VIRY.CZ

Vie niekto poradit ? Po spusteni PC po neakej chvíli zamrzne a treba ho nasurovo vypnut. Pri zapnuti pise hlaasku. Spravil som aj kombo fix , ale nie som z toho múdry.

kombo fix

ComboFix 16-06-01.01 - Dodo . 06. 2016 17:09:12.2.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.421.1051.18.3835.1633 [GMT 2:00]
Running from: c:\users\Dodo\Desktop\Nový priečinok (2)\ComboFix.exe
AV: AVG Internet Security Business Edition *Enabled/Updated* {4D41356F-32AD-7C42-C820-63775EE4F413}
AV: IObit Malware Fighter *Disabled/Outdated* {4D381C57-3C7A-6F22-07EB-639F49E836D4}
FW: AVG Internet Security Business Edition *Enabled* {757AB44A-78C2-7D1A-E37F-CA42A037B368}
SP: AVG Internet Security Business Edition *Enabled/Updated* {F620D48B-1497-73CC-F290-58052563BEAE}
SP: IObit Malware Fighter *Enabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-- Previous Run --
.
Infected copy of c:\windows\SysWow64\user32.dll was found and disinfected
Restored copy from - c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.19061_none_3579d47ab8884c9d\user32.dll
.
--------
.
.
((((((((((((((((((((((((( Files Created from 2016-05-09 to 2016-06-09 )))))))))))))))))))))))))))))))
.
.
2016-06-09 15:18 . 2016-06-09 15:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2016-06-09 13:54 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2016-06-09 13:47 . 2016-06-09 13:47 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2016-06-08 20:46 . 2016-06-08 20:46 22200 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2016-06-08 20:46 . 2016-06-08 20:46 -------- d-----w- c:\users\Dodo\AppData\Local\eSupport.com
2016-06-08 20:46 . 2016-06-08 20:57 -------- d-----w- c:\program files (x86)\eSupport.com
2016-06-08 13:59 . 2016-03-31 15:54 452040 ----a-w- c:\windows\system32\drivers\trufos.sys
2016-06-08 08:51 . 2016-05-27 12:01 11895896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{96346218-A751-447B-A4D3-79504F865A1A}\mpengine.dll
2016-06-08 08:18 . 2016-06-09 15:11 -------- d-----w- c:\program files (x86)\Opera
2016-06-06 17:27 . 2016-06-06 17:28 -------- d-----w- c:\users\Dodo\AppData\Local\3810282D-6C19-47B0-8283-5C6C29A7E108
2016-06-06 17:27 . 2016-06-06 17:27 -------- d-----w- C:\extensions
2016-06-06 17:27 . 2016-06-06 17:29 -------- d-----w- c:\program files (x86)\Gihkreamition
2016-05-20 13:27 . 2016-05-20 13:27 -------- d-----w- c:\programdata\BDLogging
2016-05-18 10:13 . 2016-05-18 10:13 307456 ----a-w- c:\windows\system32\drivers\avgidsdrivera.sys
2016-05-17 08:50 . 2016-05-17 08:50 279296 ----a-w- c:\windows\system32\drivers\avgtdia.sys
2016-05-16 17:38 . 2016-05-16 17:38 1190912 ----a-w- c:\windows\system32\WindowsCodecs(201).dll
2016-05-16 17:37 . 2016-05-16 17:37 405504 ----a-w- c:\windows\system32\gdi32(182).dll
2016-05-16 17:37 . 2016-05-16 17:37 312832 ----a-w- c:\windows\SysWow64\gdi32(208).dll
2016-05-13 13:54 . 2016-05-13 13:54 -------- d-----w- c:\users\Dodo\AppData\Roaming\Dashlane
2016-05-13 13:54 . 2016-05-13 13:54 -------- d-----w- c:\users\Dodo\AppData\Local\Packages
2016-05-13 13:54 . 2016-05-13 13:54 -------- d-----w- c:\program files (x86)\Dashlane
2016-05-10 18:26 . 2016-05-01 07:38 498488 ------w- c:\windows\SysWow64\spdsvc.exe
2016-05-10 18:24 . 2015-03-12 02:43 43520 ----a-w- c:\windows\system32\Spool\prtprocs\x64\us001pc.dll
