Re: Zpomalený běh ntb
Napsal: 27 lis 2017 14:51
ComboFix 17-11-14.01 - GT 27.11.2017 14:38:26.1.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4095.2486 [GMT 1:00]
Spuštěný z: c:\users\GT\Desktop\ComboFix.exe
AV: Avast Antivirus *Disabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes *Enabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Avast Antivirus *Disabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Malwarebytes *Enabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-10-27 do 2017-11-27 )))))))))))))))))))))))))))))))
.
.
2017-11-27 13:47 . 2017-11-27 13:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-11-27 12:48 . 2017-11-27 12:48 203680 ----a-w- c:\windows\system32\drivers\zam64.sys
2017-11-27 12:48 . 2017-11-27 12:48 203680 ----a-w- c:\windows\system32\drivers\zamguard64.sys
2017-11-27 12:48 . 2017-11-27 12:48 -------- d-----w- c:\program files (x86)\Zemana AntiMalware
2017-11-27 12:48 . 2017-11-27 12:48 -------- d-----w- c:\users\GT\AppData\Local\Zemana
2017-11-27 12:44 . 2017-11-27 12:44 -------- d-----w- c:\users\GT\AppData\Local\GHISLER
2017-11-27 12:11 . 2017-11-27 12:11 -------- d-----w- c:\programdata\SWCUTemp
2017-11-27 12:08 . 2017-11-27 12:08 -------- d-----w- C:\$AV_ASW
2017-11-27 10:54 . 2017-11-27 13:42 -------- d-----w- c:\users\GT\AppData\Local\Temp
2017-11-27 10:41 . 2017-11-27 10:54 -------- d-----w- C:\zoek
2017-11-26 23:08 . 2017-11-27 09:36 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2017-11-26 23:06 . 2017-11-26 23:06 -------- d-----w- c:\programdata\RogueKiller
2017-11-26 10:05 . 2017-11-26 10:05 -------- d-----w- c:\programdata\Sophos
2017-11-26 10:04 . 2017-11-26 10:04 -------- d-----w- c:\program files (x86)\Sophos
2017-11-26 09:51 . 2017-11-27 12:11 110016 ----a-w- c:\windows\system32\drivers\farflt.sys
2017-11-25 10:02 . 2016-05-12 15:18 90624 ----a-w- c:\windows\SysWow64\olepro32.dll
2017-11-25 10:01 . 2016-08-16 21:55 25088 ----a-w- c:\windows\system32\drivers\cs-CZ\usbport.sys.mui
2017-11-25 10:01 . 2016-08-16 21:54 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\usbehci.sys.mui
2017-11-25 10:01 . 2016-08-16 21:54 11776 ----a-w- c:\windows\system32\drivers\cs-CZ\usbhub.sys.mui
2017-11-25 10:01 . 2016-08-16 20:40 343552 ----a-w- c:\windows\system32\drivers\usbhub.sys
2017-11-25 10:01 . 2016-08-16 20:40 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2017-11-25 10:01 . 2016-08-16 20:40 56320 ----a-w- c:\windows\system32\drivers\usbehci.sys
2017-11-25 10:01 . 2016-08-16 20:40 327168 ----a-w- c:\windows\system32\drivers\usbport.sys
2017-11-25 10:01 . 2016-08-16 20:40 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2017-11-25 10:01 . 2016-08-16 20:40 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2017-11-25 10:01 . 2016-08-16 20:40 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2017-11-25 09:42 . 2017-11-27 12:17 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-11-25 09:34 . 2017-11-27 12:11 253880 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2017-11-24 08:34 . 2017-11-24 08:34 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2017-11-24 08:14 . 2017-11-24 08:14 193464 ----a-w- c:\windows\system32\drivers\MbamChameleon.sys
2017-11-24 08:14 . 2017-11-27 12:11 46008 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-11-24 08:13 . 2017-11-01 07:54 77432 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-11-24 08:13 . 2017-11-24 08:13 -------- d-----w- c:\programdata\Malwarebytes
2017-11-24 08:13 . 2017-11-24 08:13 -------- d-----w- c:\program files\Malwarebytes
2017-11-24 02:57 . 2017-11-24 02:57 -------- d-s---w- c:\windows\system32\CompatTel
2017-11-24 02:57 . 2017-11-24 02:57 -------- d-----w- c:\windows\system32\appraiser
2017-11-23 23:28 . 2017-11-23 23:33 -------- d-----w- c:\windows\Symbols
2017-11-23 09:35 . 2015-05-25 18:19 113664 ----a-w- c:\windows\system32\sechost.dll
2017-11-23 09:35 . 2015-05-25 18:18 404992 ----a-w- c:\windows\system32\tracerpt.exe
2017-11-23 09:35 . 2015-05-25 18:18 104448 ----a-w- c:\windows\system32\logman.exe
2017-11-23 09:35 . 2015-05-25 18:01 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2017-11-23 09:35 . 2015-05-25 18:00 364544 ----a-w- c:\windows\SysWow64\tracerpt.exe
2017-11-23 09:35 . 2015-05-25 18:00 82944 ----a-w- c:\windows\SysWow64\logman.exe
2017-11-23 09:35 . 2015-05-25 18:18 47104 ----a-w- c:\windows\system32\typeperf.exe
2017-11-23 09:35 . 2015-05-25 18:18 43008 ----a-w- c:\windows\system32\relog.exe
2017-11-23 09:35 . 2015-05-25 18:18 19456 ----a-w- c:\windows\system32\diskperf.exe
2017-11-23 09:35 . 2015-05-25 18:00 40448 ----a-w- c:\windows\SysWow64\typeperf.exe
2017-11-23 09:35 . 2015-05-25 18:00 37888 ----a-w- c:\windows\SysWow64\relog.exe
2017-11-23 09:35 . 2015-05-25 18:00 17408 ----a-w- c:\windows\SysWow64\diskperf.exe
2017-11-23 09:34 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll
2017-11-23 09:32 . 2017-11-23 09:32 -------- d-----w- C:\totalcmd
2017-11-23 09:32 . 2017-11-23 09:32 -------- d-----w- c:\users\GT\AppData\Roaming\GHISLER
2017-11-23 08:54 . 2017-11-24 22:59 -------- d-----w- C:\AdwCleaner
2017-11-13 08:50 . 2013-10-19 02:18 81408 ----a-w- c:\windows\system32\imagehlp.dll
2017-11-13 08:50 . 2013-10-19 01:36 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2017-11-13 08:48 . 2017-11-13 08:48 -------- d-----w- c:\windows\system32\MRT
