Prosim o kotrolu, pritelkyne PC :-X

[to_je_jedno]

Zdravím , po dlouhé době jsem si sedl k PC mé přítelkyně a nemžu než se s Vámi podělit.
Prosím o kontrolu, je to nepoužitelně zasekané.
RSIT píše problém s přístupem k Peta.exe i když spustím jako admin.

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peta at 2014-09-01 19:44:23
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 41 GB (17%) free of 238 GB
Total RAM: 3071 MB (66% free)


======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000Core.job - C:\Users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000UA.job - C:\Users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]
"Description"=Office Live Update v1.3
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\
2020Player_IKEA@2020Technologies.com
yasearch@yandex.ru
youtubemp3podcaster@jeremy.d.gregorio.com
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\searchplugins\
google-peklada.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5347542D-5350-006A-76A7-7A786E7484D7}]
Search App by Ask - C:\Program Files\AskPartnerNetwork\Toolbar\SGT-SP\Passport.dll [2014-07-31 12184]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-06-05 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
DVDVideoSoft IE Extension - C:\Program Files\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll [2013-12-23 294456]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{eec0f710-38b5-4aba-99bf-ec87564a4e13}
{5347542D-5350-006A-76A7-7A786E7484D7} - Search App by Ask - C:\Program Files\AskPartnerNetwork\Toolbar\SGT-SP\Passport.dll [2014-07-31 12184]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-11-08 6756048]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-11-21 959904]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2008-02-01 61440]
"SunJavaUpdateSched"=C:\Program Files\Java\jre6\bin\jusched.exe [2012-06-05 149280]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"ApnTBMon"=C:\Program Files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe [2014-07-31 1957784]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
"Steam"=C:\Program Files\Steam\steam.exe [2014-08-28 1939136]
"Google Update"=C:\Users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-08 116648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~2\browse~1\261249~1.132\{c16c1~1\browse~1.dll c:\windows\system32\guard32.dll C:\Windows\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2014-09-01 19:38:49 ----D---- C:\Program Files\trend micro
2014-09-01 19:38:48 ----D---- C:\rsit
2014-08-31 23:23:40 ----N---- C:\bootsqm.dat
2014-08-31 23:05:15 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-08-31 23:05:01 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-08-31 23:05:01 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-08-31 23:05:01 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-08-21 20:18:22 ----D---- C:\ProgramData\AskPartnerNetwork
2014-08-21 20:18:22 ----D---- C:\Program Files\AskPartnerNetwork
2014-08-21 20:16:29 ----D---- C:\ProgramData\APN
2014-08-21 20:06:59 ----D---- C:\Users\Peta\AppData\Roaming\Opera Software
2014-08-21 20:06:38 ----D---- C:\Program Files\Opera
2014-08-21 20:03:12 ----D---- C:\Users\Peta\AppData\Roaming\AVG
2014-08-21 20:00:09 ----D---- C:\ProgramData\AVG
2014-08-21 19:59:49 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-08-21 19:59:47 ----HD---- C:\ProgramData\Common Files
2014-08-21 19:56:46 ----D---- C:\Program Files\Common Files\DVDVideoSoft
2014-08-21 19:56:45 ----D---- C:\Users\Peta\AppData\Roaming\DVDVideoSoft
2014-08-21 19:56:45 ----D---- C:\Program Files\DVDVideoSoft
2014-08-18 20:40:39 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-18 20:40:37 ----A---- C:\Windows\system32\icardres.dll
2014-08-18 20:40:34 ----A---- C:\Windows\system32\icardagt.exe
2014-08-18 20:40:32 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 09:19:41 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:19:40 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:19:39 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-08-13 09:19:39 ----A---- C:\Windows\system32\cdd.dll
2014-08-13 09:19:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:19:36 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:19:35 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:19:35 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:19:35 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:19:32 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:19:32 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:19:31 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:19:30 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:19:30 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:19:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:19:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:19:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:19:28 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:19:27 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:19:26 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:19:26 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:19:07 ----A---- C:\Windows\system32\win32k.sys
2014-08-13 09:19:06 ----A---- C:\Windows\system32\gdi32.dll
2014-08-13 09:18:47 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:18:42 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:18:42 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:18:42 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:18:42 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:18:38 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:18:37 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 09:17:32 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDBASH.DLL
2014-08-03 17:10:48 ----A---- C:\Windows\system32\wups2.dll
2014-08-03 17:10:48 ----A---- C:\Windows\system32\wuauclt.exe
2014-08-03 17:10:47 ----A---- C:\Windows\system32\wucltux.dll
2014-08-03 17:10:47 ----A---- C:\Windows\system32\wuaueng.dll
2014-08-03 17:10:28 ----A---- C:\Windows\system32\wups.dll
2014-08-03 17:10:28 ----A---- C:\Windows\system32\wudriver.dll
2014-08-03 17:10:28 ----A---- C:\Windows\system32\wuapi.dll
2014-08-03 17:10:13 ----A---- C:\Windows\system32\wuwebv.dll
2014-08-03 17:10:13 ----A---- C:\Windows\system32\wuapp.exe

======List of files/folders modified in the last 1 month======

2014-09-01 19:44:34 ----D---- C:\Windows\Temp
2014-09-01 19:44:31 ----D---- C:\Windows\Prefetch
2014-09-01 19:38:49 ----RD---- C:\Program Files
2014-09-01 19:30:48 ----D---- C:\Windows
2014-09-01 18:22:38 ----D---- C:\Windows\system32\config
2014-09-01 18:09:47 ----D---- C:\Windows\system32\NDF
2014-09-01 18:08:58 ----SHD---- C:\System Volume Information
2014-08-31 23:30:17 ----D---- C:\Program Files\Steam
2014-08-31 23:26:41 ----D---- C:\Windows\inf
2014-08-31 23:26:34 ----D---- C:\Windows\winsxs
2014-08-31 23:24:57 ----D---- C:\ProgramData\NVIDIA
2014-08-31 23:24:46 ----D---- C:\Windows\system32\cs-CZ
2014-08-31 23:24:46 ----D---- C:\Windows\System32
2014-08-31 23:19:09 ----D---- C:\Windows\system32\drivers
2014-08-31 23:19:09 ----D---- C:\Windows\Migration
2014-08-31 23:17:36 ----D---- C:\Windows\system32\catroot
2014-08-31 23:05:05 ----D---- C:\Users\Peta\AppData\Roaming\Malwarebytes
2014-08-31 23:05:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-08-31 23:05:01 ----D---- C:\ProgramData\Malwarebytes
2014-08-31 22:59:57 ----D---- C:\Windows\debug
2014-08-30 18:40:27 ----D---- C:\Windows\rescache
2014-08-21 23:10:37 ----SHD---- C:\Windows\Installer
2014-08-21 20:20:07 ----D---- C:\Users\Peta\AppData\Roaming\Samsung
2014-08-21 20:20:07 ----D---- C:\Program Files\Samsung
2014-08-21 20:20:00 ----D---- C:\Windows\system32\DriverStore
2014-08-21 20:19:50 ----D---- C:\Windows\system32\catroot2
2014-08-21 20:18:28 ----SHD---- C:\Config.Msi
2014-08-21 20:18:22 ----HD---- C:\ProgramData
2014-08-21 20:18:15 ----D---- C:\ProgramData\Samsung
2014-08-21 20:18:12 ----HD---- C:\Program Files\InstallShield Installation Information
2014-08-21 20:16:19 ----D---- C:\ProgramData\YTD Video Downloader
2014-08-21 20:14:12 ----D---- C:\Windows\Microsoft.NET
2014-08-21 20:12:24 ----D---- C:\Windows\system32\Tasks
2014-08-21 19:56:48 ----RSD---- C:\Windows\assembly
2014-08-21 19:56:46 ----D---- C:\Program Files\Common Files
2014-08-20 18:38:58 ----D---- C:\Windows\ehome
2014-08-19 20:30:34 ----D---- C:\Users\Peta\AppData\Roaming\vlc
2014-08-19 20:17:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-19 11:05:58 ----D---- C:\Program Files\Microsoft Silverlight
2014-08-19 11:05:57 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-08-19 11:04:31 ----D---- C:\Windows\system32\en-US
2014-08-19 11:04:31 ----D---- C:\Windows\PolicyDefinitions
2014-08-19 11:04:30 ----D---- C:\Program Files\Internet Explorer
2014-08-19 11:04:29 ----SD---- C:\Windows\system32\CompatTel
2014-08-19 11:04:27 ----RSD---- C:\Windows\Fonts
2014-08-19 10:18:15 ----D---- C:\Windows\system32\MRT
2014-08-18 20:45:28 ----A---- C:\Windows\system32\MRT.exe
2014-08-05 09:20:02 ----N---- C:\Windows\system32\MpSigStub.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2012-11-08 494416]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2012-11-08 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-08 239168]
R1 eusk2par;Aladdin SmartKey Parallel Driver; \??\C:\Windows\system32\Drivers\eusk2par.sys [2008-12-18 25680]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2012-11-08 82952]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet - adaptér; C:\Windows\system32\DRIVERS\l160x86.sys [2009-07-14 47104]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2007-07-31 7680]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 84992]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-07-14 1068032]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S0 llpn;llpn; C:\Windows\System32\drivers\ufdlg.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys [2010-07-29 25112]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUSB;Sony sa0102 ADB Interface; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-03 65640]
R2 APNMCP;Ask Update Service; C:\Program Files\AskPartnerNetwork\Toolbar\apnmcp.exe [2014-07-31 165784]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-10-02 94208]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-11-08 1990464]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-10 645440]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-01-08 75136]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-13 116648]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-13 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-07-22 119408]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-12-11 569768]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-09 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------

