Prosím o kontrolu logu

Příspěvekod **jaro3** » 10 led 2014 10:49

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
File::
c:\windows\system32\drivers\04873140.sys

Folder::
c:\program files (x86)\Skype\Updater

Driver::
SkypeUpdate

RegLock::
[HKEY_USERS\S-1-5-21-3749429746-3335520310-1313340140-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

Reklama

Kotik · Příspěvekod **Kotik** » 10 led 2014 16:05

ComboFix:

ComboFix 14-01-08.03 - Kotik 10.01.2014 11:26:59.4.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3767.2270 [GMT 1:00]
Spuštěný z: c:\users\Kotik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Kotik\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 7.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
SP: ESET NOD32 Antivirus 7.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\system32\drivers\04873140.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\users\Kotik\AppData\Local\Temp\_MEI39682\_ctypes.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\_elementtree.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\_hashlib.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\_multiprocessing.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\_socket.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\_ssl.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\pyexpat.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\pysqlite2._sqlite.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\python27.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\pythoncom27.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\PyWinTypes27.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\select.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\unicodedata.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32api.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32com.shell.shell.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32crypt.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32event.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32file.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32inet.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32pdh.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32pipe.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32process.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32profile.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32security.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\win32ts.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\windows._lib_cacheinvalidation.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._controls_.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._core_.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._gdi_.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._html2.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._misc_.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._windows_.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wx._wizard.pyd
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wxbase294u_net_vc90.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wxbase294u_vc90.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wxmsw294u_adv_vc90.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wxmsw294u_core_vc90.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wxmsw294u_html_vc90.dll
c:\users\Kotik\AppData\Local\Temp\_MEI39682\wxmsw294u_webview_vc90.dll
c:\windows\system32\drivers\04873140.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-10 do 2014-01-10 )))))))))))))))))))))))))))))))
.
.
2014-01-10 14:28 . 2014-01-10 14:28 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-01-10 14:28 . 2014-01-10 14:28 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-01-10 09:06 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{44F9BC38-55E7-4138-AB22-0216D8C70C6B}\mpengine.dll
2014-01-08 19:19 . 2014-01-08 19:19 -------- d-----w- c:\programdata\boost_interprocess
2014-01-08 12:05 . 2014-01-08 12:05 -------- d-----w- c:\users\Kotik\Tracing
2014-01-08 10:58 . 2014-01-08 22:35 540696 ----a-w- c:\windows\system32\drivers\iaStor.sys.bak
2014-01-08 09:32 . 2014-01-08 10:41 -------- d-----w- C:\AdwCleaner
2014-01-06 19:23 . 2014-01-06 19:23 4558848 ----a-w- c:\windows\SysWow64\GPhotos.scr
2014-01-05 16:43 . 2014-01-05 21:02 -------- d-----w- c:\program files (x86)\VideoLAN
2013-12-28 21:12 . 2013-12-28 21:12 -------- d-----w- c:\program files (x86)\MSXML 4.0
2013-12-27 14:38 . 2013-12-27 14:38 -------- d-----w- c:\program files (x86)\Common Files\Yahoo!
2013-12-27 14:38 . 2013-12-27 14:40 -------- d-----w- c:\programdata\Pinnacle VideoSpin
2013-12-27 14:38 . 2013-12-27 14:38 -------- d-----w- c:\program files (x86)\Pinnacle
2013-12-27 14:37 . 2013-12-27 14:37 -------- d-----w- c:\programdata\Pinnacle
2013-12-27 14:37 . 2013-12-27 14:37 -------- d-----w- c:\users\Kotik\AppData\Local\Downloaded Installations
2013-12-27 12:46 . 2013-12-27 12:48 -------- d-----w- c:\programdata\DVD Shrink
2013-12-27 12:46 . 2013-12-27 12:46 -------- d-----w- c:\program files (x86)\DVD Shrink
2013-12-26 22:06 . 2013-12-26 22:06 -------- d-----w- C:\ZAV_DOMA
2013-12-26 08:26 . 2013-12-26 12:27 -------- d-----w- c:\program files (x86)\Common Files\Steam
2013-12-26 08:25 . 2014-01-08 11:34 -------- d-----w- c:\program files (x86)\Steam
2013-12-18 15:12 . 2013-12-18 15:12 -------- d-----w- c:\users\Default\AppData\Local\Google
2013-12-14 17:05 . 2013-12-14 17:05 184968 ----a-w- c:\windows\system32\drivers\ESLWireACD.sys