2017-11-13 08:47 . 2017-11-13 08:47 126925120 -c--a-w- c:\windows\system32\MRT-KB890830.exe
2017-11-13 08:01 . 2017-11-13 08:00 121304 ----a-w- c:\windows\system32\drivers\aswHdsKe.sys
2017-11-04 08:11 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2017-11-04 08:11 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-11-04 08:09 . 2013-10-14 17:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2017-11-04 07:53 . 2017-11-04 07:53 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-11-03 21:50 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2017-11-03 21:50 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2017-11-03 21:50 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2017-11-03 21:50 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2017-11-03 21:44 . 2010-12-23 10:42 1118720 ----a-w- c:\windows\system32\sbe.dll
2017-11-03 21:44 . 2010-12-23 10:36 259072 ----a-w- c:\windows\system32\mpg2splt.ax
2017-11-03 21:44 . 2010-12-23 05:54 850944 ----a-w- c:\windows\SysWow64\sbe.dll
2017-11-03 21:44 . 2010-12-23 05:50 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2017-11-03 21:44 . 2015-07-15 18:10 1743360 ----a-w- c:\windows\system32\sysmain.dll
2017-11-03 21:44 . 2015-07-15 20:26 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\mountmgr.sys.mui
2017-11-03 21:43 . 2015-07-10 17:51 3722752 ----a-w- c:\windows\system32\mstscax.dll
2017-11-03 21:43 . 2015-07-10 17:34 3221504 ----a-w- c:\windows\SysWow64\mstscax.dll
2017-11-03 21:43 . 2015-07-10 17:51 44032 ----a-w- c:\windows\system32\tsgqec.dll
2017-11-03 21:43 . 2015-07-10 17:51 158720 ----a-w- c:\windows\system32\aaclient.dll
2017-11-03 21:43 . 2015-07-10 17:34 36864 ----a-w- c:\windows\SysWow64\tsgqec.dll
2017-11-03 21:43 . 2015-07-10 17:33 131584 ----a-w- c:\windows\SysWow64\aaclient.dll
2017-11-03 21:22 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll
2017-11-03 21:22 . 2012-01-04 08:58 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2017-11-03 21:21 . 2015-09-01 18:14 503296 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tiptsf.dll
2017-11-03 21:21 . 2015-09-01 18:14 1247232 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2017-11-03 21:21 . 2015-09-01 18:14 110592 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2017-11-03 21:21 . 2015-09-01 18:13 224768 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2017-11-03 21:21 . 2015-09-01 17:52 348672 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2017-11-03 21:21 . 2015-09-01 17:52 10240 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2017-11-03 21:21 . 2015-09-01 18:12 544768 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipRes.dll
2017-11-03 21:21 . 2016-01-21 00:51 73664 ----a-w- c:\windows\system32\drivers\disk.sys
2017-11-03 21:21 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2017-11-03 21:21 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2017-11-03 21:18 . 2014-06-18 22:23 156312 ----a-w- c:\windows\system32\mscorier.dll
2017-11-03 21:18 . 2014-06-18 22:23 156824 ----a-w- c:\windows\SysWow64\mscorier.dll
2017-11-03 21:18 . 2014-06-18 22:23 73880 ----a-w- c:\windows\system32\mscories.dll
2017-11-03 21:18 . 2014-06-18 22:23 1943696 ----a-w- c:\windows\system32\dfshim.dll
2017-11-03 21:18 . 2014-06-18 22:23 81560 ----a-w- c:\windows\SysWow64\mscories.dll
2017-11-03 21:18 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\SysWow64\dfshim.dll
2017-11-03 21:16 . 2017-09-08 15:30 2319872 ----a-w- c:\windows\system32\tquery.dll
2017-11-03 21:15 . 2017-09-13 15:09 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2017-11-03 21:11 . 2012-12-07 11:20 43520 ----a-w- c:\windows\system32\csrr.rs
2017-11-03 21:10 . 2014-10-14 02:13 683520 ----a-w- c:\windows\system32\termsrv.dll
2017-11-03 21:08 . 2015-07-09 17:58 82944 ----a-w- c:\windows\system32\dwmapi.dll
2017-11-03 21:08 . 2015-07-09 17:58 1632256 ----a-w- c:\windows\system32\dwmcore.dll
2017-11-03 21:08 . 2015-07-09 17:42 67584 ----a-w- c:\windows\SysWow64\dwmapi.dll
2017-11-03 21:08 . 2015-07-09 17:42 1372160 ----a-w- c:\windows\SysWow64\dwmcore.dll
2017-11-03 20:22 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
2017-11-03 20:20 . 2011-12-30 06:26 515584 ----a-w- c:\windows\system32\timedate.cpl
2017-11-03 20:20 . 2011-12-30 05:27 478720 ----a-w- c:\windows\SysWow64\timedate.cpl
2017-11-03 20:20 . 2014-12-06 04:17 303616 ----a-w- c:\windows\system32\nlasvc.dll
2017-11-03 20:20 . 2014-12-06 03:50 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2017-11-03 20:20 . 2014-12-06 03:50 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2017-11-03 20:19 . 2014-06-18 02:19 449024 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2017-11-03 20:19 . 2014-06-18 02:18 692736 ----a-w- c:\windows\system32\osk.exe
2017-11-03 20:19 . 2014-06-18 01:51 646144 ----a-w- c:\windows\SysWow64\osk.exe
2017-11-03 20:18 . 2015-02-03 03:31 215552 ----a-w- c:\windows\system32\ubpm.dll
2017-11-03 20:18 . 2015-02-03 03:12 171520 ----a-w- c:\windows\SysWow64\ubpm.dll
2017-11-03 20:18 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2017-11-03 20:18 . 2013-05-27 05:50 1011712 ----a-w- c:\program files\Windows Defender\MpSvc.dll
2017-11-03 20:18 . 2013-05-27 05:50 571904 ----a-w- c:\program files\Windows Defender\MpClient.dll
