Zasekaný ntb HP 635 Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
Uživatelský avatar
MrAnnix99
Level 3.5
Level 3.5
Příspěvky: 935
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod MrAnnix99 » 20 črc 2013 20:42

ComboFix 13-07-03.01 - JAKUB 20.07.2013 20:22:30.5.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3835.1663 [GMT 2:00]
Spuštěný z: c:\users\JAKUB\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\JAKUB\Desktop\CFScript.txt
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\AVG
c:\program files (x86)\Seznam.cz
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.autoupdate-1.0.5-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.chromelisticka-1.4.2.1-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.szninstall-1.1.3-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.sznsetup-1.1.1-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\packages.inf
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-base-1.0.0-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-core-4-4.1.2-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-email-4-4.0.4-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-fflisticka-2.5.4-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-ielisticka-2.6.2-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-listicka-2.6.2-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-seznamdesktop-1.0.4-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-srank-4.1.1-win32.zip
c:\program files (x86)\Seznam.cz\distribution\partner.conf
c:\program files (x86)\Seznam.cz\distribution\sources.inf
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\program files (x86)\Seznam.cz\distribution\sznsetup.exe
c:\programdata\IBUpdaterService
c:\programdata\IBUpdaterService\repository.xml
c:\users\JAKUB\AppData\Roaming\AVG
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000001.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000002.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000003.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000004.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Dashboard\IntegratorStates_en-US.xml
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Speed Optimizer\SpeedOptimizerStates.xml
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\StartUp Manager\PreviousEntries.dat
c:\users\JAKUB\AppData\Roaming\Seznam.cz
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\4686libfoxloader.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\4689libfoxloader-x64.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\ffkill.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libfoxcub-x64.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libfoxcub.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libchinst.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\msvcp100.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\msvcr100.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\unlockInstance.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\emailstates.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\foxcub.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\regcfg.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\remote.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxcub.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libchinst.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\unlockInstance.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\unlockInstance.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\chrome\partner.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\listickaconfig.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\listickanastaveni.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\speeddial.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\szndesktop.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install.log
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.autoupdate-1.0.5-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.chromelisticka-1.4.2.1-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.szninstall-1.1.3-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.sznsetup-1.1.1-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\packages.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-base-1.0.0-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-core-4-4.1.2-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-email-4-4.0.4-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-fflisticka-2.5.4-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-ielisticka-2.6.2-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-listicka-2.6.2-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-seznamdesktop-1.0.4-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-srank-4.1.1-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\packages.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\partner.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\sources.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\sznsetup.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_1.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_1.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.reconfigure.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.uninstall.bat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-06-20 do 2013-07-20 )))))))))))))))))))))))))))))))
.
.
2013-07-20 18:32 . 2013-07-20 18:32 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-07-20 18:32 . 2013-07-20 18:32 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-20 08:46 . 2013-07-20 08:46 -------- d-----w- c:\users\JAKUB\AppData\Roaming\WebCake
2013-07-20 08:46 . 2013-07-20 08:46 -------- d-----w- c:\program files (x86)\WebCake
2013-07-20 08:46 . 2013-07-20 08:46 -------- d-----w- c:\programdata\Tarma Installer
2013-07-20 08:46 . 2013-07-20 08:48 -------- d-----w- c:\users\JAKUB\AppData\Roaming\PerformerSoft
2013-07-20 08:46 . 2013-06-19 12:58 19456 ----a-w- c:\windows\system32\roboot64.exe
2013-07-20 08:36 . 2013-07-20 08:36 -------- d-----w- c:\users\JAKUB\AppData\Local\Stardock_Corporation
2013-07-20 08:36 . 2013-07-20 08:36 -------- d-----w- c:\programdata\Stardock
2013-07-20 08:35 . 2013-07-20 08:35 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Stardock
2013-07-20 08:35 . 2013-07-20 08:35 -------- d-----w- c:\program files (x86)\Stardock
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\users\JAKUB\AppData\Roaming\IsolatedStorage
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\programdata\IsolatedStorage
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\users\JAKUB\AppData\Local\_
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\program files\FileViewPro
2013-07-20 08:04 . 2013-07-20 08:04 -------- d-----w- c:\program files (x86)\GadgetPack
2013-07-19 17:11 . 2013-07-19 17:11 -------- d-----w- c:\program files (x86)\Mortal Kombat Komplete Edition
2013-07-19 17:03 . 2013-07-19 17:08 -------- d-----w- c:\program files (x86)\F1 Race Stars
2013-07-19 14:57 . 2013-07-19 14:57 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Milestone
2013-07-19 14:42 . 2013-07-19 14:42 -------- d-----w- c:\program files (x86)\Milestone
2013-07-19 11:09 . 2013-07-19 14:29 -------- d-----w- c:\program files (x86)\Prototype 2
2013-07-16 18:47 . 2013-07-16 18:47 -------- d-----w- c:\program files\Activision
2013-07-16 17:33 . 2013-07-16 17:33 -------- d-----w- c:\program files (x86)\SQUARE ENIX
2013-07-16 13:03 . 2004-08-18 08:34 442368 ----a-r- c:\windows\SysWow64\vp6vfw.dll
2013-07-15 18:08 . 2013-07-15 18:08 -------- d-----w- c:\program files (x86)\VS Revo Group
2013-07-15 18:00 . 2013-07-15 18:00 -------- d-----w- c:\programdata\Martau
2013-07-15 18:00 . 2013-07-15 18:00 -------- d-----w- c:\program files\Total Uninstall 6
2013-07-15 17:51 . 2013-07-15 17:51 -------- d-----w- c:\users\JAKUB\AppData\Local\ChemTable Software
2013-07-15 16:49 . 2013-07-15 16:49 -------- d-----w- c:\program files (x86)\R.G. World Games
2013-07-15 15:55 . 2013-07-15 15:55 -------- d-----w- c:\program files (x86)\FIFA 13
2013-07-15 08:16 . 2013-07-19 17:02 -------- d--h--w- c:\windows\msdownld.tmp
2013-07-15 08:15 . 2013-07-15 08:15 -------- d-----w- c:\program files (x86)\7-Zip
2013-07-15 08:15 . 2013-07-15 08:17 -------- d-----w- c:\program files (x86)\PCSX2 1.0.0
2013-07-14 06:19 . 2013-07-14 06:19 -------- d-----w- c:\users\JAKUB\AppData\Roaming\DG
2013-07-14 06:18 . 2013-07-14 06:19 -------- d-----w- c:\program files (x86)\Thread Manager
2013-07-13 19:18 . 2013-07-15 15:37 -------- d-----w- c:\users\JAKUB\AppData\Local\Xpom
2013-07-13 07:38 . 2013-07-13 07:38 -------- d-----w- c:\windows\ERUNT
2013-07-12 12:42 . 2013-07-12 12:42 6129024 ----a-w- c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-07-12 12:42 . 2013-07-12 12:42 6129024 ----a-w- c:\program files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Malwarebytes
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\programdata\Malwarebytes
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-07-12 09:09 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-07-11 14:30 . 2013-07-11 14:30 -------- d-----w- c:\programdata\RELOADED
2013-07-09 18:41 . 2013-07-09 18:41 0 ----a-w- c:\windows\ativpsrm.bin
2013-07-09 17:14 . 2013-07-09 17:14 -------- d-----w- c:\programdata\ATI
2013-07-09 17:12 . 2013-07-09 17:12 -------- d-----w- c:\program files\Common Files\ATI Technologies
