VIRY.CZ

Zdravím Vás ..
Tak po používání ESED NOD full se mi dostal do PC nějaka havět

Po načteni IE mi vždy skoči jako první okno QVO6
Snažil jsme se vše smazat obnovit IE atd...
Ani avast profi nepomohl

nainstaloval jsem SUPERANTISPYWARE taky bez úspěchu

IOBIT malware fighter také nepomohl ...
Jen chci podotknout ze jsem měl asi 23 trojanů ty jsem již zničil ten ESET mi je ani nedokazal máznout ..
K instalaci SPYHunter me nikdo nedonuti...
Tady log:
a děkuju

mozna bych mazl ..
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://en.v9.com/?utm_source=b&utm_medi ... 1379508702
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
R0 HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://en.v9.com/?utm_source=b&utm_medi ... 1379508702

Nevim ...Radeji se zeptej

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 7:48:42, on 19. 9. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Killer\Downloads\hijackthis (1).exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://en.v9.com/?utm_source=b&utm_medi ... 1379508702
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://en.v9.com/?utm_source=b&utm_medi ... 1379508702
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office15\URLREDIR.DLL
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~1\Office15\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\PROGRAM FILES\SUPERANTISPYWARE\SASCORE64.EXE
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 8946 bytes
..................................................................................................................................................................................................................................................................................................................................................................................................................................
DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 10.0.9200.16660 BrowserJavaVersion: 10.25.2
Run by Killer at 8:39:45 on 2013-09-19
Microsoft Windows 8 Enterprise 6.2.9200.0.1250.420.1029.18.4095.2518 [GMT 2:00]
.
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: ESET NOD32 Antivirus 6.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: ESET NOD32 Antivirus 6.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
FW: avast! Antivirus *Enabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
.
============== Running Processes ===============
.
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\dwm.exe
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\Program Files\AVAST Software\Avast\afwServ.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskhostex.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Microsoft Mouse and Keyboard Center\ipoint.exe
C:\PROGRAM FILES\SUPERANTISPYWARE\SASCORE64.EXE
C:\Program Files\Microsoft Mouse and Keyboard Center\itype.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
C:\Windows\SysWOW64\NLSSRV32.EXE
C:\Windows\slsvc.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
C:\Windows\PersonalizeEnabler.exe
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\UI0Detect.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Windows\System\HsMgr64.exe
C:\Program Files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\dashost.exe
C:\Program Files (x86)\Nero\Update\NASvc.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\System32\Macromed\Flash\FlashUtil_ActiveX.exe
C:\Windows\System32\RuntimeBroker.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Windows\system32\wwahost.exe
C:\Program Files\WindowsApps\microsoft.windowsphotos_16.4.4204.712_x64__8wekyb3d8bbwe\LiveComm.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://en.v9.com/?utm_source=b&utm_medium=eBP&utm_campaign=eBP&utm_content=hp&from=eBP&uid=WDCXWD5000AAKB-00H8A0_WD-WCASZ005783957839&ts=1379508702
mDefault_Page_URL = hxxp://en.v9.com/?utm_source=b&utm_medium=eBP&utm_campaign=eBP&utm_content=hp&from=eBP&uid=WDCXWD5000AAKB-00H8A0_WD-WCASZ005783957839&ts=1379508702
BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files (x86)\Microsoft Office\Office15\URLREDIR.DLL
BHO: {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - <orphaned>
BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files (x86)\Microsoft Office\Office15\GROOVEEX.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
TB: Google Toolbar: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
TB: avast! Online Security: {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
uRun: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
uRun: [SUPERAntiSpyware] C:\PROGRAM FILES\SUPERANTISPYWARE\SUPERANTISPYWARE.EXE
mRun: [Printsrv] C:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
mRun: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
mRun: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: PromptOnSecureDesktop = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
IE: E&xport to Microsoft Excel - C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
IE: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
.
INFO: HKCU has more than 50 listed domains.
If you wish to scan all of them, select the 'Force scan all domains' option.
.
TCP: NameServer = 213.46.172.36 213.46.172.37
TCP: Interfaces\{5AD80CE0-2A36-48AC-B9C3-52CB97414AFD} : DHCPNameServer = 213.46.172.36 213.46.172.37
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
SSODL: WebCheck - <orphaned>
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\29.0.1547.66\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
x64-mStart Page = hxxp://en.v9.com/?utm_source=b&utm_medium=eBP&utm_campaign=eBP&utm_content=hp&from=eBP&uid=WDCXWD5000AAKB-00H8A0_WD-WCASZ005783957839&ts=1379508702
x64-BHO: IDM integration (IDMIEHlprObj Class): {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll
x64-BHO: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-BHO: Lync Browser Helper: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-BHO: Google Toolbar Helper: {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-BHO: Office Document Cache Handler: {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office15\URLREDIR.DLL
x64-BHO: Microsoft SkyDrive Pro Browser Helper: {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\Program Files\Microsoft Office\Office15\GROOVEEX.DLL
x64-TB: Google Toolbar: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll
x64-TB: avast! Online Security: {318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll
x64-Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
x64-Run: [Cmaudio8788] C:\Windows\syswow64\RunDll32.exe C:\Windows\Syswow64\cmicnfgp.dll,CMICtrlWnd
x64-Run: [Cmaudio8788GX] C:\Windows\syswow64\HsMgr.exe Envoke
x64-Run: [Cmaudio8788GX64] C:\Windows\system\HsMgr64.exe Envoke
x64-Run: [Printsrv] C:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
x64-mPolicies-Explorer: NoDrives = dword:0
x64-mPolicies-System: PromptOnSecureDesktop = dword:0
x64-mPolicies-System: ConsentPromptBehaviorAdmin = dword:0
x64-IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - C:\Program Files\Microsoft Office\Office15\ONBttnIE.dll
x64-IE: {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files\Microsoft Office\Office15\OCHelper.dll
x64-IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - C:\Program Files\Microsoft Office\Office15\ONBttnIELinkedNotes.dll
x64-Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
x64-Handler: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files\Microsoft Office\Office15\MSOSB.DLL
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 aswRvrt;aswRvrt;C:\Windows\System32\Drivers\aswRvrt.sys [2013-9-18 65336]
R0 aswVmm;aswVmm;C:\Windows\System32\Drivers\aswVmm.sys [2013-9-18 204880]
R1 aswFW;avast! TDI Firewall driver;C:\Windows\System32\Drivers\aswFW.sys [2013-9-18 131232]
R1 aswKbd;aswKbd;C:\Windows\System32\Drivers\aswKbd.sys [2013-9-18 22600]
R1 aswNdisFlt;Avast! Firewall Driver;C:\Windows\System32\Drivers\aswNdisFlt.sys [2013-9-18 276992]
R1 aswSnx;aswSnx;C:\Windows\System32\Drivers\aswSnx.sys [2013-9-18 1030952]
R1 aswSP;aswSP;C:\Windows\System32\Drivers\aswSP.sys [2013-9-18 378944]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\Drivers\dtsoftbus01.sys [2013-8-24 283064]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver;C:\Windows\SysWOW64\drivers\HWiNFO64A.SYS [2013-9-10 30592]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv64.sys [2011-7-22 14928]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\saskutil64.sys [2011-7-12 12368]
R2 !SASCORE;SAS Core Service;C:\Program Files\SUPERAntiSpyware\SASCore64.exe [2013-5-23 143120]
R2 AdvancedSystemCareService6;Advanced SystemCare Service 6;C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-8-30 574272]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2013-4-16 241152]
R2 aswFsBlk;aswFsBlk;C:\Windows\System32\Drivers\aswFsBlk.sys [2013-9-18 33400]
R2 aswMonFlt;aswMonFlt;C:\Windows\System32\Drivers\aswMonFlt.sys [2013-9-18 80816]
R2 avast! Antivirus;avast! Antivirus;C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-9-18 46808]
R2 avast! Firewall;avast! Firewall;C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-9-18 137960]
R2 ekrn;ESET Service;C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2013-3-21 1341664]
R2 IDMWFP;IDMWFP;C:\Windows\System32\Drivers\idmwfp.sys [2013-6-10 168288]
R2 IMFservice;IMF Service;C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2013-9-18 335168]
R2 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2012-7-13 769432]
R2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [2013-1-14 230408]
R2 nlsX86cc;Nalpeiron Licensing Service;C:\Windows\SysWOW64\NLSSRV32.EXE [2013-1-14 70152]