2017-11-03 20:18 . 2013-05-27 05:50 314880 ----a-w- c:\program files\Windows Defender\MpCommu.dll
2017-11-03 20:18 . 2013-05-27 04:57 392704 ----a-w- c:\program files (x86)\Windows Defender\MpClient.dll
2017-11-03 20:18 . 2013-05-27 04:57 4608 ----a-w- c:\program files (x86)\Windows Defender\MsMpLics.dll
2017-11-03 20:18 . 2013-05-27 04:57 54784 ----a-w- c:\program files (x86)\Windows Defender\MpOAV.dll
2017-11-03 20:18 . 2013-05-27 03:15 9216 ----a-w- c:\program files (x86)\Windows Defender\MpAsDesc.dll
2017-11-03 20:18 . 2015-01-29 03:19 2543104 ----a-w- c:\windows\system32\wpdshext.dll
2017-11-03 20:18 . 2015-01-29 03:02 2311168 ----a-w- c:\windows\SysWow64\wpdshext.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-11-04 07:58 . 2017-11-04 07:58 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2017-11-04 07:58 . 2017-11-04 07:58 243200 ----a-w- c:\windows\system32\webcheck.dll
2017-10-25 18:11 . 2010-06-26 08:52 327008 ----a-w- c:\windows\system32\RaCoInstx.dll
2017-10-25 18:11 . 2010-06-29 07:01 931168 ----a-w- c:\windows\system32\drivers\netr28x.sys
2017-10-25 18:09 . 2017-10-25 18:11 7367200 ----a-w- c:\windows\system32\RTSUSTORicon.dll
2017-10-25 18:09 . 2017-10-25 18:10 232992 ----a-w- c:\windows\system32\drivers\RtsUStor.sys
2017-10-25 18:06 . 2009-07-13 08:47 2867712 ----a-w- c:\windows\SysWow64\atiumdva.dll
2017-10-25 18:06 . 2009-07-13 08:46 274432 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2017-10-25 18:06 . 2009-07-13 08:47 3105280 ----a-w- c:\windows\SysWow64\atiumdag.dll
2017-10-25 18:06 . 2009-07-13 08:48 2622976 ----a-w- c:\windows\system32\atiumd6a.dll
2017-10-25 18:06 . 2009-07-13 08:48 4059648 ----a-w- c:\windows\system32\atiumd64.dll
2017-10-25 18:06 . 2009-07-13 08:48 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2017-10-25 18:06 . 2009-07-13 08:48 120320 ----a-w- c:\windows\system32\atitmm64.dll
2017-10-25 18:06 . 2009-07-13 08:50 11651584 ----a-w- c:\windows\SysWow64\atioglxx.dll
2017-10-25 18:06 . 2009-07-13 08:48 421376 ----a-w- c:\windows\system32\atipdl64.dll
2017-10-25 18:06 . 2009-07-13 08:48 51200 ----a-w- c:\windows\system32\ATIODCLI.exe
2017-10-25 18:06 . 2009-07-13 08:48 332288 ----a-w- c:\windows\system32\ATIODE.exe
2017-10-25 18:06 . 2009-07-13 08:51 15062528 ----a-w- c:\windows\system32\atio6axx.dll
2017-10-25 18:06 . 2009-07-13 08:52 6036480 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2017-10-25 18:06 . 2009-07-13 08:50 51712 ----a-w- c:\windows\SysWow64\atimpc32.dll
2017-10-25 18:06 . 2009-07-13 08:50 51712 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2017-10-25 18:06 . 2009-07-13 08:50 52224 ----a-w- c:\windows\system32\atimpc64.dll
2017-10-25 18:06 . 2009-07-13 08:50 52224 ----a-w- c:\windows\system32\amdpcom64.dll
2017-10-25 18:06 . 2009-07-13 08:50 12288 ----a-w- c:\windows\system32\atimuixx.dll
2017-10-25 18:06 . 2009-07-13 21:59 2921984 ----a-w- c:\windows\system32\atidxx64.dll
2017-10-25 18:06 . 2009-07-13 08:52 420352 ----a-w- c:\windows\system32\atieclxx.exe
2017-10-25 18:06 . 2009-07-13 08:52 59392 ----a-w- c:\windows\system32\atiedu64.dll
2017-10-25 18:06 . 2009-07-13 08:52 203264 ----a-w- c:\windows\system32\atiesrxx.exe
2017-10-25 18:06 . 2009-07-13 08:53 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2017-10-25 18:06 . 2009-07-13 08:53 2469888 ----a-w- c:\windows\SysWow64\atidxx32.dll
2017-10-25 18:06 . 2009-07-13 08:54 4289536 ----a-w- c:\windows\system32\aticaldd64.dll
2017-10-25 18:06 . 2009-07-13 08:53 53248 ----a-w- c:\windows\SysWow64\aticalrt.dll
2017-10-25 18:06 . 2009-07-13 08:53 48640 ----a-w- c:\windows\system32\aticalrt64.dll
2017-10-25 18:06 . 2009-07-13 08:54 3264512 ----a-w- c:\windows\SysWow64\aticaldd.dll
2017-10-25 18:06 . 2009-07-13 08:54 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2017-10-25 18:06 . 2009-07-13 08:54 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2017-10-25 18:06 . 2009-07-13 08:54 251904 ----a-w- c:\windows\system32\atiadlxx.dll
2017-10-25 18:06 . 2009-07-13 08:54 184320 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2017-10-25 18:06 . 2009-07-13 08:54 118784 ----a-w- c:\windows\system32\atibtmon.exe
2017-10-25 18:06 . 2009-07-13 08:54 53248 ----a-w- c:\windows\SysWow64\aticalcl.dll
2017-10-25 18:06 . 2009-07-13 08:54 41984 ----a-w- c:\windows\system32\aticalcl64.dll
2017-10-25 18:03 . 2017-10-25 18:05 150528 ----a-w- c:\windows\system32\SRSWOW64.dll
2017-10-25 18:03 . 2017-10-25 18:05 513536 ----a-w- c:\windows\system32\SRSTSX64.dll
2017-10-25 18:03 . 2017-10-25 18:05 211376 ----a-w- c:\windows\system32\SRSTSH64.dll
2017-10-25 18:03 . 2017-10-25 18:05 193536 ----a-w- c:\windows\system32\SRSHP64.dll
2017-10-25 18:03 . 2017-10-25 18:05 611360 ----a-w- c:\windows\system32\RTSnMg64.cpl
2017-10-25 18:03 . 2017-10-25 18:05 1292832 ----a-w- c:\windows\system32\RtPgEx64.dll
2017-10-25 18:03 . 2017-10-25 18:05 332320 ----a-w- c:\windows\system32\RtlCPAPI64.dll
2017-10-25 18:03 . 2017-10-25 18:05 1829664 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2017-10-25 18:03 . 2017-10-25 18:05 149536 ----a-w- c:\windows\system32\RtkCfg64.dll
2017-10-25 18:03 . 2017-10-25 18:05 417824 ----a-w- c:\windows\system32\RtkApi64.dll
2017-10-25 18:03 . 2017-10-25 18:05 1603104 ----a-w- c:\windows\system32\RtkAPO64.dll
2017-10-25 18:03 . 2017-10-25 18:05 63008 ----a-w- c:\windows\system32\RCoInst64.dll