2016-05-10 18:24 . 2015-03-12 02:43 43520 ----a-w- c:\windows\system32\Spool\prtprocs\x64\1_us001pc.dll
2016-05-10 18:24 . 2015-01-24 10:22 3029504 ------w- c:\windows\system32\DlgSearchEngine.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2016-06-06 19:09 . 2016-06-06 19:09 344064 ----a-w- c:\windows\system32\schannel.dll
2016-06-06 19:09 . 2016-06-06 19:09 251392 ----a-w- c:\windows\SysWow64\schannel.dll
2016-06-06 19:09 . 2016-06-06 19:09 190464 ----a-w- c:\windows\system32\rpchttp.dll
2016-06-06 19:09 . 2016-06-06 19:09 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2016-06-06 06:35 . 2016-06-06 06:35 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2016-05-16 17:36 . 2016-05-16 17:36 344064 ----a-w- c:\windows\system32\schannel(192).dll
2016-05-16 17:36 . 2016-05-16 17:36 44032 ----a-w- c:\windows\apppatch\acwow64(174).dll
2016-05-13 06:05 . 2015-12-27 15:52 797376 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2016-05-13 06:05 . 2015-12-27 15:52 142528 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2016-05-10 18:26 . 2016-02-08 14:35 2078208 ------w- c:\windows\SysWow64\DlgSearchEngine.dll
2016-05-05 09:06 . 2016-05-05 09:06 247040 ----a-w- c:\windows\system32\drivers\avgmfx64.sys
2016-05-05 09:06 . 2016-05-05 09:06 71936 ----a-w- c:\windows\system32\drivers\avguniva.sys
2016-05-02 14:13 . 2016-05-02 14:13 260352 ----a-w- c:\windows\system32\drivers\avgldx64.sys
2016-05-02 14:06 . 2016-05-02 14:06 51968 ----a-w- c:\windows\system32\drivers\avgrkx64.sys
2016-04-28 10:04 . 2016-04-28 10:04 113392 ----a-w- c:\windows\system32\DelayAPO.dll
2016-04-28 10:04 . 2016-04-28 10:04 104984 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2016-04-23 14:32 . 2016-04-23 14:32 444416 ----a-w- c:\windows\system32\winhttp.dll
2016-04-23 14:32 . 2016-04-23 14:32 396800 ----a-w- c:\windows\system32\webio.dll
2016-04-23 14:32 . 2016-04-23 14:32 351744 ----a-w- c:\windows\SysWow64\winhttp.dll
2016-04-23 14:32 . 2016-04-23 14:32 316416 ----a-w- c:\windows\SysWow64\webio.dll
2016-04-23 14:32 . 2016-04-23 14:32 275456 ----a-w- c:\windows\system32\InkEd.dll
2016-04-23 14:32 . 2016-04-23 14:32 216064 ----a-w- c:\windows\SysWow64\InkEd.dll
2016-04-21 13:05 . 2010-11-21 03:27 453288 ------w- c:\windows\system32\MpSigStub.exe
2016-04-16 11:05 . 2016-04-16 11:05 3216896 ----a-w- c:\windows\system32\win32k.sys
2016-04-16 11:04 . 2016-04-16 11:04 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2016-04-16 11:04 . 2016-04-16 11:04 2048 ----a-w- c:\windows\system32\tzres.dll
2016-04-16 11:04 . 2016-04-16 11:04 156672 ----a-w- c:\windows\system32\mtxoci.dll
2016-04-16 11:04 . 2016-04-16 11:04 176128 ----a-w- c:\windows\SysWow64\msorcl32.dll
2016-04-16 11:04 . 2016-04-16 11:04 111616 ----a-w- c:\windows\SysWow64\mtxoci.dll
2016-04-16 11:03 . 2016-04-16 11:03 760320 ----a-w- c:\windows\system32\samsrv.dll
2016-04-16 11:03 . 2016-04-16 11:03 60416 ----a-w- c:\windows\SysWow64\samlib.dll
2016-04-16 11:03 . 2016-04-16 11:03 106496 ----a-w- c:\windows\system32\samlib.dll
2016-04-16 11:02 . 2016-04-16 11:02 880640 ----a-w- c:\windows\system32\advapi32(152).dll
2016-04-16 11:02 . 2016-04-16 11:02 706280 ----a-w- c:\windows\system32\winload.efi
2016-04-16 11:02 . 2016-04-16 11:02 644096 ----a-w- c:\windows\SysWow64\advapi32(185).dll