2013-07-09 17:12 . 2013-07-09 17:12 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2013-07-09 17:09 . 2013-07-09 17:09 188548 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2013-07-09 17:09 . 2003-11-10 16:14 729088 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2013-07-09 17:09 . 2003-11-10 16:13 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2013-07-09 17:09 . 2003-11-10 16:12 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2013-07-09 17:09 . 2003-11-10 16:12 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2013-07-09 17:09 . 2003-11-10 16:11 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2013-07-09 17:09 . 2013-07-09 17:09 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2013-07-09 17:09 . 2013-07-09 17:09 -------- d-----w- C:\ATI
2013-07-09 17:09 . 2013-07-09 17:09 -------- d-----w- c:\program files\ATI
2013-07-09 16:59 . 2013-07-09 16:59 -------- d-----w- c:\users\JAKUB\AppData\Local\AMD
2013-07-09 16:59 . 2013-07-09 16:59 -------- d-----w- c:\users\JAKUB\AppData\Roaming\ATI
2013-07-09 16:59 . 2013-07-09 16:59 -------- d-----w- c:\users\JAKUB\AppData\Local\ATI
2013-07-09 16:55 . 2013-07-09 17:12 -------- d-----w- c:\programdata\AMD
2013-07-09 16:52 . 2013-07-09 17:11 -------- d-----w- c:\program files\ATI Technologies
2013-07-09 16:25 . 2013-07-09 17:10 -------- d-----w- c:\program files (x86)\ATI Technologies
2013-07-09 16:25 . 2013-07-09 16:51 -------- d-----w- C:\AMD
2013-07-07 06:51 . 2013-07-20 08:04 -------- d-----w- c:\users\JAKUB\AppData\Local\Application Data
2013-07-07 06:32 . 2013-07-07 06:32 -------- d-----w- c:\program files (x86)\Mixxx
2013-07-06 19:01 . 2013-07-06 19:05 -------- d-----w- c:\programdata\AVG
2013-07-06 08:26 . 2013-07-06 08:26 -------- d-----w- c:\users\JAKUB\AppData\Roaming\HDRsoft
2013-07-06 08:25 . 2013-07-06 08:25 -------- d-----w- c:\program files (x86)\Imagenomic
2013-07-06 07:35 . 2013-07-06 07:35 -------- d-----w- c:\programdata\StarApp
2013-07-06 07:35 . 2013-07-06 07:35 -------- d-----w- c:\program files (x86)\SafeSaver
2013-07-05 11:56 . 2013-07-05 12:07 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Uniblue
2013-07-05 11:49 . 2013-07-05 11:49 -------- d-----w- c:\program files (x86)\Pmcc
2013-07-05 06:49 . 2013-07-05 06:49 -------- d-----w- c:\programdata\Futuremark
2013-07-04 15:10 . 2013-07-04 15:10 -------- d-----w- c:\program files (x86)\AMD AVT
2013-07-04 15:10 . 2013-07-04 15:10 -------- d-----w- c:\program files (x86)\AMD APP
2013-07-02 19:40 . 2013-07-03 06:41 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-07-02 18:07 . 2013-07-02 18:07 -------- d-----w- C:\dumps
2013-07-02 18:07 . 2013-07-11 17:35 -------- d-----w- C:\New Folder
2013-07-02 17:03 . 2013-07-02 17:03 -------- d-----w- c:\program files (x86)\GamersFirst
2013-07-02 09:21 . 2013-07-19 17:10 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2013-07-02 09:21 . 2013-07-19 17:10 -------- d-----w- c:\program files (x86)\OpenAL
2013-07-02 09:21 . 2013-07-02 09:21 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2013-07-02 09:21 . 2013-07-02 09:21 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-07-02 09:19 . 2013-07-19 17:10 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-07-02 09:19 . 2012-09-19 16:06 19131904 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2013-07-02 09:19 . 2010-09-22 12:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2013-07-02 09:19 . 2013-07-19 17:10 -------- d-----w- c:\program files (x86)\BRS
2013-07-02 08:52 . 2013-07-02 18:21 -------- d-----w- c:\programdata\Codemasters
2013-07-02 08:45 . 2013-07-02 17:22 -------- d-----w- c:\users\JAKUB\AppData\Local\GamersFirst LIVE!
2013-07-02 08:44 . 2013-07-02 08:44 -------- d-----w- c:\users\JAKUB\AppData\Local\GamersFirst
2013-07-02 06:35 . 2013-02-04 16:44 804384 ----a-w- c:\windows\SysWow64\fmodex.dll
2013-07-02 06:35 . 2013-02-04 16:44 312864 ----a-w- c:\windows\SysWow64\fmod_event.dll
2013-07-01 18:17 . 2013-07-19 14:56 -------- d-----w- C:\Hry
2013-07-01 17:59 . 2013-07-01 17:59 -------- d-----w- C:\Ubisoft
2013-07-01 17:56 . 2013-07-01 17:56 -------- d-----w- c:\users\JAKUB\AppData\Local\Apps
2013-07-01 17:56 . 2013-07-02 07:41 -------- d-----w- c:\users\JAKUB\AppData\Local\Deployment
2013-07-01 15:56 . 2013-07-05 11:36 106224 ----a-w- c:\windows\SysWow64\drivers\GRD.sys
2013-07-01 15:52 . 2013-07-01 15:52 48584 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2013-07-01 10:38 . 2013-07-04 14:35 -------- d-----w- c:\programdata\Package Cache
2013-07-01 09:38 . 2013-07-01 09:38 -------- d-----w- c:\windows\SysWow64\wbem\Logs
2013-07-01 09:08 . 2013-07-01 09:08 -------- d-----w- c:\program files (x86)\AthTek
2013-07-01 08:57 . 2013-07-01 08:57 526336 ----a-w- c:\windows\system32\ieui.dll
2013-07-01 08:45 . 2013-07-01 08:45 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-07-01 08:44 . 2013-07-01 08:44 751104 ----a-w- c:\windows\system32\win32spl.dll
2013-07-01 08:44 . 2013-07-01 08:44 492544 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-07-01 08:44 . 2013-07-20 18:32 29 ----a-w- c:\windows\SysWow64\TempWmicBatchFile.bat
2013-07-01 08:44 . 2013-07-01 08:44 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-07-01 08:44 . 2013-07-01 08:44 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-07-01 08:43 . 2013-07-01 08:43 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-07-01 08:43 . 2013-07-01 08:43 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-07-01 08:43 . 2013-07-01 08:43 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-07-01 08:43 . 2013-07-01 08:43 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-07-01 08:42 . 2013-07-01 08:42 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-07-01 08:42 . 2013-07-01 08:42 52224 ----a-w- c:\windows\system32\certenc.dll
2013-07-01 08:42 . 2013-07-01 08:42 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-07-01 08:42 . 2013-07-01 08:42 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-01 08:42 . 2013-07-01 08:42 1464320 ----a-w- c:\windows\system32\crypt32.dll
2013-07-01 08:42 . 2013-07-01 08:42 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-07-01 08:42 . 2013-07-01 08:42 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-07-01 08:42 . 2013-07-01 08:42 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-07-01 08:42 . 2013-07-01 08:42 1160192 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-07-01 08:42 . 2013-07-01 08:42 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-07-01 08:38 . 2013-07-01 08:38 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-07-01 08:38 . 2013-07-01 08:38 458712 ----a-w- c:\windows\system32\drivers\cng.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-20 08:46 . 2013-07-20 08:46 19138 ----a-w- C:\64to32Sidebar.zip
2013-07-03 06:41 . 2013-03-16 10:45 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-07-03 06:30 . 2013-03-16 10:45 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-07-02 19:34 . 2013-03-16 10:45 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-07-01 08:38 . 2013-07-01 08:38 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-07-01 08:17 . 2008-07-17 08:43 23552 ----a-w- c:\windows\xlkfs.dll
2013-06-18 12:17 . 2013-03-15 03:33 54368 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-06-11 18:54 . 2013-02-19 17:35 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-11 18:54 . 2013-02-19 17:35 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-07 15:45 . 2013-06-07 15:45 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-05-29 20:45 . 2013-05-29 20:45 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-05-28 20:23 . 2013-05-28 20:23 652288 ----a-w- c:\windows\system32\ficvdec_x64.dll
2013-05-28 20:22 . 2013-05-28 20:22 641024 ----a-w- c:\windows\SysWow64\ficvdec_x86.dll
2013-05-17 19:50 . 2012-08-13 14:49 178448 ----a-w- c:\windows\system32\drivers\kneps.sys
2013-05-17 19:50 . 2013-05-17 19:29 90208 ----a-w- c:\windows\system32\drivers\klflt.sys
2013-05-17 19:50 . 2013-05-17 19:29 620128 ----a-w- c:\windows\system32\drivers\klif.sys
2013-05-16 18:25 . 2010-06-24 09:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-15 20:18 . 2013-05-04 08:44 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-13 20:07 . 2013-05-13 20:07 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-05-13 20:07 . 2013-05-13 20:07 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-05-13 20:07 . 2013-05-13 20:07 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-05-13 20:07 . 2013-05-13 20:07 81408 ----a-w- c:\windows\system32\icardie.dll
2013-05-13 20:07 . 2013-05-13 20:07 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-05-13 20:07 . 2013-05-13 20:07 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-05-13 20:07 . 2013-05-13 20:07 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-05-13 20:07 . 2013-05-13 20:07 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-05-13 20:07 . 2013-05-13 20:07 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-05-13 20:07 . 2013-05-13 20:07 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-05-13 20:07 . 2013-05-13 20:07 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-05-13 20:07 . 2013-05-13 20:07 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-05-13 20:07 . 2013-05-13 20:07 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-05-13 20:07 . 2013-05-13 20:07 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-05-13 20:07 . 2013-05-13 20:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-05-13 20:07 . 2013-05-13 20:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-05-13 20:07 . 2013-05-13 20:07 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-05-13 20:07 . 2013-05-13 20:07 441856 ----a-w- c:\windows\system32\html.iec
