VIRY.CZ

Dobrý den.
Mám jeden takový problém - když hraju nějakou hru na full screen, tak se mi pořád minimalizuje. Asi tak přibližně každých třicet sekund. A aktivní okna mi zesvětlávají a nereagují. Procházel jsem fórum a našel jsem, že tento uživatel http://forum.viry.cz/viewtopic.php?f=13&t=59107 měl naprosto stejný problém, jako já. Ten příspěvek je sice z roku 2008, ale naprosto se shoduje s mým problémem.

Proto bych také rád poprosil o kontrolu logu. Opravdu moc děkuju a budu moc vděčný, když mi pomůžete odhalit, kde je zakopaný pes.
Zde je log.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:51:39, on 23.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Fraps\fraps.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Users\user\Desktop\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)


Ještě jednou předem moc děkuju a nashledanou.

Zdravím!
Předesílám, že nejsme odborníci na hry, tekže pokud váš problém není způsoben nákazou, těžko jej vyřeším. Ten odkaz je pro mvás nepoužitelný, protože nebyla žádná odezva od usera. Dejte log RSIT: http://forum.viry.cz/viewtopic.php?f=13&t=105895 , je podrobnější, než HijackThis.

No, ten můj problém se netýká jen her, ale jakéhokoli programu ve full screen. A třeba například u takového wordu mi to okno zesvětlá a nejde psát, dokud si ho neoznačím zpátky. Nebo když si dám na YouTube video do full screen, taky se mi to pořád dokola minimalizuje. No nic, tady je tedy ten lepší log od RSIT, doufám, že z něj už se něco pozná

Logfile of random's system information tool 1.09 (written by random/random)
Run by user at 2013-01-23 17:56:12
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 397 GB (83%) free of 477 GB
Total RAM: 8161 MB (71% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:56:14, on 23.1.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16457)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Fraps\fraps.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Steam\Steam.exe
c:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe
c:\Program Files (x86)\OpenOffice.org 3\program\soffice.exe
c:\Program Files (x86)\OpenOffice.org 3\program\soffice.bin
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe
C:\Program Files\trend micro\user.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Steam] "C:\Program Files (x86)\Steam\steam.exe" -silent
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: TP-LINK Wireless Configuration Utility.lnk = C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 7893 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
winlogon.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\MsMpEng.exe"
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe"
"c:\Program Files\Microsoft Security Client\NisSrv.exe"
"C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe" -s
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesApp64.exe" /TUStart /pid:1276
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun
"C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe" -nogui
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Fraps\fraps.exe"
"C:\Fraps\fraps64.dat"
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
"C:\Program Files (x86)\Steam\Steam.exe"
"c:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe" -o "C:\Users\user\Desktop\Nová složka\Příběh.odt"
"c:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe" -o "C:\Users\user\Desktop\Nová složka\Příběh.odt" -writer
"c:\Program Files (x86)\OpenOffice.org 3\program\swriter.exe" "-o" "C:\Users\user\Desktop\Nová složka\Příběh.odt" "-writer" "-env:OOO_CWD=2C:\\Users\\user\\Desktop\\Nová složka"
"C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe" --channel=1948.e041400.81427802 "C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll" E7CF176E110C211B -greomni "C:\Program Files (x86)\Mozilla Firefox\omni.ja" 1948 "\\.\pipe\gecko-crash-server-pipe.1948" plugin
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe" --proxy-stub-channel=Flash5764.6D6FFFC0.41 --host-broker-channel=Flash5764.6D6FFFC0.18467 --host-pid=5764 --host-npapi-version=27 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll"
"C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerPlugin_11_5_502_146.exe" --channel=6044.0014F46C.246784928 --proxy-stub-channel=Flash5764.6D6FFFC0.41 --plugin-path="C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll" --host-npapi-version=27 --type=renderer
C:\Windows\servicing\TrustedInstaller.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe6_ Global\UsGthrCtrlFltPipeMssGthrPipe6 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 532 536 544 65536 540
"C:\Users\user\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\imav7ycn.default

prefs.js - "browser.startup.homepage" - "http://www.seznam.cz/"

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin,version=10.11.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@videolan.org/vlc,version=2.0.5]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe Reader 11.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.5.502.146 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_146.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

