Oprava pc
Napsal: 19 úno 2017 20:57
Dobrý den,prosím o radu,velký počet modrych smrti,preinstalovani windows,nouzovy rezim,combofix,vysledek ComboFix 17-01-29.01 - Michal 19.02.2017 20:21:37.1.2 - x86 NETWORK
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.2047.1338 [GMT 1:00]
Spuštěný z: c:\users\Michal\Downloads\ComboFix.exe
AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-01-19 do 2017-02-19 )))))))))))))))))))))))))))))))
.
.
2017-02-19 19:25 . 2017-02-19 19:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-02-19 19:07 . 2017-02-19 19:07 -------- d-----w- c:\program files\CCleaner
2017-02-19 17:28 . 2017-02-19 17:28 -------- d-----w- c:\programdata\SWCUTemp
2017-02-19 13:45 . 2017-02-19 13:45 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2017-02-19 13:44 . 2017-02-19 13:45 -------- d-----w- c:\program files\DAEMON Tools Lite
2017-02-19 13:44 . 2017-02-19 14:24 -------- d-----w- c:\programdata\DAEMON Tools Lite
2017-02-19 13:23 . 2017-02-19 12:53 70008 ----a-w- c:\windows\system32\drivers\aswHdsKe.sys
2017-02-19 09:37 . 2017-02-18 14:26 328208 ----a-w- c:\windows\system32\aswBoot.exe
2017-02-18 14:45 . 2017-02-18 14:45 -------- d-----w- c:\program files\GUM5752.tmp
2017-02-18 14:45 . 2017-02-18 14:45 4096000 ----a-w- c:\program files\GUT5753.tmp
2017-02-18 14:36 . 2017-02-18 14:36 -------- d-----w- c:\programdata\SlimWare Utilities Inc
2017-02-18 14:36 . 2017-02-18 14:36 -------- d-----w- c:\program files\SlimCleaner Plus
2017-02-18 14:36 . 2017-02-18 14:36 -------- d-----w- c:\program files\SlimService
2017-02-18 14:36 . 2017-02-19 17:35 13368 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2017-02-18 14:35 . 2017-02-19 19:09 -------- d-----w- c:\program files\Google
2017-02-18 14:29 . 2017-02-18 14:29 31064 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2017-02-18 14:28 . 2017-02-18 14:28 -------- d-----w- c:\program files\SlimDrivers
2017-02-18 14:28 . 2017-02-18 18:56 -------- d-sh--w- c:\windows\Installer
2017-02-18 14:26 . 2017-02-18 14:26 921280 ----a-w- c:\windows\ucrtbase.dll
2017-02-18 14:23 . 2017-02-18 14:29 -------- d-----w- c:\program files\AVAST Software
2017-02-18 14:23 . 2017-02-18 17:12 -------- d-----w- c:\programdata\AVAST Software
2017-02-18 13:43 . 2017-02-18 13:44 -------- d-----w- c:\users\Michal
2017-02-18 13:34 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe
2017-02-18 13:34 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll
2017-02-18 13:34 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2017-02-18 13:34 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll
2017-02-18 13:34 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll
2017-02-18 13:34 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2017-02-18 13:34 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll
2017-02-18 13:34 . 2012-06-02 14:19 171904 ----a-w- c:\windows\system32\wuwebv.dll
2017-02-18 13:34 . 2012-06-02 14:12 33792 ----a-w- c:\windows\system32\wuapp.exe
2017-02-18 13:24 . 2017-02-19 17:58 -------- d-----w- c:\windows\system32\wbem\Performance
2017-02-18 12:59 . 2017-01-09 12:45 9561744 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F8B4AF67-80DE-48D1-B2EA-C77AE1A32B01}\mpengine.dll
2017-02-18 12:59 . 2016-10-26 15:29 407720 ------w- c:\windows\system32\MpSigStub.exe
2017-02-18 12:44 . 2017-02-18 12:44 0 ----a-w- c:\windows\ativpsrm.bin
2017-02-18 12:39 . 2017-02-19 19:08 -------- d-----w- c:\windows\Panther
2017-02-18 12:29 . 2017-02-18 12:29 -------- d-----w- C:\Windows.old
2017-02-13 19:59 . 2017-02-13 19:59 -------- d-----w- C:\$AV_ASW
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00asw]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2017-02-18 14:26 1164072 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2017-02-08 7347928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvLaunch.exe" [2017-02-18 205512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R0 aswbidsh;aswbidsh;c:\windows\\SystemRoot\system32\drivers\aswbidshx.sys [x]
R0 aswblog;aswblog;c:\windows\\SystemRoot\system32\drivers\aswblogx.sys [x]
R0 aswbuniv;aswbuniv;c:\windows\\SystemRoot\system32\drivers\aswbunivx.sys [x]
R0 aswRvrt;aswRvrt;c:\windows\\SystemRoot\system32\drivers\aswRvrt.sys [x]
R0 aswVmm;aswVmm;c:\windows\\SystemRoot\system32\drivers\aswVmm.sys [x]
R1 aswbidsdriver;aswbidsdriver;c:\windows\system32\drivers\aswbidsdriverx.sys [2017-02-18 257288]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2017-02-18 754664]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2017-02-18 463936]
R2 aswbIDSAgent;aswbIDSAgent;c:\program files\AVAST Software\Avast\aswidsagent.exe [2017-02-18 5541048]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2017-02-18 106392]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2017-02-18 118288]
R2 SlimService;SlimWare Utility Service Launcher;c:\program files\SlimService\SlimServiceFactory.exe [2016-10-25 229568]
R3 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys [2017-02-19 70008]
R3 aswHwid;aswHwid;c:\windows\system32\drivers\aswHwid.sys [2017-02-18 34136]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [2017-02-19 13368]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2017-02-18 31064]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2017-02-19 218688]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2017-02-18 14:51 1368920 ----a-w- c:\program files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2017-02-19 c:\windows\Tasks\SlimCleaner Plus (Scheduled Scan - Michal).job
- c:\program files\SlimCleaner Plus\SlimCleanerPlus.exe [2016-10-25 15:17]
.
