-BootProc
"taskhost.exe"
taskeng.exe {21A6A842-6EC2-4CBB-96E8-E19ED0284B9D}
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Intel\iCLS Client\HeciServer.exe"
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe"
C:\Windows\System32\svchost.exe -k HPZ12
C:\Windows\System32\svchost.exe -k HPZ12
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe"
C:\Windows\system32\svchost.exe -k HPService
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
"d:\Plocha\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{F9717507-6651-4EDB-BFF7-AE615179BCCF}

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-23 553384]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-23 210856]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-12-23 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-12-23 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-25 1372864]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{CC1A175A-E45B-41ED-A30C-C9B1D7A0C02F} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-25 1138536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-03-06 6469736]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"=C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe [2013-11-22 389120]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe [2013-11-22 766208]
"USB3MON"=C:\Program Files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe [2012-01-04 291608]
"EaseUS EPM tray"=C:\Program Files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-09-05 958576]
"SDTray"=C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe [2013-07-25 5624784]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-25 3764024]
"ControlCenter4"=C:\Program Files (x86)\ControlCenter4\BrCcBoot.exe [2012-09-06 143360]
"BrStsMon00"=C:\Program Files (x86)\Browny02\Brother\BrStMonW.exe [2012-06-06 3076096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDTray.exe:*:Enabled:Spybot-S&D 2 Tray Icon"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe:*:Enabled:Spybot-S&D 2 Scanner Service"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdate.exe:*:Enabled:Spybot-S&D 2 Updater"
"C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe"="C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe:*:Enabled:Spybot-S&D 2 Background update service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2014-08-02 16:56:56 ----D---- C:\rsit
2014-07-31 15:02:10 ----A---- C:\Windows\system32\wups2.dll
2014-07-31 15:02:10 ----A---- C:\Windows\system32\wucltux.dll
2014-07-31 15:02:10 ----A---- C:\Windows\system32\wuaueng.dll
2014-07-31 15:02:10 ----A---- C:\Windows\system32\wuauclt.exe
2014-07-31 15:01:57 ----A---- C:\Windows\SYSWOW64\wups.dll
2014-07-31 15:01:57 ----A---- C:\Windows\SYSWOW64\wudriver.dll
2014-07-31 15:01:57 ----A---- C:\Windows\SYSWOW64\wuapi.dll
2014-07-31 15:01:57 ----A---- C:\Windows\system32\wups.dll
2014-07-31 15:01:57 ----A---- C:\Windows\system32\wudriver.dll
2014-07-31 15:01:57 ----A---- C:\Windows\system32\wuapi.dll
2014-07-31 15:01:47 ----A---- C:\Windows\SYSWOW64\wuwebv.dll
2014-07-31 15:01:47 ----A---- C:\Windows\SYSWOW64\wuapp.exe
2014-07-31 15:01:47 ----A---- C:\Windows\system32\wuwebv.dll
2014-07-31 15:01:47 ----A---- C:\Windows\system32\wuapp.exe
2014-07-22 12:50:41 ----D---- C:\Program Files\trend micro
2014-07-10 10:47:56 ----A---- C:\Windows\system32\aepdu.dll
2014-07-10 10:47:55 ----A---- C:\Windows\system32\aeinv.dll
2014-07-10 10:47:50 ----A---- C:\Windows\SYSWOW64\osk.exe
2014-07-10 10:47:50 ----A---- C:\Windows\system32\win32k.sys
2014-07-10 10:47:50 ----A---- C:\Windows\system32\osk.exe
2014-07-10 10:47:49 ----A---- C:\Windows\SYSWOW64\qedit.dll
2014-07-10 10:47:49 ----A---- C:\Windows\system32\qedit.dll
2014-07-10 10:47:49 ----A---- C:\Windows\system32\drivers\afd.sys
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\wdigest.dll
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\TSpkg.dll