2013-05-13 20:07 . 2013-05-13 20:07 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-05-13 20:07 . 2013-05-13 20:07 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-05-13 20:07 . 2013-05-13 20:07 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-05-13 20:07 . 2013-05-13 20:07 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-13 20:07 . 2013-05-13 20:07 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-05-13 20:07 . 2013-05-13 20:07 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-05-13 20:07 . 2013-05-13 20:07 235008 ----a-w- c:\windows\system32\url.dll
2013-05-13 20:07 . 2013-05-13 20:07 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-05-13 20:07 . 2013-05-13 20:07 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-05-13 20:07 . 2013-05-13 20:07 216064 ----a-w- c:\windows\system32\msls31.dll
2013-05-13 20:07 . 2013-05-13 20:07 197120 ----a-w- c:\windows\system32\msrating.dll
2013-05-13 20:07 . 2013-05-13 20:07 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-05-13 20:07 . 2013-05-13 20:07 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-05-13 20:07 . 2013-05-13 20:07 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-05-13 20:07 . 2013-05-13 20:07 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-05-13 20:07 . 2013-05-13 20:07 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-05-13 20:07 . 2013-05-13 20:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-05-13 20:07 . 2013-05-13 20:07 149504 ----a-w- c:\windows\system32\occache.dll
2013-05-13 20:07 . 2013-05-13 20:07 144896 ----a-w- c:\windows\system32\wextract.exe
2013-05-13 20:07 . 2013-05-13 20:07 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-05-13 20:07 . 2013-05-13 20:07 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-05-13 20:07 . 2013-05-13 20:07 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-05-13 20:07 . 2013-05-13 20:07 13824 ----a-w- c:\windows\system32\mshta.exe
2013-05-13 20:07 . 2013-05-13 20:07 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-05-13 20:07 . 2013-05-13 20:07 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-05-13 20:07 . 2013-05-13 20:07 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-05-13 20:07 . 2013-05-13 20:07 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-05-13 20:07 . 2013-05-13 20:07 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-05-13 20:07 . 2013-05-13 20:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-05-13 20:07 . 2013-05-13 20:07 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-05-13 20:07 . 2013-05-13 20:07 102912 ----a-w- c:\windows\system32\inseng.dll
2013-05-13 20:05 . 2013-05-13 20:05 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2013-05-13 20:05 . 2013-05-13 20:05 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-05-13 20:05 . 2013-05-13 20:05 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-05-13 20:05 . 2013-05-13 20:05 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-05-13 20:05 . 2013-05-13 20:05 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3928064 ----a-w- c:\windows\system32\d2d1.dll
2013-05-13 20:05 . 2013-05-13 20:05 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-05-13 20:05 . 2013-05-13 20:05 363008 ----a-w- c:\windows\system32\dxgi.dll
2013-05-13 20:05 . 2013-05-13 20:05 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2013-05-13 20:05 . 2013-05-13 20:05 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 296960 ----a-w- c:\windows\system32\d3d10core.dll
2013-05-13 20:05 . 2013-05-13 20:05 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2013-05-13 20:05 . 2013-05-13 20:05 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-05-13 20:05 . 2013-05-13 20:05 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-05-13 20:05 . 2013-05-13 20:05 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2013-05-13 20:05 . 2013-05-13 20:05 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-05-13 20:05 . 2013-05-13 20:05 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}]
2013-06-21 00:08 197912 ----a-w- c:\program files (x86)\WebCake\WebCakeIEClient.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"WebCake Desktop"="c:\users\JAKUB\AppData\Roaming\WebCake\WebCakeDesktop.exe" [2013-06-21 47896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [x]
R2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [x]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
R2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R2 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 atillk64;atillk64; [x]
R3 EagleX64;EagleX64; [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 GDPkIcpt;GDPkIcpt; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.23\RivaTuner64.sys;c:\program files (x86)\RivaTuner v2.23\RivaTuner64.sys [x]
R3 RTCore64;RTCore64;c:\program files (x86)\RMClock\RTCore64.sys;c:\program files (x86)\RMClock\RTCore64.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys;c:\windows\SYSNATIVE\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 xlkfs;xlkfs;c:\windows\system32\DRIVERS\xlkfs.sys;c:\windows\SYSNATIVE\DRIVERS\xlkfs.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 CronService;Cron Service for Prey;c:\prey\platform\windows\cronsvc.exe;c:\prey\platform\windows\cronsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PoSrv1;AVStreamer Service;c:\program files (x86)\ePlayWorks\AVStreamer\PoSrv.exe;c:\program files (x86)\ePlayWorks\AVStreamer\PoSrv.exe [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 WebCake Desktop Updater;WebCake Desktop Updater;c:\program files (x86)\WebCake\WebCakeDesktop.Updater.exe;c:\program files (x86)\WebCake\WebCakeDesktop.Updater.exe [x]
S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys;c:\windows\SYSNATIVE\DRIVERS\avfwim.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-07-13 16:09 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.72\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-07-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-19 18:54]
.
2013-07-20 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2013-05-11 11:10]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-24 14:30]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-24 14:30]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core.job
- c:\users\JAKUB\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-25 15:11]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA.job
- c:\users\JAKUB\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-25 15:11]
.
2013-06-28 c:\windows\Tasks\HPCeeScheduleForJAKUB.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13 20:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Fences"="c:\program files (x86)\Stardock\Fences\Fences.exe" [2013-03-20 3996848]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files (x86)\Stardock\Fences\FencesMenu64.dll" [2013-03-20 552112]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=13415
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 78.157.167.7
FF - ProfilePath - c:\users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\
FF - prefs.js: browser.search.selectedEngine - Поиск@Mail.Ru
FF - prefs.js: keyword.URL - hxxp://go.mail.ru/search?fr=fftb&q=
FF - ExtSQL: 2013-06-28 11:59; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - ExtSQL: 2013-07-01 17:53; {9AA46F4F-4DC7-4c06-97AF-5035170633FE}; c:\program files (x86)\Mozilla Firefox\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170633FE}
FF - user.js: extentions.webcake.installId - 69a76b39-9737-43d9-b5ee-98042728e9d4
FF - user.js: extentions.webcake.defaultEnableAppsList - layers/banner,layers/inline,layers/search,layers/shopping,newOffers/wc
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-APB Reloaded - c:\users\JAKUB\Desktop\dxtory\APB Reloaded\Uninstall.exe
AddRemove-CZ SK IPTV v2.0.3 - c:\windows\CZ SK IPTV v2.0.3
AddRemove-{1EE9BBA1-312F-4EC0-9DEA-A8FE22BBABAA}_is1 - c:\program files (x86)\20Dollars2Surf\unins000.exe
AddRemove-SeznamInstall - c:\users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1617569673-3034970362-4137664275-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@DACL=(02 0000)
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,6e,df,
95,b6,89,ed,07,92,4e,ce,e8,47,6a,3d,27
"{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}"=hex:51,66,7a,6c,4c,1d,3b,1b,d4,e9,04,
95,31,58,bd,0f,9c,0d,50,ec,1c,9c,c7,3e
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,24,
88,32,1a,d6,0e,94,c0,10,24,75,4b,25,de
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,21,da,
ca,7a,af,29,03,82,82,42,9c,2c,7b,85,57
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,dc,
c3,75,f2,32,07,a6,78,dd,65,c2,86,ce,b1
"{4D2D3B0F-69BE-477A-90F5-FDDB05357975}"=hex:51,66,7a,6c,4c,1d,3b,1b,1f,24,39,
55,8e,3f,13,03,8a,f9,bc,9b,06,76,3f,6d
"{0124123D-61B4-456F-AF86-78C53A0790C5}"=hex:51,66,7a,6c,4c,1d,3b,1b,2d,0d,30,
19,84,37,06,01,b5,8a,39,85,39,44,d6,dd
"{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}"=hex:51,66,7a,6c,4c,1d,3b,1b,b0,84,c4,
29,c5,44,a7,08,a4,86,68,63,e4,25,43,c2
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,3b,1b,79,47,94,
b6,6c,78,bd,0a,95,77,b0,b7,86,59,02,8f
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,3b,1b,25,b7,e7,
ac,11,58,30,0d,a0,2e,03,f3,03,cd,44,e7
"{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}"=hex:51,66,7a,6c,4c,1d,3b,1b,1a,91,5d,
c8,87,13,c7,06,b3,a6,ea,e4,60,98,95,a7
"{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}"=hex:51,66,7a,6c,4c,1d,3b,1b,0e,19,66,
e5,ee,c9,24,0c,bf,86,4a,eb,42,12,8c,c0
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"=""
"AuthorizationCode"=""
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
c:\windows\SysWow64\perfhost.exe
.
