Díky moc za kontrolu (PREVENCE)

[PredyP]

Znáte toto:
1. C:\Documents and Settings\Administrátor Petr\Data aplikací\ConMet\Konta\Administrátor Petr.cmd
Ano měl by to být Connection Meter


ComboFix 10-04-26.01 - Administrátor Petr 26.04.2010 19:39:26.4.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1389 [GMT 2:00]
Spuštěný z: c:\documents and settings\Administrátor Petr\Plocha\ComboFix.exe
AV: AVG Anti-Virus *On-access scanning disabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: COMODO Firewall *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-03-26 do 2010-04-26 )))))))))))))))))))))))))))))))
.

2010-04-25 08:20 . 2010-04-25 08:23 -------- d-----w- c:\program files\COMODO
2010-04-25 07:46 . 2010-04-25 07:57 -------- d-----w- c:\program files\Sunbelt Software
2010-04-23 23:25 . 2010-04-23 23:25 -------- d-----w- C:\_OTM
2010-04-23 13:23 . 2010-04-23 13:24 -------- d-----w- C:\rsit
2010-04-23 13:23 . 2010-04-23 13:23 781909 ----a-w- C:\RSIT.exe
2010-04-17 14:07 . 2010-04-17 14:07 -------- d-----w- c:\program files\Common Files\Java
2010-04-17 14:07 . 2010-04-17 14:06 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-04-17 14:03 . 2010-04-17 14:03 -------- d-----w- c:\windows\Sun
2010-04-11 18:44 . 2010-04-11 18:44 -------- d-----w- c:\windows\system32\wbem\Repository
2010-04-08 23:26 . 2010-04-08 23:26 277240 ----a-w- c:\windows\system32\guard32.dll
2010-04-08 23:25 . 2010-04-08 23:25 86800 ----a-w- c:\windows\system32\drivers\inspect.sys
2010-04-08 23:25 . 2010-04-08 23:25 25240 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2010-04-08 23:25 . 2010-04-08 23:25 225344 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2010-04-08 23:25 . 2010-04-08 23:25 15464 ----a-w- c:\windows\system32\drivers\cmderd.sys
2010-04-06 08:31 . 2010-04-06 08:31 -------- d-----w- c:\program files\Common Files\DirectX
2010-03-30 04:54 . 2010-03-30 04:54 -------- d-----w- c:\program files\Common Files\Skype
2010-03-27 19:24 . 2010-03-27 19:24 -------- d-----w- c:\program files\IObit