2013-12-12 00:08 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2013-12-12 00:08 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2013-12-12 00:08 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2013-12-12 00:08 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2013-12-12 00:08 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-10 09:11 . 2013-04-29 17:57 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2014-01-10 09:11 . 2013-04-29 17:56 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-12-15 02:00 . 2013-04-29 23:35 90708896 ----a-w- c:\windows\system32\MRT.exe
2013-12-10 23:13 . 2013-05-13 16:57 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-10 23:13 . 2013-05-13 16:57 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-04 00:17 . 2013-12-04 00:17 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-12-04 00:17 . 2013-12-04 00:17 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-12-04 00:17 . 2013-12-04 00:17 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-12-04 00:17 . 2013-12-04 00:17 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-12-04 00:17 . 2013-12-04 00:17 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-12-04 00:17 . 2013-12-04 00:17 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-12-04 00:17 . 2013-12-04 00:17 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-12-04 00:17 . 2013-12-04 00:17 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-12-04 00:17 . 2013-12-04 00:17 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-12-04 00:17 . 2013-12-04 00:17 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-12-04 00:17 . 2013-12-04 00:17 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-12-04 00:17 . 2013-12-04 00:17 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-12-04 00:17 . 2013-12-04 00:17 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-12-04 00:17 . 2013-12-04 00:17 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-12-04 00:17 . 2013-12-04 00:17 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-12-04 00:16 . 2013-12-04 00:16 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-12-04 00:16 . 2013-12-04 00:16 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-12-04 00:16 . 2013-12-04 00:16 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-12-04 00:16 . 2013-12-04 00:16 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-12-04 00:16 . 2013-12-04 00:16 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-12-04 00:16 . 2013-12-04 00:16 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-12-04 00:16 . 2013-12-04 00:16 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-12-04 00:16 . 2013-12-04 00:16 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-12-04 00:16 . 2013-12-04 00:16 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-12-04 00:16 . 2013-12-04 00:16 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-12-04 00:16 . 2013-12-04 00:16 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-12-04 00:16 . 2013-12-04 00:16 247808 ----a-w- c:\windows\system32\msls31.dll
2013-12-04 00:16 . 2013-12-04 00:16 195584 ----a-w- c:\windows\system32\msrating.dll
2013-12-04 00:16 . 2013-12-04 00:16 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-12-04 00:16 . 2013-12-04 00:16 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-12-04 00:16 . 2013-12-04 00:16 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-12-04 00:16 . 2013-12-04 00:16 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-12-04 00:16 . 2013-12-04 00:16 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-12-04 00:16 . 2013-12-04 00:16 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-12-04 00:16 . 2013-12-04 00:16 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-12-04 00:16 . 2013-12-04 00:16 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-12-04 00:16 . 2013-12-04 00:16 413696 ----a-w- c:\windows\system32\html.iec
2013-12-04 00:16 . 2013-12-04 00:16 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-12-04 00:16 . 2013-12-04 00:16 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-12-04 00:16 . 2013-12-04 00:16 81408 ----a-w- c:\windows\system32\icardie.dll
2013-12-04 00:16 . 2013-12-04 00:16 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-12-04 00:16 . 2013-12-04 00:16 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-12-04 00:16 . 2013-12-04 00:16 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-12-04 00:16 . 2013-12-04 00:16 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-12-04 00:16 . 2013-12-04 00:16 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-12-04 00:16 . 2013-12-04 00:16 235520 ----a-w- c:\windows\system32\url.dll
2013-12-04 00:16 . 2013-12-04 00:16 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-12-04 00:16 . 2013-12-04 00:16 101376 ----a-w- c:\windows\system32\inseng.dll
2013-12-04 00:16 . 2013-12-04 00:16 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-12-04 00:16 . 2013-12-04 00:16 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-12-04 00:16 . 2013-12-04 00:16 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-12-04 00:16 . 2013-12-04 00:16 143872 ----a-w- c:\windows\system32\wextract.exe
2013-12-04 00:16 . 2013-12-04 00:16 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-12-04 00:16 . 2013-12-04 00:16 147968 ----a-w- c:\windows\system32\occache.dll
2013-12-04 00:16 . 2013-12-04 00:16 13824 ----a-w- c:\windows\system32\mshta.exe
2013-12-04 00:16 . 2013-12-04 00:16 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-12-04 00:16 . 2013-12-04 00:16 774144 ----a-w- c:\windows\system32\jscript.dll
2013-12-04 00:16 . 2013-12-04 00:16 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-12-04 00:16 . 2013-12-04 00:16 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-11-23 18:26 . 2013-12-11 10:27 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-11 10:27 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-19 02:33 . 2013-04-29 09:52 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-11-12 02:23 . 2013-12-11 10:26 2048 ----a-w- c:\windows\system32\tzres.dll