[Márty84]

Zdravim

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner a ulozte ho na plochu.
Ukoncete vsechny programy, jinak to AdwCleaner udela za vas.
Kliknete na nej pravym mysidlem a levym na Spustit jako spravce.
Kliknete na Scan a pockejte, az kontrola dobehne.
Pak kliknete na Clean
Program zacne pracovat (muze dojit k restartu pc) a vyplivne log (pripadne bude zde C:\AdwCleaner\AdwCleaner [S?].txt ). Ten mi sem zkopirujte.

Vidim tam MBAM, nasel neco?

[to_je_jedno]

MBAM jsem zapomel přiložit, omlouvám se.
Zde včerejší MBAM:
<?xml version="1.0" encoding="UTF-16"?>

-<mbam-log>


-<header>

<date>2014/08/31 23:06:40 +0200</date>

<logfile>mbam-log-2014-08-31 (23-05-49).xml</logfile>

<isadmin>yes</isadmin>

</header>


-<engine>

<version>2.00.2.1012</version>

<malware-database>v2014.08.31.06</malware-database>

<rootkit-database>v2014.08.21.01</rootkit-database>

<license>free</license>

<file-protection>disabled</file-protection>

<web-protection>disabled</web-protection>

<self-protection>disabled</self-protection>

</engine>


-<system>

<osversion>Windows 7 Service Pack 1</osversion>

<arch>x86</arch>

<username>Peta</username>

<filesys>NTFS</filesys>

</system>


-<summary>

<type>threat</type>

<result>completed</result>

<objects>306355</objects>

<time>580</time>

<processes>0</processes>

<modules>0</modules>

<keys>1</keys>

<values>0</values>

<datas>0</datas>

<folders>8</folders>

<files>16</files>

<sectors>0</sectors>

</summary>


-<options>

<memory>enabled</memory>

<startup>enabled</startup>

<filesystem>enabled</filesystem>

<archives>enabled</archives>

<rootkits>disabled</rootkits>

<deeprootkit>disabled</deeprootkit>

<heuristics>enabled</heuristics>

<pup>warn</pup>

<pum>enabled</pum>

</options>


-<items>


-<key>

<path>HKU\S-1-5-21-305399671-4234761083-2540851607-1000-{ED1FC765-E35E-4C3D-BF15-2C2B11260CE4}-0\SOFTWARE\SYSTWEAK\RegClean Pro</path>

<vendor>PUP.Optional.RegCleanerPro.A</vendor>

<action>success</action>

<hash>73af55783b406dc94694b485c53f12ee</hash>

</key>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\OpenCandy</path>

<vendor>PUP.Optional.OpenCandy</vendor>

<action>success</action>

<hash>a57d735ab0cb1026739aac18679bb54b</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\OpenCandy\6219865F4DE24530BF0F712978E6E418</path>

<vendor>PUP.Optional.OpenCandy</vendor>

<action>success</action>

<hash>a57d735ab0cb1026739aac18679bb54b</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\OpenCandy\B3B9665309E14E14A02C91E05344ECAB</path>

<vendor>PUP.Optional.OpenCandy</vendor>

<action>success</action>

<hash>a57d735ab0cb1026739aac18679bb54b</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\chrome</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\META-INF</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\plugins</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</folder>


-<folder>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\Allin1Convert_8h</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>47db616c90ebf54114714c81679b3bc5</hash>

</folder>


-<file>

<path>C:\ProgramData\YTD Video Downloader\ytd_installer.exe</path>

<vendor>PUP.Optional.Spigot</vendor>

<action>success</action>

<hash>0919983545360c2abe5fa800bb463bc5</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\searchplugins\ask-web-search.xml</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>7aa8e5e84338270f28de867cce359b65</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\OpenCandy\6219865F4DE24530BF0F712978E6E418\Opera_NI_stable.exe</path>

<vendor>PUP.Optional.OpenCandy</vendor>

<action>success</action>

<hash>a57d735ab0cb1026739aac18679bb54b</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\OpenCandy\B3B9665309E14E14A02C91E05344ECAB\AVG-PC-TuneUp2014-cz-CZ-p4v1.exe</path>

<vendor>PUP.Optional.OpenCandy</vendor>

<action>success</action>

<hash>a57d735ab0cb1026739aac18679bb54b</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\bootstrap.js</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\chrome.manifest</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\install.rdf</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\install_no_bootstrap.rdf</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\chrome\8hffxtbr.jar</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\META-INF\manifest.mf</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\META-INF\zigbert.rsa</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\META-INF\zigbert.sf</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\8hffxtbr@Allin1Convert_8h.com\plugins\NativeMessagingDispatcher.dll</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>ac760cc10f6cc47293b27b52fd05f30d</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\Allin1Convert_8h\EF5088D1-ABCA-4A61-9E77-D4DC7F3F4E48.sqlite</path>

<vendor>PUP.Optional.MindSpark.A</vendor>

<action>success</action>

<hash>47db616c90ebf54114714c81679b3bc5</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\prefs.js</path>

<vendor>PUP.Optional.ASK.A</vendor>

<action>replaced</action>

<baddata>user_pref("extensions.toolbar.mindspark._8hMembers_.browser.startup.homepage.tb", "http://home.tb.ask.com/index.jhtml?ptb= ... =flvrunner");</baddata>