R2 StartMenuService;StartMenu8 Service;C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe [2013-8-30 75584]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet - adaptér;C:\Windows\System32\Drivers\l160x64.sys [2012-6-2 65024]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\Drivers\AtihdW86.sys [2013-2-14 94208]
R3 cmudaxp;ASUS Xonar DG Audio Interface;C:\Windows\System32\Drivers\cmudaxp.sys [2013-8-24 2734080]
R3 RegFilter;RegFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\RegFilter.sys [2013-9-18 34336]
S2 eins9694;Eset install launcher (9694);C:\Windows\System32\rundll32.exe C:\Windows\eins9694.dll,RDServiceStart eins9694 "C:\Users\Killer\AppData\Local\Temp\inx9FF6.tmp" --> C:\Windows\System32\rundll32.exe C:\Windows\eins9694.dll,RDServiceStart eins9694 C:\Users\Killer\AppData\Local\Temp\inx9FF6.tmp [?]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-7-25 162672]
S3 amdkmafd;AMD Audio Bus Lower Filter;C:\Windows\System32\Drivers\amdkmafd.sys [2013-4-16 21600]
S3 ose64;Office 64 Source Engine;C:\Program Files\Common Files\microsoft shared\Source Engine\OSE.EXE [2012-12-8 178760]
S3 UrlFilter;UrlFilter;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\UrlFilter.sys [2013-9-18 23016]
S3 vmbusr;Poskytovatel sběrnice virtuálního počítače;C:\Windows\System32\Drivers\vmbusr.sys [2012-7-26 117248]
S3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;C:\Windows\System32\svchost.exe -k ICService [2012-7-26 30208]
S4 FileMonitor;FileMonitor;C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2013-9-18 23048]
.
=============== Created Last 30 ================
.
2013-09-18 17:36:19 -------- d-----w- C:\Users\Killer\AppData\Roaming\SUPERAntiSpyware.com
2013-09-18 17:35:35 -------- d-----w- C:\ProgramData\SUPERAntiSpyware.com
2013-09-18 17:35:35 -------- d-----w- C:\Program Files\SUPERAntiSpyware
2013-09-18 17:33:10 51496 ----a-w- C:\Windows\System32\drivers\stflt.sys
2013-09-18 17:33:08 -------- d-----w- C:\Program Files (x86)\Spyware Terminator
2013-09-18 17:20:00 -------- d-sh--w- C:\$RECYCLE.BIN
2013-09-18 17:17:44 -------- d-----w- C:\Users\Killer\AppData\Local\temp
2013-09-18 17:12:49 98816 ----a-w- C:\Windows\sed.exe
2013-09-18 17:12:49 256000 ----a-w- C:\Windows\PEV.exe
2013-09-18 17:12:49 208896 ----a-w- C:\Windows\MBR.exe
2013-09-18 16:57:09 -------- d-----w- C:\SDFix
2013-09-18 14:53:00 66613248 ----a-w- C:\Windows\eins9694.msi
2013-09-18 14:26:25 131232 ----a-w- C:\Windows\System32\drivers\aswFW.sys
2013-09-18 14:26:24 72016 ----a-w- C:\Windows\System32\drivers\aswRdr2.sys
2013-09-18 14:26:19 65336 ----a-w- C:\Windows\System32\drivers\aswRvrt.sys
2013-09-18 14:26:19 22600 ----a-w- C:\Windows\System32\drivers\aswKbd.sys
2013-09-18 14:26:19 204880 ----a-w- C:\Windows\System32\drivers\aswVmm.sys
2013-09-18 14:26:19 1030952 ----a-w- C:\Windows\System32\drivers\aswSnx.sys
2013-09-18 14:26:18 80816 ----a-w- C:\Windows\System32\drivers\aswMonFlt.sys
2013-09-18 14:26:09 276992 ----a-w- C:\Windows\System32\drivers\aswNdisFlt.sys
2013-09-18 14:25:55 41664 ----a-w- C:\Windows\avastSS.scr
2013-09-18 14:25:41 -------- d-----w- C:\Program Files\AVAST Software
2013-09-18 14:25:28 -------- d-----w- C:\ProgramData\AVAST Software
2013-09-18 12:24:01 110080 ----a-r- C:\Users\Killer\AppData\Roaming\Microsoft\Installer\{86CA3695-A412-4BAE-92B6-49A60C2AC663}\Icon1226A4C5.exe
2013-09-18 12:23:05 -------- d-----w- C:\Windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-09-18 12:22:59 -------- d-----w- C:\Program Files (x86)\Common Files\Wise Installation Wizard
2013-09-18 12:09:43 -------- d-----w- C:\Program Files (x86)\VideoLAN
2013-09-18 11:45:25 -------- d-----w- C:\Program Files (x86)\Total Video Converter
2013-09-18 10:40:51 -------- d-----w- C:\Users\Killer\AppData\Local\Nero_AG
2013-09-18 10:13:15 -------- d-----w- C:\Users\Killer\AppData\Local\Sony
2013-09-18 10:13:15 -------- d-----w- C:\Program Files\Sony
2013-09-18 10:13:15 -------- d-----w- C:\Program Files (x86)\Sony
2013-09-18 10:08:56 -------- d-----w- C:\Windows\SysWow64\XPSViewer
2013-09-18 10:07:11 35400 ----a-w- C:\Windows\SysWow64\TsWpfWrp.exe
2013-09-18 10:07:10 778856 ----a-w- C:\Windows\SysWow64\PresentationNative_v0300.dll
2013-09-18 10:07:10 102528 ----a-w- C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-09-18 10:07:02 35400 ----a-w- C:\Windows\System32\TsWpfWrp.exe
2013-09-18 10:07:02 1166440 ----a-w- C:\Windows\System32\PresentationNative_v0300.dll
2013-09-18 10:07:01 124040 ----a-w- C:\Windows\System32\PresentationCFFRasterizerNative_v0300.dll
2013-09-18 10:04:18 -------- d-----w- C:\ProgramData\eSafe
2013-09-18 10:03:44 -------- d-----w- C:\Program Files (x86)\BrowseFox
2013-09-18 09:49:29 -------- d-----w- C:\Users\Killer\AppData\Local\Nero
2013-09-17 10:24:53 -------- d-----w- C:\Users\Killer\AppData\Roaming\IDM
2013-09-17 10:24:49 -------- d-----w- C:\Program Files (x86)\Internet Download Manager
2013-09-17 09:15:59 -------- d-----w- C:\Program Files\Free FLV Player
2013-09-16 17:44:59 -------- d-----w- C:\Program Files\Microsoft Mouse and Keyboard Center
2013-09-13 15:06:43 -------- d-----w- C:\Users\Killer\AppData\Local\Arma 3 Alpha
2013-09-10 18:35:49 -------- d-----w- C:\Program Files (x86)\Common Files\ATI Technologies
2013-09-10 18:35:49 -------- d-----w- C:\Program Files (x86)\AMD AVT
2013-09-10 18:34:31 -------- d-----w- C:\Program Files\ATI Technologies
2013-09-10 10:42:09 -------- d-----w- C:\Users\Killer\AppData\Roaming\The Creative Assembly
2013-09-10 10:19:27 -------- d-----w- C:\Program Files (x86)\Total War ROME II
2013-09-10 10:12:15 30592 ----a-w- C:\Windows\SysWow64\drivers\HWiNFO64A.SYS
2013-09-10 10:12:06 359936 ----a-w- C:\Windows\SysWow64\Difx768c.rra
2013-09-10 10:12:05 1976920 ----a-w- C:\Windows\SysWow64\xRaidSetup.exe
2013-09-10 10:12:05 162392 ----a-w- C:\Windows\SysWow64\xRaidAPI.dll
2013-09-10 10:12:05 -------- d-----w- C:\RaidTool
2013-09-10 10:11:55 -------- d-----w- C:\Windows\RaidTool
2013-09-10 10:11:51 69714 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2013-09-10 10:11:51 63488 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ISBEW64.exe
2013-09-10 10:11:51 32768 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\Objectps.dll
2013-09-10 10:11:51 274432 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2013-09-10 10:11:51 184320 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2013-09-10 10:11:50 753664 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2013-09-10 10:11:50 5632 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2013-09-10 10:11:49 331908 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2013-09-10 10:11:49 200836 ----a-w- C:\Program Files (x86)\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2013-09-10 10:07:47 -------- d-----w- C:\ProgramData\DriverGenius
2013-09-10 08:48:37 -------- d-----w- C:\Program Files (x86)\Driver-Soft
2013-09-10 06:56:16 -------- d-----w- C:\Users\Killer\AppData\Local\BigHugeEngine
2013-09-10 05:53:43 -------- d-----w- C:\Users\Killer\AppData\Local\PunkBuster
2013-09-10 05:51:35 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation
2013-09-10 05:51:34 466456 ----a-w- C:\Windows\System32\wrap_oal.dll
2013-09-10 05:51:34 444952 ----a-w- C:\Windows\SysWow64\wrap_oal.dll
2013-09-10 05:51:34 122904 ----a-w- C:\Windows\System32\OpenAL32.dll
2013-09-10 05:51:34 109080 ----a-w- C:\Windows\SysWow64\OpenAL32.dll
2013-09-06 18:47:45 -------- d-----w- C:\Users\Killer\AppData\Local\Ubisoft Game Launcher
2013-09-06 18:24:49 -------- d-----w- C:\Program Files (x86)\Rayman Legends
2013-09-06 18:24:04 -------- d-----w- C:\Program Files (x86)\Common Files\Steam
2013-09-06 18:24:03 -------- d-----w- C:\Program Files (x86)\steam
2013-08-31 18:18:09 -------- d-----w- C:\Program Files (x86)\Nero
2013-08-31 18:18:04 -------- d-----w- C:\ProgramData\Nero
2013-08-30 10:17:17 -------- d-----w- C:\Program Files (x86)\FreeSmartSoftTB
2013-08-28 17:55:57 -------- d-----w- C:\ProgramData\Orbit
2013-08-28 14:10:23 -------- d-----w- C:\Program Files (x86)\Cheat Engine 6.3
2013-08-28 09:03:28 -------- d-----r- C:\Program Files (x86)\Skype
2013-08-28 07:06:58 -------- d-----w- C:\ProgramData\APN
2013-08-28 07:03:58 -------- d-----w- C:\Program Files (x86)\The KMPlayer
2013-08-28 06:25:58 -------- d-----w- C:\Users\Killer\AppData\Local\ESET
2013-08-28 06:05:36 -------- d-----w- C:\ProgramData\IDM
2013-08-28 05:58:18 -------- d-----w- C:\Program Files (x86)\Company
2013-08-28 05:35:50 -------- d-----w- C:\Users\Killer\AppData\Local\TV_Online
2013-08-28 05:21:37 -------- d-sh--w- C:\Windows\SysWow64\AI_RecycleBin
2013-08-28 05:18:22 -------- d-----w- C:\Program Files (x86)\HDD Regenerator
2013-08-28 05:18:12 -------- d-----w- C:\Users\Killer\AppData\Local\Downloaded Installations
2013-08-28 05:14:08 -------- d-----w- C:\Program Files (x86)\Microsoft Visual Studio 8
2013-08-27 19:49:38 -------- d-----w- C:\Users\Killer\AppData\Local\Diagnostics
2013-08-24 19:20:29 -------- d-----w- C:\Users\Killer\kbpki
2013-08-24 19:19:19 867240 ----a-w- C:\Windows\SysWow64\npDeployJava1.dll
2013-08-24 19:19:19 789416 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-08-24 19:19:17 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-08-24 16:37:30 707507 ----a-w- C:\Windows\unins000.exe
2013-08-24 16:32:53 -------- d-----w- C:\Users\Killer\AppData\Local\ElevatedDiagnostics
2013-08-24 15:23:09 -------- d-----w- C:\ProgramData\Steam
2013-08-24 15:16:37 -------- d-----w- C:\Users\Killer\AppData\Local\SKIDROW
2013-08-24 15:10:31 -------- d--h--w- C:\Windows\msdownld.tmp
2013-08-24 15:10:31 -------- d-----w- C:\Windows\SysWow64\directx