2017-10-25 18:03 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RP3DHT64.dll
2017-10-25 18:03 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RP3DAA64.dll
2017-10-25 18:03 . 2017-10-25 18:05 1167904 ----a-w- c:\windows\system32\RTCOM64.dll
2017-10-25 18:03 . 2017-10-25 18:05 311296 ----a-w- c:\windows\system32\MaxxAudioAPO20.dll
2017-10-25 18:03 . 2017-10-25 18:05 176640 ----a-w- c:\windows\system32\FMAPO64.dll
2017-10-25 18:03 . 2017-10-25 18:05 108032 ----a-w- c:\windows\system32\AERTAR64.dll
2017-10-25 18:03 . 2017-10-25 18:05 166400 ----a-w- c:\windows\system32\AERTAC64.dll
2017-10-25 18:02 . 2017-10-25 18:05 1604128 ----a-w- c:\windows\system32\RtkHDM64.dll
2017-10-25 18:02 . 2017-10-25 18:05 58912 ----a-w- c:\windows\system32\RHCoInst64.dll
2017-10-25 18:02 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RH3DHT64.dll
2017-10-25 18:02 . 2017-10-25 18:05 205472 ----a-w- c:\windows\system32\drivers\RtHDMIVX.sys
2017-10-25 18:02 . 2017-10-25 18:05 1291808 ----a-w- c:\windows\system32\RHDMEx64.dll
2017-10-25 18:02 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RH3DAA64.dll
2017-10-25 18:02 . 2017-10-25 18:05 831488 ----a-w- c:\windows\RtlExUpd.dll
2017-10-25 18:00 . 2017-10-25 18:01 439296 ----a-w- c:\windows\system32\drivers\rtl8187Se.sys
2017-09-13 15:28 . 2017-11-03 21:16 190464 ----a-w- c:\windows\system32\rpchttp.dll
2017-09-13 15:09 . 2017-11-03 21:16 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2017-09-13 15:08 . 2017-11-03 21:15 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2017-08-30 12:23 . 2017-08-30 12:23 993632 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2017-08-30 12:23 . 2017-08-30 12:23 987840 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2017-08-30 12:23 . 2017-08-30 12:23 690008 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2017-08-30 12:23 . 2017-08-30 12:23 485576 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 aswbIDSAgent;aswbIDSAgent;c:\program files\AVAST Software\Avast\x64\aswidsagenta.exe;c:\program files\AVAST Software\Avast\x64\aswidsagenta.exe [x]
R3 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys;c:\windows\SYSNATIVE\drivers\aswHdsKe.sys [x]
R3 aswHwid;aswHwid;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswbidsh;aswbidsh;c:\windows\system32\drivers\aswbidsha.sys;c:\windows\SYSNATIVE\drivers\aswbidsha.sys [x]
S0 aswblog;aswblog;c:\windows\system32\drivers\aswbloga.sys;c:\windows\SYSNATIVE\drivers\aswbloga.sys [x]
S0 aswbuniv;aswbuniv;c:\windows\system32\drivers\aswbuniva.sys;c:\windows\SYSNATIVE\drivers\aswbuniva.sys [x]
S0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys;c:\windows\SYSNATIVE\drivers\aswRvrt.sys [x]
S0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys;c:\windows\SYSNATIVE\drivers\aswVmm.sys [x]
S1 aswArPot;aswArPot;c:\windows\system32\drivers\aswArPot.sys;c:\windows\SYSNATIVE\drivers\aswArPot.sys [x]
S1 aswbidsdriver;aswbidsdriver;c:\windows\system32\drivers\aswbidsdrivera.sys;c:\windows\SYSNATIVE\drivers\aswbidsdrivera.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ESProtectionDriver;Malwarebytes Anti-Exploit;c:\windows\system32\drivers\mbae64.sys;c:\windows\SYSNATIVE\drivers\mbae64.sys [x]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam64.sys;c:\windows\SYSNATIVE\drivers\zam64.sys [x]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard64.sys;c:\windows\SYSNATIVE\drivers\zamguard64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 ZAMSvc;ZAM Controller Service;c:\program files (x86)\Zemana AntiMalware\ZAM.exe;c:\program files (x86)\Zemana AntiMalware\ZAM.exe [x]
S3 MBAMFarflt;MBAMFarflt;c:\windows\system32\DRIVERS\farflt.sys;c:\windows\SYSNATIVE\DRIVERS\farflt.sys [x]
S3 MBAMProtection;MBAMProtection;c:\windows\system32\DRIVERS\mbam.sys;c:\windows\SYSNATIVE\DRIVERS\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 MBAMWebProtection;MBAMWebProtection;c:\windows\system32\DRIVERS\mwac.sys;c:\windows\SYSNATIVE\DRIVERS\mwac.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 SiSGbeLH;SiS191/SiS190 – ovladač NDIS 6.0 zařízení sítě Ethernet;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTION
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MBAMWEBPROTECTION
*NewlyCreated* - ZAM
*NewlyCreated* - ZAM_GUARD
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00asw]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2001-12-31 23:27 1793296 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvLaunch.exe" [2001-12-31 253344]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2017-11-27 14:50:37
ComboFix-quarantined-files.txt 2017-11-27 13:50
.
Před spuštěním: Volných bajtů: 253 408 108 544
Po spuštění: Volných bajtů: 253 270 855 680
.
- - End Of File - - F806993E7A9FED8D7C49E28CEA5AAC67
A36C5E4F47E84449FF07ED3517B43A31
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4095.2486 [GMT 1:00]
Spuštěný z: c:\users\GT\Desktop\ComboFix.exe
AV: Avast Antivirus *Disabled/Updated* {8EA8924E-BC81-DC44-8BB0-8BAE75D86EBF}
AV: Malwarebytes *Enabled/Updated* {23007AD3-69FE-687C-2629-D584AFFAF72B}
SP: Avast Antivirus *Disabled/Updated* {35C973AA-9ABB-D3CA-B100-B0DC0E5F2402}
SP: Malwarebytes *Enabled/Updated* {98619B37-4FC4-67F2-1C99-EEF6D47DBD96}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2017-10-27 do 2017-11-27 )))))))))))))))))))))))))))))))
.
.