2016-04-16 11:02 . 2016-04-16 11:02 63488 ----a-w- c:\windows\system32\setbcdlocale.dll
2016-04-16 11:02 . 2016-04-16 11:02 631176 ----a-w- c:\windows\system32\winresume.efi
2016-04-16 11:02 . 2016-04-16 11:02 5551336 ----a-w- c:\windows\system32\ntoskrnl.exe
2016-04-16 11:02 . 2016-04-16 11:02 503808 ----a-w- c:\windows\system32\srcore(174).dll
2016-04-16 11:02 . 2016-04-16 11:02 50176 ----a-w- c:\windows\system32\srclient.dll
2016-04-16 11:02 . 2016-04-16 11:02 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2016-04-16 11:02 . 2016-04-16 11:02 419840 ----a-w- c:\windows\system32\KernelBase(164).dll
2016-04-16 11:02 . 2016-04-16 11:02 344064 ----a-w- c:\windows\system32\schannel(171).dll
2016-04-16 11:02 . 2016-04-16 11:02 30720 ----a-w- c:\windows\system32\lsass(166).exe
2016-04-16 11:02 . 2016-04-16 11:02 296960 ----a-w- c:\windows\system32\rstrui.exe
2016-04-16 11:02 . 2016-04-16 11:02 28672 ----a-w- c:\windows\system32\sspisrv(176).dll
2016-04-16 11:02 . 2016-04-16 11:02 28160 ----a-w- c:\windows\system32\secur32(172).dll
2016-04-16 11:02 . 2016-04-16 11:02 1464320 ----a-w- c:\windows\system32\lsasrv(165).dll
2016-04-16 11:02 . 2016-04-16 11:02 135680 ----a-w- c:\windows\system32\sspicli(175).dll
2016-04-16 11:02 . 2016-04-16 11:02 96768 ----a-w- c:\windows\SysWow64\sspicli(194).dll
2016-04-16 11:02 . 2016-04-16 11:02 86528 ----a-w- c:\windows\system32\TSpkg(177).dll
2016-04-16 11:02 . 2016-04-16 11:02 731136 ----a-w- c:\windows\system32\kerberos(162).dll
2016-04-16 11:02 . 2016-04-16 11:02 666112 ----a-w- c:\windows\SysWow64\rpcrt4(193).dll
2016-04-16 11:02 . 2016-04-16 11:02 6656 ----a-w- c:\windows\SysWow64\apisetschema.dll
2016-04-16 11:02 . 2016-04-16 11:02 43520 ----a-w- c:\windows\system32\csrsrv(158).dll
2016-04-16 11:02 . 2016-04-16 11:02 43520 ----a-w- c:\windows\system32\cryptbase(157).dll
2016-04-16 11:02 . 2016-04-16 11:02 316416 ----a-w- c:\windows\system32\msv1_0(167).dll
2016-04-16 11:02 . 2016-04-16 11:02 22016 ----a-w- c:\windows\system32\credssp(156).dll
2016-04-16 11:02 . 2016-04-16 11:02 215552 ----a-w- c:\windows\system32\winsrv(181).dll
2016-04-16 11:02 . 2016-04-16 11:02 210432 ----a-w- c:\windows\system32\wdigest(178).dll
2016-04-16 11:02 . 2016-04-16 11:02 1414144 ----a-w- c:\windows\SysWow64\ole32.dll
2016-04-16 11:02 . 2016-04-16 11:02 1212928 ----a-w- c:\windows\system32\rpcrt4(170).dll
2016-04-16 11:02 . 2016-04-16 11:02 1163264 ----a-w- c:\windows\system32\kernel32(163).dll
2016-04-16 11:02 . 2016-04-16 11:02 112640 ----a-w- c:\windows\system32\smss(173).exe
2016-04-16 11:02 . 2016-04-16 11:02 6656 ----a-w- c:\windows\system32\apisetschema(153).dll
2016-04-16 11:02 . 2016-04-16 11:02 62464 ----a-w- c:\windows\system32\drivers\appid.sys
2016-04-16 11:02 . 2016-04-16 11:02 59904 ----a-w- c:\windows\system32\appidapi.dll
2016-04-16 11:02 . 2016-04-16 11:02 362496 ----a-w- c:\windows\system32\wow64win(184).dll
2016-04-16 11:02 . 2016-04-16 11:02 34816 ----a-w- c:\windows\system32\appidsvc.dll
2016-04-16 11:02 . 2016-04-16 11:02 338432 ----a-w- c:\windows\system32\conhost.exe
2016-04-16 11:02 . 2016-04-16 11:02 312320 ----a-w- c:\windows\system32\ncrypt(168).dll
2016-04-16 11:02 . 2016-04-16 11:02 243712 ----a-w- c:\windows\system32\wow64(182).dll
2016-04-16 11:02 . 2016-04-16 11:02 2084864 ----a-w- c:\windows\system32\ole32.dll