C:\Program Files (x86)\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Users\user\AppData\Roaming\Mozilla\Firefox\Profiles\imav7ycn.default\searchplugins\
askcom.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-09-23 60568]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-01-12 461216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-01-12 170912]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"=C:\Program Files\Realtek\Audio\HDA\RtkNGUI64.exe [2012-06-12 6548112]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2012-09-12 1289704]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2012-07-13 17418928]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-11-06 3673728]
"Steam"=C:\Program Files (x86)\Steam\steam.exe [2013-01-20 1354736]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-12-03 946352]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2012-07-03 252848]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
TP-LINK Wireless Configuration Utility.lnk - C:\Program Files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=l3codecp.acm
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"wave4"=wdmaud.drv
"midi4"=wdmaud.drv
"mixer4"=wdmaud.drv
"VIDC.LAGS"=lagarith.dll
"VIDC.FFDS"=ff_vfw.dll
"wave5"=wdmaud.drv
"midi5"=wdmaud.drv
"mixer5"=wdmaud.drv
"aux"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"wave6"=wdmaud.drv
"midi6"=wdmaud.drv
"mixer6"=wdmaud.drv
"aux2"=wdmaud.drv
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2013-01-23 17:56:12 ----D---- C:\rsit
2013-01-23 17:56:12 ----D---- C:\Program Files\trend micro
2013-01-21 19:00:11 ----D---- C:\Users\user\AppData\Roaming\RotMG.Production
2013-01-21 17:32:46 ----D---- C:\Program Files (x86)\Polda 3
2013-01-21 17:18:31 ----D---- C:\Program Files (x86)\Polda 5
2013-01-20 20:39:40 ----D---- C:\Program Files (x86)\Sizer
2013-01-20 20:06:48 ----D---- C:\Fraps
2013-01-20 20:06:32 ----D---- C:\Program Files (x86)\Mozilla Firefox
2013-01-20 19:28:35 ----D---- C:\Program Files (x86)\Steam
2013-01-17 20:53:48 ----D---- C:\ProgramData\TEMP
2013-01-17 20:53:35 ----D---- C:\Users\user\AppData\Roaming\Any DVD Converter Professional
2013-01-17 20:53:32 ----D---- C:\Program Files (x86)\Any DVD Converter Professional
2013-01-17 18:47:22 ----D---- C:\ProgramData\Blizzard Entertainment
2013-01-14 10:08:23 ----D---- C:\ProgramData\Ask
2013-01-14 10:08:15 ----A---- C:\Windows\SYSWOW64\WindowsAccessBridge-32.dll
2013-01-14 10:08:15 ----A---- C:\Windows\SYSWOW64\javaw.exe
2013-01-14 10:08:15 ----A---- C:\Windows\SYSWOW64\java.exe
2013-01-13 19:56:15 ----D---- C:\Program Files (x86)\Mozilla Firefox.bak
2013-01-13 19:34:58 ----D---- C:\Users\user\AppData\Roaming\Audacity
2013-01-13 19:34:48 ----D---- C:\Program Files (x86)\Audacity
2013-01-10 14:29:04 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2013-01-10 14:29:04 ----A---- C:\Windows\system32\win32spl.dll
2013-01-10 14:28:57 ----A---- C:\Windows\system32\msxml6.dll
2013-01-10 14:28:57 ----A---- C:\Windows\system32\msxml3.dll
2013-01-10 14:28:56 ----A---- C:\Windows\SYSWOW64\ncrypt.dll
2013-01-10 14:28:56 ----A---- C:\Windows\SYSWOW64\msxml6.dll
2013-01-10 14:28:56 ----A---- C:\Windows\SYSWOW64\msxml3.dll
2013-01-10 14:28:56 ----A---- C:\Windows\system32\ncrypt.dll
2013-01-10 14:28:55 ----A---- C:\Windows\SYSWOW64\usp10.dll
2013-01-10 14:28:55 ----A---- C:\Windows\system32\usp10.dll
2013-01-10 14:28:53 ----A---- C:\Windows\SYSWOW64\Wpc.dll
2013-01-10 14:28:53 ----A---- C:\Windows\SYSWOW64\gameux.dll
2013-01-10 14:28:53 ----A---- C:\Windows\system32\Wpc.dll
2013-01-10 14:28:53 ----A---- C:\Windows\system32\gameux.dll
2013-01-10 14:28:41 ----A---- C:\Windows\SYSWOW64\KernelBase.dll
2013-01-10 14:28:41 ----A---- C:\Windows\system32\KernelBase.dll
2013-01-10 14:28:41 ----A---- C:\Windows\system32\kernel32.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-synch-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-string-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-profile-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-misc-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-memory-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-file-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-delayload-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-security-base-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-util-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-synch-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-string-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-profile-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-misc-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-memory-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-file-l1-1-0.dll
2013-01-10 14:28:40 ----AH---- C:\Windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2013-01-10 14:28:40 ----A---- C:\Windows\SYSWOW64\wow32.dll
2013-01-10 14:28:40 ----A---- C:\Windows\SYSWOW64\ntvdm64.dll
2013-01-10 14:28:40 ----A---- C:\Windows\SYSWOW64\kernel32.dll
2013-01-10 14:28:40 ----A---- C:\Windows\system32\wow64win.dll
2013-01-10 14:28:40 ----A---- C:\Windows\system32\wow64cpu.dll
2013-01-10 14:28:40 ----A---- C:\Windows\system32\wow64.dll
2013-01-10 14:28:40 ----A---- C:\Windows\system32\winsrv.dll
2013-01-10 14:28:40 ----A---- C:\Windows\system32\ntvdm64.dll
2013-01-10 14:28:40 ----A---- C:\Windows\system32\conhost.exe
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-security-base-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-xstate-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-util-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-threadpool-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-rtlsupport-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-localization-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-io-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-heap-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-handle-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-fibers-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-debug-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-datetime-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\SYSWOW64\api-ms-win-core-console-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-localization-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-io-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-heap-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-handle-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-debug-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2013-01-10 14:28:39 ----AH---- C:\Windows\system32\api-ms-win-core-console-l1-1-0.dll
2013-01-10 14:28:39 ----A---- C:\Windows\SYSWOW64\user.exe
2013-01-10 14:28:39 ----A---- C:\Windows\SYSWOW64\setup16.exe
2013-01-10 14:28:39 ----A---- C:\Windows\SYSWOW64\instnm.exe
2013-01-10 14:28:33 ----A---- C:\Windows\system32\taskhost.exe
2013-01-10 14:28:32 ----A---- C:\Windows\system32\win32k.sys
2013-01-08 18:39:00 ----D---- C:\Users\user\AppData\Roaming\Mozilla
2013-01-08 18:38:56 ----D---- C:\ProgramData\Mozilla
2013-01-08 18:38:56 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service
2013-01-02 14:09:07 ----D---- C:\Users\user\AppData\Roaming\WinRAR
2013-01-02 14:08:47 ----D---- C:\Program Files (x86)\WinRAR
2013-01-01 22:14:30 ----D---- C:\Users\user\AppData\Roaming\LolClient
2013-01-01 22:08:28 ----D---- C:\Program Files (x86)\NosTale(CZ)
2013-01-01 19:42:38 ----A---- C:\Windows\system32\TURegOpt.exe