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\schannel.dll
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\msv1_0.dll
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\kerberos.dll
2014-07-10 10:47:47 ----A---- C:\Windows\SYSWOW64\credssp.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\wdigest.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\TSpkg.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\schannel.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\ncrypt.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\msv1_0.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\kerberos.dll
2014-07-10 10:47:47 ----A---- C:\Windows\system32\credssp.dll
2014-07-10 10:47:44 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2014-07-10 10:47:44 ----A---- C:\Windows\SYSWOW64\ieetwproxystub.dll
2014-07-10 10:47:44 ----A---- C:\Windows\system32\iernonce.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\JavaScriptCollectionAgent.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\iernonce.dll
2014-07-10 10:47:43 ----A---- C:\Windows\SYSWOW64\dxtmsft.dll
2014-07-10 10:47:43 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-07-10 10:47:43 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-07-10 10:47:43 ----A---- C:\Windows\system32\iedkcs32.dll
2014-07-10 10:47:42 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2014-07-10 10:47:42 ----A---- C:\Windows\SYSWOW64\ieui.dll
2014-07-10 10:47:42 ----A---- C:\Windows\SYSWOW64\iesetup.dll
2014-07-10 10:47:42 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2014-07-10 10:47:42 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2014-07-10 10:47:42 ----A---- C:\Windows\SYSWOW64\dxtrans.dll
2014-07-10 10:47:42 ----A---- C:\Windows\system32\urlmon.dll
2014-07-10 10:47:42 ----A---- C:\Windows\system32\msfeeds.dll
2014-07-10 10:47:42 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-07-10 10:47:42 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-07-10 10:47:42 ----A---- C:\Windows\system32\dxtmsft.dll
2014-07-10 10:47:41 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2014-07-10 10:47:41 ----A---- C:\Windows\system32\iesetup.dll
2014-07-10 10:47:41 ----A---- C:\Windows\system32\iertutil.dll
2014-07-10 10:47:41 ----A---- C:\Windows\system32\ie4uinit.exe
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\wininet.dll
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\msrating.dll
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\mshtmlmedia.dll
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\MshtmlDac.dll
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2014-07-10 10:47:40 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2014-07-10 10:47:40 ----A---- C:\Windows\system32\jsproxy.dll
2014-07-10 10:47:40 ----A---- C:\Windows\system32\dxtrans.dll
2014-07-10 10:47:39 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-07-10 10:47:39 ----A---- C:\Windows\system32\mshtmled.dll
2014-07-10 10:47:39 ----A---- C:\Windows\system32\jscript9diag.dll
2014-07-10 10:47:39 ----A---- C:\Windows\system32\jscript9.dll
2014-07-10 10:47:39 ----A---- C:\Windows\system32\ieUnatt.exe
2014-07-10 10:47:39 ----A---- C:\Windows\system32\ieui.dll
2014-07-10 10:47:39 ----A---- C:\Windows\system32\ieframe.dll
2014-07-10 10:47:38 ----A---- C:\Windows\system32\wininet.dll
2014-07-10 10:47:38 ----A---- C:\Windows\system32\vbscript.dll
2014-07-10 10:47:38 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-07-10 10:47:38 ----A---- C:\Windows\system32\msrating.dll
2014-07-10 10:47:38 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-07-10 10:47:38 ----A---- C:\Windows\system32\ieapfltr.dll
2014-07-10 10:47:37 ----A---- C:\Windows\system32\mshtml.dll
2014-07-10 10:46:40 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2014-07-10 10:46:40 ----A---- C:\Windows\SYSWOW64\secur32.dll
2014-07-10 10:46:40 ----A---- C:\Windows\system32\lsasrv.dll