2017-02-19 c:\windows\Tasks\SlimDrivers Startup.job
- c:\program files\SlimDrivers\SlimDrivers.exe [2015-08-19 14:55]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 10.0.0.138
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2017-02-19 20:27:11
ComboFix-quarantined-files.txt 2017-02-19 19:27
.
Před spuštěním: Volných bajtů: 36 902 903 808
Po spuštění: Volných bajtů: 36 867 579 904
.
- - End Of File - - EDFA95EEC7B689028C246C6424BF8A64
A36C5E4F47E84449FF07ED3517B43A31
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.2047.1338 [GMT 1:00]
Spuštěný z: c:\users\Michal\Downloads\ComboFix.exe
AV: Avast Antivirus *Enabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
SP: Avast Antivirus *Enabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-01-19 do 2017-02-19 )))))))))))))))))))))))))))))))
.
.
2017-02-19 19:25 . 2017-02-19 19:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-02-19 19:07 . 2017-02-19 19:07 -------- d-----w- c:\program files\CCleaner
2017-02-19 17:28 . 2017-02-19 17:28 -------- d-----w- c:\programdata\SWCUTemp
2017-02-19 13:45 . 2017-02-19 13:45 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2017-02-19 13:44 . 2017-02-19 13:45 -------- d-----w- c:\program files\DAEMON Tools Lite
2017-02-19 13:44 . 2017-02-19 14:24 -------- d-----w- c:\programdata\DAEMON Tools Lite
2017-02-19 13:23 . 2017-02-19 12:53 70008 ----a-w- c:\windows\system32\drivers\aswHdsKe.sys
2017-02-19 09:37 . 2017-02-18 14:26 328208 ----a-w- c:\windows\system32\aswBoot.exe
2017-02-18 14:45 . 2017-02-18 14:45 -------- d-----w- c:\program files\GUM5752.tmp
2017-02-18 14:45 . 2017-02-18 14:45 4096000 ----a-w- c:\program files\GUT5753.tmp
2017-02-18 14:36 . 2017-02-18 14:36 -------- d-----w- c:\programdata\SlimWare Utilities Inc
2017-02-18 14:36 . 2017-02-18 14:36 -------- d-----w- c:\program files\SlimCleaner Plus
2017-02-18 14:36 . 2017-02-18 14:36 -------- d-----w- c:\program files\SlimService
2017-02-18 14:36 . 2017-02-19 17:35 13368 ----a-w- c:\windows\system32\drivers\SWDUMon.sys
2017-02-18 14:35 . 2017-02-19 19:09 -------- d-----w- c:\program files\Google
2017-02-18 14:29 . 2017-02-18 14:29 31064 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2017-02-18 14:28 . 2017-02-18 14:28 -------- d-----w- c:\program files\SlimDrivers
2017-02-18 14:28 . 2017-02-18 18:56 -------- d-sh--w- c:\windows\Installer
2017-02-18 14:26 . 2017-02-18 14:26 921280 ----a-w- c:\windows\ucrtbase.dll
2017-02-18 14:23 . 2017-02-18 14:29 -------- d-----w- c:\program files\AVAST Software
2017-02-18 14:23 . 2017-02-18 17:12 -------- d-----w- c:\programdata\AVAST Software
2017-02-18 13:43 . 2017-02-18 13:44 -------- d-----w- c:\users\Michal
2017-02-18 13:34 . 2012-06-02 22:19 53784 ----a-w- c:\windows\system32\wuauclt.exe
2017-02-18 13:34 . 2012-06-02 22:19 45080 ----a-w- c:\windows\system32\wups2.dll
2017-02-18 13:34 . 2012-06-02 22:19 1933848 ----a-w- c:\windows\system32\wuaueng.dll
2017-02-18 13:34 . 2012-06-02 22:12 2422272 ----a-w- c:\windows\system32\wucltux.dll
2017-02-18 13:34 . 2012-06-02 22:19 35864 ----a-w- c:\windows\system32\wups.dll
2017-02-18 13:34 . 2012-06-02 22:19 577048 ----a-w- c:\windows\system32\wuapi.dll
2017-02-18 13:34 . 2012-06-02 22:12 88576 ----a-w- c:\windows\system32\wudriver.dll
2017-02-18 13:34 . 2012-06-02 14:19 171904 ----a-w- c:\windows\system32\wuwebv.dll