2013-01-01 19:42:37 ----A---- C:\Windows\SYSWOW64\authuitu.dll
2013-01-01 19:42:37 ----A---- C:\Windows\system32\authuitu.dll
2013-01-01 19:42:24 ----D---- C:\Users\user\AppData\Roaming\TuneUp Software
2013-01-01 19:42:19 ----D---- C:\Program Files (x86)\TuneUp Utilities 2013
2013-01-01 19:42:17 ----D---- C:\ProgramData\TuneUp Software
2013-01-01 19:42:15 ----SHD---- C:\ProgramData\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-01-01 19:42:15 ----HD---- C:\ProgramData\Common Files
2013-01-01 19:38:35 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2013-01-01 19:38:33 ----D---- C:\Users\user\AppData\Roaming\DAEMON Tools Lite
2013-01-01 19:38:30 ----D---- C:\Users\user\AppData\Roaming\OpenCandy
2013-01-01 19:38:30 ----D---- C:\Program Files (x86)\DAEMON Tools Lite
2013-01-01 19:37:26 ----D---- C:\ProgramData\DAEMON Tools Lite
2013-01-01 19:33:54 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2013-01-01 19:33:54 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2013-01-01 19:33:54 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2013-01-01 19:33:54 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2013-01-01 19:33:53 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2013-01-01 19:27:59 ----D---- C:\Riot Games
2013-01-01 19:16:59 ----D---- C:\Users\user\AppData\Roaming\FreeCommander
2013-01-01 19:16:57 ----D---- C:\Program Files (x86)\FreeCommander
2013-01-01 18:11:18 ----D---- C:\Program Files\CCleaner
2012-12-31 11:41:43 ----D---- C:\Users\user\AppData\Roaming\vlc
2012-12-31 11:41:22 ----D---- C:\Program Files (x86)\VideoLAN
2012-12-31 11:29:31 ----D---- C:\Users\user\AppData\Roaming\TP-LINK
2012-12-31 11:29:02 ----D---- C:\Program Files (x86)\TP-LINK
2012-12-31 11:27:47 ----A---- C:\Windows\system32\drivers\athurx.sys
2012-12-31 11:27:47 ----A---- C:\Windows\system32\athurx.sys
2012-12-31 11:27:03 ----D---- C:\ProgramData\TP-LINK
2012-12-29 21:15:45 ----D---- C:\Program Files (x86)\Electronic Arts
2012-12-29 21:15:44 ----A---- C:\Windows\SYSWOW64\xactengine2_4.dll
2012-12-29 21:15:44 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-12-29 21:15:44 ----A---- C:\Windows\system32\xactengine2_4.dll
2012-12-29 21:15:44 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-12-29 21:15:43 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2012-12-29 21:15:43 ----A---- C:\Windows\SYSWOW64\d3dx9_31.dll
2012-12-29 21:15:43 ----A---- C:\Windows\system32\xinput1_3.dll
2012-12-29 21:15:43 ----A---- C:\Windows\system32\d3dx9_31.dll
2012-12-29 21:15:42 ----A---- C:\Windows\SYSWOW64\xinput1_2.dll
2012-12-29 21:15:42 ----A---- C:\Windows\SYSWOW64\xactengine2_3.dll
2012-12-29 21:15:42 ----A---- C:\Windows\system32\xinput1_2.dll
2012-12-29 21:15:42 ----A---- C:\Windows\system32\xactengine2_3.dll
2012-12-29 21:15:41 ----A---- C:\Windows\SYSWOW64\xinput1_1.dll
2012-12-29 21:15:41 ----A---- C:\Windows\SYSWOW64\xactengine2_2.dll
2012-12-29 21:15:41 ----A---- C:\Windows\system32\xinput1_1.dll
2012-12-29 21:15:41 ----A---- C:\Windows\system32\xactengine2_2.dll
2012-12-29 21:15:40 ----A---- C:\Windows\SYSWOW64\xactengine2_1.dll
2012-12-29 21:15:40 ----A---- C:\Windows\system32\xactengine2_1.dll
2012-12-29 21:15:37 ----A---- C:\Windows\SYSWOW64\d3dx9_30.dll
2012-12-29 21:15:37 ----A---- C:\Windows\system32\d3dx9_30.dll
2012-12-29 21:15:36 ----A---- C:\Windows\SYSWOW64\xactengine2_0.dll
2012-12-29 21:15:36 ----A---- C:\Windows\SYSWOW64\x3daudio1_0.dll
2012-12-29 21:15:36 ----A---- C:\Windows\SYSWOW64\d3dx9_29.dll
2012-12-29 21:15:36 ----A---- C:\Windows\system32\xactengine2_0.dll
2012-12-29 21:15:36 ----A---- C:\Windows\system32\x3daudio1_0.dll
2012-12-29 21:15:36 ----A---- C:\Windows\system32\d3dx9_29.dll
2012-12-29 21:15:35 ----A---- C:\Windows\SYSWOW64\d3dx9_28.dll
2012-12-29 21:15:35 ----A---- C:\Windows\SYSWOW64\d3dx9_27.dll
2012-12-29 21:15:35 ----A---- C:\Windows\system32\d3dx9_28.dll
2012-12-29 21:15:35 ----A---- C:\Windows\system32\d3dx9_27.dll
2012-12-29 21:15:34 ----A---- C:\Windows\SYSWOW64\d3dx9_26.dll
2012-12-29 21:15:34 ----A---- C:\Windows\SYSWOW64\d3dx9_25.dll
2012-12-29 21:15:34 ----A---- C:\Windows\system32\d3dx9_26.dll
2012-12-29 21:15:34 ----A---- C:\Windows\system32\d3dx9_25.dll
2012-12-29 21:15:33 ----A---- C:\Windows\SYSWOW64\d3dx9_24.dll
2012-12-29 21:15:33 ----A---- C:\Windows\system32\d3dx9_24.dll
2012-12-29 20:40:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-12-29 20:40:48 ----A---- C:\Windows\system32\mshtmled.dll
2012-12-29 20:40:47 ----A---- C:\Windows\SYSWOW64\vbscript.dll
2012-12-29 20:40:47 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-12-29 20:40:47 ----A---- C:\Windows\system32\ieUnatt.exe
2012-12-29 20:40:47 ----A---- C:\Windows\system32\ieui.dll
2012-12-29 20:40:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-12-29 20:40:46 ----A---- C:\Windows\SYSWOW64\url.dll
2012-12-29 20:40:46 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-12-29 20:40:46 ----A---- C:\Windows\system32\urlmon.dll
2012-12-29 20:40:46 ----A---- C:\Windows\system32\url.dll
2012-12-29 20:40:45 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-12-29 20:40:45 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-12-29 20:40:45 ----A---- C:\Windows\system32\wininet.dll
2012-12-29 20:40:45 ----A---- C:\Windows\system32\msfeeds.dll
2012-12-29 20:40:45 ----A---- C:\Windows\system32\jsproxy.dll
2012-12-29 20:40:45 ----A---- C:\Windows\system32\jscript9.dll
2012-12-29 20:40:44 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-12-29 20:40:44 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-12-29 20:40:44 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-12-29 20:40:44 ----A---- C:\Windows\system32\vbscript.dll
2012-12-29 20:40:44 ----A---- C:\Windows\system32\jscript.dll
2012-12-29 20:40:44 ----A---- C:\Windows\system32\iertutil.dll
2012-12-29 20:40:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-12-29 20:40:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-12-29 20:40:41 ----A---- C:\Windows\system32\mshtml.dll
2012-12-29 20:40:41 ----A---- C:\Windows\system32\ieframe.dll
2012-12-29 20:40:40 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-12-29 20:40:33 ----RD---- C:\Program Files (x86)\Skype
2012-12-26 12:39:39 ----A---- C:\Windows\SYSWOW64\tzres.dll
2012-12-26 12:39:39 ----A---- C:\Windows\system32\tzres.dll
2012-12-26 12:07:06 ----A---- C:\Windows\SYSWOW64\atmlib.dll
2012-12-26 12:07:05 ----A---- C:\Windows\SYSWOW64\atmfd.dll
2012-12-26 12:07:05 ----A---- C:\Windows\system32\atmlib.dll
2012-12-26 12:07:05 ----A---- C:\Windows\system32\atmfd.dll
2012-12-26 10:34:38 ----A---- C:\Windows\SYSWOW64\dpnet.dll
2012-12-26 10:34:38 ----A---- C:\Windows\system32\dpnet.dll
2012-12-25 23:24:26 ----D---- C:\Windows\Minidump
2012-12-25 22:05:03 ----D---- C:\Users\user\AppData\Roaming\NVIDIA
2012-12-25 22:01:22 ----D---- C:\Users\user\AppData\Roaming\.minecraft
2012-12-25 21:15:31 ----D---- C:\Users\user\AppData\Roaming\Skype
2012-12-25 21:15:15 ----D---- C:\ProgramData\Skype
2012-12-25 20:54:31 ----D---- C:\Program Files (x86)\Pando Networks
2012-12-25 20:33:13 ----D---- C:\Program Files (x86)\Google
2012-12-25 20:31:23 ----D---- C:\Users\user\AppData\Roaming\Macromedia
2012-12-25 20:08:47 ----D---- C:\Windows\{9CA05E9B-68D2-4EEC-8569-8C474416B082}
2012-12-25 20:03:14 ----A---- C:\Windows\system32\drivers\athrxusb.sys
2012-12-25 19:35:43 ----D---- C:\Program Files\foobar2000
2012-12-25 19:35:32 ----D---- C:\Users\user\AppData\Roaming\foobar2000
2012-12-25 19:35:28 ----D---- C:\Program Files (x86)\foobar2000