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-23 13:24 . 2010-01-11 20:20 -------- d-----w- c:\program files\trend micro
2010-04-23 13:16 . 2010-01-15 15:51 -------- d-----w- c:\program files\CCleaner
2010-04-20 19:49 . 2010-01-11 18:20 -------- d-----r- c:\program files\Skype
2010-04-16 04:32 . 2010-02-08 19:00 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-04-11 18:49 . 2010-01-10 19:31 -------- d-----w- c:\program files\Google
2010-03-29 22:46 . 2010-02-08 19:00 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-03-29 22:45 . 2010-02-08 19:00 20824 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-03-28 07:49 . 2001-10-25 12:00 83562 ----a-w- c:\windows\system32\perfc005.dat
2010-03-28 07:49 . 2001-10-25 12:00 440812 ----a-w- c:\windows\system32\perfh005.dat
2010-03-22 13:29 . 2010-01-29 15:11 26511 ----a-w- c:\windows\War3Unin.dat
2010-03-21 11:01 . 2010-03-08 19:08 -------- d-----w- c:\program files\VS Revo Group
2010-03-18 18:23 . 2010-01-11 20:13 -------- d-----w- c:\program files\Common Files\Nero
2010-03-12 20:19 . 2010-03-03 16:23 -------- d-----w- c:\program files\ConMet
2010-03-11 12:36 . 2008-08-08 15:43 832512 ----a-w- c:\windows\system32\wininet.dll
2010-03-11 12:36 . 2008-08-08 15:43 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-03-11 12:36 . 2008-08-08 15:43 17408 ----a-w- c:\windows\system32\corpol.dll
2010-03-10 16:21 . 2010-03-10 16:21 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-03-09 11:11 . 2008-04-14 06:52 430080 ----a-w- c:\windows\system32\vbscript.dll
2010-03-08 18:56 . 2010-03-08 18:54 -------- d-----w- c:\program files\RegCleaner
2010-03-06 23:40 . 2010-03-06 11:27 -------- d-----w- c:\program files\Samsung
2010-03-02 21:11 . 2010-03-02 21:11 -------- d-----w- c:\program files\DIFX
2010-03-02 21:10 . 2010-01-10 19:42 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-03-01 20:17 . 2010-03-01 20:17 0 ----a-w- c:\windows\nsreg.dat
2010-02-24 14:57 . 2010-02-24 14:57 108144 ----a-w- c:\windows\system32\CmdLineExt.dll
2010-02-24 13:11 . 2008-04-13 22:47 455680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-02-17 12:09 . 2008-04-14 06:07 2192128 ------w- c:\windows\system32\ntoskrnl.exe
2010-02-16 19:09 . 2008-04-14 08:06 2068992 ------w- c:\windows\system32\ntkrnlpa.exe
2010-02-12 10:03 . 2010-03-05 18:01 293376 ------w- c:\windows\system32\browserchoice.exe
2010-02-12 04:35 . 2008-04-14 06:51 100864 ----a-w- c:\windows\system32\6to4svc.dll
2010-02-11 12:02 . 2008-04-13 22:30 226880 ----a-w- c:\windows\system32\drivers\tcpip6.sys
2010-01-31 14:27 . 2010-01-13 17:36 138184 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-01-31 14:27 . 2010-01-13 07:56 183112 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-01-29 15:11 . 2010-01-29 15:11 2829 ----a-w- c:\windows\War3Unin.pif
2010-01-29 15:11 . 2010-01-29 15:11 126976 ----a-w- c:\windows\War3Unin.exe
.

------- Sigcheck -------

[-] 2008-08-08 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-04-06 26102056]
"tsnpstd3"="c:\windows\tsnpstd3.exe" [2006-06-19 262144]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-01-10 39408]
"Advanced SystemCare 3"="c:\program files\IObit\Advanced SystemCare 3\AWC.exe" [2010-03-29 2343120]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AVG8_TRAY"="c:\progra~1\AVG\AVG8\avgtray.exe" [2010-03-18 2046816]
"SoundMan"="SOUNDMAN.EXE" [2006-08-02 577536]
"ConMet"="c:\program files\ConMet\ConMet.exe" [2010-03-09 4015616]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-11 110696]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2010-04-08 2029456]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
APC UPS Status.lnk - c:\program files\APC\APC PowerChute Personal Edition\Display.exe [2010-1-12 221247]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="c:\ovladače\Obrázky přihlašovací obrazovka\ms_rainbow_li\ms-rainbow\logonui.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
2010-01-11 13:10 11952 ----a-w- c:\windows\system32\avgrsstx.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgupd.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgemc.exe"=
"c:\\Program Files\\AVG\\AVG8\\avgnsx.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"d:\\Program Files\\Warcraft III\\Warcraft III.exe"=
"d:\\Program Files\\Warcraft III\\Warcraft III\\Warcraft III.exe"=
"d:\\Program Files\\Counter Strike 1.6 HD NonSteam\\hl.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\SaveTubeVideo.com\\SaveTubeVideo\\downloader.exe"=

R0 AvgRkx86;avgrkx86.sys;c:\windows\system32\drivers\avgrkx86.sys [10.1.2010 21:15 12552]
R1 AvgLdx86;AVG AVI Loader Driver x86;c:\windows\system32\drivers\avgldx86.sys [10.1.2010 21:15 335240]
R1 AvgTdiX;AVG8 Network Redirector;c:\windows\system32\drivers\avgtdix.sys [10.1.2010 21:15 108552]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdGuard.sys [9.4.2010 1:25 225344]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [9.4.2010 1:25 25240]
R2 avg8emc;AVG8 E-mail Scanner;c:\progra~1\AVG\AVG8\avgemc.exe [11.1.2010 15:10 908056]
R2 avg8wd;AVG8 WatchDog;c:\progra~1\AVG\AVG8\avgwdsvc.exe [11.1.2010 15:10 297752]
R2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO livePCsupport\CLPSLS.exe [19.2.2010 17:00 148744]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [6.11.2007 22:22 34064]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [29.1.2010 13:32 135664]
S3 TVICHW32;TVICHW32;\??\c:\windows\system32\DRIVERS\TVICHW32.SYS --> c:\windows\system32\DRIVERS\TVICHW32.SYS [?]
S4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys --> c:\windows\system32\Drivers\sptd.sys [?]
.
Obsah adresáře 'Naplánované úlohy'