2013-11-12 02:07 . 2013-12-11 10:26 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-10-30 02:32 . 2013-12-11 10:27 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-10-30 02:19 . 2013-12-11 10:27 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
2013-10-30 01:24 . 2013-12-11 10:27 3155968 ----a-w- c:\windows\system32\win32k.sys
2013-10-19 02:18 . 2013-12-11 10:27 81408 ----a-w- c:\windows\system32\imagehlp.dll
2013-10-19 01:36 . 2013-12-11 10:27 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2013-10-14 17:00 . 2013-12-04 00:20 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2013-11-02 11:35 1727176 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2013-11-02 11:35 1727176 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2013-11-02 11:35 1727176 ----a-w- c:\progra~2\MICROS~2\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OscarEditor"="c:\program files (x86)\OSCAR Editor\OscarEditor.exe" [2009-11-24 2642432]
"SansaDispatch"="c:\users\Kotik\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe" [2013-06-26 613888]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-12-06 20203904]
"Akamai NetSession Interface"="c:\users\Kotik\AppData\Local\Akamai\netsession_win.exe" [2013-06-04 4489472]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2010-03-04 284696]
"BackupManagerTray"="c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" [2010-03-08 260608]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2010-03-03 1300560]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-06-13 336384]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files (x86)\Acer\Acer VCM\AcerVCM.exe [2010-5-14 704032]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-3-26 1125152]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer6"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS;c:\windows\SYSNATIVE\drivers\AmUStor.SYS [x]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 tizeqdrv;tizeqdrv;c:\users\Kotik\AppData\Roaming\TZAC2\tizeq64.sys;c:\users\Kotik\AppData\Roaming\TZAC2\tizeq64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XFDriver64;XFDriver64;c:\program files (x86)\Xfire2\XFDriver64.sys;c:\program files (x86)\Xfire2\XFDriver64.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 ESLWireAC;ESLWireAC;c:\windows\system32\drivers\ESLWireACD.sys;c:\windows\SYSNATIVE\drivers\ESLWireACD.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe;c:\program files (x86)\Launch Manager\dsiwmis.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [x]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfpr.sys [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [x]
S2 EslWireHelper;ESL Wire Helper Service;c:\program files\EslWire\service\WireHelperSvc.exe;c:\program files\EslWire\service\WireHelperSvc.exe [x]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe;c:\program files (x86)\Acer\Registration\GREGsvc.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe;c:\program files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [x]
S2 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe;c:\program files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [x]
S2 ODDPwrSvc;Acer ODD Power Service;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [x]
S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [x]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys;c:\windows\SYSNATIVE\DRIVERS\HECIx64.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys;c:\windows\SYSNATIVE\DRIVERS\igdpmd64.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys;c:\windows\SYSNATIVE\DRIVERS\L1C62x64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 USBMULCD;USB Multi-Channel Audio Device Interface;c:\windows\system32\drivers\CM10664.sys;c:\windows\SYSNATIVE\drivers\CM10664.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 21:10 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-05-13 23:13]
.
2014-01-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-19 13:00]
.
2014-01-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA1cef041877faec9.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-19 13:00]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-04-22 10775072]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2010-04-22 2040352]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-04-09 320000]
"ODDPwr"="c:\program files\Acer\Optical Drive Power Management\ODDPwr.exe" [2010-04-22 223264]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2010-04-23 496160]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-04-29 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-04-29 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-04-29 415256]
"Cm106Sound"="c:\windows\Syswow64\cm106.dll" [2009-06-11 8126464]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2013-09-12 5618456]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mLocal Page = c:\windows\SYSTEM32\blank.htm
uInternet Settings,ProxyOverride = <local>
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
TCP: DhcpNameServer = 192.168.1.1 192.168.1.1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3749429746-3335520310-1313340140-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.Email.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\Launch Manager\LMworker.exe
c:\windows\SysWOW64\RunDll32.exe
.
**************************************************************************
.
Celkový čas: 2014-01-10 16:03:33 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-01-10 15:03
ComboFix2.txt 2014-01-09 22:20
.
Před spuštěním: Volných bajtů: 287 901 970 432
Po spuštění: Volných bajtů: 288 480 870 400
.
- - End Of File - - BCD67E6CF62B7D77D72B9FCFE262F62E