<gooddata/>

<hash>76acdfee84f78caa00d26faaf1148977</hash>

</file>


-<file>

<path>C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\prefs.js</path>

<vendor>PUP.Optional.ASK.A</vendor>

<action>replaced</action>

<baddata>user_pref("keyword.URL", "http://search.tb.ask.com/search/GGmain. ... searchfor=");</baddata>

<gooddata/>

<hash>56ccece1116a9c9a8251ad6c8c79b050</hash>

</file>

</items>

</mbam-log>





ADW:

# AdwCleaner v3.308 - Report created 01/09/2014 at 20:31:32
# Updated 20/08/2014 by Xplode
# Operating System : Windows 7 Professional Service Pack 1 (32 bits)
# Username : Peta - PETA-PC
# Running from : C:\Users\Peta\Desktop\adwcleaner_3.308.exe
# Option : Clean

***** [ Services ] *****

Service Deleted : APNMCP

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\AskPartnerNetwork
Folder Deleted : C:\Program Files\AskPartnerNetwork
Folder Deleted : C:\Program Files\GreenTree Applications
Folder Deleted : C:\Users\Peta\AppData\Local\AskPartnerNetwork
Folder Deleted : C:\Users\Peta\AppData\Local\Temp\apn
Folder Deleted : C:\Users\Peta\AppData\Roaming\Systweak
File Deleted : C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\Extensions\{c0c9a2c7-2e5c-4447-bc53-97718bc91e1b}.xpi
File Deleted : C:\Windows\system32\roboot.exe

***** [ Scheduled Tasks ] *****

Task Deleted : BrowserProtect

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extension Compatibility\{74F475FA-6C75-43BD-AAB9-ECDA6184F600}
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Value Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [ApnTbMon]
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_windows-movie-maker-2012_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_windows-movie-maker-2012_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{44CBC005-6243-4502-8A02-3A096A282664}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{D8278076-BC68-4484-9233-6E7F1628B56C}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{F297534D-7B06-459D-BC19-2DD8EF69297B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Extensions\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : HKCU\Software\AskPartnerNetwork
Key Deleted : HKCU\Software\Myfree Codec
Key Deleted : HKCU\Software\systweak
Key Deleted : HKLM\SOFTWARE\AskPartnerNetwork
Key Deleted : HKLM\SOFTWARE\Myfree Codec
Key Deleted : HKLM\SOFTWARE\Speedchecker Limited
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}
Data Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows [AppInit_DLLs] - c:\progra~2\browse~1\261249~1.132\{c16c1~1\browse~1.dll

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.17239

Setting Restored : HKCU\Software\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v31.0 (x86 cs)

[ File : C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\prefs.js ]

Line Deleted : user_pref("extensions.mywebsearch.prevKwdEnabled", true);
Line Deleted : user_pref("extensions.mywebsearch.prevKwdURL", "hxxp://www.google.cz/#hl=cs&source=hp&q=");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.BUTTON_STRUCTURE", "[{\"b\":221360012,\"c\":\"mindspark.magnify\",\"p\":\"L.0\"},{\"b\":221360013,\"c\":\"mindspark.entersearchterms\",\"p\":\"L.0.0[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.search.defaultenginename.savedPrev", "true");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.search.defaultenginename.tb", "Ask Web Search");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.search.selectedEngine.savedPrev", "true");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.search.selectedEngine.tb", "Ask Web Search");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.startup.homepage.prev", "hxxp://www.seznam.cz/");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.startup.homepage.savedPrev", "true");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.startup.page.savedPrev", 1);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.browser.startup.page.tb", 1);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.firstKnownVersion", "5.79.3.25578");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.homepage", "hxxp://home.tb.ask.com/index.jhtml?ptb=EF5088D1-ABCA-4A61-9E77-D4DC7F3F4E48&n=780baa48&p2=^AYY^xdm067^YYA^cz&si=flvrunner");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.hp.enabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.hp.user.defined", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.initialized", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installKeysSource", "LocalStorage");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installType", "XPI");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.contextKey", "");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.installDate", "2014030408");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.partnerId", "^AYY^xdm067^YYA^cz");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.partnerSubId", "flvrunner");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.pixelUrl", "hxxp://allin1convert.dl.tb.ask.com/install_pixels.jhtml?partner=^AYY^xdm067^YYA^cz&coId=1a72edaf93534dffb42e7e6888ca7eca&ca[...]
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.success", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.installation.toolbarId", "EF5088D1-ABCA-4A61-9E77-D4DC7F3F4E48");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.isCompliantUninstallImplementation", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.lastActivePing", "1409514480183");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.lastKnownVersion", "6.66.4.36873");
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.options.defaultSearch", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.options.homePageEnabled", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.options.keywordEnabled", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.options.tabEnabled", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.partnerPixelFired", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.toolbarCollapsed", true);
Line Deleted : user_pref("extensions.toolbar.mindspark._8hMembers_.weather.location", "10001");
Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled", false);
Line Deleted : user_pref("extensions.toolbar.mindspark.hp.enabled.guid", "");
Line Deleted : user_pref("extensions.toolbar.mindspark.lastInstalled", "allin1convert@mindspark.com");

-\\ Google Chrome v36.0.1985.143

[ File : C:\Users\Peta\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [8402 octets] - [01/09/2014 20:25:05]
AdwCleaner[S0].txt - [8215 octets] - [01/09/2014 20:31:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [8275 octets] ##########

[Márty84]

Udelejte novou kontrolu s MBAM. Test nastavte podle tohoto navodu http://forum.viry.cz/viewtopic.php?f=29&t=137928 a dejte sem vysledky. Predem nic nemazte, miva obcas falesne detekce

[to_je_jedno]

sken nic nenašel.
Malwarebytes Anti-Malware
www.malwarebytes.org

Datum skenování: 1.9.2014
Čas skenování: 21:05:35
Protokol: aa.txt
Správce: Ano

Verze: 2.00.2.1012
Databáze malwaru: v2014.09.01.07
Databáze rootkitů: v2014.08.21.01
Licence: Bezplatná verze
Ochrana proti malwaru: Vypnuto
Ochrana proti škodlivým webovým stránkám: Vypnuto
Self-protection: Vypnuto

OS: Windows 7 Service Pack 1
CPU: x86
Souborový systém: NTFS
Uživatel: Peta

Typ skenu: Vlastní sken
Výsledek: Dokončeno
Prohledaných objektů: 434851
Uplynulý čas: 1 hod, 16 min, 56 sek

Paměť: Zapnuto
Po spuštění: Zapnuto
Souborový systém: Zapnuto
Archivy: Zapnuto
Rootkity: Vypnuto
Heuristics: Zapnuto
PUP: Zapnuto
PUM: Zapnuto

Procesy: 0
(No malicious items detected)

Moduly: 0
(No malicious items detected)

Klíče registru: 0
(No malicious items detected)

Hodnoty registru: 0
(No malicious items detected)

Data registru: 0
(No malicious items detected)

Složky: 0
(No malicious items detected)

Soubory: 0
(No malicious items detected)

Fyzické sektory: 0
(No malicious items detected)


(end)

mám podezření na nějaký Free Youtube download, nejde to ani odinstalovat. Počítač stále zamrzá.

[Márty84]

MBAM muzete odinstalovat.



Pokud nemate, zazalohujte si radeji dulezita data (fotky, dokumenty, atd.)