2017-11-27 13:47 . 2017-11-27 13:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2017-11-27 12:48 . 2017-11-27 12:48 203680 ----a-w- c:\windows\system32\drivers\zam64.sys
2017-11-27 12:48 . 2017-11-27 12:48 203680 ----a-w- c:\windows\system32\drivers\zamguard64.sys
2017-11-27 12:48 . 2017-11-27 12:48 -------- d-----w- c:\program files (x86)\Zemana AntiMalware
2017-11-27 12:48 . 2017-11-27 12:48 -------- d-----w- c:\users\GT\AppData\Local\Zemana
2017-11-27 12:44 . 2017-11-27 12:44 -------- d-----w- c:\users\GT\AppData\Local\GHISLER
2017-11-27 12:11 . 2017-11-27 12:11 -------- d-----w- c:\programdata\SWCUTemp
2017-11-27 12:08 . 2017-11-27 12:08 -------- d-----w- C:\$AV_ASW
2017-11-27 10:54 . 2017-11-27 13:42 -------- d-----w- c:\users\GT\AppData\Local\Temp
2017-11-27 10:41 . 2017-11-27 10:54 -------- d-----w- C:\zoek
2017-11-26 23:08 . 2017-11-27 09:36 28272 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2017-11-26 23:06 . 2017-11-26 23:06 -------- d-----w- c:\programdata\RogueKiller
2017-11-26 10:05 . 2017-11-26 10:05 -------- d-----w- c:\programdata\Sophos
2017-11-26 10:04 . 2017-11-26 10:04 -------- d-----w- c:\program files (x86)\Sophos
2017-11-26 09:51 . 2017-11-27 12:11 110016 ----a-w- c:\windows\system32\drivers\farflt.sys
2017-11-25 10:02 . 2016-05-12 15:18 90624 ----a-w- c:\windows\SysWow64\olepro32.dll
2017-11-25 10:01 . 2016-08-16 21:55 25088 ----a-w- c:\windows\system32\drivers\cs-CZ\usbport.sys.mui
2017-11-25 10:01 . 2016-08-16 21:54 3072 ----a-w- c:\windows\system32\drivers\cs-CZ\usbehci.sys.mui
2017-11-25 10:01 . 2016-08-16 21:54 11776 ----a-w- c:\windows\system32\drivers\cs-CZ\usbhub.sys.mui
2017-11-25 10:01 . 2016-08-16 20:40 343552 ----a-w- c:\windows\system32\drivers\usbhub.sys
2017-11-25 10:01 . 2016-08-16 20:40 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2017-11-25 10:01 . 2016-08-16 20:40 56320 ----a-w- c:\windows\system32\drivers\usbehci.sys
2017-11-25 10:01 . 2016-08-16 20:40 327168 ----a-w- c:\windows\system32\drivers\usbport.sys
2017-11-25 10:01 . 2016-08-16 20:40 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2017-11-25 10:01 . 2016-08-16 20:40 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2017-11-25 10:01 . 2016-08-16 20:40 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2017-11-25 09:42 . 2017-11-27 12:17 84256 ----a-w- c:\windows\system32\drivers\mwac.sys
2017-11-25 09:34 . 2017-11-27 12:11 253880 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2017-11-24 08:34 . 2017-11-24 08:34 -------- d-----w- c:\program files (x86)\CrystalDiskInfo
2017-11-24 08:14 . 2017-11-24 08:14 193464 ----a-w- c:\windows\system32\drivers\MbamChameleon.sys
2017-11-24 08:14 . 2017-11-27 12:11 46008 ----a-w- c:\windows\system32\drivers\mbam.sys
2017-11-24 08:13 . 2017-11-01 07:54 77432 ----a-w- c:\windows\system32\drivers\mbae64.sys
2017-11-24 08:13 . 2017-11-24 08:13 -------- d-----w- c:\programdata\Malwarebytes
2017-11-24 08:13 . 2017-11-24 08:13 -------- d-----w- c:\program files\Malwarebytes
2017-11-24 02:57 . 2017-11-24 02:57 -------- d-s---w- c:\windows\system32\CompatTel
2017-11-24 02:57 . 2017-11-24 02:57 -------- d-----w- c:\windows\system32\appraiser
2017-11-23 23:28 . 2017-11-23 23:33 -------- d-----w- c:\windows\Symbols
2017-11-23 09:35 . 2015-05-25 18:19 113664 ----a-w- c:\windows\system32\sechost.dll
2017-11-23 09:35 . 2015-05-25 18:18 404992 ----a-w- c:\windows\system32\tracerpt.exe
2017-11-23 09:35 . 2015-05-25 18:18 104448 ----a-w- c:\windows\system32\logman.exe
2017-11-23 09:35 . 2015-05-25 18:01 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2017-11-23 09:35 . 2015-05-25 18:00 364544 ----a-w- c:\windows\SysWow64\tracerpt.exe
2017-11-23 09:35 . 2015-05-25 18:00 82944 ----a-w- c:\windows\SysWow64\logman.exe
2017-11-23 09:35 . 2015-05-25 18:18 47104 ----a-w- c:\windows\system32\typeperf.exe
2017-11-23 09:35 . 2015-05-25 18:18 43008 ----a-w- c:\windows\system32\relog.exe
2017-11-23 09:35 . 2015-05-25 18:18 19456 ----a-w- c:\windows\system32\diskperf.exe
2017-11-23 09:35 . 2015-05-25 18:00 40448 ----a-w- c:\windows\SysWow64\typeperf.exe
2017-11-23 09:35 . 2015-05-25 18:00 37888 ----a-w- c:\windows\SysWow64\relog.exe
2017-11-23 09:35 . 2015-05-25 18:00 17408 ----a-w- c:\windows\SysWow64\diskperf.exe
2017-11-23 09:34 . 2014-12-19 03:06 210432 ----a-w- c:\windows\system32\profsvc.dll
2017-11-23 09:32 . 2017-11-23 09:32 -------- d-----w- C:\totalcmd
2017-11-23 09:32 . 2017-11-23 09:32 -------- d-----w- c:\users\GT\AppData\Roaming\GHISLER
2017-11-23 08:54 . 2017-11-24 22:59 -------- d-----w- C:\AdwCleaner
2017-11-13 08:50 . 2013-10-19 02:18 81408 ----a-w- c:\windows\system32\imagehlp.dll
2017-11-13 08:50 . 2013-10-19 01:36 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2017-11-13 08:48 . 2017-11-13 08:48 -------- d-----w- c:\windows\system32\MRT
2017-11-13 08:47 . 2017-11-13 08:47 126925120 -c--a-w- c:\windows\system32\MRT-KB890830.exe
2017-11-13 08:01 . 2017-11-13 08:00 121304 ----a-w- c:\windows\system32\drivers\aswHdsKe.sys