======List of files/folders modified in the last 1 months======

2014-08-02 16:56:22 ----A---- C:\Windows\SYSWOW64\log.txt
2014-08-02 16:56:20 ----D---- C:\Windows\Temp
2014-08-02 16:54:21 ----D---- C:\Windows\system32\config
2014-08-02 16:45:49 ----D---- C:\Windows\System32
2014-08-02 16:45:49 ----D---- C:\Windows\inf
2014-08-02 16:45:49 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-02 09:58:02 ----D---- C:\Windows\system32\catroot2
2014-08-01 12:44:47 ----D---- C:\Windows\Prefetch
2014-07-31 15:09:32 ----D---- C:\Windows\winsxs
2014-07-31 15:09:15 ----D---- C:\Windows\SYSWOW64\cs-CZ
2014-07-31 15:09:15 ----D---- C:\Windows\SysWOW64
2014-07-31 15:09:15 ----D---- C:\Windows\system32\cs-CZ
2014-07-31 15:02:16 ----D---- C:\Windows\system32\catroot
2014-07-31 15:01:47 ----SHD---- C:\System Volume Information
2014-07-31 14:57:51 ----D---- C:\Windows\Tasks
2014-07-31 14:57:51 ----D---- C:\Windows\system32\wfp
2014-07-31 14:57:50 ----D---- C:\Windows\system32\wbem
2014-07-31 14:57:50 ----D---- C:\Windows
2014-07-31 14:57:23 ----D---- C:\Windows\system32\DriverStore
2014-07-31 14:57:23 ----D---- C:\Windows\rescache
2014-07-31 14:57:22 ----D---- C:\Windows\system32\Tasks
2014-07-31 14:57:22 ----D---- C:\Windows\system32\drivers
2014-07-31 14:57:22 ----D---- C:\Windows\system32\CodeIntegrity
2014-07-31 14:57:16 ----D---- C:\Windows\registration
2014-07-24 17:22:16 ----D---- C:\Program Files\Microsoft Silverlight
2014-07-24 17:22:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2014-07-24 14:49:45 ----SHD---- C:\Windows\Installer
2014-07-24 14:49:45 ----HD---- C:\Config.Msi
2014-07-22 12:50:41 ----RD---- C:\Program Files
2014-07-22 12:24:17 ----HD---- C:\ProgramData
2014-07-21 21:36:20 ----D---- C:\Windows\SYSWOW64\wbem
2014-07-21 21:36:20 ----D---- C:\Windows\ShellNew
2014-07-21 21:36:20 ----D---- C:\Program Files\Windows Journal
2014-07-21 21:35:48 ----SD---- C:\Windows\system32\CompatTel
2014-07-21 21:35:48 ----D---- C:\Windows\SYSWOW64\en-US
2014-07-21 21:35:48 ----D---- C:\Windows\SYSWOW64\Dism
2014-07-21 21:35:48 ----D---- C:\Windows\system32\en-US
2014-07-21 21:35:48 ----D---- C:\Windows\system32\drivers\UMDF
2014-07-21 21:35:48 ----D---- C:\Windows\system32\Dism
2014-07-21 21:35:48 ----D---- C:\Windows\PolicyDefinitions
2014-07-21 21:35:48 ----D---- C:\Windows\ehome
2014-07-21 21:35:48 ----D---- C:\Program Files\Internet Explorer
2014-07-21 21:35:48 ----D---- C:\Program Files (x86)\Internet Explorer
2014-07-21 21:35:41 ----D---- C:\Windows\AppCompat
2014-07-21 21:35:41 ----D---- C:\Users\OEM\AppData\Roaming\vlc
2014-07-21 21:35:40 ----D---- C:\Program Files\Common Files\Microsoft Shared
2014-07-21 21:34:49 ----D---- C:\Users\OEM\AppData\Roaming\Skype
2014-07-21 20:49:57 ----D---- C:\Windows\system32\MRT
2014-07-11 10:26:52 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-12-25 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-25 207904]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hcs.sys [2012-01-04 16152]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-12-25 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-25 1034464]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-25 422216]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-12-26 283064]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-25 78648]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-11-22 13201920]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-11-22 624128]
R3 aswStm;aswStm; \??\C:\Windows\system32\drivers\aswStm.sys [2013-12-26 79672]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2013-09-24 94208]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-03-06 4763112]
R3 ISCT;Intel(R) Smart Connect Technology Device Driver; C:\Windows\system32\drivers\ISCTD64.sys [2012-07-24 46016]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3hub.sys [2012-01-04 355096]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0; C:\Windows\system32\drivers\iusb3xhc.sys [2012-01-04 786200]
R3 MBfilt;MBfilt; C:\Windows\system32\drivers\MBfilt64.sys [2009-11-18 32344]
R3 MEIx64;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECIx64.sys [2012-07-17 62784]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2010-12-28 412776]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-11-22 13201920]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2009-07-14 145920]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2010-11-21 19968]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2009-07-14 43008]
S3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\drivers\ASACPI.sys [2008-01-20 8192]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2013-07-03 42496]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-05 65640]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-11-22 239616]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-25 50344]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [2011-12-08 607456]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [2012-01-11 161560]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2012-01-11 277784]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 SDScannerService;Spybot-S&D 2 Scanner Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [2013-10-15 3921880]
R2 SDUpdateService;Spybot-S&D 2 Updating Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [2013-09-20 1042272]
R2 SDWSCService;Spybot-S&D 2 Security Center Service; C:\Program Files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [2013-09-13 171416]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2012-01-11 363800]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2013-09-11 124088]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 BrYNSvc;BrYNSvc; C:\Program Files (x86)\Browny02\BrYNSvc.exe [2012-06-05 266240]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-06-19 111616]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2013-05-06 1255736]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2013-09-11 51808]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[motji]

Zdravím
A systém chcete obnovit proč?

Stáhněte Junkware Removal Tool http://thisisudax.org/downloads/JRT.exe
-Uložte program na plochu a spusťte . Pak se zobrazí se licenční podminky - potvrďte start libovolnou klávesou.
- vytvoří se záloha a proběhne skenování.
Po skončení skenování na Vás vyběhne log (bude uložen v c:\JRT jako JRT.txt) - zkopírujte jej sem

Stáhněte AdwCleaner http://www.bleepingcomputer.com/download/adwcleaner/
-Uložte program na plochu a ukončete všechny spuštěné programy .
-spusťte AdwCleaner, klikněte na Scan a po dokončení skenu na Clean
- provede se oprava, restartuje se pc - (případně restartujte) a objeví se log C:\AdwCleaner\AdwCleaner.txt , obsah logu zkopírujte zde.