____________________________________________________________________________________________________________________________________

aswMBR:

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2014-01-10 16:06:51
-----------------------------
16:06:51.556 OS Version: Windows x64 6.1.7601 Service Pack 1
16:06:51.556 Number of processors: 4 586 0x2505
16:06:51.557 ComputerName: KOTIK-PC UserName: Kotik
16:06:53.521 Initialize success
16:08:14.425 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
16:08:14.432 Disk 0 Vendor: WDC_WD75 01.0 Size: 715404MB BusType: 3
16:08:14.565 Disk 0 MBR read successfully
16:08:14.569 Disk 0 MBR scan
16:08:14.572 Disk 0 Windows 7 default MBR code
16:08:14.576 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 13312 MB offset 2048
16:08:14.597 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 27265024
16:08:14.602 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 351057 MB offset 27469824
16:08:14.606 Disk 0 Partition - 00 0F Extended LBA 350933 MB offset 746434560
16:08:14.641 Disk 0 Partition 4 00 07 HPFS/NTFS NTFS 350932 MB offset 746436608
16:08:14.675 Disk 0 scanning C:\Windows\system32\drivers
16:09:10.633 Service scanning
16:09:32.269 Modules scanning
16:09:32.280 Disk 0 trace - called modules:
16:09:32.350 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys
16:09:32.359 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004c4b060]
16:09:32.367 3 CLASSPNP.SYS[fffff88001b6643f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80049c1050]
16:09:32.374 Scan finished successfully
16:09:49.880 Disk 0 MBR has been saved successfully to "C:\Users\Kotik\Desktop\MBR.dat"
16:09:49.888 The log file has been saved successfully to "C:\Users\Kotik\Desktop\aswMBR.txt"

Příspěvekod **memphisto** » 10 led 2014 17:18

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.

+ nový HJT

Jak je na tom PC?

Kotik · Příspěvekod **Kotik** » 10 led 2014 19:23

Jak je na tom PC nevím, zatím funguje dobře, ono tamty "problémy" se projevovaly jenom náhodně, tak jsem chtěl preventivně si PC nechat zkontrolovat. Akorát pořád nefunguje ten Movie Maker, hází pořád stejnou hlášku, ale s tím asi nic spolu neuděláme.