Nepouzivejte ComboFix bez predchozi domluvy! Je to poruseni pravidel fora a ztratite tim narok na pomoc!

Stahnete ComboFix http://download.bleepingcomputer.com/sUBs/ComboFix.exe a ulozte ho na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Kliknete na ComboFix pravym mysidlem a levym na Spustit jako spravce
Odsouhlaste licencni podminky a nechte program pracovat. Jestli vam nabidne instalaci Konzoly pro zotaveni, souhlaste.
Po dobu skenu nic nespoustejte, nikam neklikejte.
Po dokonceni skenovani (muze dojit i k restartu pc) by se mel vytvorit log, ktery bude umisteny zde C:\ComboFix.txt
Jeho obsah sem zkopirujte

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[to_je_jedno]

Omlouvám se za zdržení.
MBAM odinstalovat nejde (nelze spustit soubor z dočasné složky nebo tak nějak)
Po combofixu se stav nezlepšil.
zde je log:

ComboFix 14-08-31.01 - Peta 04.09.2014 20:03:22.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3071.2135 [GMT 2:00]
Spuštěný z: c:\users\Peta\Desktop\ComboFix.exe
FW: COMODO Firewall *Disabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
SP: COMODO Defense+ *Disabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-08-04 do 2014-09-04 )))))))))))))))))))))))))))))))
.
.
2014-09-04 18:11 . 2014-09-04 18:11 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2014-09-04 18:11 . 2014-09-04 18:11 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-09-03 03:13 . 2014-09-03 03:13 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9C570806-500C-4ECE-9254-A54F0FB05A9F}\offreg.dll
2014-09-02 12:19 . 2014-08-21 02:44 8581864 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9C570806-500C-4ECE-9254-A54F0FB05A9F}\mpengine.dll
2014-09-01 18:26 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-09-01 18:25 . 2014-09-01 18:31 -------- d-----w- C:\AdwCleaner
2014-09-01 17:38 . 2014-09-01 17:44 -------- d-----w- c:\program files\trend micro
2014-09-01 17:38 . 2014-09-01 17:38 -------- d-----w- C:\rsit
2014-08-31 21:05 . 2014-09-01 19:05 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-31 21:05 . 2014-08-31 21:05 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-08-31 21:05 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-08-31 21:05 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-08-30 15:51 . 2014-08-23 00:42 2352640 ----a-w- c:\windows\system32\win32k.sys
2014-08-30 15:51 . 2014-08-23 01:46 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-08-21 18:07 . 2014-08-21 18:12 -------- d-----w- c:\users\Peta\AppData\Local\Opera Software
2014-08-21 18:06 . 2014-08-21 18:12 -------- d-----w- c:\users\Peta\AppData\Roaming\Opera Software
2014-08-21 18:06 . 2014-08-21 18:12 -------- d-----w- c:\program files\Opera
2014-08-21 18:03 . 2014-08-21 18:03 -------- d-----w- c:\users\Peta\AppData\Roaming\AVG
2014-08-21 18:03 . 2014-08-21 18:03 -------- d-----w- c:\users\Peta\AppData\Local\AVG
2014-08-21 18:00 . 2014-08-21 18:08 -------- d-----w- c:\programdata\AVG
2014-08-21 17:59 . 2014-08-21 17:59 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-08-21 17:59 . 2014-08-21 17:59 -------- d--h--w- c:\programdata\Common Files
2014-08-21 17:56 . 2014-08-21 17:57 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2014-08-21 17:56 . 2014-08-21 17:58 -------- d-----w- c:\users\Peta\AppData\Roaming\DVDVideoSoft
2014-08-21 17:56 . 2014-08-21 17:57 -------- d-----w- c:\program files\DVDVideoSoft
2014-08-18 18:40 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-18 18:40 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-18 18:40 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-08-18 18:40 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 07:18 . 2014-07-16 02:46 2048 ----a-w- c:\windows\system32\tzres.dll
2014-08-13 07:18 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe
2014-08-13 07:18 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll
2014-08-13 07:18 . 2014-06-03 09:29 2363392 ----a-w- c:\windows\system32\msi.dll
2014-08-13 07:18 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll
2014-08-13 07:18 . 2014-08-07 01:43 412160 ----a-w- c:\windows\system32\aepdu.dll
2014-08-13 07:18 . 2014-08-07 01:39 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-08-13 07:17 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-08-13 07:17 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDBASH.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-05 07:20 . 2012-01-08 10:14 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-07-09 18:25 . 2012-11-21 18:38 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 18:25 . 2012-01-08 09:52 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-06-18 01:51 . 2014-07-09 17:10 646144 ----a-w- c:\windows\system32\osk.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-11-10 3514176]
"Steam"="c:\program files\Steam\steam.exe" [2014-08-28 1939136]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-11-07 6756048]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2008-02-01 61440]
"SunJavaUpdateSched"="c:\program files\Java\jre6\bin\jusched.exe" [2012-06-05 149280]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2008-09-06 413696]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll c:\windows\System32\guard32.dll
.
R0 llpn;llpn;c:\windows\System32\drivers\ufdlg.sys [x]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-07-25 108032]
R3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\DRIVERS\ivusb.sys [2010-07-28 25112]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-09 1343400]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2012-11-07 494416]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2012-11-07 36072]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-08 239168]
S1 eusk2par;Aladdin SmartKey Parallel Driver;c:\windows\system32\Drivers\eusk2par.sys [2008-12-18 25680]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet - adaptér;c:\windows\system32\DRIVERS\l160x86.sys [2009-07-13 47104]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-03 18:39 1096520 ----a-w- c:\program files\Google\Chrome\Application\37.0.2062.103\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-09-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-21 18:25]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-13 18:51]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-13 18:51]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000Core.job
- c:\users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-08 19:52]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000UA.job
- c:\users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-08 19:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Free YouTube Download - c:\program files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
TCP: DhcpNameServer = 8.8.8.8
FF - ProfilePath - c:\users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\
FF - prefs.js: browser.startup.homepage - about:home
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{5347542D-5350-006A-76A7-7A786E7484D7} - c:\program files\AskPartnerNetwork\Toolbar\SGT-SP\Passport.dll
Toolbar-{5347542D-5350-006A-76A7-7A786E7484D7} - c:\program files\AskPartnerNetwork\Toolbar\SGT-SP\Passport.dll
AddRemove-{1a413f37-ed88-4fec-9666-5c48dc4b7bb7} - c:\program files\GreenTree Applications\YTD Video Downloader\uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_14_0_0_145_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(548)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'lsass.exe'(604)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(1296)
c:\windows\system32\guard32.dll
.
Celkový čas: 2014-09-04 20:14:10
ComboFix-quarantined-files.txt 2014-09-04 18:14
.
Před spuštěním: Volných bajtů: 42 617 729 024
Po spuštění: Volných bajtů: 42 371 796 992
.
- - End Of File - - 50AE3D3F014434E1E8D3BFC4C64BC018
A36C5E4F47E84449FF07ED3517B43A31

[Márty84]

Stahnete crystal disk info http://sourceforge.jp/projects/crystald ... 5_0_0.zip/
Spustte jako spravce. Za chvili se zobrazi vysledek.
Kliknete nahore na napis Úpravy a pak na napis Kopírovat. To co se zkopiruje (ulozi se to do pameti) mi sem vlozte (ctrl + V)

[Márty84]

Jaky pouzivate antivir?


Az tu date log z Crystal Disk Info, pokracujte dale...