**************************************************************************
.
Celkový čas: 2013-07-20 20:39:45 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-07-20 18:39
ComboFix2.txt 2013-07-20 11:42
ComboFix3.txt 2013-07-18 07:23
ComboFix4.txt 2013-07-15 17:33
ComboFix5.txt 2013-07-20 18:21
.
Před spuštěním: Volných bajtů: 96 782 143 488
Po spuštění: Volných bajtů: 96 702 062 592
.
- - End Of File - - C8F209F362CE278B47C2AF58AE6A5813
A36C5E4F47E84449FF07ED3517B43A31


A co s tou Avirou?
Žádný učenec z nebe nespadl, ale blbce jako by shazovali.

CPU: Intel Xeon E5450 @ 3.0 Ghz
GPU: Sapphire Radeon RX 570 Pulse 4GB
MB: MICRO-STAR INTERNATIONAL CO.,LTD MS-7395
RAM: 8,00GB Dual-Channel DDR2
Nahoru
Reklama
Top
Uživatelský avatar
MrAnnix99
Level 3.5
Level 3.5
Příspěvky: 935
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod MrAnnix99 » 20 črc 2013 20:42

ComboFix 13-07-03.01 - JAKUB 20.07.2013 20:22:30.5.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3835.1663 [GMT 2:00]
Spuštěný z: c:\users\JAKUB\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\JAKUB\Desktop\CFScript.txt
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\AVG
c:\program files (x86)\Seznam.cz
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.autoupdate-1.0.5-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.chromelisticka-1.4.2.1-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.szninstall-1.1.3-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\cz.seznam.software.sznsetup-1.1.1-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\packages.inf
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-base-1.0.0-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-core-4-4.1.2-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-email-4-4.0.4-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-fflisticka-2.5.4-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-ielisticka-2.6.2-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-listicka-2.6.2-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-seznamdesktop-1.0.4-win32.zip
c:\program files (x86)\Seznam.cz\distribution\install\szn-software-srank-4.1.1-win32.zip
c:\program files (x86)\Seznam.cz\distribution\partner.conf
c:\program files (x86)\Seznam.cz\distribution\sources.inf
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\program files (x86)\Seznam.cz\distribution\sznsetup.exe
c:\programdata\IBUpdaterService
c:\programdata\IBUpdaterService\repository.xml
c:\users\JAKUB\AppData\Roaming\AVG
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000001.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000002.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000003.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Backups\00000004.rcb
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Dashboard\IntegratorStates_en-US.xml
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\Speed Optimizer\SpeedOptimizerStates.xml
c:\users\JAKUB\AppData\Roaming\AVG\AWL2012\StartUp Manager\PreviousEntries.dat
c:\users\JAKUB\AppData\Roaming\Seznam.cz
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\4686libfoxloader.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\4689libfoxloader-x64.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\ffkill.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libfoxcub-x64.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libfoxcub.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libchinst.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\msvcp100.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\msvcr100.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\unlockInstance.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\emailstates.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\foxcub.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\regcfg.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\libfoxcub\remote.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxcub.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libfoxloader.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\libchinst.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\szndesktop.d\unlockInstance.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\conf\unlockInstance.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\chrome\partner.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\listickaconfig.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\listickanastaveni.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\speeddial.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\data\szndesktop.webpak
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install.log
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.autoupdate-1.0.5-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.chromelisticka-1.4.2.1-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.szninstall-1.1.3-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\cz.seznam.software.sznsetup-1.1.1-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\packages.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-base-1.0.0-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-core-4-4.1.2-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-email-4-4.0.4-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-fflisticka-2.5.4-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-ielisticka-2.6.2-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-listicka-2.6.2-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-seznamdesktop-1.0.4-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\szn-software-srank-4.1.1-win32.zip
c:\users\JAKUB\AppData\Roaming\Seznam.cz\packages.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\partner.conf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\sources.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\sznsetup.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_1.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_1.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.reconfigure.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.uninstall.bat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-06-20 do 2013-07-20 )))))))))))))))))))))))))))))))
.
.
2013-07-20 18:32 . 2013-07-20 18:32 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-07-20 18:32 . 2013-07-20 18:32 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-20 08:46 . 2013-07-20 08:46 -------- d-----w- c:\users\JAKUB\AppData\Roaming\WebCake
2013-07-20 08:46 . 2013-07-20 08:46 -------- d-----w- c:\program files (x86)\WebCake
2013-07-20 08:46 . 2013-07-20 08:46 -------- d-----w- c:\programdata\Tarma Installer
2013-07-20 08:46 . 2013-07-20 08:48 -------- d-----w- c:\users\JAKUB\AppData\Roaming\PerformerSoft
2013-07-20 08:46 . 2013-06-19 12:58 19456 ----a-w- c:\windows\system32\roboot64.exe
2013-07-20 08:36 . 2013-07-20 08:36 -------- d-----w- c:\users\JAKUB\AppData\Local\Stardock_Corporation
2013-07-20 08:36 . 2013-07-20 08:36 -------- d-----w- c:\programdata\Stardock