2013-08-24 15:02:25 -------- d-----w- C:\Hry
2013-08-24 09:57:55 -------- d-----w- C:\Program Files (x86)\Company of Heroes 2
2013-08-24 09:57:14 283064 ----a-w- C:\Windows\System32\drivers\dtsoftbus01.sys
2013-08-24 09:57:11 -------- d-----w- C:\Users\Killer\AppData\Roaming\DAEMON Tools Lite
2013-08-24 09:57:09 -------- d-----w- C:\Program Files (x86)\DAEMON Tools Lite
2013-08-24 09:56:17 -------- d-----w- C:\ProgramData\DAEMON Tools Lite
2013-08-24 08:31:59 68104 ----a-w- C:\Windows\System32\XAPOFX1_0.dll
2013-08-24 08:28:07 29704 ----a-w- C:\Windows\System32\nitrolocalmon2.dll
2013-08-24 08:28:07 17928 ----a-w- C:\Windows\System32\nitrolocalui2.dll
2013-08-24 08:27:39 -------- d-----w- C:\Program Files\Common Files\Nitro
2013-08-24 08:27:37 -------- d-----w- C:\ProgramData\Nitro
2013-08-24 08:27:37 -------- d-----w- C:\Program Files (x86)\Nitro
2013-08-24 08:27:37 -------- d-----w- C:\Program Files (x86)\Common Files\Nitro
2013-08-24 08:26:09 -------- d-----w- C:\Users\Killer\AppData\Roaming\Downloaded Installations
2013-08-24 07:46:08 -------- d-----w- C:\Users\Killer\AppData\Roaming\DMCache
2013-08-24 07:44:25 53248 ----a-w- C:\Windows\SysWow64\CSVer.dll
2013-08-24 07:44:16 -------- d-----w- C:\Intel
2013-08-24 06:44:20 1357312 ----a-w- C:\Windows\System32\Windows.UI.Immersive.dll
2013-08-24 06:44:15 10094592 ----a-w- C:\Windows\System32\twinui.dll
2013-08-24 06:44:11 15872 ----a-w- C:\Windows\System32\slwga.dll
2013-08-24 06:44:07 133287 ----a-w- C:\Windows\System32\slmgr.vbs
2013-08-24 06:43:58 415232 ----a-w- C:\Windows\System32\GenuineCenter.dll
2013-08-24 06:43:53 544256 ----a-w- C:\Windows\System32\ActionCenterCPL.dll
2013-08-24 06:25:07 -------- d-----w- C:\Users\Killer\AppData\Roaming\ASUS
2013-08-24 06:25:05 -------- d-----w- C:\Program Files (x86)\OpenAL
2013-08-24 06:15:48 2094592 ----a-w- C:\Windows\System32\mmc.exe
2013-08-24 06:14:58 911032 ----a-w- C:\Program Files\Windows Defender\MpClient.dll
2013-08-24 06:13:02 17888 ----a-w- C:\Windows\System32\msvcr100_clr0400.dll
2013-08-24 06:12:57 17888 ----a-w- C:\Windows\SysWow64\msvcr100_clr0400.dll
2013-08-24 06:12:08 1161728 ----a-w- C:\Windows\System32\sppobjs.dll
2013-08-24 06:12:04 1933312 ----a-w- C:\Windows\System32\wbem\cimwin32.dll
2013-08-24 06:12:03 1627648 ----a-w- C:\Windows\System32\WindowsCodecs.dll
2013-08-24 06:12:01 5978624 ----a-w- C:\Windows\System32\mstscax.dll
2013-08-24 06:12:01 1338880 ----a-w- C:\Windows\SysWow64\WindowsCodecs.dll
2013-08-24 06:12:00 850944 ----a-w- C:\Windows\SysWow64\mfasfsrcsnk.dll
2013-08-24 06:12:00 4577792 ----a-w- C:\Program Files\Windows NT\Accessories\wordpad.exe
2013-08-24 06:12:00 327912 ----a-w- C:\Windows\System32\drivers\Classpnp.sys
2013-08-24 06:12:00 1101824 ----a-w- C:\Windows\System32\wmpmde.dll
2013-08-24 06:12:00 1048576 ----a-w- C:\Windows\System32\mfasfsrcsnk.dll
2013-08-24 05:57:14 -------- d-----r- C:\zaloha
2013-08-24 05:56:21 312832 ----a-w- C:\Windows\System32\rdpshell.exe
2013-08-23 22:10:14 -------- d-----w- C:\Windows\Panther
2013-08-23 22:03:00 26432 ----a-w- C:\Windows\System32\RegistryDefragBootTime.exe
2013-08-23 21:57:46 -------- d-----w- C:\ProgramData\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-08-23 21:57:44 -------- d-----w- C:\Users\Killer\AppData\Roaming\IObit
2013-08-23 21:57:44 -------- d-----w- C:\ProgramData\IObit
2013-08-23 21:57:35 -------- d-----w- C:\Program Files (x86)\IObit
2013-08-23 21:52:18 -------- d-----w- C:\Program Files (x86)\Advanced SystemCare Pro 6.2.0.254 Final Datecode 22.04.2013_softarchive.net
2013-08-23 21:50:59 -------- d-----w- C:\Program Files (x86)\Microsoft SQL Server
2013-08-23 21:49:37 -------- d-----w- C:\Windows\PCHEALTH
2013-08-23 21:49:37 -------- d-----w- C:\Program Files\Microsoft SQL Server
2013-08-23 21:47:03 -------- d-----w- C:\Program Files\Microsoft Analysis Services
2013-08-23 21:47:02 -------- d-----w- C:\Program Files (x86)\Microsoft Analysis Services
2013-08-23 21:46:57 -------- d-----w- C:\Users\Killer\AppData\Local\Microsoft Help
2013-08-23 21:43:31 -------- d-----w- C:\Program Files\ESET
2013-08-23 21:43:11 -------- d-----w- C:\Program Files (x86)\Origin Games
2013-08-23 21:42:25 -------- d-----w- C:\Users\Killer\Desktops
2013-08-23 21:42:05 -------- d-----w- C:\Users\Killer\AppData\Roaming\Origin
2013-08-23 21:42:03 -------- d-----w- C:\Users\Killer\AppData\Local\Origin
2013-08-23 21:41:28 694272 ----a-w- C:\Windows\SysWow64\rpcrt4.dll
2013-08-23 21:41:28 4036096 ----a-w- C:\Windows\System32\win32k.sys
2013-08-23 21:41:28 1314816 ----a-w- C:\Windows\System32\rpcrt4.dll
2013-08-23 21:41:12 1255936 ----a-w- C:\Windows\System32\certutil.exe
2013-08-23 21:41:11 411880 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2013-08-23 21:41:11 2233168 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-08-23 21:41:11 141312 ----a-w- C:\Windows\System32\cryptnet.dll
2013-08-23 21:41:11 109056 ----a-w- C:\Windows\SysWow64\cryptnet.dll
2013-08-23 21:41:11 1013248 ----a-w- C:\Windows\SysWow64\certutil.exe
2013-08-23 21:39:49 830464 ----a-w- C:\Windows\System32\wbem\WmiPrvSD.dll
2013-08-23 21:38:58 8857088 ----a-w- C:\Windows\SysWow64\twinui.dll
2013-08-23 21:36:48 733184 ----a-w- C:\Windows\System32\win32spl.dll
2013-08-23 21:35:59 523264 ----a-w- C:\Windows\System32\XpsGdiConverter.dll
2013-08-23 21:34:38 6987528 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-23 21:34:36 1558912 ----a-w- C:\Program Files\Windows Defender\DbgHelp.dll
2013-08-23 21:34:36 149264 ----a-w- C:\Program Files\Windows Defender\SymSrv.dll
2013-08-23 21:34:29 2361344 ----a-w- C:\Windows\System32\msxml6.dll
2013-08-23 21:34:29 1836032 ----a-w- C:\Windows\System32\msxml3.dll
2013-08-23 21:34:29 1802240 ----a-w- C:\Windows\SysWow64\msxml6.dll
2013-08-23 21:34:28 2048 ----a-w- C:\Windows\SysWow64\msxml6r.dll
2013-08-23 21:34:28 2048 ----a-w- C:\Windows\SysWow64\msxml3r.dll
2013-08-23 21:34:28 2048 ----a-w- C:\Windows\System32\msxml6r.dll
2013-08-23 21:34:28 2048 ----a-w- C:\Windows\System32\msxml3r.dll
2013-08-23 21:34:28 1438720 ----a-w- C:\Windows\SysWow64\msxml3.dll
2013-08-23 21:30:42 87040 ----a-w- C:\Windows\PersonalizeEnabler.exe
2013-08-23 21:30:42 84992 ----a-w- C:\Windows\SLCHook.dll
2013-08-23 21:30:42 102912 ----a-w- C:\Windows\EasyHook64.dll
2013-08-23 21:30:42 10240 ----a-w- C:\Windows\slsvc.exe
2013-08-23 21:30:18 -------- d-----r- C:\Windows Activation Technologies
2013-08-23 21:23:27 -------- d-----w- C:\Users\Killer\AppData\Local\ATI
2013-08-23 21:23:25 -------- d-----w- C:\ProgramData\AMD
2013-08-23 21:23:07 -------- d-----w- C:\Program Files\Common Files\ATI Technologies
2013-08-23 21:22:35 17536 ----a-w- C:\ProgramData\Microsoft\windowssampling\Sqm\Manifest\Sqm3.bin
2013-08-23 21:20:51 -------- d-----w- C:\Program Files (x86)\ATI Technologies
2013-08-23 21:20:42 -------- d-----w- C:\Program Files\ATI
2013-08-23 21:20:24 -------- d-----w- C:\AMD
2013-08-23 21:19:58 -------- d-----w- C:\Program Files (x86)\Sapphire TRIXX
2013-08-23 21:18:16 -------- d-----w- C:\Users\Killer\AppData\Local\Google
2013-08-23 21:15:38 -------- d-----r- C:\Users\Killer\Searches
2013-08-23 21:15:38 -------- d-----r- C:\Users\Killer\Contacts
2013-08-23 21:15:10 -------- d-----w- C:\Users\Killer\AppData\Local\VirtualStore
2013-08-23 21:15:00 -------- d-----w- C:\Users\Killer\AppData\Local\Packages
2013-08-23 21:15:00 -------- d-----w- C:\ProgramData\PRICache
2013-08-23 21:13:29 -------- d-sh--we C:\ProgramData\Šablony
2013-08-23 21:13:29 -------- d-sh--we C:\ProgramData\Nabídka Start
2013-08-23 21:13:28 -------- d-sh--we C:\ProgramData\Plocha
2013-08-23 21:13:28 -------- d-sh--we C:\ProgramData\Dokumenty
2013-08-23 21:13:28 -------- d-sh--we C:\ProgramData\Data aplikací
2013-08-23 21:11:55 0 ----a-w- C:\Windows\ativpsrm.bin
.
==================== Find3M ====================
.
2013-07-26 05:13:37 2241024 ----a-w- C:\Windows\System32\wininet.dll
2013-07-26 05:13:28 915968 ----a-w- C:\Windows\System32\uxtheme.dll
2013-07-26 05:13:28 53760 ----a-w- C:\Windows\System32\UXInit.dll
2013-07-26 05:12:08 3958784 ----a-w- C:\Windows\System32\jscript9.dll
2013-07-26 05:12:04 136704 ----a-w- C:\Windows\System32\iesysprep.dll
2013-07-26 05:12:03 67072 ----a-w- C:\Windows\System32\iesetup.dll
2013-07-26 03:35:08 2706432 ----a-w- C:\Windows\System32\mshtml.tlb
2013-07-26 03:13:24 1767936 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-07-26 03:13:15 44032 ----a-w- C:\Windows\SysWow64\UXInit.dll
2013-07-26 03:12:04 2877440 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-07-26 03:12:00 61440 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-07-26 03:12:00 109056 ----a-w- C:\Windows\SysWow64\iesysprep.dll
2013-07-26 02:49:14 2706432 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-07-26 00:54:34 534528 ----a-w- C:\Windows\SysWow64\uxtheme.dll
2013-07-13 06:18:21 337408 ----a-w- C:\Windows\System32\wintrust.dll
2013-07-13 06:16:06 68096 ----a-w- C:\Windows\System32\cryptsvc.dll
2013-07-13 06:16:06 1889280 ----a-w- C:\Windows\System32\crypt32.dll
2013-07-13 06:15:53 98304 ----a-w- C:\Windows\System32\apprepsync.dll
2013-07-13 06:15:53 124416 ----a-w- C:\Windows\System32\apprepapi.dll
2013-07-13 04:24:58 261120 ----a-w- C:\Windows\SysWow64\wintrust.dll
2013-07-13 04:23:11 1568256 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-07-13 04:23:03 87040 ----a-w- C:\Windows\SysWow64\apprepapi.dll
2013-07-13 04:23:03 74240 ----a-w- C:\Windows\SysWow64\apprepsync.dll
2013-07-02 00:44:14 36288 ----a-w- C:\Windows\System32\drivers\WdBoot.sys
2013-07-01 22:08:49 247216 ----a-w- C:\Windows\System32\drivers\WdFilter.sys
.
============= FINISH: 8:40:21,68 ===============