2017-11-04 08:11 . 2015-07-30 13:13 103120 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2017-11-04 08:11 . 2015-07-30 13:13 124624 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2017-11-04 08:09 . 2013-10-14 17:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2017-11-04 07:53 . 2017-11-04 07:53 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2017-11-03 21:50 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2017-11-03 21:50 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2017-11-03 21:50 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2017-11-03 21:50 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2017-11-03 21:44 . 2010-12-23 10:42 1118720 ----a-w- c:\windows\system32\sbe.dll
2017-11-03 21:44 . 2010-12-23 10:36 259072 ----a-w- c:\windows\system32\mpg2splt.ax
2017-11-03 21:44 . 2010-12-23 05:54 850944 ----a-w- c:\windows\SysWow64\sbe.dll
2017-11-03 21:44 . 2010-12-23 05:50 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2017-11-03 21:44 . 2015-07-15 18:10 1743360 ----a-w- c:\windows\system32\sysmain.dll
2017-11-03 21:44 . 2015-07-15 20:26 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\mountmgr.sys.mui
2017-11-03 21:43 . 2015-07-10 17:51 3722752 ----a-w- c:\windows\system32\mstscax.dll
2017-11-03 21:43 . 2015-07-10 17:34 3221504 ----a-w- c:\windows\SysWow64\mstscax.dll
2017-11-03 21:43 . 2015-07-10 17:51 44032 ----a-w- c:\windows\system32\tsgqec.dll
2017-11-03 21:43 . 2015-07-10 17:51 158720 ----a-w- c:\windows\system32\aaclient.dll
2017-11-03 21:43 . 2015-07-10 17:34 36864 ----a-w- c:\windows\SysWow64\tsgqec.dll
2017-11-03 21:43 . 2015-07-10 17:33 131584 ----a-w- c:\windows\SysWow64\aaclient.dll
2017-11-03 21:22 . 2012-01-04 10:44 509952 ----a-w- c:\windows\system32\ntshrui.dll
2017-11-03 21:22 . 2012-01-04 08:58 442880 ----a-w- c:\windows\SysWow64\ntshrui.dll
2017-11-03 21:21 . 2015-09-01 18:14 503296 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tiptsf.dll
2017-11-03 21:21 . 2015-09-01 18:14 1247232 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tipskins.dll
2017-11-03 21:21 . 2015-09-01 18:14 110592 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2017-11-03 21:21 . 2015-09-01 18:13 224768 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2017-11-03 21:21 . 2015-09-01 17:52 348672 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
2017-11-03 21:21 . 2015-09-01 17:52 10240 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\ink\TabTip32.exe
2017-11-03 21:21 . 2015-09-01 18:12 544768 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipRes.dll
2017-11-03 21:21 . 2016-01-21 00:51 73664 ----a-w- c:\windows\system32\drivers\disk.sys
2017-11-03 21:21 . 2014-08-01 11:53 1031168 ----a-w- c:\windows\system32\TSWorkspace.dll
2017-11-03 21:21 . 2014-08-01 11:35 793600 ----a-w- c:\windows\SysWow64\TSWorkspace.dll
2017-11-03 21:18 . 2014-06-18 22:23 156312 ----a-w- c:\windows\system32\mscorier.dll
2017-11-03 21:18 . 2014-06-18 22:23 156824 ----a-w- c:\windows\SysWow64\mscorier.dll
2017-11-03 21:18 . 2014-06-18 22:23 73880 ----a-w- c:\windows\system32\mscories.dll
2017-11-03 21:18 . 2014-06-18 22:23 1943696 ----a-w- c:\windows\system32\dfshim.dll
2017-11-03 21:18 . 2014-06-18 22:23 81560 ----a-w- c:\windows\SysWow64\mscories.dll
2017-11-03 21:18 . 2014-06-18 22:23 1131664 ----a-w- c:\windows\SysWow64\dfshim.dll
2017-11-03 21:16 . 2017-09-08 15:30 2319872 ----a-w- c:\windows\system32\tquery.dll
2017-11-03 21:15 . 2017-09-13 15:09 65536 ----a-w- c:\windows\SysWow64\TSpkg.dll
2017-11-03 21:11 . 2012-12-07 11:20 43520 ----a-w- c:\windows\system32\csrr.rs
2017-11-03 21:10 . 2014-10-14 02:13 683520 ----a-w- c:\windows\system32\termsrv.dll
2017-11-03 21:08 . 2015-07-09 17:58 82944 ----a-w- c:\windows\system32\dwmapi.dll
2017-11-03 21:08 . 2015-07-09 17:58 1632256 ----a-w- c:\windows\system32\dwmcore.dll
2017-11-03 21:08 . 2015-07-09 17:42 67584 ----a-w- c:\windows\SysWow64\dwmapi.dll
2017-11-03 21:08 . 2015-07-09 17:42 1372160 ----a-w- c:\windows\SysWow64\dwmcore.dll
2017-11-03 20:22 . 2015-07-15 03:19 52736 ----a-w- c:\windows\system32\basesrv.dll
2017-11-03 20:20 . 2011-12-30 06:26 515584 ----a-w- c:\windows\system32\timedate.cpl
2017-11-03 20:20 . 2011-12-30 05:27 478720 ----a-w- c:\windows\SysWow64\timedate.cpl
2017-11-03 20:20 . 2014-12-06 04:17 303616 ----a-w- c:\windows\system32\nlasvc.dll
2017-11-03 20:20 . 2014-12-06 03:50 52224 ----a-w- c:\windows\SysWow64\nlaapi.dll
2017-11-03 20:20 . 2014-12-06 03:50 156672 ----a-w- c:\windows\SysWow64\ncsi.dll
2017-11-03 20:19 . 2014-06-18 02:19 449024 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2017-11-03 20:19 . 2014-06-18 02:18 692736 ----a-w- c:\windows\system32\osk.exe
2017-11-03 20:19 . 2014-06-18 01:51 646144 ----a-w- c:\windows\SysWow64\osk.exe
2017-11-03 20:18 . 2015-02-03 03:31 215552 ----a-w- c:\windows\system32\ubpm.dll
2017-11-03 20:18 . 2015-02-03 03:12 171520 ----a-w- c:\windows\SysWow64\ubpm.dll
2017-11-03 20:18 . 2013-08-05 02:25 155584 ----a-w- c:\windows\system32\drivers\ataport.sys
2017-11-03 20:18 . 2013-05-27 05:50 1011712 ----a-w- c:\program files\Windows Defender\MpSvc.dll
2017-11-03 20:18 . 2013-05-27 05:50 571904 ----a-w- c:\program files\Windows Defender\MpClient.dll
2017-11-03 20:18 . 2013-05-27 05:50 314880 ----a-w- c:\program files\Windows Defender\MpCommu.dll
2017-11-03 20:18 . 2013-05-27 04:57 392704 ----a-w- c:\program files (x86)\Windows Defender\MpClient.dll
2017-11-03 20:18 . 2013-05-27 04:57 4608 ----a-w- c:\program files (x86)\Windows Defender\MsMpLics.dll