======List of files/folders modified in the last 1 month======

2013-01-23 17:56:14 ----D---- C:\Windows\Prefetch
2013-01-23 17:56:12 ----RD---- C:\Program Files
2013-01-23 17:55:27 ----D---- C:\Windows\Temp
2013-01-23 17:50:27 ----D---- C:\Windows\system32\NDF
2013-01-23 17:47:12 ----D---- C:\Windows\system32\config
2013-01-23 17:42:32 ----SHD---- C:\System Volume Information
2013-01-23 13:54:31 ----D---- C:\Windows\System32
2013-01-23 13:54:31 ----D---- C:\Windows\inf
2013-01-23 13:54:31 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-01-23 13:50:10 ----D---- C:\ProgramData\NVIDIA
2013-01-22 15:36:18 ----SHD---- C:\Windows\Installer
2013-01-22 15:36:16 ----RD---- C:\Program Files (x86)
2013-01-22 15:36:14 ----D---- C:\Windows\system32\Tasks
2013-01-21 20:27:32 ----HD---- C:\ProgramData
2013-01-21 17:32:46 ----D---- C:\Windows
2013-01-20 20:06:50 ----D---- C:\Windows\SysWOW64
2013-01-20 20:02:12 ----D---- C:\Windows\system32\drivers
2013-01-20 20:02:10 ----D---- C:\Windows\system32\drivers\UMDF
2013-01-20 19:28:37 ----D---- C:\Program Files (x86)\Common Files
2013-01-15 17:09:40 ----D---- C:\Windows\system32\catroot2
2013-01-14 12:22:16 ----D---- C:\Windows\rescache
2013-01-14 10:08:15 ----D---- C:\Program Files (x86)\Java
2013-01-14 10:00:51 ----D---- C:\Program Files (x86)\Adobe Reader 11.0
2013-01-10 18:38:07 ----D---- C:\Windows\Microsoft.NET
2013-01-10 18:38:06 ----RSD---- C:\Windows\assembly
2013-01-10 17:35:12 ----D---- C:\Windows\winsxs
2013-01-10 17:33:38 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-01-10 17:33:38 ----D---- C:\Windows\system32\cs-CZ
2013-01-10 17:33:34 ----D---- C:\Windows\AppPatch
2013-01-10 15:13:16 ----A---- C:\Windows\system32\MRT.exe
2013-01-10 15:01:45 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-01-10 14:28:29 ----D---- C:\Windows\system32\catroot
2013-01-08 19:15:41 ----SD---- C:\Users\user\AppData\Roaming\Microsoft
2013-01-08 19:15:26 ----D---- C:\ProgramData\Adobe
2013-01-02 14:22:21 ----D---- C:\Windows\system32\wdi
2013-01-01 19:38:47 ----D---- C:\Windows\system32\DriverStore
2013-01-01 19:33:51 ----D---- C:\Windows\Logs
2013-01-01 19:27:58 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-01-01 18:13:11 ----D---- C:\Windows\SYSWOW64\drivers
2012-12-29 20:51:42 ----D---- C:\Windows\SYSWOW64\migration
2012-12-29 20:51:42 ----D---- C:\Windows\system32\migration
2012-12-29 20:51:42 ----D---- C:\Program Files\Internet Explorer
2012-12-29 20:51:42 ----D---- C:\Program Files (x86)\Internet Explorer
2012-12-25 21:01:29 ----D---- C:\Windows\system32\LogFiles
2012-12-25 20:34:48 ----SD---- C:\ProgramData\Microsoft
2012-12-25 20:33:16 ----D---- C:\Windows\Tasks
2012-12-25 19:41:59 ----D---- C:\Users\user\AppData\Roaming\XnView

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2012-08-30 228768]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-01 283200]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\amdhub30.sys [2011-10-26 102528]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\amdxhc.sys [2011-10-26 219776]
R3 athur;Wireless Network Adapter Service; C:\Windows\system32\DRIVERS\athurx.sys [2011-04-20 1930240]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2012-06-12 4060560]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver; C:\Windows\system32\drivers\nvhda64v.sys [2012-01-17 188224]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-06-12 726160]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-09-19 11880]
S3 athrusb;Atheros Wireless LAN USB device driver; C:\Windows\system32\DRIVERS\athrxusb.sys [2008-07-28 1075712]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-21 41984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\MsMpEng.exe [2012-09-12 22072]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-10-02 891240]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2012-11-02 2365792]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-25 116648]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-10-10 1258856]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-01-10 251400]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-12-25 116648]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-01-20 115608]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2012-11-19 489256]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-12-10 1255736]

Tak uvidíme, jestli se něco najde ted, doufám, že ano. Díky moc.

Ještě poprosím o log ComboFix:

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Moc děkuju, že mi pomáháte vyřešit tenhle problém. Tak jsem udělal vše, co jste mi poradil (ještě jsem si o tom něco přečetl na internetu, aby snad nedošlo k poškození systému) a tady je ten log. No tak doufám, že tentokrát to snad vyjde .