Otevrete si poznamkovy blok a zkopirujte do nej tento skript

Kód: Vybrat vše

KillAll::

File::
C:\Windows\System32\drivers\ufdlg.sys

Registry::
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
"Steam"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=-
"SunJavaUpdateSched"=-
"QuickTime Task"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet002\Control\PCW\Security]

Driver::
llpn

Reboot::

Vlevo nahore kliknete na napis Soubor
Kliknete na napis Ulozit jako...
Napiste spravne ten cerveny nazev CFScript a ulozte na plochu.
Vypnete antivir i dalsi pripadne zabezpeceni.
Pretahntete mysi tento vytvoreny textovy dokument nad ikonu ComboFix a pustte.
ComboFix by se mel spustit a vykonat prikazy.
Az skonci (muze dojit k restartu pc), mel by se objevit novy log, ten mi sem zase zkopirujte.

Kdyby po restartu nenabehl windows, restartujte znovu, mackejte klavesu F8 a zvolte - Posledni znama funkcni konfigurace
Kdyz windows nabehne, ale pri spousteni ruznych programu bude hlasena chyba, staci restartovat pc a bude to v poradku

[to_je_jedno]

----------------------------------------------------------------------------
CrystalDiskInfo 5.0.0 (C) 2008-2012 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x86)
Date : 2014/09/04 20:55:34

-- Controller Map ----------------------------------------------------------
+ Řadiče úložiště Intel(R) ICH8M v režimu Ultra ATA - 2850 [ATA]
- ATA Channel 0 (0)
+ Řadič úložiště Intel(R) ICH8M s rozhraním Serial ATA 3portový - 2828 [ATA]
+ ATA Channel 0 (0)
- ST9250827AS ATA Device
- MATSHITA DVD-RAM UJ870QJ ATA Device
- ATA Channel 1 (1)
- Ricoh xD-Picture Card Controller [ATA]
- ATA Channel 1 (1) [ATA]

-- Disk List ---------------------------------------------------------------
(1) ST9250827AS : 250,0 GB [0/1/0, pd1] - st

----------------------------------------------------------------------------
(1) ST9250827AS
----------------------------------------------------------------------------
Model : ST9250827AS
Firmware : 3.AAA
Serial Number : 5RG3ZGD8
Disk Size : 250,0 GB (8,4/137,4/250,0)
Buffer Size : 8192 KB
Queue Depth : 32
# of Sectors : 488397168
Rotation Rate : 5400 RPM
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 4
Transfer Mode : SATA/150
Power On Hours : 12624 hod.
Power On Count : 3183 krát
Temparature : 37 C (98 F)
Health Status : Pozor
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 100 253 __6 000000000000 Počet chyb čtení
03 _99 _99 __0 000000000000 Čas na roztočení ploten
04 _97 _97 _20 000000000CB2 Počet spuštění/zastavení
05 _53 _53 _36 00000000077A Počet přemapovaných sektorů
07 _75 _60 _30 00080ED07D69 Počet chybných hledání
09 _86 _86 __0 000000003150 Hodin v činnosti
0A 100 100 _34 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _97 _97 _20 000000000C6F Počet cyklů zapnutí zařízení
BB __1 __1 __0 0000000056EB Ohlášeno neopravitelných chyb
BD _98 _98 __0 000000000002 Vysoká rychlost zápisu
BE _63 _50 _45 0000320A0025 Teplota toku vzduchu
BF 100 100 __0 00000000021E Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 0000000004E7 Počet vypnutí disku
C1 __1 __1 __0 00000009BCE4 Počet cyklů načítání/vymazání
C2 _37 _50 __0 000A00000025 Teplota
C3 _53 _47 __0 000007FEE3DA Počet oprav chybného čtení
C5 _26 _26 __0 0000000005EB Počet podezřelých sektorů
C6 _26 _26 __0 0000000005EB Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 100 253 __0 000000000000 Počet chyb při zápisu sektorů
CA 100 253 __0 000000000000 Počet chyb při směrování údajů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 003F 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 3552 3552 4733 5A47 4438
020: 0000 4000 0004 332E 4141 2020 2020 5354 3932 3530
030: 3832 3741 5320 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4000 0200 0200 0007 3FFF 003F 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 0502 0502 0000 0048 0048
080: 01F0 0029 346B 7D09 6103 BC09 BC09 6103 407F 0000
090: 0000 8080 FFFE 0000 FE00 0000 0000 0000 0000 0000
100: 5970 1D1C 0000 0000 0000 4000 4000 0000 5000 C500
110: 0E7D 2803 0000 0000 0000 0000 0000 0100 0000 400E
120: 400C 0000 0000 0000 0000 0000 0000 0000 0009 5970
130: 1D1C 5970 1D1C 2020 0002 8002 8002 0000 3C06 3C06
140: FFFF 07C6 0100 0000 100F 0002 0002 0080 0000 0000
150: 6080 0000 0000 0000 0000 0000 0000 0000 1E00 000B
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0001 0001 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 1518 0000 0000
220: 0000 0000 1010 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 A4A5

[to_je_jedno]

Používám COMODO.