2017-11-03 20:18 . 2013-05-27 04:57 54784 ----a-w- c:\program files (x86)\Windows Defender\MpOAV.dll
2017-11-03 20:18 . 2013-05-27 03:15 9216 ----a-w- c:\program files (x86)\Windows Defender\MpAsDesc.dll
2017-11-03 20:18 . 2015-01-29 03:19 2543104 ----a-w- c:\windows\system32\wpdshext.dll
2017-11-03 20:18 . 2015-01-29 03:02 2311168 ----a-w- c:\windows\SysWow64\wpdshext.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2017-11-04 07:58 . 2017-11-04 07:58 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2017-11-04 07:58 . 2017-11-04 07:58 243200 ----a-w- c:\windows\system32\webcheck.dll
2017-10-25 18:11 . 2010-06-26 08:52 327008 ----a-w- c:\windows\system32\RaCoInstx.dll
2017-10-25 18:11 . 2010-06-29 07:01 931168 ----a-w- c:\windows\system32\drivers\netr28x.sys
2017-10-25 18:09 . 2017-10-25 18:11 7367200 ----a-w- c:\windows\system32\RTSUSTORicon.dll
2017-10-25 18:09 . 2017-10-25 18:10 232992 ----a-w- c:\windows\system32\drivers\RtsUStor.sys
2017-10-25 18:06 . 2009-07-13 08:47 2867712 ----a-w- c:\windows\SysWow64\atiumdva.dll
2017-10-25 18:06 . 2009-07-13 08:46 274432 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2017-10-25 18:06 . 2009-07-13 08:47 3105280 ----a-w- c:\windows\SysWow64\atiumdag.dll
2017-10-25 18:06 . 2009-07-13 08:48 2622976 ----a-w- c:\windows\system32\atiumd6a.dll
2017-10-25 18:06 . 2009-07-13 08:48 4059648 ----a-w- c:\windows\system32\atiumd64.dll
2017-10-25 18:06 . 2009-07-13 08:48 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2017-10-25 18:06 . 2009-07-13 08:48 120320 ----a-w- c:\windows\system32\atitmm64.dll
2017-10-25 18:06 . 2009-07-13 08:50 11651584 ----a-w- c:\windows\SysWow64\atioglxx.dll
2017-10-25 18:06 . 2009-07-13 08:48 421376 ----a-w- c:\windows\system32\atipdl64.dll
2017-10-25 18:06 . 2009-07-13 08:48 51200 ----a-w- c:\windows\system32\ATIODCLI.exe
2017-10-25 18:06 . 2009-07-13 08:48 332288 ----a-w- c:\windows\system32\ATIODE.exe
2017-10-25 18:06 . 2009-07-13 08:51 15062528 ----a-w- c:\windows\system32\atio6axx.dll
2017-10-25 18:06 . 2009-07-13 08:52 6036480 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2017-10-25 18:06 . 2009-07-13 08:50 51712 ----a-w- c:\windows\SysWow64\atimpc32.dll
2017-10-25 18:06 . 2009-07-13 08:50 51712 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2017-10-25 18:06 . 2009-07-13 08:50 52224 ----a-w- c:\windows\system32\atimpc64.dll
2017-10-25 18:06 . 2009-07-13 08:50 52224 ----a-w- c:\windows\system32\amdpcom64.dll
2017-10-25 18:06 . 2009-07-13 08:50 12288 ----a-w- c:\windows\system32\atimuixx.dll
2017-10-25 18:06 . 2009-07-13 21:59 2921984 ----a-w- c:\windows\system32\atidxx64.dll
2017-10-25 18:06 . 2009-07-13 08:52 420352 ----a-w- c:\windows\system32\atieclxx.exe
2017-10-25 18:06 . 2009-07-13 08:52 59392 ----a-w- c:\windows\system32\atiedu64.dll
2017-10-25 18:06 . 2009-07-13 08:52 203264 ----a-w- c:\windows\system32\atiesrxx.exe
2017-10-25 18:06 . 2009-07-13 08:53 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2017-10-25 18:06 . 2009-07-13 08:53 2469888 ----a-w- c:\windows\SysWow64\atidxx32.dll
2017-10-25 18:06 . 2009-07-13 08:54 4289536 ----a-w- c:\windows\system32\aticaldd64.dll
2017-10-25 18:06 . 2009-07-13 08:53 53248 ----a-w- c:\windows\SysWow64\aticalrt.dll
2017-10-25 18:06 . 2009-07-13 08:53 48640 ----a-w- c:\windows\system32\aticalrt64.dll
2017-10-25 18:06 . 2009-07-13 08:54 3264512 ----a-w- c:\windows\SysWow64\aticaldd.dll
2017-10-25 18:06 . 2009-07-13 08:54 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2017-10-25 18:06 . 2009-07-13 08:54 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2017-10-25 18:06 . 2009-07-13 08:54 251904 ----a-w- c:\windows\system32\atiadlxx.dll
2017-10-25 18:06 . 2009-07-13 08:54 184320 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2017-10-25 18:06 . 2009-07-13 08:54 118784 ----a-w- c:\windows\system32\atibtmon.exe
2017-10-25 18:06 . 2009-07-13 08:54 53248 ----a-w- c:\windows\SysWow64\aticalcl.dll
2017-10-25 18:06 . 2009-07-13 08:54 41984 ----a-w- c:\windows\system32\aticalcl64.dll
2017-10-25 18:03 . 2017-10-25 18:05 150528 ----a-w- c:\windows\system32\SRSWOW64.dll
2017-10-25 18:03 . 2017-10-25 18:05 513536 ----a-w- c:\windows\system32\SRSTSX64.dll
2017-10-25 18:03 . 2017-10-25 18:05 211376 ----a-w- c:\windows\system32\SRSTSH64.dll
2017-10-25 18:03 . 2017-10-25 18:05 193536 ----a-w- c:\windows\system32\SRSHP64.dll
2017-10-25 18:03 . 2017-10-25 18:05 611360 ----a-w- c:\windows\system32\RTSnMg64.cpl
2017-10-25 18:03 . 2017-10-25 18:05 1292832 ----a-w- c:\windows\system32\RtPgEx64.dll
2017-10-25 18:03 . 2017-10-25 18:05 332320 ----a-w- c:\windows\system32\RtlCPAPI64.dll
2017-10-25 18:03 . 2017-10-25 18:05 1829664 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2017-10-25 18:03 . 2017-10-25 18:05 149536 ----a-w- c:\windows\system32\RtkCfg64.dll
2017-10-25 18:03 . 2017-10-25 18:05 417824 ----a-w- c:\windows\system32\RtkApi64.dll
2017-10-25 18:03 . 2017-10-25 18:05 1603104 ----a-w- c:\windows\system32\RtkAPO64.dll
2017-10-25 18:03 . 2017-10-25 18:05 63008 ----a-w- c:\windows\system32\RCoInst64.dll
2017-10-25 18:03 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RP3DHT64.dll
2017-10-25 18:03 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RP3DAA64.dll
2017-10-25 18:03 . 2017-10-25 18:05 1167904 ----a-w- c:\windows\system32\RTCOM64.dll