2016-04-16 11:02 . 2016-04-16 11:02 17920 ----a-w- c:\windows\system32\appidcertstorecheck.exe
2016-04-16 11:02 . 2016-04-16 11:02 1732864 ----a-w- c:\windows\system32\ntdll(169).dll
2016-04-16 11:02 . 2016-04-16 11:02 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2016-04-16 11:02 . 2016-04-16 11:02 148480 ----a-w- c:\windows\system32\appidpolicyconverter.exe
2016-04-16 11:02 . 2016-04-16 11:02 13312 ----a-w- c:\windows\system32\wow64cpu(183).dll
2016-04-16 11:02 . 2016-04-16 11:02 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2016-04-16 11:02 . 2016-04-16 11:02 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2016-04-16 11:02 . 2016-04-16 11:02 50688 ----a-w- c:\windows\SysWow64\appidapi.dll
2016-04-16 11:02 . 2016-04-16 11:02 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 44032 ----a-w- c:\windows\apppatch\acwow64(151).dll
2016-04-16 11:02 . 2016-04-16 11:02 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3998952 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2016-04-16 11:02 . 2016-04-16 11:02 3943144 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2016-04-16 11:02 . 2016-04-16 11:02 36352 ----a-w- c:\windows\SysWow64\cryptbase(188).dll
2016-04-16 11:02 . 2016-04-16 11:02 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
2016-04-16 11:02 . 2016-04-16 11:02 275456 ----a-w- c:\windows\SysWow64\KernelBase(191).dll
2016-04-16 11:02 . 2016-04-16 11:02 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2016-04-16 11:02 . 2016-04-16 11:02 2048 ----a-w- c:\windows\SysWow64\user.exe
2016-04-16 11:02 . 2016-04-16 11:02 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2015-04-15 15:47 297128 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 7"="c:\program files (x86)\IObit\Advanced SystemCare 7\ASCTray.exe" [2013-12-09 2285344]
"Advanced SystemCare 9"="c:\program files (x86)\IObit\Advanced SystemCare\ASCTray.exe" [2016-01-11 2019616]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AVG_UI"="c:\program files (x86)\AVG\Av\avuirunnerx.exe" [2016-05-20 32528]
"AvgUi"="c:\program files (x86)\AVG\Framework\Common\avguirnx.exe" [2016-05-18 186640]
"IObit Malware Fighter"="c:\program files (x86)\IObit\IObit Malware Fighter\IMF.exe" [2016-04-27 5890848]
.
c:\users\Dodo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Odmenovac.appref-ms [2016-3-9 282]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSimpleNetIDList"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R2 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R3 AESTFilters;Andrea ST Filters Service;c:\program files\IDT\WDM\AESTSr64.exe;c:\program files\IDT\WDM\AESTSr64.exe [x]
R3 ALSysIO;ALSysIO;c:\users\Dodo\AppData\Local\Temp\ALSysIO64.sys;c:\users\Dodo\AppData\Local\Temp\ALSysIO64.sys [x]
R3 AvgAMPS;AvgAMPS;c:\program files (x86)\AVG\Av\avgamps.exe;c:\program files (x86)\AVG\Av\avgamps.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [x]
R3 EsgScanner;EsgScanner;c:\windows\system32\DRIVERS\EsgScanner.sys;c:\windows\SYSNATIVE\DRIVERS\EsgScanner.sys [x]
R3 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 PDF Architect 4 CrashHandler;PDF Architect 4 CrashHandler;c:\program files\PDF Architect 4\crash-handler-ws.exe;c:\program files\PDF Architect 4\crash-handler-ws.exe [x]