2013-07-20 08:35 . 2013-07-20 08:35 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Stardock
2013-07-20 08:35 . 2013-07-20 08:35 -------- d-----w- c:\program files (x86)\Stardock
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\users\JAKUB\AppData\Roaming\IsolatedStorage
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\programdata\IsolatedStorage
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\users\JAKUB\AppData\Local\_
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\program files\FileViewPro
2013-07-20 08:04 . 2013-07-20 08:04 -------- d-----w- c:\program files (x86)\GadgetPack
2013-07-19 17:11 . 2013-07-19 17:11 -------- d-----w- c:\program files (x86)\Mortal Kombat Komplete Edition
2013-07-19 17:03 . 2013-07-19 17:08 -------- d-----w- c:\program files (x86)\F1 Race Stars
2013-07-19 14:57 . 2013-07-19 14:57 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Milestone
2013-07-19 14:42 . 2013-07-19 14:42 -------- d-----w- c:\program files (x86)\Milestone
2013-07-19 11:09 . 2013-07-19 14:29 -------- d-----w- c:\program files (x86)\Prototype 2
2013-07-16 18:47 . 2013-07-16 18:47 -------- d-----w- c:\program files\Activision
2013-07-16 17:33 . 2013-07-16 17:33 -------- d-----w- c:\program files (x86)\SQUARE ENIX
2013-07-16 13:03 . 2004-08-18 08:34 442368 ----a-r- c:\windows\SysWow64\vp6vfw.dll
2013-07-15 18:08 . 2013-07-15 18:08 -------- d-----w- c:\program files (x86)\VS Revo Group
2013-07-15 18:00 . 2013-07-15 18:00 -------- d-----w- c:\programdata\Martau
2013-07-15 18:00 . 2013-07-15 18:00 -------- d-----w- c:\program files\Total Uninstall 6
2013-07-15 17:51 . 2013-07-15 17:51 -------- d-----w- c:\users\JAKUB\AppData\Local\ChemTable Software
2013-07-15 16:49 . 2013-07-15 16:49 -------- d-----w- c:\program files (x86)\R.G. World Games
2013-07-15 15:55 . 2013-07-15 15:55 -------- d-----w- c:\program files (x86)\FIFA 13
2013-07-15 08:16 . 2013-07-19 17:02 -------- d--h--w- c:\windows\msdownld.tmp
2013-07-15 08:15 . 2013-07-15 08:15 -------- d-----w- c:\program files (x86)\7-Zip
2013-07-15 08:15 . 2013-07-15 08:17 -------- d-----w- c:\program files (x86)\PCSX2 1.0.0
2013-07-14 06:19 . 2013-07-14 06:19 -------- d-----w- c:\users\JAKUB\AppData\Roaming\DG
2013-07-14 06:18 . 2013-07-14 06:19 -------- d-----w- c:\program files (x86)\Thread Manager
2013-07-13 19:18 . 2013-07-15 15:37 -------- d-----w- c:\users\JAKUB\AppData\Local\Xpom
2013-07-13 07:38 . 2013-07-13 07:38 -------- d-----w- c:\windows\ERUNT
2013-07-12 12:42 . 2013-07-12 12:42 6129024 ----a-w- c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-07-12 12:42 . 2013-07-12 12:42 6129024 ----a-w- c:\program files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Malwarebytes
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\programdata\Malwarebytes
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-07-12 09:09 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-07-11 14:30 . 2013-07-11 14:30 -------- d-----w- c:\programdata\RELOADED
2013-07-09 18:41 . 2013-07-09 18:41 0 ----a-w- c:\windows\ativpsrm.bin
2013-07-09 17:14 . 2013-07-09 17:14 -------- d-----w- c:\programdata\ATI
2013-07-09 17:12 . 2013-07-09 17:12 -------- d-----w- c:\program files\Common Files\ATI Technologies
2013-07-09 17:12 . 2013-07-09 17:12 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2013-07-09 17:09 . 2013-07-09 17:09 188548 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iGdi.dll
2013-07-09 17:09 . 2003-11-10 16:14 729088 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iKernel.dll
2013-07-09 17:09 . 2003-11-10 16:13 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\ctor.dll
2013-07-09 17:09 . 2003-11-10 16:12 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iscript.dll
2013-07-09 17:09 . 2003-11-10 16:12 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\iuser.dll
2013-07-09 17:09 . 2003-11-10 16:11 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\DotNetInstaller.exe
2013-07-09 17:09 . 2013-07-09 17:09 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\01\Intel32\setup.dll
2013-07-09 17:09 . 2013-07-09 17:09 -------- d-----w- C:\ATI
2013-07-09 17:09 . 2013-07-09 17:09 -------- d-----w- c:\program files\ATI
2013-07-09 16:59 . 2013-07-09 16:59 -------- d-----w- c:\users\JAKUB\AppData\Local\AMD
2013-07-09 16:59 . 2013-07-09 16:59 -------- d-----w- c:\users\JAKUB\AppData\Roaming\ATI
2013-07-09 16:59 . 2013-07-09 16:59 -------- d-----w- c:\users\JAKUB\AppData\Local\ATI
2013-07-09 16:55 . 2013-07-09 17:12 -------- d-----w- c:\programdata\AMD
2013-07-09 16:52 . 2013-07-09 17:11 -------- d-----w- c:\program files\ATI Technologies
2013-07-09 16:25 . 2013-07-09 17:10 -------- d-----w- c:\program files (x86)\ATI Technologies
2013-07-09 16:25 . 2013-07-09 16:51 -------- d-----w- C:\AMD
2013-07-07 06:51 . 2013-07-20 08:04 -------- d-----w- c:\users\JAKUB\AppData\Local\Application Data
2013-07-07 06:32 . 2013-07-07 06:32 -------- d-----w- c:\program files (x86)\Mixxx
2013-07-06 19:01 . 2013-07-06 19:05 -------- d-----w- c:\programdata\AVG
2013-07-06 08:26 . 2013-07-06 08:26 -------- d-----w- c:\users\JAKUB\AppData\Roaming\HDRsoft
2013-07-06 08:25 . 2013-07-06 08:25 -------- d-----w- c:\program files (x86)\Imagenomic
2013-07-06 07:35 . 2013-07-06 07:35 -------- d-----w- c:\programdata\StarApp
2013-07-06 07:35 . 2013-07-06 07:35 -------- d-----w- c:\program files (x86)\SafeSaver
2013-07-05 11:56 . 2013-07-05 12:07 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Uniblue
2013-07-05 11:49 . 2013-07-05 11:49 -------- d-----w- c:\program files (x86)\Pmcc
2013-07-05 06:49 . 2013-07-05 06:49 -------- d-----w- c:\programdata\Futuremark
2013-07-04 15:10 . 2013-07-04 15:10 -------- d-----w- c:\program files (x86)\AMD AVT
2013-07-04 15:10 . 2013-07-04 15:10 -------- d-----w- c:\program files (x86)\AMD APP
2013-07-02 19:40 . 2013-07-03 06:41 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-07-02 18:07 . 2013-07-02 18:07 -------- d-----w- C:\dumps
2013-07-02 18:07 . 2013-07-11 17:35 -------- d-----w- C:\New Folder
2013-07-02 17:03 . 2013-07-02 17:03 -------- d-----w- c:\program files (x86)\GamersFirst
2013-07-02 09:21 . 2013-07-19 17:10 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2013-07-02 09:21 . 2013-07-19 17:10 -------- d-----w- c:\program files (x86)\OpenAL
2013-07-02 09:21 . 2013-07-02 09:21 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2013-07-02 09:21 . 2013-07-02 09:21 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-07-02 09:19 . 2013-07-19 17:10 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-07-02 09:19 . 2012-09-19 16:06 19131904 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2013-07-02 09:19 . 2010-09-22 12:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2013-07-02 09:19 . 2013-07-19 17:10 -------- d-----w- c:\program files (x86)\BRS
2013-07-02 08:52 . 2013-07-02 18:21 -------- d-----w- c:\programdata\Codemasters
2013-07-02 08:45 . 2013-07-02 17:22 -------- d-----w- c:\users\JAKUB\AppData\Local\GamersFirst LIVE!