ComboFix 14-08-31.01 - Peta 04.09.2014 21:01:24.2.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.3071.1992 [GMT 2:00]
Spuštěný z: c:\users\Peta\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Peta\Desktop\CFScript.txt
FW: COMODO Firewall *Disabled* {7DB03214-694B-060B-1600-BD4715C36DBB}
SP: COMODO Defense+ *Disabled/Updated* {FEEA52D5-051E-08DD-07EF-2F009097607D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\System32\drivers\ufdlg.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_llpn
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-08-04 do 2014-09-04 )))))))))))))))))))))))))))))))
.
.
2014-09-04 19:11 . 2014-03-07 04:35 7969936 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8E27F7B5-7C0F-4E9B-98C4-CEBD5F5C8E75}\mpengine.dll
2014-09-04 19:07 . 2014-09-04 19:07 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2014-09-03 03:13 . 2014-09-03 03:13 62576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9C570806-500C-4ECE-9254-A54F0FB05A9F}\offreg.dll
2014-09-02 12:19 . 2014-08-21 02:44 8581864 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{9C570806-500C-4ECE-9254-A54F0FB05A9F}\mpengine.dll
2014-09-01 18:26 . 2010-08-30 06:34 536576 ----a-w- c:\windows\system32\sqlite3.dll
2014-09-01 18:25 . 2014-09-01 18:31 -------- d-----w- C:\AdwCleaner
2014-09-01 17:38 . 2014-09-01 17:44 -------- d-----w- c:\program files\trend micro
2014-09-01 17:38 . 2014-09-01 17:38 -------- d-----w- C:\rsit
2014-08-31 21:05 . 2014-09-01 19:05 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-31 21:05 . 2014-08-31 21:05 -------- d-----w- c:\program files\Malwarebytes Anti-Malware
2014-08-31 21:05 . 2014-05-12 05:26 51928 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-08-31 21:05 . 2014-05-12 05:25 74456 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-08-30 15:51 . 2014-08-23 00:42 2352640 ----a-w- c:\windows\system32\win32k.sys
2014-08-30 15:51 . 2014-08-23 01:46 305152 ----a-w- c:\windows\system32\gdi32.dll
2014-08-21 18:07 . 2014-08-21 18:12 -------- d-----w- c:\users\Peta\AppData\Local\Opera Software
2014-08-21 18:06 . 2014-08-21 18:12 -------- d-----w- c:\users\Peta\AppData\Roaming\Opera Software
2014-08-21 18:06 . 2014-08-21 18:12 -------- d-----w- c:\program files\Opera
2014-08-21 18:03 . 2014-08-21 18:03 -------- d-----w- c:\users\Peta\AppData\Roaming\AVG
2014-08-21 18:03 . 2014-08-21 18:03 -------- d-----w- c:\users\Peta\AppData\Local\AVG
2014-08-21 18:00 . 2014-08-21 18:08 -------- d-----w- c:\programdata\AVG
2014-08-21 17:59 . 2014-08-21 17:59 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-08-21 17:59 . 2014-08-21 17:59 -------- d--h--w- c:\programdata\Common Files
2014-08-21 17:56 . 2014-08-21 17:57 -------- d-----w- c:\program files\Common Files\DVDVideoSoft
2014-08-21 17:56 . 2014-08-21 17:58 -------- d-----w- c:\users\Peta\AppData\Roaming\DVDVideoSoft
2014-08-21 17:56 . 2014-08-21 17:57 -------- d-----w- c:\program files\DVDVideoSoft
2014-08-18 18:40 . 2014-03-09 21:47 99480 ----a-w- c:\windows\system32\infocardapi.dll
2014-08-18 18:40 . 2014-06-30 22:14 8856 ----a-w- c:\windows\system32\icardres.dll
2014-08-18 18:40 . 2014-03-09 21:47 619672 ----a-w- c:\windows\system32\icardagt.exe
2014-08-18 18:40 . 2014-06-06 06:16 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-08-13 07:18 . 2014-07-16 02:46 2048 ----a-w- c:\windows\system32\tzres.dll
2014-08-13 07:18 . 2014-06-03 09:30 101824 ----a-w- c:\windows\system32\consent.exe
2014-08-13 07:18 . 2014-06-03 09:29 337408 ----a-w- c:\windows\system32\msihnd.dll
2014-08-13 07:18 . 2014-06-03 09:29 2363392 ----a-w- c:\windows\system32\msi.dll
2014-08-13 07:18 . 2014-06-03 09:29 1805824 ----a-w- c:\windows\system32\authui.dll
2014-08-13 07:18 . 2014-08-07 01:43 412160 ----a-w- c:\windows\system32\aepdu.dll
2014-08-13 07:18 . 2014-08-07 01:39 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-08-13 07:17 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDYAK.DLL
2014-08-13 07:17 . 2014-07-09 01:29 6144 ----a-w- c:\windows\system32\KBDBASH.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-08-05 07:20 . 2012-01-08 10:14 231584 ------w- c:\windows\system32\MpSigStub.exe
2014-07-09 18:25 . 2012-11-21 18:38 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 18:25 . 2012-01-08 09:52 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-06-18 01:51 . 2014-07-09 17:10 646144 ----a-w- c:\windows\system32\osk.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2012-11-07 6756048]
"ATKMEDIA"="c:\program files\ASUS\ATK Media\DMEDIA.EXE" [2008-02-01 61440]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll c:\windows\System32\guard32.dll
.
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-07-25 108032]
R3 ivusb;Initio Driver for USB Default Controller;c:\windows\system32\DRIVERS\ivusb.sys [2010-07-28 25112]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-01-09 1343400]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2012-11-07 494416]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2012-11-07 36072]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-08 239168]
S1 eusk2par;Aladdin SmartKey Parallel Driver;c:\windows\system32\Drivers\eusk2par.sys [2008-12-18 25680]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet - adaptér;c:\windows\system32\DRIVERS\l160x86.sys [2009-07-13 47104]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-09-03 18:39 1096520 ----a-w- c:\program files\Google\Chrome\Application\37.0.2062.103\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-09-04 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-21 18:25]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-13 18:51]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2014-03-13 18:51]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000Core.job
- c:\users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-08 19:52]
.
2014-09-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000UA.job
- c:\users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe [2013-07-08 19:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
IE: Free YouTube Download - c:\program files\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
TCP: DhcpNameServer = 8.8.8.8
FF - ProfilePath - c:\users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\
FF - prefs.js: browser.startup.homepage - about:home
.
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(604)
c:\windows\system32\guard32.dll
.
- - - - - - - > 'Explorer.exe'(3352)
c:\windows\system32\guard32.dll
c:\windows\system32\CRYPTUI.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\COMODO\COMODO Internet Security\cmdagent.exe
c:\program files\ATK Hotkey\ASLDRSrv.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\taskhost.exe
c:\program files\ATK Hotkey\Hcontrol.exe
c:\program files\ATK Hotkey\ATKOSD.exe
c:\windows\system32\conhost.exe
c:\program files\ATK Hotkey\WDC.exe
c:\program files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\servicing\TrustedInstaller.exe
.
**************************************************************************
.
Celkový čas: 2014-09-04 21:19:28 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-09-04 19:19
ComboFix2.txt 2014-09-04 18:14
.
Před spuštěním: Volných bajtů: 42 293 366 784
Po spuštění: Volných bajtů: 42 145 660 928
.
- - End Of File - - D0100C7F2A6389C33474DA68FC190A2F
A36C5E4F47E84449FF07ED3517B43A31

[Márty84]

Používám COMODO.

Vidim tam zbytky AVG, tak proto se ptam. Ty tedy smazu.


Bohuzel ale problem bude asi v disku, tech chyb je tam strasne moc

Health Status : Pozor
05 _53 _53 _36 00000000077A Počet přemapovaných sektorů
07 _75 _60 _30 00080ED07D69 Počet chybných hledání
BB __1 __1 __0 0000000056EB Ohlášeno neopravitelných chyb
BF 100 100 __0 00000000021E Počet udalostí zaznamenaných otřesovým senzorem
C3 _53 _47 __0 000007FEE3DA Počet oprav chybného čtení
C5 _26 _26 __0 0000000005EB Počet podezřelých sektorů
C6 _26 _26 __0 0000000005EB Počet neopravitelných sektorů

Udelejte kontrolu programem HD Tune
Stahnete http://www.slunecnice.cz/sw/hd-tune/ , nainstalujte a spustte jako spravce (pokud vam pri instalaci nabidne nejaky doplnek, odmitnete ho!)
V tom okne kliknete na posledni zalozku - Error Scan (pokud bude zatrzeny quick scan, tak zatrzitko zruste) a kliknete na Start.
Kontrola bude nejakou dobu trvat. Dejte vedet, jestli tam bylo nejake cervene policko.
Taky se podivejte na zalozku Health a opiste mi (vyfotte), co se tam pise. Melo by tam byt OK http://www.google.cz/imgres?um=1&hl=cs& ... s:20,i:143

[to_je_jedno]

http://ulozto.cz/xqipMNYX/bez-nazvu-jpg
http://ulozto.cz/xM5oRaxF/bez-nazvu2-jpg

tady jsou screeny, nějaká červená tam je, ale status píše OK.
Systém už je rychlejší ale prohlížeče (FF i chrome) jsou strašně zasekané.
Když kliknu na nějaký odkaz tak naběhnou hodiny a je cca 30 sec lag, pak se to rozjede do dalšího kliku.
FF jsem zkoušel odinstalovat a znu nahrát, ale žádná změna.

[Márty84]

Disk je na odpis. Zkusime to docistit, ale nemusi to pomoct.