Pise mi to další jako
TORNTV
qvo6.com hijacker
no

ja mu ukažu

Zdravím, první věc - nepřidávej si sám sobě odpovědi jinak upadneš v zapomění.

Tohle fixni v HJT :

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://en.v9.com/?utm_source=b&utm_medi ... 1379508702
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://en.v9.com/?utm_source=b&utm_medi ... 1379508702
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

HJT najdeš zde :

C:\Users\Killer\Downloads\hijackthis (1).exe

Fix znamená že spustíš HJT Obrázek

jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.

Dále není dobré mít v systému dva antiviry, u Tebe Avast a NOD tak že jeden musí pryč.

Když už budeš v tom odinstalování dej pryč i vše od IObitu.

Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

Za další ten systém je legální

Zdravim TE
Uz jsem si to nejak poresil tady davam novej log prosim o kontrolu nebude to stejne řekl bych.
Ja videl ze se mi nikdo neoziva tak jsem to zkusil sam ...
Co se týče antiviru ...
mel jsem Nod 32 nejak mi neochranil pc...
Odinstaloval jsme ho, ale asi ne uplne napravim.to je uz pak hracka ...
Ted mam avast.
Ten IOBit mam jen kvůli start menu na Windows 8 je nejlepší dle mého

Nesnasim tu listicku napravo ...

ten systém... vim ze je divne ze mam Enterprise win 8

ale je to origos

je to i pracovni

Jinak Iobit je trochu hack ..ale ja ten jejich start proste chci

Nevšímej si ty moji IP adresy a nastaveni je to trochu fejk

Running processes:
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Sapphire TRIXX\TRIXX.exe
C:\Users\Killer\AppData\Roaming\BitTorrent\BitTorrent.exe
C:\Hry\Rayman Legends\Rayman Legends.exe
C:\Users\Killer\AppData\Local\Adobe\OOBE\PDApp\core\PDApp.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Killer\Downloads\hijackthis (1).exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - (no file)
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O2 - BHO: (no name) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - (no file)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [BrowserChoice] "C:\Windows\BrowserChoice\browserchoice.exe" /run
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 8547 bytes

Je tam pořád aktivní jak Avast tak NOD a to fakt není dobré.

Tohle ještě fixni v HJT :

O2 - BHO: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - (no file)
O2 - BHO: (no name) - {BA0C978D-D909-49B6-AFE2-8BDE245DC7E6} - (no file)
O2 - BHO: (no name) - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - (no file)
O3 - Toolbar: (no name) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"

Jak na to jsem už psal.

Pak bych rád viděl ten Adw Cleaner.

Ten nod mi nejde odinstalovat ..
Zkusim ho nainstalovat znovu a odinstalovat tady log z AD mam to pak máznout?
# AdwCleaner v3.004 - Report created 21/09/2013 at 17:37:33
# Updated 15/09/2013 by Xplode
# Operating System : Windows 8 Enterprise (64 bits)
# Username : Killer - KILLCZ
# Running from : C:\Users\Killer\Downloads\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Users\Killer\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js
Folder Found C:\Program Files (x86)\driver-soft
Folder Found C:\ProgramData\apn

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\AppDataLow\Software\Crossrider
Key Found : HKCU\Software\OCS
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\OCS
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

Setting Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://en.v9.com/?utm_source=b&utm_medium=eBP&utm_campaign=eBP&utm_content=hp&from=eBP&uid=WDCXWD5000AAKB-00H8A0_WD-WCASZ005783957839&ts=1379508702

-\\ Mozilla Firefox v

[ File : C:\Users\Killer\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]

-\\ Google Chrome v29.0.1547.76

[ File : C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [1787 octets] - [21/09/2013 16:15:04]
AdwCleaner[R1].txt - [1687 octets] - [21/09/2013 17:37:33]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1747 octets] ##########

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:44:40, on 21. 9. 2013
Platform: Unknown Windows (WinNT 6.02.1008)
MSIE: Internet Explorer v10.0 (10.00.9200.16660)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\IObit\Start Menu 8\StartMenu8.exe
C:\Windows\SysWOW64\HsMgr.exe
C:\Program Files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\SysWOW64\ctfmon.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Users\Killer\Downloads\hijackthis (1).exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Lync Click to Call BHO - {31D09BA0-12F5-4CCE-BE8A-2923E76605DA} - C:\Program Files (x86)\Microsoft Office\Office15\OCHelper.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Printsrv] c:\Windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [AdobeCEPServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" -launchedbylogin
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office15\EXCEL.EXE/3000
O8 - Extra context menu item: Se&nd to OneNote - res://C:\PROGRA~1\MICROS~1\Office15\ONBttnIE.dll/105
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\Skype4COM.dll
O18 - Filter hijack: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
O23 - Service: Advanced SystemCare Service 6 (AdvancedSystemCareService6) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 6\ASCService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: NitroPDFDriverCreatorReadSpool8 (NitroDriverReadSpool8) - Nitro PDF Software - C:\Program Files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe
O23 - Service: Nalpeiron Licensing Service (nlsX86cc) - Nalpeiron Ltd. - C:\Windows\SysWOW64\NLSSRV32.EXE
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: StartMenu8 Service (StartMenuService) - IObit - C:\Program Files (x86)\IObit\Start Menu 8\StartMenuServices.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Defender\MpAsDesc.dll,-310 (WinDefend) - Unknown owner - C:\Program Files (x86)\Windows Defender\MsMpEng.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

--
End of file - 7745 bytes

Znovu spusť AdwCleaner ale tentokrát klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zase zkopíruj Report.