2013-07-02 08:44 . 2013-07-02 08:44 -------- d-----w- c:\users\JAKUB\AppData\Local\GamersFirst
2013-07-02 06:35 . 2013-02-04 16:44 804384 ----a-w- c:\windows\SysWow64\fmodex.dll
2013-07-02 06:35 . 2013-02-04 16:44 312864 ----a-w- c:\windows\SysWow64\fmod_event.dll
2013-07-01 18:17 . 2013-07-19 14:56 -------- d-----w- C:\Hry
2013-07-01 17:59 . 2013-07-01 17:59 -------- d-----w- C:\Ubisoft
2013-07-01 17:56 . 2013-07-01 17:56 -------- d-----w- c:\users\JAKUB\AppData\Local\Apps
2013-07-01 17:56 . 2013-07-02 07:41 -------- d-----w- c:\users\JAKUB\AppData\Local\Deployment
2013-07-01 15:56 . 2013-07-05 11:36 106224 ----a-w- c:\windows\SysWow64\drivers\GRD.sys
2013-07-01 15:52 . 2013-07-01 15:52 48584 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2013-07-01 10:38 . 2013-07-04 14:35 -------- d-----w- c:\programdata\Package Cache
2013-07-01 09:38 . 2013-07-01 09:38 -------- d-----w- c:\windows\SysWow64\wbem\Logs
2013-07-01 09:08 . 2013-07-01 09:08 -------- d-----w- c:\program files (x86)\AthTek
2013-07-01 08:57 . 2013-07-01 08:57 526336 ----a-w- c:\windows\system32\ieui.dll
2013-07-01 08:45 . 2013-07-01 08:45 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-07-01 08:44 . 2013-07-01 08:44 751104 ----a-w- c:\windows\system32\win32spl.dll
2013-07-01 08:44 . 2013-07-01 08:44 492544 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-07-01 08:44 . 2013-07-20 18:32 29 ----a-w- c:\windows\SysWow64\TempWmicBatchFile.bat
2013-07-01 08:44 . 2013-07-01 08:44 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-07-01 08:44 . 2013-07-01 08:44 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-07-01 08:43 . 2013-07-01 08:43 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-07-01 08:43 . 2013-07-01 08:43 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-07-01 08:43 . 2013-07-01 08:43 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-07-01 08:43 . 2013-07-01 08:43 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-07-01 08:42 . 2013-07-01 08:42 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-07-01 08:42 . 2013-07-01 08:42 52224 ----a-w- c:\windows\system32\certenc.dll
2013-07-01 08:42 . 2013-07-01 08:42 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-07-01 08:42 . 2013-07-01 08:42 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-01 08:42 . 2013-07-01 08:42 1464320 ----a-w- c:\windows\system32\crypt32.dll
2013-07-01 08:42 . 2013-07-01 08:42 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-07-01 08:42 . 2013-07-01 08:42 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-07-01 08:42 . 2013-07-01 08:42 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-07-01 08:42 . 2013-07-01 08:42 1160192 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-07-01 08:42 . 2013-07-01 08:42 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-07-01 08:38 . 2013-07-01 08:38 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-07-01 08:38 . 2013-07-01 08:38 458712 ----a-w- c:\windows\system32\drivers\cng.sys
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-20 08:46 . 2013-07-20 08:46 19138 ----a-w- C:\64to32Sidebar.zip
2013-07-03 06:41 . 2013-03-16 10:45 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-07-03 06:30 . 2013-03-16 10:45 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-07-02 19:34 . 2013-03-16 10:45 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-07-01 08:38 . 2013-07-01 08:38 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-07-01 08:17 . 2008-07-17 08:43 23552 ----a-w- c:\windows\xlkfs.dll
2013-06-18 12:17 . 2013-03-15 03:33 54368 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-06-11 18:54 . 2013-02-19 17:35 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-11 18:54 . 2013-02-19 17:35 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-07 15:45 . 2013-06-07 15:45 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-05-29 20:45 . 2013-05-29 20:45 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-05-28 20:23 . 2013-05-28 20:23 652288 ----a-w- c:\windows\system32\ficvdec_x64.dll
2013-05-28 20:22 . 2013-05-28 20:22 641024 ----a-w- c:\windows\SysWow64\ficvdec_x86.dll
2013-05-17 19:50 . 2012-08-13 14:49 178448 ----a-w- c:\windows\system32\drivers\kneps.sys
2013-05-17 19:50 . 2013-05-17 19:29 90208 ----a-w- c:\windows\system32\drivers\klflt.sys
2013-05-17 19:50 . 2013-05-17 19:29 620128 ----a-w- c:\windows\system32\drivers\klif.sys
2013-05-16 18:25 . 2010-06-24 09:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-15 20:18 . 2013-05-04 08:44 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-13 20:07 . 2013-05-13 20:07 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-05-13 20:07 . 2013-05-13 20:07 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-05-13 20:07 . 2013-05-13 20:07 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-05-13 20:07 . 2013-05-13 20:07 81408 ----a-w- c:\windows\system32\icardie.dll
2013-05-13 20:07 . 2013-05-13 20:07 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-05-13 20:07 . 2013-05-13 20:07 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-05-13 20:07 . 2013-05-13 20:07 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-05-13 20:07 . 2013-05-13 20:07 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-05-13 20:07 . 2013-05-13 20:07 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-05-13 20:07 . 2013-05-13 20:07 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-05-13 20:07 . 2013-05-13 20:07 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-05-13 20:07 . 2013-05-13 20:07 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-05-13 20:07 . 2013-05-13 20:07 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-05-13 20:07 . 2013-05-13 20:07 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-05-13 20:07 . 2013-05-13 20:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-05-13 20:07 . 2013-05-13 20:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-05-13 20:07 . 2013-05-13 20:07 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-05-13 20:07 . 2013-05-13 20:07 441856 ----a-w- c:\windows\system32\html.iec
2013-05-13 20:07 . 2013-05-13 20:07 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-05-13 20:07 . 2013-05-13 20:07 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-05-13 20:07 . 2013-05-13 20:07 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-05-13 20:07 . 2013-05-13 20:07 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-13 20:07 . 2013-05-13 20:07 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-05-13 20:07 . 2013-05-13 20:07 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-05-13 20:07 . 2013-05-13 20:07 235008 ----a-w- c:\windows\system32\url.dll
2013-05-13 20:07 . 2013-05-13 20:07 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-05-13 20:07 . 2013-05-13 20:07 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-05-13 20:07 . 2013-05-13 20:07 216064 ----a-w- c:\windows\system32\msls31.dll
2013-05-13 20:07 . 2013-05-13 20:07 197120 ----a-w- c:\windows\system32\msrating.dll
2013-05-13 20:07 . 2013-05-13 20:07 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-05-13 20:07 . 2013-05-13 20:07 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-05-13 20:07 . 2013-05-13 20:07 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-05-13 20:07 . 2013-05-13 20:07 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-05-13 20:07 . 2013-05-13 20:07 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-05-13 20:07 . 2013-05-13 20:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-05-13 20:07 . 2013-05-13 20:07 149504 ----a-w- c:\windows\system32\occache.dll
2013-05-13 20:07 . 2013-05-13 20:07 144896 ----a-w- c:\windows\system32\wextract.exe
2013-05-13 20:07 . 2013-05-13 20:07 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-05-13 20:07 . 2013-05-13 20:07 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-05-13 20:07 . 2013-05-13 20:07 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-05-13 20:07 . 2013-05-13 20:07 13824 ----a-w- c:\windows\system32\mshta.exe
2013-05-13 20:07 . 2013-05-13 20:07 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-05-13 20:07 . 2013-05-13 20:07 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-05-13 20:07 . 2013-05-13 20:07 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-05-13 20:07 . 2013-05-13 20:07 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-05-13 20:07 . 2013-05-13 20:07 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-05-13 20:07 . 2013-05-13 20:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-05-13 20:07 . 2013-05-13 20:07 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-05-13 20:07 . 2013-05-13 20:07 102912 ----a-w- c:\windows\system32\inseng.dll
2013-05-13 20:05 . 2013-05-13 20:05 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2013-05-13 20:05 . 2013-05-13 20:05 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-05-13 20:05 . 2013-05-13 20:05 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-05-13 20:05 . 2013-05-13 20:05 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-05-13 20:05 . 2013-05-13 20:05 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3928064 ----a-w- c:\windows\system32\d2d1.dll
2013-05-13 20:05 . 2013-05-13 20:05 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-05-13 20:05 . 2013-05-13 20:05 363008 ----a-w- c:\windows\system32\dxgi.dll
2013-05-13 20:05 . 2013-05-13 20:05 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2013-05-13 20:05 . 2013-05-13 20:05 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 296960 ----a-w- c:\windows\system32\d3d10core.dll
2013-05-13 20:05 . 2013-05-13 20:05 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2013-05-13 20:05 . 2013-05-13 20:05 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-05-13 20:05 . 2013-05-13 20:05 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-05-13 20:05 . 2013-05-13 20:05 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2013-05-13 20:05 . 2013-05-13 20:05 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-05-13 20:05 . 2013-05-13 20:05 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{2A5A2A90-3B30-4E6E-A955-2F232C6EF517}]
2013-06-21 00:08 197912 ----a-w- c:\program files (x86)\WebCake\WebCakeIEClient.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"WebCake Desktop"="c:\users\JAKUB\AppData\Roaming\WebCake\WebCakeDesktop.exe" [2013-06-21 47896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [x]
R2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [x]
R2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
R2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R2 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 atillk64;atillk64; [x]
R3 EagleX64;EagleX64; [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 GDPkIcpt;GDPkIcpt; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.23\RivaTuner64.sys;c:\program files (x86)\RivaTuner v2.23\RivaTuner64.sys [x]
R3 RTCore64;RTCore64;c:\program files (x86)\RMClock\RTCore64.sys;c:\program files (x86)\RMClock\RTCore64.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys;c:\windows\SYSNATIVE\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 xlkfs;xlkfs;c:\windows\system32\DRIVERS\xlkfs.sys;c:\windows\SYSNATIVE\DRIVERS\xlkfs.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 CronService;Cron Service for Prey;c:\prey\platform\windows\cronsvc.exe;c:\prey\platform\windows\cronsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PoSrv1;AVStreamer Service;c:\program files (x86)\ePlayWorks\AVStreamer\PoSrv.exe;c:\program files (x86)\ePlayWorks\AVStreamer\PoSrv.exe [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S2 WebCake Desktop Updater;WebCake Desktop Updater;c:\program files (x86)\WebCake\WebCakeDesktop.Updater.exe;c:\program files (x86)\WebCake\WebCakeDesktop.Updater.exe [x]
S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys;c:\windows\SYSNATIVE\DRIVERS\avfwim.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-07-13 16:09 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.72\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-07-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-19 18:54]
.