R3 PDF Architect 4;PDF Architect 4;c:\program files\PDF Architect 4\ws.exe;c:\program files\PDF Architect 4\ws.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTSUER;Realtek USB Card Reader - UER;c:\windows\system32\Drivers\RtsUer.sys;c:\windows\SYSNATIVE\Drivers\RtsUer.sys [x]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys;c:\windows\SYSNATIVE\DRIVERS\SWDUMon.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Windows Activation Technologies;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S0 AVGIDSHA;AVGIDSHA;c:\windows\system32\DRIVERS\avgidsha.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsha.sys [x]
S0 Avgloga;AVG Logging Driver;c:\windows\system32\DRIVERS\avgloga.sys;c:\windows\SYSNATIVE\DRIVERS\avgloga.sys [x]
S0 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;c:\windows\system32\DRIVERS\avgmfx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgmfx64.sys [x]
S0 Avgrkx64;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgrkx64.sys [x]
S0 Avguniva;AVG Universal Driver;c:\windows\system32\DRIVERS\avguniva.sys;c:\windows\SYSNATIVE\DRIVERS\avguniva.sys [x]
S1 Avgdiska;AVG Disk Driver;c:\windows\system32\DRIVERS\avgdiska.sys;c:\windows\SYSNATIVE\DRIVERS\avgdiska.sys [x]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6a.sys;c:\windows\SYSNATIVE\DRIVERS\avgfwd6a.sys [x]
S1 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\avgidsdrivera.sys;c:\windows\SYSNATIVE\DRIVERS\avgidsdrivera.sys [x]
S1 Avgldx64;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx64.sys;c:\windows\SYSNATIVE\DRIVERS\avgldx64.sys [x]
S1 Avgtdia;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdia.sys;c:\windows\SYSNATIVE\DRIVERS\avgtdia.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AdvancedSystemCareService9;Advanced SystemCare Service 9;c:\program files (x86)\IObit\Advanced SystemCare\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\AMD\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.3;AODDriver4.3;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\AMD\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 avgfws;AVG Firewall;c:\program files (x86)\AVG\Av\avgfwsa.exe;c:\program files (x86)\AVG\Av\avgfwsa.exe [x]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files (x86)\AVG\Av\avgidsagenta.exe;c:\program files (x86)\AVG\Av\avgidsagenta.exe [x]
S2 avgsvc;AVG Service;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe;c:\program files (x86)\AVG\Framework\Common\avgsvca.exe [x]
S2 avgwd;AVG WatchDog;c:\program files (x86)\AVG\Av\avgwdsvca.exe;c:\program files (x86)\AVG\Av\avgwdsvca.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 Samsung Printer Dianostics Service;Samsung Printer Dianostics Service;c:\windows\system32\\spdsvc.exe;c:\windows\SYSNATIVE\\spdsvc.exe [x]
S2 SamsungUPDUtilSvc;Samsung UPD Utility Service;c:\windows\SysWOW64\SecUPDUtilSvc.exe;c:\windows\SysWOW64\SecUPDUtilSvc.exe [x]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 btwampfl;btwampfl;c:\windows\system32\DRIVERS\btwampfl.sys;c:\windows\SYSNATIVE\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
S3 IMFFilter;IMFFilter;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\IMFFilter.sys [x]
S3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2016-06-08 13:53 1245848 ----a-w- c:\program files (x86)\Google\Chrome\Application\51.0.2704.84\Installer\chrmstp.exe