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

Combofix znám alespoň mi promazal toho noda

# AdwCleaner v3.004 - Report created 22/09/2013 at 18:35:32
# Updated 15/09/2013 by Xplode
# Operating System : Windows 8 Enterprise (64 bits)
# Username : Killer - KILLCZ
# Running from : C:\Users\Killer\Desktop\adwcleaner (1).exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\Program Files (x86)\driver-soft
File Deleted : C:\Users\Killer\AppData\Local\Temp\Uninstall.exe
File Deleted : C:\Users\Killer\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\user.js

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\bicnnkjibmphdeigoodpjlcklcnaobdj
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{33BB0A4E-99AF-4226-BDF6-49120163DE86}
Key Deleted : HKCU\Software\OCS
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\Software\Crossrider
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}

***** [ Browsers ] *****

-\\ Internet Explorer v10.0.9200.16660

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v

[ File : C:\Users\Killer\AppData\Roaming\Mozilla\Firefox\Profiles\extensions\prefs.js ]

-\\ Google Chrome v29.0.1547.76

[ File : C:\Users\Killer\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [1787 octets] - [21/09/2013 16:15:04]
AdwCleaner[R1].txt - [1843 octets] - [21/09/2013 17:37:54]
AdwCleaner[R2].txt - [1968 octets] - [22/09/2013 18:35:28]
AdwCleaner[S0].txt - [1679 octets] - [22/09/2013 18:35:32]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [1739 octets] ##########