ComboFix 13-01-23.01 - user 23.01.2013 19:34:55.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8161.6936 [GMT 1:00]
Spuštěný z: c:\users\user\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-23 do 2013-01-23 )))))))))))))))))))))))))))))))
.
.
2013-01-23 18:38 . 2013-01-23 18:38 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-01-23 18:38 . 2013-01-23 18:38 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-23 16:56 . 2013-01-23 16:56 -------- d-----w- C:\rsit
2013-01-23 16:56 . 2013-01-23 16:56 -------- d-----w- c:\program files\trend micro
2013-01-22 14:41 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{57CED421-71AE-4EC5-BF1D-0E64DE52AD2C}\mpengine.dll
2013-01-21 18:00 . 2013-01-21 18:00 -------- d-----w- c:\users\user\AppData\Roaming\RotMG.Production
2013-01-21 16:32 . 2013-01-22 14:41 -------- d-----w- c:\program files (x86)\Polda 3
2013-01-21 16:18 . 2013-01-21 16:21 -------- d-----w- c:\program files (x86)\Polda 5
2013-01-20 19:39 . 2013-01-20 19:39 -------- d-----w- c:\program files (x86)\Sizer
2013-01-20 19:06 . 2013-01-20 19:10 -------- d-----w- C:\Fraps
2013-01-20 18:36 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-01-20 18:28 . 2013-01-20 18:28 -------- d-----w- c:\program files (x86)\Common Files\Steam
2013-01-20 18:28 . 2013-01-23 18:32 -------- d-----w- c:\program files (x86)\Steam
2013-01-17 19:53 . 2013-01-17 19:53 -------- d-----w- c:\users\user\AppData\Roaming\Any DVD Converter Professional
2013-01-17 19:53 . 2013-01-17 19:53 -------- d-----w- c:\program files (x86)\Any DVD Converter Professional
2013-01-17 17:47 . 2013-01-17 17:47 -------- d-----w- c:\programdata\Blizzard Entertainment
2013-01-17 16:19 . 2013-01-18 06:06 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment
2013-01-14 09:08 . 2013-01-14 09:08 -------- d-----w- c:\programdata\Ask
2013-01-14 09:08 . 2013-01-12 02:30 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-01-13 18:34 . 2013-01-15 14:33 -------- d-----w- c:\users\user\AppData\Roaming\Audacity
2013-01-13 18:34 . 2013-01-15 14:33 -------- d-----w- c:\program files (x86)\Audacity
2013-01-10 13:29 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-10 13:29 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-08 18:15 . 2013-01-08 18:15 -------- d-----w- c:\users\user\AppData\Local\Macromedia
2013-01-08 17:39 . 2013-01-08 17:39 -------- d-----w- c:\users\user\AppData\Local\Mozilla
2013-01-08 17:38 . 2013-01-21 15:30 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-01-01 21:14 . 2013-01-01 21:14 -------- d-----w- c:\users\user\AppData\Roaming\LolClient
2013-01-01 21:08 . 2013-01-23 17:37 -------- d-----w- c:\program files (x86)\NosTale(CZ)
2013-01-01 18:42 . 2012-11-02 14:57 34656 ----a-w- c:\windows\system32\TURegOpt.exe
2013-01-01 18:42 . 2012-11-02 14:57 25952 ----a-w- c:\windows\system32\authuitu.dll
2013-01-01 18:42 . 2012-11-02 14:57 21344 ----a-w- c:\windows\SysWow64\authuitu.dll
2013-01-01 18:42 . 2013-01-01 18:42 -------- d-----w- c:\users\user\AppData\Roaming\TuneUp Software
2013-01-01 18:42 . 2013-01-01 18:42 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2013
2013-01-01 18:42 . 2013-01-01 18:42 -------- d-----w- c:\programdata\TuneUp Software
2013-01-01 18:42 . 2013-01-02 10:44 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-01-01 18:42 . 2013-01-01 18:42 -------- d--h--w- c:\programdata\Common Files
2013-01-01 18:38 . 2013-01-01 18:38 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-01-01 18:38 . 2013-01-01 18:47 -------- d-----w- c:\users\user\AppData\Roaming\DAEMON Tools Lite
2013-01-01 18:38 . 2013-01-01 18:38 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-01-01 18:38 . 2013-01-01 18:38 -------- d-----w- c:\users\user\AppData\Roaming\OpenCandy
2013-01-01 18:37 . 2013-01-01 18:48 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-01-01 18:33 . 2008-07-31 09:41 68616 ----a-w- c:\windows\SysWow64\XAPOFX1_1.dll
2013-01-01 18:33 . 2008-07-31 09:40 509448 ----a-w- c:\windows\SysWow64\XAudio2_2.dll
2013-01-01 18:33 . 2008-07-12 07:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2013-01-01 18:33 . 2008-07-12 07:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
2013-01-01 18:33 . 2008-07-12 07:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2013-01-01 18:27 . 2013-01-01 18:28 -------- d-----w- C:\Riot Games
2013-01-01 18:16 . 2013-01-01 18:16 -------- d-----w- c:\users\user\AppData\Roaming\FreeCommander
2013-01-01 18:16 . 2013-01-01 18:17 -------- d-----w- c:\program files (x86)\FreeCommander
2013-01-01 17:11 . 2013-01-01 17:11 -------- d-----w- c:\program files\CCleaner
2012-12-31 10:41 . 2012-12-31 10:42 -------- d-----w- c:\users\user\AppData\Roaming\vlc
2012-12-31 10:41 . 2012-12-31 10:41 -------- d-----w- c:\program files (x86)\VideoLAN
2012-12-31 10:31 . 2012-12-31 10:31 163056 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10142.bin
2012-12-31 10:29 . 2013-01-23 18:32 -------- d-----w- c:\users\user\AppData\Roaming\TP-LINK
2012-12-31 10:29 . 2012-12-31 10:29 -------- d-----w- c:\program files (x86)\TP-LINK
2012-12-31 10:27 . 2011-04-20 02:07 1930240 ----a-w- c:\windows\system32\drivers\athurx.sys
2012-12-31 10:27 . 2011-04-20 02:07 1930240 ----a-w- c:\windows\system32\athurx.sys
2012-12-31 10:27 . 2012-12-31 10:28 -------- d-----w- c:\programdata\TP-LINK
2012-12-29 20:43 . 2012-12-29 20:43 -------- d-----w- c:\users\user\AppData\Local\Electronic Arts
2012-12-29 19:40 . 2012-11-14 05:53 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-12-26 11:39 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-12-26 11:39 . 2012-11-09 04:42 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-12-26 11:07 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-26 11:07 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-26 11:07 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-26 11:07 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-26 09:34 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-12-26 09:34 . 2012-11-02 05:11 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
2012-12-25 21:10 . 2012-12-25 21:21 -------- d-----w- c:\users\user\AppData\Local\Microsoft Games
2012-12-25 21:05 . 2012-12-25 21:05 -------- d-----w- c:\users\user\AppData\Roaming\NVIDIA
2012-12-25 21:01 . 2013-01-02 15:56 -------- d-----w- c:\users\user\AppData\Roaming\.minecraft
2012-12-25 20:15 . 2013-01-23 18:30 -------- d-----w- c:\users\user\AppData\Roaming\Skype
2012-12-25 20:15 . 2012-12-29 19:40 -------- d-----w- c:\programdata\Skype
2012-12-25 19:54 . 2013-01-22 06:14 -------- d-----w- c:\program files (x86)\Pando Networks
2012-12-25 19:54 . 2012-12-25 19:54 -------- d-----w- c:\users\user\.swt
2012-12-25 19:33 . 2012-12-25 19:38 -------- d-----w- c:\users\user\AppData\Local\Google
2012-12-25 19:33 . 2012-12-25 19:37 -------- d-----w- c:\program files (x86)\Google
2012-12-25 19:32 . 2012-12-25 19:32 -------- d-----w- c:\users\user\AppData\Local\Apps
2012-12-25 19:32 . 2012-12-25 19:33 -------- d-----w- c:\users\user\AppData\Local\Deployment
2012-12-25 19:26 . 2013-01-21 17:38 -------- d-----w- c:\users\user\AppData\Local\ElevatedDiagnostics
2012-12-25 19:08 . 2012-12-25 19:08 -------- d-----w- c:\windows\{9CA05E9B-68D2-4EEC-8569-8C474416B082}
2012-12-25 19:03 . 2008-07-28 19:47 1075712 ----a-w- c:\windows\system32\drivers\athrxusb.sys
2012-12-25 18:35 . 2012-12-25 18:35 -------- d-----w- c:\program files\foobar2000
2012-12-25 18:35 . 2012-12-25 18:36 -------- d-----w- c:\users\user\AppData\Roaming\foobar2000
2012-12-25 18:35 . 2012-12-25 18:35 -------- d-----w- c:\program files (x86)\foobar2000
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-10 14:13 . 2012-12-10 18:28 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-10 14:01 . 2012-12-10 18:09 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-10 14:01 . 2012-12-10 18:09 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-10 22:32 . 2012-12-10 18:02 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-12-10 22:32 . 2012-12-10 18:02 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-12-10 18:11 . 2012-12-10 20:26 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2012-12-10 18:11 . 2012-12-10 20:26 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{497D14A6-7F12-4F39-95E4-B9778B99B020}\gapaengine.dll
2012-12-10 18:07 . 2012-12-10 18:07 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-12-10 18:07 . 2012-12-10 18:07 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-12-10 18:07 . 2012-12-10 18:07 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2012-12-10 18:07 . 2012-12-10 18:07 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-12-10 18:07 . 2012-12-10 18:07 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-12-10 18:07 . 2012-12-10 18:07 82432 ----a-w- c:\windows\system32\icardie.dll
2012-12-10 18:07 . 2012-12-10 18:07 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-12-10 18:07 . 2012-12-10 18:07 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-12-10 18:07 . 2012-12-10 18:07 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-12-10 18:07 . 2012-12-10 18:07 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-12-10 18:07 . 2012-12-10 18:07 65024 ----a-w- c:\windows\system32\pngfilt.dll
2012-12-10 18:07 . 2012-12-10 18:07 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-12-10 18:07 . 2012-12-10 18:07 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2012-12-10 18:07 . 2012-12-10 18:07 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2012-12-10 18:07 . 2012-12-10 18:07 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-12-10 18:07 . 2012-12-10 18:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-12-10 18:07 . 2012-12-10 18:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-12-10 18:07 . 2012-12-10 18:07 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2012-12-10 18:07 . 2012-12-10 18:07 448512 ----a-w- c:\windows\system32\html.iec
2012-12-10 18:07 . 2012-12-10 18:07 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2012-12-10 18:07 . 2012-12-10 18:07 39936 ----a-w- c:\windows\system32\iernonce.dll
2012-12-10 18:07 . 2012-12-10 18:07 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2012-12-10 18:07 . 2012-12-10 18:07 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-12-10 18:07 . 2012-12-10 18:07 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-12-10 18:07 . 2012-12-10 18:07 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-12-10 18:07 . 2012-12-10 18:07 282112 ----a-w- c:\windows\system32\dxtrans.dll
2012-12-10 18:07 . 2012-12-10 18:07 267776 ----a-w- c:\windows\system32\ieaksie.dll
2012-12-10 18:07 . 2012-12-10 18:07 249344 ----a-w- c:\windows\system32\webcheck.dll
2012-12-10 18:07 . 2012-12-10 18:07 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-12-10 18:07 . 2012-12-10 18:07 222208 ----a-w- c:\windows\system32\msls31.dll
2012-12-10 18:07 . 2012-12-10 18:07 197120 ----a-w- c:\windows\system32\msrating.dll
2012-12-10 18:07 . 2012-12-10 18:07 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-12-10 18:07 . 2012-12-10 18:07 163840 ----a-w- c:\windows\system32\ieakui.dll
2012-12-10 18:07 . 2012-12-10 18:07 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-12-10 18:07 . 2012-12-10 18:07 160256 ----a-w- c:\windows\system32\wextract.exe
2012-12-10 18:07 . 2012-12-10 18:07 160256 ----a-w- c:\windows\system32\ieakeng.dll
2012-12-10 18:07 . 2012-12-10 18:07 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-12-10 18:07 . 2012-12-10 18:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-12-10 18:07 . 2012-12-10 18:07 149504 ----a-w- c:\windows\system32\occache.dll
2012-12-10 18:07 . 2012-12-10 18:07 145920 ----a-w- c:\windows\system32\iepeers.dll
2012-12-10 18:07 . 2012-12-10 18:07 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-12-10 18:07 . 2012-12-10 18:07 12288 ----a-w- c:\windows\system32\mshta.exe
2012-12-10 18:07 . 2012-12-10 18:07 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-12-10 18:07 . 2012-12-10 18:07 114176 ----a-w- c:\windows\system32\admparse.dll
2012-12-10 18:07 . 2012-12-10 18:07 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-12-10 18:07 . 2012-12-10 18:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-12-10 18:07 . 2012-12-10 18:07 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2012-12-10 18:07 . 2012-12-10 18:07 103936 ----a-w- c:\windows\system32\inseng.dll
2012-12-10 18:07 . 2012-12-10 18:07 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2012-12-10 17:48 . 2012-12-10 17:48 16896 ----a-w- c:\windows\AsTaskSched.dll
2012-11-30 04:45 . 2013-01-10 13:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2013-01-20 1354736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
TP-LINK Wireless Configuration Utility.lnk - c:\program files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe [2012-12-31 788992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
R3 athrusb;Atheros Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrxusb.sys [2008-07-28 1075712]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-10 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-01 283200]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2012-11-02 2365792]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys [2011-10-26 102528]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys [2011-10-26 219776]
S3 athur;Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys [2011-04-20 1930240]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-06-12 726160]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-09-19 11880]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-01-15 19:38 1606760 ----a-w- c:\program files (x86)\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-10 14:01]
.
2013-01-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-25 19:33]
.
2013-01-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-12-25 19:33]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.10.254
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\imav7ycn.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_5_502_146.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2013-01-23 19:40:10
ComboFix-quarantined-files.txt 2013-01-23 18:40
.
Před spuštěním: Volných bajtů: 418 483 318 784
Po spuštění: Volných bajtů: 418 410 754 048
.
- - End Of File - - C6B1AD463D72411471AD8B9CEA4CDE8C