EDIT:
Tak problém přeci jenom ještě mám, nejde mi v Internet Exploreru (verze 11.0.9600.16476, verze aktualizace: 11.0.2) zadávat ručně adresa do řádku adresa (skvělý slovní obrat :lol:

), jakmile tam cokoliv napíši, nebo zkopíruji odkaz a odentruji, neudělá prohlížeč nic nebo začne problikávat nebo se připojí - málo kdy. Prohlížení internetu funguje, domovská stránka se načte, atd., ale ručně prostě nejde zadat. Mě osobně to až tak netrápí, používám Chrome, ale občas jsem ho používal při stahování z uložta (jde stahovat současně v každém prohlížeči jeden soubor i při free stahování). Nevím, kde by mohl být zakopán pes, ale možná by to mohla způsobit nějaká špatná aktualizace W7, co myslíte? Když mi nejde i již zmíněný Windows Movie Maker, respektive jde, ale nejde vkládat video, takže v podstatě nejde.
Zkoušel jsem ručně vyhledat nové aktualizace, zda-li by problém opravily, žádné nejsou.

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:20:49, on 10.1.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe
C:\Users\Kotik\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Kotik\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Acer\Acer VCM\AcerVCM.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Users\Kotik\AppData\Local\Akamai\netsession_win.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
C:\Windows\system\Cm106eye.exe
C:\Users\Kotik\Desktop\Programy\quietHDD.exe
C:\Users\Kotik\Desktop\Programy\HiJackThis.exe
C:\Windows\SysWOW64\DllHost.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/p/?LinkId=255141
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~2\Office15\URLREDIR.DLL
O2 - BHO: Microsoft SkyDrive Pro Browser Helper - {D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF} - C:\PROGRA~2\MICROS~2\Office15\GROOVEEX.DLL
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [BackupManagerTray] "C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe" -h -k
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [OscarEditor] "C:\Program Files (x86)\OSCAR Editor\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [SansaDispatch] C:\Users\Kotik\AppData\Roaming\SanDisk\Sansa Updater\SansaDispatch.exe
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Akamai NetSession Interface] "C:\Users\Kotik\AppData\Local\Akamai\netsession_win.exe"
O4 - Global Startup: Acer VCM.lnk = ?
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: osf - {D924BDC6-C83A-4BD5-90D0-095128A113D1} - C:\Program Files (x86)\Microsoft Office\Office15\MSOSB.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer PowerSmart Manager\ePowerSvc.exe
O23 - Service: ESL Wire Helper Service (EslWireHelper) - Unknown owner - C:\Program Files\EslWire\service\WireHelperSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NTI IScheduleSvc - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe
O23 - Service: NTI Backup Now 5 Backup Service (NTIBackupSvc) - NewTech InfoSystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe
O23 - Service: NTI Backup Now 5 Scheduler Service (NTISchedulerSvc) - NewTech Infosystems, Inc. - C:\Program Files (x86)\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: TeamViewer 8 (TeamViewer8) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11496 bytes

Příspěvekod **jaro3** » 11 led 2014 11:07

IE11 má určitě problémy , vrátil bych se k předešlé verzi. Nebo doporučím FF a Operu.

Kotik · Příspěvekod **Kotik** » 11 led 2014 12:13

Dobrá, říkám, já používám Chrome, a kvůli stahováni jednou za uherský rok jsem nechtěl instalovat další program (prohlížeč), raději jsem ten problém zmínil, když už jsme v tom čištění, co já vím, jestli to s něčím nesouvisí, protože to blikání vypadá dost zajímavě :lol:

.

A co se týká posledního HJT a čištění, je vše už v pořádku?

Příspěvekod **Orcus** » 11 led 2014 22:33

Co se týče čištění je to OK. Téma můžeš označit za vyřešené.

Kotik · Příspěvekod **Kotik** » 11 led 2014 23:14

OK, tímto Vám všem moc děkuji a téma uzavírám.

Prosím o kontrolu logu Vyřešeno

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu Vyřešeno

Kdo je online