ComboFix 13-09-22.01 - Killer . 09. 2013 18:41:10.2.4 - x64
Microsoft Windows 8 Enterprise 6.2.9200.0.1250.420.1029.18.4095.3086 [GMT 2:00]
Spuštěný z: c:\users\Killer\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: ESET NOD32 Antivirus 6.0 *Disabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
FW: avast! Antivirus *Enabled* {131692B0-0864-D491-4E21-3A3A1D8BBB47}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: ESET Smart Security 6.0 *Disabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: IObit Malware Fighter *Disabled/Outdated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\ESET\MiNODLogin
c:\program files (x86)\ESET\MiNODLogin\core.jar
c:\program files (x86)\ESET\MiNODLogin\launcher.exe
c:\program files (x86)\ESET\MiNODLogin\native-lib.dll
c:\program files (x86)\ESET\MiNODLogin\uninst.exe
c:\users\Killer\AppData\Local\Google\Chrome\User Data\Default\preferences
c:\windows\iun6002.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-08-22 do 2013-09-22 )))))))))))))))))))))))))))))))
.
.
2013-09-22 16:46 . 2013-09-22 16:46 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-09-21 16:16 . 2013-09-22 16:45 -------- d-----w- c:\program files (x86)\ESET
2013-09-21 15:27 . 2013-09-21 15:31 -------- d-----w- c:\program files (x86)\Rayman Origins CZ
2013-09-21 14:14 . 2013-09-22 16:35 -------- d-----w- C:\AdwCleaner
2013-09-20 19:27 . 2013-09-20 19:27 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2013-09-20 19:23 . 2013-09-20 19:27 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2013-09-20 09:33 . 2013-09-20 17:33 -------- d-----w- C:\Local Publish
2013-09-20 08:40 . 2013-09-20 08:40 -------- d-----w- C:\images
2013-09-20 08:12 . 2013-09-05 20:09 78296 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-09-20 08:12 . 2013-09-05 20:09 694232 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-09-20 08:09 . 2013-09-20 08:12 -------- d-----r- c:\windows\BrowserChoice
2013-09-20 07:52 . 2012-11-26 02:15 16114176 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-09-20 07:52 . 2012-11-26 02:14 15541248 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2013-09-20 07:39 . 2013-09-20 07:39 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-09-20 07:39 . 2013-09-20 07:39 -------- d-----w- c:\programdata\Oracle
2013-09-20 07:39 . 2013-09-20 07:39 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-09-20 05:49 . 2013-09-20 05:52 -------- d-----w- c:\program files (x86)\WYSIWYG Web Builder 9
2013-09-20 05:34 . 2013-09-20 05:34 -------- d-----w- c:\program files (x86)\Common Files\Altova
2013-09-20 05:34 . 2013-09-20 05:34 -------- d-----w- c:\program files (x86)\Altova
2013-09-20 05:33 . 2013-09-20 05:34 -------- d-----w- c:\programdata\Altova
2013-09-20 05:33 . 2013-09-20 05:33 -------- d-----w- c:\windows\Downloaded Installations
2013-09-19 06:47 . 2012-07-26 03:18 359936 ----a-w- c:\windows\SysWow64\Difxfb7e.rra
2013-09-18 17:33 . 2013-09-18 17:33 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2013-09-18 17:33 . 2013-09-18 18:57 -------- d-----w- c:\program files (x86)\Spyware Terminator
2013-09-18 16:57 . 2008-11-06 00:03 -------- d-----w- C:\SDFix
2013-09-18 14:53 . 2013-09-18 14:50 66613248 ----a-w- c:\windows\eins9694.msi
2013-09-18 14:26 . 2013-08-30 07:48 378944 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-09-18 14:26 . 2013-08-30 07:48 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-09-18 14:26 . 2013-08-30 07:48 131232 ----a-w- c:\windows\system32\drivers\aswFW.sys
2013-09-18 14:26 . 2013-08-30 07:48 72016 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-09-18 14:26 . 2013-08-30 07:48 64288 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-09-18 14:26 . 2013-08-30 07:48 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-09-18 14:26 . 2013-08-30 07:48 204880 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-09-18 14:26 . 2013-08-30 07:48 1030952 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-09-18 14:26 . 2013-08-30 07:48 22600 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-09-18 14:26 . 2013-08-30 07:48 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-09-18 14:26 . 2013-08-30 07:47 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-09-18 14:26 . 2013-08-30 07:48 276992 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2013-09-18 14:25 . 2013-04-30 08:51 40616 ----a-w- c:\windows\system32\drivers\tap0901.sys
2013-09-18 14:25 . 2013-08-30 07:47 41664 ----a-w- c:\windows\avastSS.scr
2013-09-18 14:25 . 2013-09-18 14:25 -------- d-----w- c:\program files\AVAST Software
2013-09-18 14:25 . 2013-09-18 14:25 -------- d-----w- c:\programdata\AVAST Software
2013-09-18 12:23 . 2013-09-19 11:12 -------- d-----w- c:\windows\86CA3695A4124BAE92B649A60C2AC663.TMP
2013-09-18 12:22 . 2013-09-18 12:23 -------- d-----w- c:\program files (x86)\Common Files\Wise Installation Wizard
2013-09-18 12:09 . 2013-09-18 12:09 -------- d-----w- c:\program files (x86)\VideoLAN
2013-09-18 11:45 . 2013-09-18 11:46 -------- d-----w- c:\program files (x86)\Total Video Converter
2013-09-18 10:13 . 2013-09-18 10:13 -------- d-----w- c:\programdata\Sony
2013-09-18 10:13 . 2013-09-18 10:13 -------- d-----w- c:\program files\Sony
2013-09-18 10:13 . 2013-09-18 10:13 -------- d-----w- c:\program files (x86)\Sony
2013-09-18 10:10 . 2013-09-18 10:10 -------- d-----w- c:\program files (x86)\Reference Assemblies
2013-09-18 10:10 . 2013-09-18 10:10 -------- d-----w- c:\program files (x86)\MSBuild
2013-09-18 10:08 . 2013-09-18 10:08 -------- d-----w- c:\windows\SysWow64\XPSViewer
2013-09-18 10:08 . 2013-09-18 10:08 -------- d-----w- c:\program files\Reference Assemblies
2013-09-18 10:08 . 2013-09-18 10:08 -------- d-----w- c:\program files\MSBuild
2013-09-18 10:07 . 2012-07-06 02:02 35400 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2013-09-18 10:07 . 2012-07-06 02:02 778856 ----a-w- c:\windows\SysWow64\PresentationNative_v0300.dll
2013-09-18 10:07 . 2012-07-06 02:02 102528 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2013-09-18 10:07 . 2012-07-06 02:02 35400 ----a-w- c:\windows\system32\TsWpfWrp.exe
2013-09-18 10:07 . 2012-07-06 02:02 1166440 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2013-09-18 10:07 . 2012-07-06 02:02 124040 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2013-09-17 10:24 . 2013-09-17 10:25 -------- d-----w- c:\program files (x86)\Internet Download Manager
2013-09-17 09:15 . 2013-09-17 09:15 -------- d-----w- c:\program files\Free FLV Player
2013-09-16 17:44 . 2013-09-16 17:45 -------- d-----w- c:\program files\Microsoft Mouse and Keyboard Center
2013-09-10 18:35 . 2013-09-10 18:35 -------- d-----w- c:\programdata\ATI
2013-09-10 18:35 . 2013-09-10 18:35 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2013-09-10 18:35 . 2013-09-10 18:35 -------- d-----w- c:\program files (x86)\AMD AVT
2013-09-10 18:34 . 2013-09-10 18:35 -------- d-----w- c:\program files\ATI Technologies
2013-09-10 10:19 . 2013-09-17 09:31 -------- d-----w- c:\program files (x86)\Total War ROME II
2013-09-10 10:12 . 2013-09-10 10:12 30592 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2013-09-10 10:12 . 2012-07-26 03:18 359936 ----a-w- c:\windows\SysWow64\Difx768c.rra
2013-09-10 10:07 . 2013-09-10 10:12 -------- d-----w- c:\programdata\DriverGenius
2013-09-10 05:51 . 2013-09-10 05:51 -------- d-----w- c:\program files (x86)\NVIDIA Corporation
2013-09-10 05:51 . 2013-09-10 05:51 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2013-09-10 05:51 . 2013-09-10 05:51 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2013-09-10 05:51 . 2013-09-10 05:51 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-09-10 05:51 . 2013-09-10 05:51 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2013-09-10 05:51 . 2013-09-10 05:51 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-09-06 18:47 . 2013-09-06 18:47 -------- d-----w- c:\program files (x86)\Ubisoft
2013-09-06 18:24 . 2013-09-06 18:42 -------- d-----w- c:\program files (x86)\Rayman Legends
2013-09-06 18:24 . 2013-09-06 18:56 -------- d-----w- c:\program files (x86)\Common Files\Steam
2013-09-06 18:24 . 2013-09-17 09:36 -------- d-----w- c:\program files (x86)\steam
2013-08-31 18:18 . 2013-08-31 18:20 -------- d-----w- c:\program files (x86)\Common Files\Nero
2013-08-31 18:18 . 2013-08-31 18:22 -------- d-----w- c:\program files (x86)\Nero
2013-08-31 18:18 . 2013-09-18 09:49 -------- d-----w- c:\programdata\Nero