[Daumal]

Počítač se mi zdál pomalý, tak jsem ho chtěl zkusit obnovit.

Tady je log z JRT:
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.1.4 (04.06.2014:1)
OS: Windows 7 Home Premium x64
Ran by OEM on ne 03.08.2014 at 18:32:00,76
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services



~~~ Registry Values



~~~ Registry Keys



~~~ Files



~~~ Folders



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on ne 03.08.2014 at 18:36:28,74
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

[Daumal]

A tady je log z AdwCleaner:

# AdwCleaner v3.302 - Report created 03/08/2014 at 18:44:29
# Updated 30/07/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : OEM - DOMANOVY
# Running from : D:\Plocha\AdwCleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****


***** [ Scheduled Tasks ] *****


***** [ Shortcuts ] *****


***** [ Registry ] *****


***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17207


-\\ Google Chrome v36.0.1985.125

[ File : C:\Users\OEM\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [781 octets] - [03/08/2014 18:43:35]
AdwCleaner[S0].txt - [703 octets] - [03/08/2014 18:44:29]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [762 octets] ##########

[motji]

Omlouvám se za zpoždění

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

[Daumal]

Při pokusu o stažení mi avast hlásí virus: Autolt:Banker-BG. Asi to bude falešná detekce, ale chci se jen ujistit.

[cernohous13]

Zdravím a omlouvám se za vstup

Ano, v současnosti má Avast s Combofixem problém.
Vypni štíty Avastu do restartu počítače

[Daumal]

Tady vkládám log z ComboFixu. Nešlo mi vypnout Spybot, tak jsem ho odinstaloval. Neznáte nějaký kvalitní antispyware? Děkuji