Dejte novy log z RSIT

[to_je_jedno]

Logfile of random's system information tool 1.10 (written by random/random)
Run by Peta at 2014-09-05 23:02:35
Microsoft Windows 7 Professional Service Pack 1
System drive C: has 40 GB (17%) free of 238 GB
Total RAM: 3071 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:02:43, on 5.9.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.17239)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\Program Files\ASUS\ATK Media\DMedia.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\Explorer.exe
C:\Windows\system32\Dwm.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Peta\Desktop\RSIT.exe
C:\Program Files\trend micro\Peta.exe
C:\Windows\system32\DllHost.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: (no name) - {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: (no name) - {eec0f710-38b5-4aba-99bf-ec87564a4e13} - (no file)
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files\ASUS\ATK Media\DMEDIA.EXE
O4 - HKUS\S-1-5-21-305399671-4234761083-2540851607-1004\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-305399671-4234761083-2540851607-1004\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~1\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\OFFICE11\REFIEBAR.DLL
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O20 - AppInit_DLLs: c:\Windows\System32\guard32.dll C:\Windows\System32\guard32.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: ASLDR Service (ASLDRService) - Unknown owner - C:\Program Files\ATK Hotkey\ASLDRSrv.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

--
End of file - 4023 bytes

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job - C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job - C:\Program Files\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job - C:\Program Files\Google\Update\GoogleUpdate.exe /ua /installsource scheduler
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000Core.job - C:\Users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe /c
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-305399671-4234761083-2540851607-1000UA.job - C:\Users\Peta\AppData\Local\Google\Update\GoogleUpdate.exe /ua /installsource scheduler

=========Mozilla firefox=========

ProfilePath - C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default

prefs.js - "browser.search.useDBForOrder" - true
prefs.js - "browser.startup.homepage" - "about:home"

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 14.0.0.145 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3]
"Description"=Office Live Update v1.3
"Path"=C:\Program Files\Microsoft\Office Live\npOLW.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


C:\Program Files\Mozilla Firefox\components\
nsIQTScriptablePlugin.xpt

C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\extensions\
2020Player_IKEA@2020Technologies.com
staged
yasearch@yandex.ru
youtubemp3podcaster@jeremy.d.gregorio.com
{b9db16a4-6edc-47ec-a1f4-b86292ed211d}

C:\Users\Peta\AppData\Roaming\Mozilla\Firefox\Profiles\bg6dnwz6.default\searchplugins\
google-peklada.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1dad3af3-ef2f-4f64-ac4b-11789189fcb6}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-06-05 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{eec0f710-38b5-4aba-99bf-ec87564a4e13}

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2012-11-08 6756048]
"ATKMEDIA"=C:\Program Files\ASUS\ATK Media\DMEDIA.EXE [2008-02-01 61440]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\Windows\System32\guard32.dll C:\Windows\System32\guard32.dll"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-09-05 15:49:13 ----D---- C:\Program Files\HD Tune
2014-09-05 15:40:39 ----D---- C:\Program Files\Mozilla Maintenance Service
2014-09-04 21:19:29 ----A---- C:\ComboFix.txt
2014-09-04 21:11:40 ----D---- C:\$RECYCLE.BIN
2014-09-04 21:07:30 ----D---- C:\Windows\temp
2014-09-04 20:00:49 ----A---- C:\Windows\zip.exe
2014-09-04 20:00:49 ----A---- C:\Windows\SWSC.exe
2014-09-04 20:00:49 ----A---- C:\Windows\SWREG.exe
2014-09-04 20:00:49 ----A---- C:\Windows\sed.exe
2014-09-04 20:00:49 ----A---- C:\Windows\PEV.exe
2014-09-04 20:00:49 ----A---- C:\Windows\NIRCMD.exe
2014-09-04 20:00:49 ----A---- C:\Windows\MBR.exe
2014-09-04 20:00:49 ----A---- C:\Windows\grep.exe
2014-09-04 20:00:34 ----D---- C:\Qoobox
2014-09-04 20:00:10 ----D---- C:\Windows\erdnt
2014-09-01 20:26:21 ----A---- C:\Windows\system32\sqlite3.dll
2014-09-01 20:25:02 ----D---- C:\AdwCleaner
2014-09-01 19:38:49 ----D---- C:\Program Files\trend micro
2014-09-01 19:38:48 ----D---- C:\rsit
2014-08-31 23:05:15 ----A---- C:\Windows\system32\drivers\MBAMSwissArmy.sys
2014-08-31 23:05:01 ----D---- C:\Program Files\Malwarebytes Anti-Malware
2014-08-31 23:05:01 ----A---- C:\Windows\system32\drivers\mwac.sys
2014-08-31 23:05:01 ----A---- C:\Windows\system32\drivers\mbamchameleon.sys
2014-08-30 17:51:02 ----A---- C:\Windows\system32\win32k.sys
2014-08-30 17:51:01 ----A---- C:\Windows\system32\gdi32.dll
2014-08-21 20:06:59 ----D---- C:\Users\Peta\AppData\Roaming\Opera Software
2014-08-21 20:06:38 ----D---- C:\Program Files\Opera
2014-08-21 20:03:12 ----D---- C:\Users\Peta\AppData\Roaming\AVG
2014-08-21 20:00:09 ----D---- C:\ProgramData\AVG
2014-08-21 19:59:49 ----SHD---- C:\ProgramData\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-08-21 19:59:47 ----HD---- C:\ProgramData\Common Files
2014-08-18 20:40:39 ----A---- C:\Windows\system32\infocardapi.dll
2014-08-18 20:40:37 ----A---- C:\Windows\system32\icardres.dll
2014-08-18 20:40:34 ----A---- C:\Windows\system32\icardagt.exe
2014-08-18 20:40:32 ----A---- C:\Windows\system32\TsWpfWrp.exe
2014-08-13 09:19:41 ----A---- C:\Windows\system32\rpcrt4.dll
2014-08-13 09:19:40 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2014-08-13 09:19:39 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2014-08-13 09:19:39 ----A---- C:\Windows\system32\cdd.dll
2014-08-13 09:19:36 ----A---- C:\Windows\system32\ieetwproxystub.dll
2014-08-13 09:19:36 ----A---- C:\Windows\system32\ieetwcollector.exe
2014-08-13 09:19:35 ----A---- C:\Windows\system32\urlmon.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\MsSpellCheckingFacility.exe
2014-08-13 09:19:35 ----A---- C:\Windows\system32\msfeeds.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\jsproxy.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\JavaScriptCollectionAgent.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\ieUnatt.exe
2014-08-13 09:19:35 ----A---- C:\Windows\system32\iernonce.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\iedkcs32.dll
2014-08-13 09:19:35 ----A---- C:\Windows\system32\dxtmsft.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\vbscript.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\msrating.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\iesetup.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2014-08-13 09:19:33 ----A---- C:\Windows\system32\ie4uinit.exe
2014-08-13 09:19:32 ----A---- C:\Windows\system32\wininet.dll
2014-08-13 09:19:32 ----A---- C:\Windows\system32\ieapfltr.dll
2014-08-13 09:19:31 ----A---- C:\Windows\system32\dxtrans.dll
2014-08-13 09:19:30 ----A---- C:\Windows\system32\ieui.dll
2014-08-13 09:19:30 ----A---- C:\Windows\system32\ieframe.dll
2014-08-13 09:19:29 ----A---- C:\Windows\system32\mshtmled.dll
2014-08-13 09:19:28 ----A---- C:\Windows\system32\mshtmlmedia.dll
2014-08-13 09:19:28 ----A---- C:\Windows\system32\MshtmlDac.dll
2014-08-13 09:19:28 ----A---- C:\Windows\system32\iertutil.dll
2014-08-13 09:19:27 ----A---- C:\Windows\system32\jscript9diag.dll
2014-08-13 09:19:26 ----A---- C:\Windows\system32\mshtml.dll
2014-08-13 09:19:26 ----A---- C:\Windows\system32\jscript9.dll
2014-08-13 09:18:47 ----A---- C:\Windows\system32\tzres.dll
2014-08-13 09:18:42 ----A---- C:\Windows\system32\msihnd.dll
2014-08-13 09:18:42 ----A---- C:\Windows\system32\msi.dll
2014-08-13 09:18:42 ----A---- C:\Windows\system32\consent.exe
2014-08-13 09:18:42 ----A---- C:\Windows\system32\authui.dll
2014-08-13 09:18:38 ----A---- C:\Windows\system32\aepdu.dll
2014-08-13 09:18:37 ----A---- C:\Windows\system32\aeinv.dll
2014-08-13 09:17:32 ----A---- C:\Windows\system32\shell32.dll
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDYAK.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDTAT.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDRU1.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDRU.DLL
2014-08-13 09:17:27 ----A---- C:\Windows\system32\KBDBASH.DLL