Tak to je ono - opět předem moc děkuju

Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"=-
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SunJavaUpdateSched"=-

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Tak jo. Udělal jsem opět vše podle pokynů - zkopíroval jsem to do toho bloku a vložil do ComboFixu. Restartoval se mi počítač, ale já si vůbec neuvědomil, že se mi při každém spuštění PC automaticky zapne i Skype. Doufám, že to nijak nenarušilo proces, to bych byl nerad. No, každopádně - ten problém nepřestal - opět je to pořád stejné. Možná, to opravdu nevím, by vám mohlo pomoct tohle. Když jsem udělal tu prohlídku ComboFixem, okna se přestala zesvětlovat a už se to neminimalizovalo. Jakmile se ovšem vlivem ComboFixu PC restartoval, znovu to začalo. Opět mi to vypsalo log, nevím, jestli ho ještě potřebujete, ale tady je.

ComboFix 13-01-23.01 - user 23.01.2013 20:21:50.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.8161.6594 [GMT 1:00]
Spuštěný z: c:\users\user\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\user\Desktop\CFScript.txt..txt
AV: Microsoft Security Essentials *Disabled/Updated* {B140BF4E-23BB-4198-90AB-A51A4C60A69C}
SP: Microsoft Security Essentials *Disabled/Updated* {0A215EAA-0581-4E16-AA1B-9E6837E7EC21}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-12-23 do 2013-01-23 )))))))))))))))))))))))))))))))
.
.
2013-01-23 19:24 . 2013-01-23 19:24 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2013-01-23 19:24 . 2013-01-23 19:24 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-01-23 19:19 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1CE6D4AF-BBBD-4A48-B776-90ADAD975531}\mpengine.dll
2013-01-23 16:56 . 2013-01-23 16:56 -------- d-----w- C:\rsit
2013-01-23 16:56 . 2013-01-23 16:56 -------- d-----w- c:\program files\trend micro
2013-01-22 14:41 . 2013-01-08 05:32 9161176 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2013-01-21 18:00 . 2013-01-21 18:00 -------- d-----w- c:\users\user\AppData\Roaming\RotMG.Production
2013-01-21 16:32 . 2013-01-22 14:41 -------- d-----w- c:\program files (x86)\Polda 3
2013-01-21 16:18 . 2013-01-21 16:21 -------- d-----w- c:\program files (x86)\Polda 5
2013-01-20 19:39 . 2013-01-20 19:39 -------- d-----w- c:\program files (x86)\Sizer
2013-01-20 19:06 . 2013-01-20 19:10 -------- d-----w- C:\Fraps
2013-01-20 18:28 . 2013-01-20 18:28 -------- d-----w- c:\program files (x86)\Common Files\Steam
2013-01-20 18:28 . 2013-01-23 19:26 -------- d-----w- c:\program files (x86)\Steam
2013-01-17 19:53 . 2013-01-17 19:53 -------- d-----w- c:\users\user\AppData\Roaming\Any DVD Converter Professional
2013-01-17 19:53 . 2013-01-17 19:53 -------- d-----w- c:\program files (x86)\Any DVD Converter Professional
2013-01-17 17:47 . 2013-01-17 17:47 -------- d-----w- c:\programdata\Blizzard Entertainment
2013-01-17 16:19 . 2013-01-18 06:06 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment
2013-01-14 09:08 . 2013-01-14 09:08 -------- d-----w- c:\programdata\Ask
2013-01-14 09:08 . 2013-01-12 02:30 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-01-13 18:34 . 2013-01-15 14:33 -------- d-----w- c:\users\user\AppData\Roaming\Audacity
2013-01-13 18:34 . 2013-01-15 14:33 -------- d-----w- c:\program files (x86)\Audacity
2013-01-10 13:29 . 2012-11-09 05:45 750592 ----a-w- c:\windows\system32\win32spl.dll
2013-01-10 13:29 . 2012-11-09 04:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-01-08 18:15 . 2013-01-08 18:15 -------- d-----w- c:\users\user\AppData\Local\Macromedia
2013-01-08 17:39 . 2013-01-08 17:39 -------- d-----w- c:\users\user\AppData\Local\Mozilla
2013-01-08 17:38 . 2013-01-21 15:30 -------- d-----w- c:\program files (x86)\Mozilla Maintenance Service
2013-01-01 21:14 . 2013-01-01 21:14 -------- d-----w- c:\users\user\AppData\Roaming\LolClient
2013-01-01 21:08 . 2013-01-23 17:37 -------- d-----w- c:\program files (x86)\NosTale(CZ)
2013-01-01 18:42 . 2012-11-02 14:57 34656 ----a-w- c:\windows\system32\TURegOpt.exe
2013-01-01 18:42 . 2012-11-02 14:57 25952 ----a-w- c:\windows\system32\authuitu.dll
2013-01-01 18:42 . 2012-11-02 14:57 21344 ----a-w- c:\windows\SysWow64\authuitu.dll
2013-01-01 18:42 . 2013-01-01 18:42 -------- d-----w- c:\users\user\AppData\Roaming\TuneUp Software
2013-01-01 18:42 . 2013-01-01 18:42 -------- d-----w- c:\program files (x86)\TuneUp Utilities 2013
2013-01-01 18:42 . 2013-01-01 18:42 -------- d-----w- c:\programdata\TuneUp Software
2013-01-01 18:42 . 2013-01-02 10:44 -------- d-sh--w- c:\programdata\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}
2013-01-01 18:42 . 2013-01-01 18:42 -------- d--h--w- c:\programdata\Common Files
2013-01-01 18:38 . 2013-01-01 18:38 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-01-01 18:38 . 2013-01-23 19:10 -------- d-----w- c:\users\user\AppData\Roaming\DAEMON Tools Lite
2013-01-01 18:38 . 2013-01-01 18:38 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-01-01 18:38 . 2013-01-01 18:38 -------- d-----w- c:\users\user\AppData\Roaming\OpenCandy
2013-01-01 18:37 . 2013-01-01 18:48 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-01-01 18:33 . 2008-07-31 09:41 68616 ----a-w- c:\windows\SysWow64\XAPOFX1_1.dll
2013-01-01 18:33 . 2008-07-31 09:40 509448 ----a-w- c:\windows\SysWow64\XAudio2_2.dll
2013-01-01 18:33 . 2008-07-12 07:18 467984 ----a-w- c:\windows\SysWow64\d3dx10_39.dll
2013-01-01 18:33 . 2008-07-12 07:18 1493528 ----a-w- c:\windows\SysWow64\D3DCompiler_39.dll
2013-01-01 18:33 . 2008-07-12 07:18 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2013-01-01 18:27 . 2013-01-01 18:28 -------- d-----w- C:\Riot Games
2013-01-01 18:16 . 2013-01-01 18:16 -------- d-----w- c:\users\user\AppData\Roaming\FreeCommander
2013-01-01 18:16 . 2013-01-01 18:17 -------- d-----w- c:\program files (x86)\FreeCommander
2013-01-01 17:11 . 2013-01-01 17:11 -------- d-----w- c:\program files\CCleaner
2012-12-31 10:41 . 2012-12-31 10:42 -------- d-----w- c:\users\user\AppData\Roaming\vlc
2012-12-31 10:41 . 2012-12-31 10:41 -------- d-----w- c:\program files (x86)\VideoLAN
2012-12-31 10:31 . 2012-12-31 10:31 163056 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10142.bin
2012-12-31 10:29 . 2013-01-23 18:32 -------- d-----w- c:\users\user\AppData\Roaming\TP-LINK
2012-12-31 10:29 . 2012-12-31 10:29 -------- d-----w- c:\program files (x86)\TP-LINK
2012-12-31 10:27 . 2011-04-20 02:07 1930240 ----a-w- c:\windows\system32\drivers\athurx.sys
2012-12-31 10:27 . 2011-04-20 02:07 1930240 ----a-w- c:\windows\system32\athurx.sys
2012-12-31 10:27 . 2012-12-31 10:28 -------- d-----w- c:\programdata\TP-LINK
2012-12-29 20:43 . 2012-12-29 20:43 -------- d-----w- c:\users\user\AppData\Local\Electronic Arts
2012-12-29 19:40 . 2012-11-14 05:53 96768 ----a-w- c:\windows\system32\mshtmled.dll
2012-12-26 11:39 . 2012-11-09 05:45 2048 ----a-w- c:\windows\system32\tzres.dll
2012-12-26 11:39 . 2012-11-09 04:42 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2012-12-26 11:07 . 2012-12-16 14:13 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-26 11:07 . 2012-12-16 17:11 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-26 11:07 . 2012-12-16 14:45 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-26 11:07 . 2012-12-16 14:13 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-26 09:34 . 2012-11-02 05:59 478208 ----a-w- c:\windows\system32\dpnet.dll
2012-12-26 09:34 . 2012-11-02 05:11 376832 ----a-w- c:\windows\SysWow64\dpnet.dll
2012-12-25 21:10 . 2012-12-25 21:21 -------- d-----w- c:\users\user\AppData\Local\Microsoft Games
2012-12-25 21:05 . 2012-12-25 21:05 -------- d-----w- c:\users\user\AppData\Roaming\NVIDIA
2012-12-25 21:01 . 2013-01-02 15:56 -------- d-----w- c:\users\user\AppData\Roaming\.minecraft
2012-12-25 20:15 . 2013-01-23 19:17 -------- d-----w- c:\users\user\AppData\Roaming\Skype
2012-12-25 20:15 . 2012-12-29 19:40 -------- d-----w- c:\programdata\Skype
2012-12-25 19:54 . 2013-01-22 06:14 -------- d-----w- c:\program files (x86)\Pando Networks
2012-12-25 19:54 . 2012-12-25 19:54 -------- d-----w- c:\users\user\.swt
2012-12-25 19:33 . 2012-12-25 19:38 -------- d-----w- c:\users\user\AppData\Local\Google
2012-12-25 19:33 . 2012-12-25 19:37 -------- d-----w- c:\program files (x86)\Google