2013-07-20 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2013-05-11 11:10]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-24 14:30]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-24 14:30]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core.job
- c:\users\JAKUB\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-25 15:11]
.
2013-07-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA.job
- c:\users\JAKUB\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-25 15:11]
.
2013-06-28 c:\windows\Tasks\HPCeeScheduleForJAKUB.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13 20:15]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Fences"="c:\program files (x86)\Stardock\Fences\Fences.exe" [2013-03-20 3996848]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files (x86)\Stardock\Fences\FencesMenu64.dll" [2013-03-20 552112]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=13415
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 78.157.167.7
FF - ProfilePath - c:\users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\
FF - prefs.js: browser.search.selectedEngine - Поиск@Mail.Ru
FF - prefs.js: keyword.URL - hxxp://go.mail.ru/search?fr=fftb&q=
FF - ExtSQL: 2013-06-28 11:59; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - ExtSQL: 2013-07-01 17:53; {9AA46F4F-4DC7-4c06-97AF-5035170633FE}; c:\program files (x86)\Mozilla Firefox\extensions\{9AA46F4F-4DC7-4c06-97AF-5035170633FE}
FF - user.js: extentions.webcake.installId - 69a76b39-9737-43d9-b5ee-98042728e9d4
FF - user.js: extentions.webcake.defaultEnableAppsList - layers/banner,layers/inline,layers/search,layers/shopping,newOffers/wc
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-APB Reloaded - c:\users\JAKUB\Desktop\dxtory\APB Reloaded\Uninstall.exe
AddRemove-CZ SK IPTV v2.0.3 - c:\windows\CZ SK IPTV v2.0.3
AddRemove-{1EE9BBA1-312F-4EC0-9DEA-A8FE22BBABAA}_is1 - c:\program files (x86)\20Dollars2Surf\unins000.exe
AddRemove-SeznamInstall - c:\users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1617569673-3034970362-4137664275-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@DACL=(02 0000)
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,6e,df,
95,b6,89,ed,07,92,4e,ce,e8,47,6a,3d,27
"{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}"=hex:51,66,7a,6c,4c,1d,3b,1b,d4,e9,04,
95,31,58,bd,0f,9c,0d,50,ec,1c,9c,c7,3e
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,24,
88,32,1a,d6,0e,94,c0,10,24,75,4b,25,de
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,21,da,
ca,7a,af,29,03,82,82,42,9c,2c,7b,85,57
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,dc,
c3,75,f2,32,07,a6,78,dd,65,c2,86,ce,b1
"{4D2D3B0F-69BE-477A-90F5-FDDB05357975}"=hex:51,66,7a,6c,4c,1d,3b,1b,1f,24,39,
55,8e,3f,13,03,8a,f9,bc,9b,06,76,3f,6d
"{0124123D-61B4-456F-AF86-78C53A0790C5}"=hex:51,66,7a,6c,4c,1d,3b,1b,2d,0d,30,
19,84,37,06,01,b5,8a,39,85,39,44,d6,dd
"{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}"=hex:51,66,7a,6c,4c,1d,3b,1b,b0,84,c4,
29,c5,44,a7,08,a4,86,68,63,e4,25,43,c2
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,3b,1b,79,47,94,
b6,6c,78,bd,0a,95,77,b0,b7,86,59,02,8f
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,3b,1b,25,b7,e7,
ac,11,58,30,0d,a0,2e,03,f3,03,cd,44,e7
"{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}"=hex:51,66,7a,6c,4c,1d,3b,1b,1a,91,5d,
c8,87,13,c7,06,b3,a6,ea,e4,60,98,95,a7
"{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}"=hex:51,66,7a,6c,4c,1d,3b,1b,0e,19,66,
e5,ee,c9,24,0c,bf,86,4a,eb,42,12,8c,c0
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"=""
"AuthorizationCode"=""
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
c:\windows\SysWow64\perfhost.exe
.
**************************************************************************
.
Celkový čas: 2013-07-20 20:39:45 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-07-20 18:39
ComboFix2.txt 2013-07-20 11:42
ComboFix3.txt 2013-07-18 07:23
ComboFix4.txt 2013-07-15 17:33
ComboFix5.txt 2013-07-20 18:21
.
Před spuštěním: Volných bajtů: 96 782 143 488
Po spuštění: Volných bajtů: 96 702 062 592
.
- - End Of File - - C8F209F362CE278B47C2AF58AE6A5813
A36C5E4F47E84449FF07ED3517B43A31


A co s tou Avirou?
Žádný učenec z nebe nespadl, ale blbce jako by shazovali.

CPU: Intel Xeon E5450 @ 3.0 Ghz
GPU: Sapphire Radeon RX 570 Pulse 4GB
MB: MICRO-STAR INTERNATIONAL CO.,LTD MS-7395
RAM: 8,00GB Dual-Channel DDR2
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod memphisto » 20 črc 2013 21:01

Udělej ten script ještě jednou a v nouzovém režimu
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Uživatelský avatar
MrAnnix99
Level 3.5
Level 3.5
Příspěvky: 935
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod MrAnnix99 » 25 črc 2013 17:25

V nouzovém režimu se sití nebo bez?
Žádný učenec z nebe nespadl, ale blbce jako by shazovali.