2017-02-18 13:34 . 2012-06-02 14:12 33792 ----a-w- c:\windows\system32\wuapp.exe
2017-02-18 13:24 . 2017-02-19 17:58 -------- d-----w- c:\windows\system32\wbem\Performance
2017-02-18 12:59 . 2017-01-09 12:45 9561744 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{F8B4AF67-80DE-48D1-B2EA-C77AE1A32B01}\mpengine.dll
2017-02-18 12:59 . 2016-10-26 15:29 407720 ------w- c:\windows\system32\MpSigStub.exe
2017-02-18 12:44 . 2017-02-18 12:44 0 ----a-w- c:\windows\ativpsrm.bin
2017-02-18 12:39 . 2017-02-19 19:08 -------- d-----w- c:\windows\Panther
2017-02-18 12:29 . 2017-02-18 12:29 -------- d-----w- C:\Windows.old
2017-02-13 19:59 . 2017-02-13 19:59 -------- d-----w- C:\$AV_ASW
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00asw]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2017-02-18 14:26 1164072 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner.exe" [2017-02-08 7347928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvLaunch.exe" [2017-02-18 205512]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R0 aswbidsh;aswbidsh;c:\windows\\SystemRoot\system32\drivers\aswbidshx.sys [x]
R0 aswblog;aswblog;c:\windows\\SystemRoot\system32\drivers\aswblogx.sys [x]
R0 aswbuniv;aswbuniv;c:\windows\\SystemRoot\system32\drivers\aswbunivx.sys [x]
R0 aswRvrt;aswRvrt;c:\windows\\SystemRoot\system32\drivers\aswRvrt.sys [x]
R0 aswVmm;aswVmm;c:\windows\\SystemRoot\system32\drivers\aswVmm.sys [x]
R1 aswbidsdriver;aswbidsdriver;c:\windows\system32\drivers\aswbidsdriverx.sys [2017-02-18 257288]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2017-02-18 754664]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2017-02-18 463936]
R2 aswbIDSAgent;aswbIDSAgent;c:\program files\AVAST Software\Avast\aswidsagent.exe [2017-02-18 5541048]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2017-02-18 106392]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys [2017-02-18 118288]
R2 SlimService;SlimWare Utility Service Launcher;c:\program files\SlimService\SlimServiceFactory.exe [2016-10-25 229568]
R3 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys [2017-02-19 70008]
R3 aswHwid;aswHwid;c:\windows\system32\drivers\aswHwid.sys [2017-02-18 34136]
R3 SWDUMon;SWDUMon;c:\windows\system32\DRIVERS\SWDUMon.sys [2017-02-19 13368]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys [2017-02-18 31064]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2017-02-19 218688]
S3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-07-13 139776]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2017-02-18 14:51 1368920 ----a-w- c:\program files\Google\Chrome\Application\56.0.2924.87\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2017-02-19 c:\windows\Tasks\SlimCleaner Plus (Scheduled Scan - Michal).job
- c:\program files\SlimCleaner Plus\SlimCleanerPlus.exe [2016-10-25 15:17]
.
2017-02-19 c:\windows\Tasks\SlimDrivers Startup.job
- c:\program files\SlimDrivers\SlimDrivers.exe [2015-08-19 14:55]
.
.
------- Doplňkový sken -------
.
TCP: DhcpNameServer = 10.0.0.138
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ChromeHTML"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2017-02-19 20:27:11
ComboFix-quarantined-files.txt 2017-02-19 19:27
.
Před spuštěním: Volných bajtů: 36 902 903 808
Po spuštění: Volných bajtů: 36 867 579 904
.
- - End Of File - - EDFA95EEC7B689028C246C6424BF8A64
A36C5E4F47E84449FF07ED3517B43A31