2017-10-25 18:03 . 2017-10-25 18:05 311296 ----a-w- c:\windows\system32\MaxxAudioAPO20.dll
2017-10-25 18:03 . 2017-10-25 18:05 176640 ----a-w- c:\windows\system32\FMAPO64.dll
2017-10-25 18:03 . 2017-10-25 18:05 108032 ----a-w- c:\windows\system32\AERTAR64.dll
2017-10-25 18:03 . 2017-10-25 18:05 166400 ----a-w- c:\windows\system32\AERTAC64.dll
2017-10-25 18:02 . 2017-10-25 18:05 1604128 ----a-w- c:\windows\system32\RtkHDM64.dll
2017-10-25 18:02 . 2017-10-25 18:05 58912 ----a-w- c:\windows\system32\RHCoInst64.dll
2017-10-25 18:02 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RH3DHT64.dll
2017-10-25 18:02 . 2017-10-25 18:05 205472 ----a-w- c:\windows\system32\drivers\RtHDMIVX.sys
2017-10-25 18:02 . 2017-10-25 18:05 1291808 ----a-w- c:\windows\system32\RHDMEx64.dll
2017-10-25 18:02 . 2017-10-25 18:05 304640 ----a-w- c:\windows\system32\RH3DAA64.dll
2017-10-25 18:02 . 2017-10-25 18:05 831488 ----a-w- c:\windows\RtlExUpd.dll
2017-10-25 18:00 . 2017-10-25 18:01 439296 ----a-w- c:\windows\system32\drivers\rtl8187Se.sys
2017-09-13 15:28 . 2017-11-03 21:16 190464 ----a-w- c:\windows\system32\rpchttp.dll
2017-09-13 15:09 . 2017-11-03 21:16 141312 ----a-w- c:\windows\SysWow64\rpchttp.dll
2017-09-13 15:08 . 2017-11-03 21:15 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2017-08-30 12:23 . 2017-08-30 12:23 993632 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2017-08-30 12:23 . 2017-08-30 12:23 987840 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2017-08-30 12:23 . 2017-08-30 12:23 690008 ----a-w- c:\windows\system32\msvcp120_clr0400.dll
2017-08-30 12:23 . 2017-08-30 12:23 485576 ----a-w- c:\windows\SysWow64\msvcp120_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MBAMService]
@="Service"
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 aswbIDSAgent;aswbIDSAgent;c:\program files\AVAST Software\Avast\x64\aswidsagenta.exe;c:\program files\AVAST Software\Avast\x64\aswidsagenta.exe [x]
R3 aswHdsKe;aswHdsKe;c:\windows\system32\drivers\aswHdsKe.sys;c:\windows\SYSNATIVE\drivers\aswHdsKe.sys [x]
R3 aswHwid;aswHwid;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys;c:\windows\SYSNATIVE\Drivers\RtsUStor.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 aswbidsh;aswbidsh;c:\windows\system32\drivers\aswbidsha.sys;c:\windows\SYSNATIVE\drivers\aswbidsha.sys [x]
S0 aswblog;aswblog;c:\windows\system32\drivers\aswbloga.sys;c:\windows\SYSNATIVE\drivers\aswbloga.sys [x]
S0 aswbuniv;aswbuniv;c:\windows\system32\drivers\aswbuniva.sys;c:\windows\SYSNATIVE\drivers\aswbuniva.sys [x]
S0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys;c:\windows\SYSNATIVE\drivers\aswRvrt.sys [x]
S0 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys;c:\windows\SYSNATIVE\drivers\aswVmm.sys [x]
S1 aswArPot;aswArPot;c:\windows\system32\drivers\aswArPot.sys;c:\windows\SYSNATIVE\drivers\aswArPot.sys [x]
S1 aswbidsdriver;aswbidsdriver;c:\windows\system32\drivers\aswbidsdrivera.sys;c:\windows\SYSNATIVE\drivers\aswbidsdrivera.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ESProtectionDriver;Malwarebytes Anti-Exploit;c:\windows\system32\drivers\mbae64.sys;c:\windows\SYSNATIVE\drivers\mbae64.sys [x]
S1 ZAM;ZAM Helper Driver;c:\windows\System32\drivers\zam64.sys;c:\windows\SYSNATIVE\drivers\zam64.sys [x]
S1 ZAM_Guard;ZAM Guard Driver;c:\windows\System32\drivers\zamguard64.sys;c:\windows\SYSNATIVE\drivers\zamguard64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 MBAMService;Malwarebytes Service;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe;c:\program files\Malwarebytes\Anti-Malware\mbamservice.exe [x]
S2 ZAMSvc;ZAM Controller Service;c:\program files (x86)\Zemana AntiMalware\ZAM.exe;c:\program files (x86)\Zemana AntiMalware\ZAM.exe [x]
S3 MBAMFarflt;MBAMFarflt;c:\windows\system32\DRIVERS\farflt.sys;c:\windows\SYSNATIVE\DRIVERS\farflt.sys [x]
S3 MBAMProtection;MBAMProtection;c:\windows\system32\DRIVERS\mbam.sys;c:\windows\SYSNATIVE\DRIVERS\mbam.sys [x]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\System32\Drivers\mbamswissarmy.sys;c:\windows\SYSNATIVE\Drivers\mbamswissarmy.sys [x]
S3 MBAMWebProtection;MBAMWebProtection;c:\windows\system32\DRIVERS\mwac.sys;c:\windows\SYSNATIVE\DRIVERS\mwac.sys [x]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys;c:\windows\SYSNATIVE\DRIVERS\netr28x.sys [x]
S3 SiSGbeLH;SiS191/SiS190 – ovladač NDIS 6.0 zařízení sítě Ethernet;c:\windows\system32\DRIVERS\SiSG664.sys;c:\windows\SYSNATIVE\DRIVERS\SiSG664.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTION
*NewlyCreated* - MBAMSWISSARMY
*NewlyCreated* - MBAMWEBPROTECTION
*NewlyCreated* - ZAM
*NewlyCreated* - ZAM_GUARD
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr QWAVE wcncsvc
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00asw]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2001-12-31 23:27 1793296 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvLaunch.exe" [2001-12-31 253344]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.255.255.10 10.255.255.20 8.8.8.8 192.168.1.1
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2017-11-27 14:50:37
ComboFix-quarantined-files.txt 2017-11-27 13:50
.
Před spuštěním: Volných bajtů: 253 408 108 544
Po spuštění: Volných bajtů: 253 270 855 680
.
- - End Of File - - F806993E7A9FED8D7C49E28CEA5AAC67
A36C5E4F47E84449FF07ED3517B43A31