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{A6EADE66-0000-0000-484E-7E8A45000000}]
2016-05-03 14:41 287416 ----a-w- c:\program files (x86)\Adobe\Acrobat Reader DC\Esl\AiodLite.dll
.
Contents of the 'Scheduled Tasks' folder
.
2016-06-09 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-12-27 06:05]
.
2016-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-12-27 18:08]
.
2016-06-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-12-27 18:08]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2015-11-12 09:39 2472224 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EE932B49-D5C0-4D19-A3DA-CE0849258DE6}]
2015-04-15 13:40 357376 ----a-w- c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns64.dll
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.azet.sk/
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = <-loopback>
IE: E&xportovať do programu Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: Free YouTube Download - c:\program files (x86)\Common Files\DVDVideoSoft\plugins\freeytvdownloader.htm
IE: {{EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - {EE932B49-D5C0-4D19-A3DA-CE0849258DE6} - c:\program files (x86)\Common Files\DVDVideoSoft\bin\IEDownloadMenuAndBtns.dll
TCP: DhcpNameServer = 192.168.2.1 192.168.2.1
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{03EB0E9C-7A91-4381-A220-9B52B641CDB1} - (no file)
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_21_0_0_242_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_21_0_0_242_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_21_0_0_242_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_21_0_0_242_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.21"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_21_0_0_242.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Other Running Processes ------------------------
.
c:\program files (x86)\AVG\Framework\Common\avguix.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
c:\windows\SysWOW64\msiexec.exe
c:\windows\SysWOW64\spdsvc.exe
c:\program files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
c:\program files (x86)\Google\Update\1.3.30.3\GoogleCrashHandler.exe
.
**************************************************************************
.
Completion time: 2016-06-09 17:37:36 - machine was rebooted
ComboFix-quarantined-files.txt 2016-06-09 15:37
.
Pre-Run: 426 594 570 240 bytes free
Post-Run: 426 349 776 896 bytes free
.
- - End Of File - - 239B3801A50B505D02B085B03BD4024B
A36C5E4F47E84449FF07ED3517B43A31

Zdravím!
1. Combofix je profi utilita, kterou si laik snadno může poškodit systém.
2. Váš oper. systém asi zrovna legální nebude, že?

Som laik. HP PC mam od novoti asi 5 rokov. Po zamrzani som stiahol novy Windovs 7 . Sice mam neaku nalepku na pc ale sa mi to vtedy nepodarilo nainstalovat. Teraz mi to mrzne zase. Neviem čo dalej. Ak niekto neporadi , zasa to budem musiet preinstalovat.

Ten stažený Windows asi legální nebude, nemyslíte. Problém je v tom, že toto fórum řeší pouze orig. oper. systémy. Zřejmě jste nečetl naše pravidla: http://forum.viry.cz/viewtopic.php?f=12&t=5601 a http://forum.viry.cz/viewtopic.php?f=12&t=115512 .

VIRY.CZ

Mrznutie PC

Mrznutie PC

Re: Mrznutie PC

Re: Mrznutie PC

Re: Mrznutie PC

Re: Mrznutie PC