2012-12-25 19:32 . 2012-12-25 19:32 -------- d-----w- c:\users\user\AppData\Local\Apps
2012-12-25 19:32 . 2012-12-25 19:33 -------- d-----w- c:\users\user\AppData\Local\Deployment
2012-12-25 19:26 . 2013-01-21 17:38 -------- d-----w- c:\users\user\AppData\Local\ElevatedDiagnostics
2012-12-25 19:08 . 2012-12-25 19:08 -------- d-----w- c:\windows\{9CA05E9B-68D2-4EEC-8569-8C474416B082}
2012-12-25 19:03 . 2008-07-28 19:47 1075712 ----a-w- c:\windows\system32\drivers\athrxusb.sys
2012-12-25 18:35 . 2012-12-25 18:35 -------- d-----w- c:\program files\foobar2000
2012-12-25 18:35 . 2012-12-25 18:36 -------- d-----w- c:\users\user\AppData\Roaming\foobar2000
2012-12-25 18:35 . 2012-12-25 18:35 -------- d-----w- c:\program files (x86)\foobar2000
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-01-10 14:13 . 2012-12-10 18:28 67599240 ----a-w- c:\windows\system32\MRT.exe
2013-01-10 14:01 . 2012-12-10 18:09 74248 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-01-10 14:01 . 2012-12-10 18:09 697864 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-12-10 22:32 . 2012-12-10 18:02 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-12-10 22:32 . 2012-12-10 18:02 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-12-10 18:11 . 2012-12-10 20:26 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2012-12-10 18:11 . 2012-12-10 20:26 972264 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{497D14A6-7F12-4F39-95E4-B9778B99B020}\gapaengine.dll
2012-12-10 18:07 . 2012-12-10 18:07 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-12-10 18:07 . 2012-12-10 18:07 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-12-10 18:07 . 2012-12-10 18:07 89088 ----a-w- c:\windows\system32\ie4uinit.exe
2012-12-10 18:07 . 2012-12-10 18:07 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2012-12-10 18:07 . 2012-12-10 18:07 85504 ----a-w- c:\windows\system32\iesetup.dll
2012-12-10 18:07 . 2012-12-10 18:07 82432 ----a-w- c:\windows\system32\icardie.dll
2012-12-10 18:07 . 2012-12-10 18:07 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2012-12-10 18:07 . 2012-12-10 18:07 76800 ----a-w- c:\windows\system32\tdc.ocx
2012-12-10 18:07 . 2012-12-10 18:07 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2012-12-10 18:07 . 2012-12-10 18:07 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2012-12-10 18:07 . 2012-12-10 18:07 65024 ----a-w- c:\windows\system32\pngfilt.dll
2012-12-10 18:07 . 2012-12-10 18:07 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2012-12-10 18:07 . 2012-12-10 18:07 55296 ----a-w- c:\windows\system32\msfeedsbs.dll
2012-12-10 18:07 . 2012-12-10 18:07 534528 ----a-w- c:\windows\system32\ieapfltr.dll
2012-12-10 18:07 . 2012-12-10 18:07 49664 ----a-w- c:\windows\system32\imgutil.dll
2012-12-10 18:07 . 2012-12-10 18:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2012-12-10 18:07 . 2012-12-10 18:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-12-10 18:07 . 2012-12-10 18:07 452608 ----a-w- c:\windows\system32\dxtmsft.dll
2012-12-10 18:07 . 2012-12-10 18:07 448512 ----a-w- c:\windows\system32\html.iec
2012-12-10 18:07 . 2012-12-10 18:07 403248 ----a-w- c:\windows\system32\iedkcs32.dll
2012-12-10 18:07 . 2012-12-10 18:07 39936 ----a-w- c:\windows\system32\iernonce.dll
2012-12-10 18:07 . 2012-12-10 18:07 3695416 ----a-w- c:\windows\system32\ieapfltr.dat
2012-12-10 18:07 . 2012-12-10 18:07 367104 ----a-w- c:\windows\SysWow64\html.iec
2012-12-10 18:07 . 2012-12-10 18:07 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2012-12-10 18:07 . 2012-12-10 18:07 30720 ----a-w- c:\windows\system32\licmgr10.dll
2012-12-10 18:07 . 2012-12-10 18:07 282112 ----a-w- c:\windows\system32\dxtrans.dll
2012-12-10 18:07 . 2012-12-10 18:07 267776 ----a-w- c:\windows\system32\ieaksie.dll
2012-12-10 18:07 . 2012-12-10 18:07 249344 ----a-w- c:\windows\system32\webcheck.dll
2012-12-10 18:07 . 2012-12-10 18:07 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2012-12-10 18:07 . 2012-12-10 18:07 222208 ----a-w- c:\windows\system32\msls31.dll
2012-12-10 18:07 . 2012-12-10 18:07 197120 ----a-w- c:\windows\system32\msrating.dll
2012-12-10 18:07 . 2012-12-10 18:07 165888 ----a-w- c:\windows\system32\iexpress.exe
2012-12-10 18:07 . 2012-12-10 18:07 163840 ----a-w- c:\windows\system32\ieakui.dll
2012-12-10 18:07 . 2012-12-10 18:07 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2012-12-10 18:07 . 2012-12-10 18:07 160256 ----a-w- c:\windows\system32\wextract.exe
2012-12-10 18:07 . 2012-12-10 18:07 160256 ----a-w- c:\windows\system32\ieakeng.dll
2012-12-10 18:07 . 2012-12-10 18:07 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2012-12-10 18:07 . 2012-12-10 18:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2012-12-10 18:07 . 2012-12-10 18:07 149504 ----a-w- c:\windows\system32\occache.dll
2012-12-10 18:07 . 2012-12-10 18:07 145920 ----a-w- c:\windows\system32\iepeers.dll
2012-12-10 18:07 . 2012-12-10 18:07 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-12-10 18:07 . 2012-12-10 18:07 12288 ----a-w- c:\windows\system32\mshta.exe
2012-12-10 18:07 . 2012-12-10 18:07 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2012-12-10 18:07 . 2012-12-10 18:07 114176 ----a-w- c:\windows\system32\admparse.dll
2012-12-10 18:07 . 2012-12-10 18:07 111616 ----a-w- c:\windows\system32\iesysprep.dll
2012-12-10 18:07 . 2012-12-10 18:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2012-12-10 18:07 . 2012-12-10 18:07 10752 ----a-w- c:\windows\system32\msfeedssync.exe
2012-12-10 18:07 . 2012-12-10 18:07 103936 ----a-w- c:\windows\system32\inseng.dll
2012-12-10 18:07 . 2012-12-10 18:07 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2012-12-10 17:48 . 2012-12-10 17:48 16896 ----a-w- c:\windows\AsTaskSched.dll
2012-11-30 04:45 . 2013-01-10 13:28 44032 ----a-w- c:\windows\apppatch\acwow64.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-07-13 17418928]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-11-06 3673728]
"Steam"="c:\program files (x86)\Steam\steam.exe" [2013-01-20 1354736]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
TP-LINK Wireless Configuration Utility.lnk - c:\program files (x86)\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe [2012-12-31 788992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 athrusb;Atheros Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrxusb.sys [2008-07-28 1075712]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [2012-08-30 128456]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe [2012-09-12 368896]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-12-10 1255736]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-01-01 283200]
S2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2012-10-02 382824]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesService64.exe [2012-11-02 2365792]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\amdhub30.sys [2011-10-26 102528]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\amdxhc.sys [2011-10-26 219776]
S3 athur;Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys [2011-04-20 1930240]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-06-12 726160]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2013\TuneUpUtilitiesDriver64.sys [2012-09-19 11880]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-01-15 19:38 1606760 ----a-w- c:\program files (x86)\Google\Chrome\Application\24.0.1312.52\Installer\setup.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-01-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-12-10 14:01]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-09-12 1289704]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 192.168.10.254
FF - ProfilePath - c:\users\user\AppData\Roaming\Mozilla\Firefox\Profiles\imav7ycn.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_5_502_146_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
.
**************************************************************************
.
Celkový čas: 2013-01-23 20:28:01 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-01-23 19:28
ComboFix2.txt 2013-01-23 18:40
.
Před spuštěním: Volných bajtů: 419 364 601 856
Po spuštění: Volných bajtů: 419 046 547 456
.
- - End Of File - - C1532B81D509C03D7297EB7876149494