======List of files/folders modified in the last 1 month======

2014-09-05 23:02:43 ----D---- C:\Windows\Prefetch
2014-09-05 20:41:36 ----D---- C:\Windows\system32\config
2014-09-05 17:56:52 ----SHD---- C:\System Volume Information
2014-09-05 15:49:13 ----RD---- C:\Program Files
2014-09-05 15:40:38 ----D---- C:\Program Files\Mozilla Firefox
2014-09-05 15:26:37 ----D---- C:\Program Files\Common Files
2014-09-05 15:26:33 ----RSD---- C:\Windows\assembly
2014-09-04 21:19:31 ----D---- C:\Windows\system32\drivers
2014-09-04 21:12:20 ----D---- C:\Windows
2014-09-04 21:12:20 ----A---- C:\Windows\system.ini
2014-09-04 21:11:20 ----D---- C:\Windows\system32\drivers\etc
2014-09-04 21:09:15 ----D---- C:\ProgramData\NVIDIA
2014-09-04 21:04:36 ----D---- C:\Windows\System32
2014-09-04 21:04:36 ----D---- C:\Windows\AppPatch
2014-09-02 18:57:22 ----D---- C:\Program Files\Steam
2014-09-02 03:20:07 ----D---- C:\Windows\winsxs
2014-09-02 00:24:53 ----D---- C:\Windows\rescache
2014-09-01 20:31:33 ----D---- C:\ProgramData
2014-09-01 18:09:47 ----D---- C:\Windows\system32\NDF
2014-08-31 23:26:41 ----D---- C:\Windows\inf
2014-08-31 23:24:46 ----D---- C:\Windows\system32\cs-CZ
2014-08-31 23:19:09 ----D---- C:\Windows\Migration
2014-08-31 23:17:36 ----D---- C:\Windows\system32\catroot
2014-08-31 23:05:05 ----D---- C:\Users\Peta\AppData\Roaming\Malwarebytes
2014-08-31 23:05:02 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2014-08-31 23:05:01 ----D---- C:\ProgramData\Malwarebytes
2014-08-31 22:59:57 ----D---- C:\Windows\debug
2014-08-21 23:10:37 ----SHD---- C:\Windows\Installer
2014-08-21 20:20:07 ----D---- C:\Users\Peta\AppData\Roaming\Samsung
2014-08-21 20:20:07 ----D---- C:\Program Files\Samsung
2014-08-21 20:20:00 ----D---- C:\Windows\system32\DriverStore
2014-08-21 20:19:50 ----D---- C:\Windows\system32\catroot2
2014-08-21 20:18:28 ----D---- C:\Config.Msi
2014-08-21 20:18:15 ----D---- C:\ProgramData\Samsung
2014-08-21 20:18:12 ----HD---- C:\Program Files\InstallShield Installation Information
2014-08-21 20:16:19 ----D---- C:\ProgramData\YTD Video Downloader
2014-08-21 20:14:12 ----D---- C:\Windows\Microsoft.NET
2014-08-21 20:12:24 ----D---- C:\Windows\system32\Tasks
2014-08-20 18:38:58 ----D---- C:\Windows\ehome
2014-08-19 20:30:34 ----D---- C:\Users\Peta\AppData\Roaming\vlc
2014-08-19 20:17:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-08-19 11:05:58 ----D---- C:\Program Files\Microsoft Silverlight
2014-08-19 11:04:31 ----D---- C:\Windows\system32\en-US
2014-08-19 11:04:31 ----D---- C:\Windows\PolicyDefinitions
2014-08-19 11:04:30 ----D---- C:\Program Files\Internet Explorer
2014-08-19 11:04:29 ----SD---- C:\Windows\system32\CompatTel
2014-08-19 11:04:27 ----RSD---- C:\Windows\Fonts
2014-08-19 10:18:15 ----D---- C:\Windows\system32\MRT
2014-08-18 20:45:28 ----A---- C:\Windows\system32\MRT.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\Windows\System32\DRIVERS\cmdguard.sys [2012-11-08 494416]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\Windows\System32\DRIVERS\cmdhlp.sys [2012-11-08 36072]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-01-08 239168]
R1 eusk2par;Aladdin SmartKey Parallel Driver; \??\C:\Windows\system32\Drivers\eusk2par.sys [2008-12-18 25680]
R1 inspect;COMODO Internet Security Firewall Driver; C:\Windows\system32\DRIVERS\inspect.sys [2012-11-08 82952]
R2 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2006-11-14 37376]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet - adaptér; C:\Windows\system32\DRIVERS\l160x86.sys [2009-07-14 47104]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 34816]
R3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
R3 MTsensor;ATK0100 ACPI UTILITY; C:\Windows\system32\DRIVERS\ATKACPI.sys [2007-07-31 7680]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-14 4231168]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-20 84992]
R3 smserial;smserial; C:\Windows\system32\DRIVERS\smserial.sys [2009-07-14 1068032]
R3 TPM;Čip TPM; C:\Windows\system32\drivers\tpm.sys [2009-07-14 30720]
S2 Parvdm;Parvdm; C:\Windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 393728]
S3 catchme;catchme; \??\C:\Users\Peta\AppData\Local\Temp\catchme.sys []
S3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys []
S3 dmvsc;dmvsc; C:\Windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 ivusb;Initio Driver for USB Default Controller; C:\Windows\system32\DRIVERS\ivusb.sys [2010-07-29 25112]
S3 mbr;mbr; \??\C:\Users\Peta\AppData\Local\Temp\mbr.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmb.sys [2011-08-17 18176]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\drivers\viac7.sys [2009-07-14 52736]
S3 vmbus;vmbus; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
S3 WinUSB;Sony sa0102 ADB Interface; C:\Windows\system32\DRIVERS\WinUSB.sys [2010-11-20 35968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-09-03 65640]
R2 ASLDRService;ASLDR Service; C:\Program Files\ATK Hotkey\ASLDRSrv.exe [2007-10-02 94208]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2012-11-08 1990464]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-02-10 2348352]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2012-01-08 75136]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-02-09 382272]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2013-09-11 105144]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-13 116648]
S2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-10 645440]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2014-07-09 262320]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2014-03-13 116648]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2014-07-25 108032]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-08-26 114288]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2013-12-11 569768]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-01-09 1343400]
S4 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2013-09-11 46688]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2013-09-11 139856]

-----------------EOF-----------------



takže nový disk?