2013-08-30 19:16 . 2013-08-30 19:16 -------- d-----w- c:\windows\Sun
2013-08-30 10:17 . 2013-08-30 10:17 -------- d-----w- c:\program files (x86)\FreeSmartSoftTB
2013-08-28 17:55 . 2013-09-06 18:31 -------- d-----w- c:\programdata\Orbit
2013-08-28 14:10 . 2013-08-28 14:10 -------- d-----w- c:\program files (x86)\Cheat Engine 6.3
2013-08-28 09:03 . 2013-08-28 09:03 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-08-28 09:03 . 2013-08-28 09:03 -------- d-----r- c:\program files (x86)\Skype
2013-08-28 09:03 . 2013-08-28 09:03 -------- d-----w- c:\programdata\Skype
2013-08-28 07:03 . 2013-09-19 11:14 -------- d-----w- c:\program files (x86)\The KMPlayer
2013-08-28 06:05 . 2013-08-28 06:05 -------- d-----w- c:\programdata\IDM
2013-08-28 05:58 . 2013-08-28 05:58 -------- d-----w- c:\program files (x86)\Company
2013-08-28 05:21 . 2013-08-28 07:25 -------- d-sh--w- c:\windows\SysWow64\AI_RecycleBin
2013-08-28 05:18 . 2013-08-28 05:27 -------- d-----w- c:\program files (x86)\HDD Regenerator
2013-08-28 05:14 . 2013-08-28 05:14 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2013-08-24 19:19 . 2013-09-20 07:39 868264 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-08-24 19:19 . 2013-09-20 07:39 790440 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-08-24 19:19 . 2013-08-24 19:19 -------- d-----w- c:\program files (x86)\Java
2013-08-24 16:37 . 2013-08-24 16:37 707507 ----a-w- c:\windows\unins000.exe
2013-08-24 15:23 . 2013-08-24 15:23 -------- d-----w- c:\programdata\Steam
2013-08-24 15:10 . 2013-08-30 15:06 -------- d--h--w- c:\windows\msdownld.tmp
2013-08-24 15:02 . 2013-09-06 18:42 -------- d-----w- C:\Hry
2013-08-24 09:57 . 2013-08-24 10:23 -------- d-----w- c:\program files (x86)\Company of Heroes 2
2013-08-24 09:57 . 2013-08-24 09:57 283064 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-08-24 09:57 . 2013-08-24 09:57 -------- d-----w- c:\program files (x86)\DAEMON Tools Lite
2013-08-24 09:56 . 2013-08-24 09:57 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-08-24 08:31 . 2008-07-10 09:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2013-08-24 08:28 . 2013-01-14 08:40 29704 ----a-w- c:\windows\system32\nitrolocalmon2.dll
2013-08-24 08:28 . 2013-01-14 08:40 17928 ----a-w- c:\windows\system32\nitrolocalui2.dll
2013-08-24 08:27 . 2013-08-24 08:27 -------- d-----w- c:\program files\Common Files\Nitro
2013-08-24 08:27 . 2013-08-24 08:27 -------- d-----w- c:\programdata\Nitro
2013-08-24 08:27 . 2013-08-24 08:27 -------- d-----w- c:\program files (x86)\Nitro
2013-08-24 08:27 . 2013-08-24 08:27 -------- d-----w- c:\program files (x86)\Common Files\Nitro
2013-08-24 07:44 . 2013-08-24 07:44 -------- d-----w- c:\program files (x86)\Intel
2013-08-24 07:44 . 2009-08-18 11:44 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2013-08-24 07:44 . 2013-08-24 07:44 -------- d-----w- C:\Intel
2013-08-24 06:44 . 2012-09-26 12:39 1357312 ----a-w- c:\windows\system32\Windows.UI.Immersive.dll
2013-08-24 06:44 . 2012-10-02 10:06 15872 ----a-w- c:\windows\system32\slwga.dll
2013-08-24 06:44 . 2012-09-19 11:37 133287 ----a-w- c:\windows\system32\slmgr.vbs
2013-08-24 06:43 . 2012-07-26 03:07 415232 ----a-w- c:\windows\system32\GenuineCenter.dll
2013-08-24 06:43 . 2012-07-26 03:05 544256 ----a-w- c:\windows\system32\ActionCenterCPL.dll
2013-08-24 06:43 . 2013-08-24 06:43 -------- d-----w- c:\users\Default\AppData\Roaming\IObit
2013-08-24 06:25 . 2013-09-19 06:47 -------- d--h--w- c:\program files (x86)\InstallShield Installation Information
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-08-23 21:14 . 2012-07-26 08:13 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-07-03 3673184]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2013-09-17 3595856]
"swg"="c:\program files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2013-08-23 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Printsrv"="c:\windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs" [2013-05-10 543]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-04-16 642656]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-08-30 4858968]
"AdobeCEPServiceManager"="c:\program files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" [2013-03-13 1039248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"PromptOnSecureDesktop"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R2 eins9694;Eset install launcher (9694);c:\windows\system32\rundll32.exe;c:\windows\SYSNATIVE\rundll32.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 amdkmafd;AMD Audio Bus Lower Filter;c:\windows\System32\drivers\amdkmafd.sys;c:\windows\SYSNATIVE\drivers\amdkmafd.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 aswFW;avast! TDI Firewall driver; [x]
S1 aswKbd;aswKbd; [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\System32\drivers\dtsoftbus01.sys;c:\windows\SYSNATIVE\drivers\dtsoftbus01.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 NitroDriverReadSpool8;NitroPDFDriverCreatorReadSpool8;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe;c:\program files\Common Files\Nitro\Pro\8.0\NitroPDFDriverService8x64.exe [x]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x]
S2 StartMenuService;StartMenu8 Service;c:\program files (x86)\IObit\Start Menu 8\StartMenuServices.exe;c:\program files (x86)\IObit\Start Menu 8\StartMenuServices.exe [x]
S3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet - adaptér;c:\windows\system32\DRIVERS\l160x64.sys;c:\windows\SYSNATIVE\DRIVERS\l160x64.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW86.sys;c:\windows\SYSNATIVE\drivers\AtihdW86.sys [x]
S3 cmudaxp;ASUS Xonar DG Audio Interface;c:\windows\system32\drivers\cmudaxp.sys;c:\windows\SYSNATIVE\drivers\cmudaxp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-09-21 08:12 1177552 ----a-w- c:\program files (x86)\Google\Chrome\Application\29.0.1547.76\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-09-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-23 21:18]
.
2013-09-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-08-23 21:18]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2012-10-01 18:37 2322576 ----a-w- c:\progra~1\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-08-30 07:47 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-11-15 23:07 23496 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Cmaudio8788"="c:\windows\Syswow64\cmicnfgp.dll" [2012-11-20 12935168]
"Cmaudio8788GX"="c:\windows\syswow64\HsMgr.exe" [2008-07-11 200704]
"Cmaudio8788GX64"="c:\windows\system\HsMgr64.exe" [2008-07-11 282112]
"Printsrv"="c:\windows\System32\Printing_Admin_Scripts\en-US\pubpr.vbs" [BU]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://seznam.cz/
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\MICROS~1\Office15\ONBttnIE.dll/105
IE: Stáhnout s IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
ShellIconOverlayIdentifiers-{8BA85C75-763B-4103-94EB-9470F12FE0F7} - c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
ShellIconOverlayIdentifiers-{CD55129A-B1A1-438E-A425-CEBC7DC684EE} - c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
ShellIconOverlayIdentifiers-{E768CD3B-BDDC-436D-9C13-E1B39CA257B1} - c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\Update ESET's license.lnk - c:\program files (x86)\ESET\MiNODLogin\launcher.exe -d 10000
WebBrowser-{4B4D5056-3700-A76A-76A7-7A786E7484D7} - (no file)
AddRemove-WYSIWYG_Web_Builder_9 - c:\windows\iun6002.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2003740936-3886710681-3831845967-1001CsiTool-CreateHive-{00000000-0000-0000-0000-000000000000}\Software\SecuROM\License information*]
"datasecu"=hex:ad,14,0f,d4,6a,fa,aa,f2,81,c1,b0,32,85,7c,f2,e7,99,f8,68,21,e8,
9b,49,c5,0e,83,04,36,a8,0a,ae,ee,59,59,40,be,02,f1,a2,ed,7e,38,13,eb,e6,c1,\
"rkeysecu"=hex:d4,c2,c6,7f,73,eb,75,33,59,77,5e,14,1f,24,94,fd
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\slsvc.exe
c:\program files (x86)\IObit\Start Menu 8\StartMenu8.exe
c:\program files (x86)\IObit\Start Menu 8\StartMenu_Hook.exe
c:\program files\ASUS Xonar DG Audio\Customapp\ASUSAUDIOCENTER.EXE
c:\program files (x86)\Internet Download Manager\IEMonitor.exe
.
**************************************************************************
.
Celkový čas: 2013-09-22 18:51:11 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-09-22 16:51
ComboFix2.txt 2013-09-18 17:22
.
Před spuštěním: 219 777 953 792 bytes free
Po spuštění: 219 940 179 968 bytes free
.
- - End Of File - - 3CF7B98F14478A9E112D2334E981300F