2010-03-04 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 11:34]

2010-04-25 c:\windows\Tasks\AWC Update.job
- c:\program files\IObit\Advanced SystemCare 3\IObitUpdate.exe [2010-03-27 11:38]

2010-04-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-29 11:32]

2010-04-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-29 11:32]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_96D6FF0C6D236BF8.dll/cmsidewiki.html
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: {0631F743-D27D-44E8-9921-33739151F79E} = 192.168.1.1,0.0.0.0
FF - ProfilePath - c:\documents and settings\Administrátor Petr\Data aplikací\Mozilla\Firefox\Profiles\kp4wlv32.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - component: c:\program files\SaveTubeVideo.com\SaveTubeVideo\FF\components\swslib.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-26 19:45
Windows 5.1.2600 Service Pack 3 NTFS

detected NTDLL code modification:
ZwClose, ZwOpenFile

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-1004336348-1993962763-1417001333-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:57,73,aa,95,fa,bb,fd,09,8c,38,1b,7c,5d,49,8f,53,bb,ba,e6,14,78,b0,50,
84,d5,d8,43,97,a3,7f,db,e8,9d,ef,23,7e,f2,ca,20,71,eb,79,eb,cf,d2,7c,31,62,\
"??"=hex:59,e0,69,9d,02,82,e7,3d,1c,88,17,20,57,71,d4,cd
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(824)
c:\windows\system32\guard32.dll

- - - - - - - > 'lsass.exe'(888)
c:\windows\system32\guard32.dll

- - - - - - - > 'explorer.exe'(9548)
c:\progra~1\WINDOW~2\wmpband.dll
c:\windows\system32\wpdshserviceobj.dll
c:\windows\system32\portabledevicetypes.dll
c:\windows\system32\portabledeviceapi.dll
.
Celkový čas: 2010-04-26 19:47:55
ComboFix-quarantined-files.txt 2010-04-26 17:47

Před spuštěním: Volných bajtů: 414 812 045 312
Po spuštění: Volných bajtů: 414 853 955 584

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

- - End Of File - - AEDD9D4C00610E8AA3296D45537B7317

[franticek]

Ok.

Ověřte ještě na VT c:\windows\system32\sfcfiles.dll.

Bude-li v pořádku, provedeme úklid, nic špatného není vidět.

1. Odinstalujte ComboFix přes:
Start >> Spustit, zkopírujte do okénka:

Kód: Vybrat vše

ComboFix /Uninstall

stiskněte Enter

2. Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe
* Spusťte, pro potvrzení volby mačkejte klávesu A, Enter
* Po použití program vymažte. Pozor,antiviry ho mohou falešně označit za vir.

3. Stáhněte a použijte http://oldtimer.geekstogo.com/TFC.exe

4. Stáhněte OTC http://oldtimer.geekstogo.com/OTC.exe
* Spusťte.
* Klikněte na "CleanUp!". Potvrďte hlášky stiskem "Yes" (Bude následovat restart)

5. Stáhněte Ccleaner
* Nainstalujte a v průběhu instalace odškrtněte, že chcete instalovat yahoo toolbar.
Záložka Čistič
* Dejte analyzovat, po dokončení dejte Spustit Ccleaner.
Záložka Registry
* Klikněte na Hledej problémy, po dokončení klikněte na Opravit problémy, zálohu dělat nemusíte, potom dejte Opravit všechny problémy.
OK > Zavřít

[PredyP]

c:\windows\system32\sfcfiles.dll. na VT prošel.

PC se zdá OK
Moc ti děkuju

[franticek]

Není zač.

Doporučuji jednou za čas použít ten ccleaner - odmazat cache, vyčistit registry, dále nepoužívat najednou dva antiviry atd.