ComboFix 14-08-06.02 - OEM 07.08.2014 19:12:14.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8138.6753 [GMT 2:00]
Spuštěný z: d:\plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Spybot - Search and Destroy *Disabled/Outdated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-07-07 do 2014-08-07 )))))))))))))))))))))))))))))))
.
.
2014-08-07 17:17 . 2014-08-07 17:17 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-08-05 07:28 . 2014-07-02 03:09 10924376 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{3B8ED6B9-A88F-47A7-A4E2-F40F0D89B073}\mpengine.dll
2014-08-05 07:25 . 2014-08-05 07:25 29208 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-08-05 07:25 . 2014-08-05 07:25 43152 ----a-w- c:\windows\avastSS.scr
2014-08-03 16:43 . 2014-08-03 16:44 -------- d-----w- C:\AdwCleaner
2014-08-03 16:20 . 2014-08-03 16:20 -------- d-----w- c:\windows\ERUNT
2014-08-02 14:56 . 2014-08-02 14:56 -------- d-----w- C:\rsit
2014-07-31 13:02 . 2014-05-14 16:23 44512 ----a-w- c:\windows\system32\wups2.dll
2014-07-31 13:02 . 2014-05-14 16:23 58336 ----a-w- c:\windows\system32\wuauclt.exe
2014-07-31 13:02 . 2014-05-14 16:23 2477536 ----a-w- c:\windows\system32\wuaueng.dll
2014-07-31 13:02 . 2014-05-14 16:21 2620928 ----a-w- c:\windows\system32\wucltux.dll
2014-07-31 13:01 . 2014-05-14 16:23 38880 ----a-w- c:\windows\system32\wups.dll
2014-07-31 13:01 . 2014-05-14 16:23 36320 ----a-w- c:\windows\SysWow64\wups.dll
2014-07-31 13:01 . 2014-05-14 16:23 700384 ----a-w- c:\windows\system32\wuapi.dll
2014-07-31 13:01 . 2014-05-14 16:23 581600 ----a-w- c:\windows\SysWow64\wuapi.dll
2014-07-31 13:01 . 2014-05-14 16:20 97792 ----a-w- c:\windows\system32\wudriver.dll
2014-07-31 13:01 . 2014-05-14 16:17 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2014-07-31 13:01 . 2014-05-14 07:23 198600 ----a-w- c:\windows\system32\wuwebv.dll
2014-07-31 13:01 . 2014-05-14 07:23 179656 ----a-w- c:\windows\SysWow64\wuwebv.dll
2014-07-31 13:01 . 2014-05-14 07:20 36864 ----a-w- c:\windows\system32\wuapp.exe
2014-07-31 13:01 . 2014-05-14 07:17 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2014-07-22 10:50 . 2014-08-01 10:46 -------- d-----w- c:\program files\trend micro
2014-07-10 08:46 . 2014-06-05 14:45 1460736 ----a-w- c:\windows\system32\lsasrv.dll
2014-07-10 08:46 . 2014-06-05 14:26 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2014-07-10 08:46 . 2014-06-05 14:25 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-05 07:25 . 2013-12-25 17:43 427360 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-08-05 07:25 . 2013-12-25 17:43 92008 ----a-w- c:\windows\system32\drivers\aswstm.sys
2014-08-05 07:25 . 2013-12-25 17:43 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-08-05 07:25 . 2013-12-25 17:43 224896 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-08-05 07:25 . 2013-12-25 17:43 1041168 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-08-05 07:25 . 2013-12-25 17:43 79184 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-08-05 07:25 . 2013-12-25 17:42 307344 ----a-w- c:\windows\system32\aswBoot.exe
2014-08-05 07:25 . 2013-12-25 17:43 93568 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2014-07-11 08:26 . 2013-05-06 13:27 96441528 ----a-w- c:\windows\system32\MRT.exe
2014-05-30 07:52 . 2014-07-10 08:47 247808 ----a-w- c:\windows\SysWow64\schannel.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HydraVisionDesktopManager"="c:\program files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [2013-11-22 389120]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2013-11-22 766208]
"USB3MON"="c:\program files (x86)\Intel\Intel(R) USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe" [2012-01-04 291608]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-09-05 958576]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-08-05 4085896]
"ControlCenter4"="c:\program files (x86)\ControlCenter4\BrCcBoot.exe" [2012-09-06 143360]
"BrStsMon00"="c:\program files (x86)\Browny02\Brother\BrStMonW.exe" [2012-06-06 3076096]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0sdnclean64.exe
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 BrYNSvc;BrYNSvc;c:\program files (x86)\Browny02\BrYNSvc.exe;c:\program files (x86)\Browny02\BrYNSvc.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\drivers\iusb3hcs.sys;c:\windows\SYSNATIVE\drivers\iusb3hcs.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 ISCT;Intel(R) Smart Connect Technology Device Driver;c:\windows\system32\drivers\ISCTD64.sys;c:\windows\SYSNATIVE\drivers\ISCTD64.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\drivers\iusb3hub.sys;c:\windows\SYSNATIVE\drivers\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\drivers\iusb3xhc.sys;c:\windows\SYSNATIVE\drivers\iusb3xhc.sys [x]
S3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-07-21 07:03 1104200 ----a-w- c:\program files (x86)\Google\Chrome\Application\36.0.1985.125\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-08-07 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 15:48]
.
2014-08-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-12-23 15:48]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-08-05 07:25 634872 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-03-06 6469736]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.168.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Wow6432Node-HKLM-Run-EaseUS EPM tray - c:\program files (x86)\EaseUS\EaseUS Partition Master 9.3.0\bin\EpmNews.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10c.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10c.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-08-07 19:21:41
ComboFix-quarantined-files.txt 2014-08-07 17:21
.
Před spuštěním: Volných bajtů: 52 805 124 096
Po spuštění: Volných bajtů: 54 099 234 816
.
- - End Of File - - 85E92734E1044B3943524F3F3ACF879C
A36C5E4F47E84449FF07ED3517B43A31

[motji]

Spybot je zastaralý , na občasnou kontrolu Vám stačí free verze MBAMu bez rezidentního štítu http://forum.viry.cz/viewtopic.php?f=29&t=137928.

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


***********


Stáhněte T-Cleaner
http://tharifas.sweb.cz/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir



***********


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


***********



Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech



***********


Je to lepší?

[Daumal]

Zatím se to zdá být v pořádku. Děkuji za pomoc.

[motji]

Kdyby něco, ozvěte se

[Daumal]

Dobrý den. Omlouvám se, ale problém přetrvává. Zkoušel jsem obnovit počítač, ale znovu se objevila chybová hláška a vytvořil se nový bod obnovení s názvem avast antivirus system restore point. Zkusil jsem vypnout štíty avastu, ale nepomohlo to. Děkuji

[motji]

Přetrvává co? Že je pc pomalý?

[Daumal]

Přetrvává to, že nefunguje obnovení systému. Takže pokud se mi objeví nějaký problém, třeba mi systém nenaběhne, tak se nemohu vrátit do doby, kdy to ještě šlo.

[motji]

Tam bude nejspíš poškozen nějaký registr. Popřemýšlím co s tím. Jinak pc je ok?