Já fakt nevím, co s tím PC mám . No nic, děkuju moc, že jste se na mě ještě nevykašlal, já vím, že vás už asi musím otravovat, ale já sám si zkrátka nevím rady. Zkoušel jsem se ptát na jedné internetové poradně, ale nijak mi to nepomohlo .

Log je již OK. Nastala nějaká změna?

Bohužel právě že ne . Děje se to pořád. Možná ten problém ani nezpůsobil vir, ale pak se nedokážu vysvětlit, co je špatně, jelikož já jsem si jistý, že jsem s PC nic nedělal. Ale stejně děkuju, že jste mi zkusil pomoct. Nejspíš budu muset odnést PC do prodejny, kde jsem ho kupoval, a tam řeknu, ať se na to podívají.

Zkuste obnovu systému k datu, kdy korketně fungoval.

Když to je právě to..... já mám dojem, že to začalo hned, jak jsem poprvé tenhle PC spustil. Já si totiž tento počítač nekoupil už hotový, ale nechal jsem si ho sestavit. Není třeba možné, že když ten počítač sestavovali, udělali při tom nějakou chybu ?

Zkontroujte ve správci zařízení, zda některý ovladač nevypisuje chybu (žlutá značka u názvu hardwaru).

Bohužel taky ne. Už vás nechci obtěžovat, určitě máte dost práce i s jinými dotazy. Je to zkrátka beznadějné, doufám, že mi něco doporučí v té prodejně. A když ne..... no to fakt nevím, asi začnu používat zase svůj starý notebook, který leží už půl roku ve skříni

Pokud je v záruce, reklamujte.