VIRY.CZ

Cau, nepodarilo sa mi uplne vypnut antivirak,hlasil ze access is denied.Tak sa mi len podarilo vypnut realtime scan.Ale hlasil,ze aj napriek tomu blokol pristup do registrov.A combofix sa snazil vymazal nieco z avira dll

ComboFix 14-06-04.01 - yakuza . 06. 2014 8:52.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1033.18.4094.2368 [GMT 2:00]
Running from: c:\users\yakuza\Desktop\ComboFix.exe
AV: Avira Desktop *Disabled/Updated* {4D041356-F94D-285F-8768-AAE50FA36859}
SP: Avira Desktop *Disabled/Updated* {F665F2B2-DF77-27D1-BDD8-9197742422E4}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\yakuza\AppData\Local\Temp\avgnt.exe\Avira.OE.ExtApi.dll
.
.
((((((((((((((((((((((((( Files Created from 2014-05-07 to 2014-06-07 )))))))))))))))))))))))))))))))
.
.
2014-06-05 19:49 . 2014-06-05 19:49 -------- d-----w- C:\_OTL
2014-06-05 15:39 . 2014-06-05 15:39 512 ----a-w- C:\PhysicalMBR.bin
2014-06-04 18:21 . 2014-06-04 18:21 -------- d-----w- c:\program files\trend micro
2014-05-27 17:20 . 2014-05-27 17:20 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-05-25 17:15 . 2014-05-25 17:15 -------- d-----w- c:\users\yakuza\AppData\Local\Diagnostics
2014-05-24 16:03 . 2014-05-24 16:03 -------- d-----w- c:\users\yakuza\AppData\Roaming\HD Tune Pro
2014-05-24 16:03 . 2014-05-24 16:03 -------- d-----w- c:\program files (x86)\HD Tune Pro
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-06-07 06:58 . 2012-09-14 14:24 24072 ----a-w- c:\windows\gdrv.sys
2014-06-03 15:29 . 2014-03-29 11:52 130584 ----a-w- c:\windows\system32\drivers\avipbb.sys
2014-06-03 15:29 . 2014-03-29 11:52 112080 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2014-05-17 07:58 . 2012-09-14 16:33 70832 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-05-17 07:58 . 2012-09-14 16:33 692400 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-05-15 18:48 . 2012-09-17 08:47 93223848 ----a-w- c:\windows\system32\MRT.exe
2014-03-29 17:54 . 2014-03-29 17:54 84720 ----a-w- c:\windows\system32\drivers\avnetflt.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2014-06-03 737872]
"Avira Systray"="c:\program files (x86)\Avira\My Avira\Avira.OE.Systray.exe" [2014-05-14 183376]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"Userinit"="userinit.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe;c:\program files (x86)\Avira\AntiVir Desktop\avwebg7.exe [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 Avira.OE.ServiceHost;Avira Service Host;c:\program files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe;c:\program files (x86)\Avira\My Avira\Avira.OE.ServiceHost.exe [x]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
S2 BstHdUpdaterSvc;BlueStacks Updater Service;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe;c:\program files (x86)\BlueStacks\HD-UpdaterService.exe [x]
S2 GEST Service;GEST Service for program management.;c:\program files (x86)\GIGABYTE\EnergySaver\GSvr.exe;c:\program files (x86)\GIGABYTE\EnergySaver\GSvr.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 skfiltv;skfiltv;c:\windows\system32\drivers\skfiltv.sys;c:\windows\SYSNATIVE\drivers\skfiltv.sys [x]
.
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - WS2IFSL
.
.
--------- X64 Entries -----------
.
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
TCP: DhcpNameServer = 213.151.222.34 192.168.0.1
FF - ProfilePath - c:\users\yakuza\AppData\Roaming\Mozilla\Firefox\Profiles\b7r9aqa9.default\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.sk/
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\BlueStacks\HD-Service.exe
c:\program files (x86)\BlueStacks\HD-Network.exe
c:\program files (x86)\BlueStacks\HD-BlockDevice.exe
c:\program files (x86)\BlueStacks\HD-SharedFolder.exe
c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
.
**************************************************************************
.
Completion time: 2014-06-07 09:02:58 - machine was rebooted
ComboFix-quarantined-files.txt 2014-06-07 07:02
.
Pre-Run: 346 429 313 024 bytes free
Post-Run: 346 267 934 720 bytes free
.
- - End Of File - - C47172A0DF95C51E5959CD38312DEDE2
A36C5E4F47E84449FF07ED3517B43A31

CF odinstalujte pomocí T-Cleaneru: http://vyosek.ic.cz/pro_usery/T-Cleaner.exe . Nastala nějaká změna?

Skor mi prestalo prehravat videa z youtube a stranka vyzera ako v prilohe,jeden smaljik sa mi prestal zobrazovat je tam namiesto neho : lol : . Zacalo to mazat nejako vela suborov ani neviem ake,asi mi to rozhodilo prehliadac.Ale na druhom YT funguje v pohode.Co sa tyka samothen pc a zlepsenia,nebadam rozdiel.Je to uz asi len zelezo do srotu a moze byt aj hdd poskodeny aj ked hdtune len signalizoval jednu chybu,ze asi kabel povoleny.

Máte správně nastavený systémový datum a čas?

Neviem,myslite presny cas a datum?Aj fb mi tak blbo zobrazuje,co to bol za odinstalacny program

Ano. Když se změní samovolně, či jinak datum, bývá na prohlížečích tento projev.

Nezmenil,len ako keby zblbol flash alebo co v prehliadaci.Nic ma nenapada

Jaký je to prohlížeč?

FF a robi to stale aj ked som vyskusal preinstalovat flash.

Zazálohujte profil FF pomocí MozBackup: http://www.stahuj.centrum.cz/utility_a_ ... mozbackup/ . Pak FF odinstalujte vč. jeho profilu. Znovu nainstalujte a zpět ze zálohy nakopírujte pouze záložky, příp. hesla.

WOW nieco neskutocne nahodilo to vsetko este aj historiu si to pameta.Nevies preco mi ta sprostost na odinstalovanie tak dobabrala ff?

Mozbackup slouží k zálohování, ne k odinstalaci. Odinstalovat musíte ručne, pak nová instalace a překopírování záložek a hesel až nakonec.

Backup to zvladol perfektne,vsetko ide,pytal som sa ale na combofix odinstaler.Ten to cele dobabral.Radsej ho uz neodporucujte

Dosud se nám to nestalo. Jiná možnost je přejmenovat CF na uninstall.exe a spustit. CF se sám odinstaluje.

Mam teraz ovela väcsi problem,nechce mi naskocit win vobec nevidiet cerenu diodu pre hdd ,ze by sa snazil pracovat...idem si spravit dalsiu temu pre vyriesenie problemu.