Tak takhle by to nešlo, dokud tam bude ten nelegální NOD nepokračujeme !

Už se ani nedivím, že nejde normálně odinstalovat.

Ten Nod byl FREE na 1 mesic plna verze.
Odinstaloval jsem ho přes ovladaci panely bohužel to nebyl dobry napad.
Včera jsem stahoval nejake programky NOD uninstal.
Nakonec se mi to nepovedlo tak jsem stahnul normalni verzi a odinstaloval.
Nakonec mi to napsalo ze mam proslej 1 mesic proto nemohu nainstalovat a pak odinstaloval tu verzi.
Tak jsem si stahl nejaky programek aby mi nod aktivoval.

Tak v čem je problém ?
Nechtěl jsem ho používat chtěl jsme ho ODINSTALOVAT !
tady je něco podobného

http://forum.viry.cz/viewtopic.php?f=56&t=132635

crystalek píše:Tak jsem si stahl nejaky programek aby mi nod aktivoval

Jasně crack.

crystalek píše:Tak v čem je problém ?

A v tom je ten problém.

Pokud je to pryč, dej mi sem nový log z ComboFixu.

Pryč měl bejt už od včera mazal jsme ho.
Stejne se mi nepodarilo nainstalovat NoD abych ho odinstaloval.
Tak jsme slozku z nodem proste smazal...
v registru asi stále je jelikož ho vidim přes správce.
a zbytek snad domazal combo.
Pokud jsou nejaky zbytky netusim .dam log-
uz to vidim ...
Nesmazal se uplne spousteci program ekrn
i dyz sem to mazal je pouzivan jinym programem..
Ani ve spravci nejde ukoncit ulohu a pak mazat.
Jedna se o soubor ekrn.exe
ještě nejaka jeho část je v C:\Users\Killer\AppData\Local\Temp\ekrn.DMP
Nejaky napady?
Diky

Zdravim

Omlouvam se kolegovi za vstup

Zkuste tam pustit jeste tento remover http://download.eset.com/special/ESETUninstaller.exe navod zde http://www.viry.cz/forum/viewtopic.php?p=889437#p889437

to jsme zkousel včera jako první ...
Hledal jsme jak odinstalovat NOD v google...
A tam jsme tento programek nasel také

Nepomohl tak jsem chtel nod nainstalovat znovu.
Bud mi to psalo ze mam novejsi verzy nebo mi intalaci ukončilo ze chce restart.
Delal jsem restart 2x bez uspechu.
Dam Y a pak uz me to dal nepusti ani když dam 1 nebo 2

nebo Q to je fuk..

A ten log ~ESETUninstaller.log byste nasel?

Spoustel jste odinstalaci v nouzovem rezimu?

VIRY.CZ

qvo6 nejde smazat :(

qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(

Re: qvo6 nejde smazat :(