CPU: Intel Xeon E5450 @ 3.0 Ghz
GPU: Sapphire Radeon RX 570 Pulse 4GB
MB: MICRO-STAR INTERNATIONAL CO.,LTD MS-7395
RAM: 8,00GB Dual-Channel DDR2
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod jaro3 » 25 črc 2013 21:55

Pokud si dnes stahoval a máš aktualizovanej CF , pak můžeš i bez sítě.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
MrAnnix99
Level 3.5
Level 3.5
Příspěvky: 935
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod MrAnnix99 » 26 črc 2013 19:36

ComboFix 13-07-25.02 - JAKUB 26.07.2013 19:17:48.4.2 - x64 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3835.2644 [GMT 2:00]
Spuštěný z: c:\users\JAKUB\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\JAKUB\Desktop\CFScript.txt
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\AVG
c:\program files (x86)\AVG\AVG PC Tuneup 2011\AdvisorHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\armaccess.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\aushelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\ausshellext.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\AxBrowsers.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\AxComponents20.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\BoostSpeed.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\boostspeed.url
c:\program files (x86)\AVG\AVG PC Tuneup 2011\cdefrag.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\commonforms.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Data\Applications.dat
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Data\debug.paths
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Data\main.ini
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DebugMode.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskCleaner.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskCleanerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskDefrag.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskDefragHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskDoctor.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskDoctorHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskExplorer.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskExplorerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskSecurityHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DiskWiper.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\DuplicateFileFinder.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\EULA.rtf
c:\program files (x86)\AVG\AVG PC Tuneup 2011\FileRecovery.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\FileRecoveryHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\FileShredder.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\helper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\InstantOptimizerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\InternetOptimizer.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\InternetOptimizerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\csy.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\deu.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\enu.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\ess.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\fra.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\chs.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\ita.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\jpn.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\nlb.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\plk.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\ptb.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Lang\rus.lng
c:\program files (x86)\AVG\AVG PC Tuneup 2011\localizer.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\madBasic_.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\madDisAsm_.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\madExcept_.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\PerlRegExp.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\ProgramManager.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\ProgramManagerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\rdboot.log
c:\program files (x86)\AVG\AVG PC Tuneup 2011\rdboot32.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\rdboot64.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RegCleaner.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RegistryCleanerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RegistryDefrag.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RegistryDefragHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RepLibrary.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RescueCenter.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\RescueCenterHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\rtl120.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\sendlog.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\ServiceManager.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\ServiceManagerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\Settings.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\SpywareCheckerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\sqlite3.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\StartupManager.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\StartupManagerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\SystemInformation.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\SystemInformationHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TaskManager.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TaskManagerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TaskSchedulerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TrackEraser.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TrackEraserHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TweakManager.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\TweakManagerHelper.dll
c:\program files (x86)\AVG\AVG PC Tuneup 2011\unins000.dat
c:\program files (x86)\AVG\AVG PC Tuneup 2011\unins000.exe
c:\program files (x86)\AVG\AVG PC Tuneup 2011\unins000.msg
c:\program files (x86)\AVG\AVG PC Tuneup 2011\vcl120.bpl
c:\program files (x86)\AVG\AVG PC Tuneup 2011\version.exe
c:\program files (x86)\Seznam.cz
c:\program files (x86)\Seznam.cz\distribution\install\packages.inf
c:\program files (x86)\Seznam.cz\distribution\sources.inf
c:\program files (x86)\Seznam.cz\distribution\szninstall.exe
c:\program files (x86)\Seznam.cz\distribution\sznsetup.exe
c:\users\JAKUB\AppData\Roaming\AVG
c:\users\JAKUB\AppData\Roaming\AVG\Integrator\DiskDoctor.log
c:\users\JAKUB\AppData\Roaming\AVG\PC Tuneup 2011\Logs\InternetOptimizer.log
c:\users\JAKUB\AppData\Roaming\AVG\PC Tuneup 2011\Logs\StartupManager.log
c:\users\JAKUB\AppData\Roaming\AVG\PC Tuneup 2011\Logs\TweakManager.log
c:\users\JAKUB\AppData\Roaming\AVG\PC Tuneup 2011\Logs\UninstallManager.log
c:\users\JAKUB\AppData\Roaming\AVG\Registry Defrag\Reports\rdboot.sta
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\AVG Registry Cleaner\130725172935311.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725170402002.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725170411593.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172256022.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172301261.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172306782.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172308206.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172309677.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172311022.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172314077.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172315545.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172317533.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172318741.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172324766.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172325870.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130725172330117.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130726091157060.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\PC Tuneup 2011\130726091157716.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\Strartup Manager\130725173206645.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\Strartup Manager\130725173211365.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\Strartup Manager\130725173213300.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\Strartup Manager\130725173215338.rsc
c:\users\JAKUB\AppData\Roaming\AVG\Rescue\Tweak Manager\130725173249014.rsc
c:\users\JAKUB\AppData\Roaming\Seznam.cz
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\4686libfoxloader.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\4689libfoxloader-x64.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\ffkill.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libfoxcub-x64.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libfoxcub.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\libchinst.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\lightspeed.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\msvcp100.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\msvcr100.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\unlockInstance.dll
c:\users\JAKUB\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\install\packages.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\packages.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\sources.inf
c:\users\JAKUB\AppData\Roaming\Seznam.cz\szninstall.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\sznsetup.exe
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\com_microsoft_msdn_msvcr100_10_0_40219_325.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_autoupdate_1_0_8.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_1.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_chromelisticka_1_7_1.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_ielisticka3_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxcub64_3_1_5.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libfoxloader_3_1_2.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.reconfigure.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_libszndesktop_2_0_26.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_lightspeed_1210_12_10_12.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_pp_1_0_2.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szndesktop_2_0_26.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_szninstall_1_1_14.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\cz_seznam_software_sznsetup_1_2_6.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_base_1_0_0.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_fflisticka_2_5_16.uninstall.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.install.bat
c:\users\JAKUB\AppData\Roaming\Seznam.cz\uninstall\szn_software_listicka_3_0_0.uninstall.bat
c:\users\JAKUB\AppData\Roaming\update_tc\update.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-06-26 do 2013-07-26 )))))))))))))))))))))))))))))))
.
.
2013-07-26 17:26 . 2013-07-26 17:26 -------- d-----w- c:\users\Public\AppData\Local\temp
2013-07-26 17:26 . 2013-07-26 17:26 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-07-26 06:37 . 2013-07-26 06:37 -------- d-----w- c:\users\JAKUB\AppData\Roaming\HD Tune Pro
2013-07-26 06:36 . 2013-07-26 06:36 -------- d-----w- c:\program files (x86)\HD Tune Pro
2013-07-25 19:03 . 2013-07-25 19:02 83672 ----a-w- c:\windows\system32\drivers\avnetflt.sys
2013-07-25 17:58 . 2013-07-25 17:58 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Origin
2013-07-25 17:02 . 2013-07-25 17:02 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Avira
2013-07-25 17:01 . 2013-07-25 16:57 28600 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2013-07-25 17:01 . 2013-07-25 16:57 141376 ----a-w- c:\windows\system32\drivers\avfwot.sys
2013-07-25 17:01 . 2013-07-25 16:57 130016 ----a-w- c:\windows\system32\drivers\avipbb.sys
2013-07-25 17:01 . 2013-07-25 16:57 114608 ----a-w- c:\windows\system32\drivers\avfwim.sys
2013-07-25 17:01 . 2013-07-25 16:57 100712 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2013-07-25 16:58 . 2013-07-15 01:34 9460976 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1E892985-19D2-46F0-B3FC-97E66B7E8369}\mpengine.dll
2013-07-25 09:19 . 2013-07-25 09:19 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Hewlett-Packard
2013-07-25 09:14 . 2013-07-25 09:14 -------- d-----w- c:\program files (x86)\Convar
2013-07-25 09:12 . 2013-07-25 09:12 -------- d-----w- c:\program files (x86)\Defraggler
2013-07-25 09:10 . 2013-07-25 09:23 -------- d-----w- c:\program files\Recuva
2013-07-25 09:05 . 2013-07-25 09:05 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Leadertech
2013-07-20 08:36 . 2013-07-20 08:36 -------- d-----w- c:\programdata\Stardock
2013-07-20 08:35 . 2013-07-20 08:35 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Stardock
2013-07-20 08:35 . 2013-07-20 08:35 -------- d-----w- c:\program files (x86)\Stardock
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\programdata\IsolatedStorage
2013-07-20 08:16 . 2013-07-20 08:16 -------- d-----w- c:\users\JAKUB\AppData\Local\_
2013-07-20 08:04 . 2013-07-20 08:04 -------- d-----w- c:\program files (x86)\GadgetPack
2013-07-19 17:11 . 2013-07-19 17:11 -------- d-----w- c:\program files (x86)\Mortal Kombat Komplete Edition
2013-07-19 17:03 . 2013-07-19 17:08 -------- d-----w- c:\program files (x86)\F1 Race Stars
2013-07-19 14:42 . 2013-07-19 14:42 -------- d-----w- c:\program files (x86)\Milestone
2013-07-19 11:09 . 2013-07-19 14:29 -------- d-----w- c:\program files (x86)\Prototype 2
2013-07-16 18:47 . 2013-07-16 18:47 -------- d-----w- c:\program files\Activision
2013-07-16 17:33 . 2013-07-16 17:33 -------- d-----w- c:\program files (x86)\SQUARE ENIX
2013-07-16 13:03 . 2004-08-18 08:34 442368 ----a-r- c:\windows\SysWow64\vp6vfw.dll
2013-07-15 18:08 . 2013-07-15 18:08 -------- d-----w- c:\program files (x86)\VS Revo Group
2013-07-15 18:00 . 2013-07-15 18:00 -------- d-----w- c:\programdata\Martau
2013-07-15 18:00 . 2013-07-15 18:00 -------- d-----w- c:\program files\Total Uninstall 6
2013-07-15 17:51 . 2013-07-25 09:00 -------- d-----w- c:\program files (x86)\Full Uninstall
2013-07-15 17:51 . 2013-07-15 17:51 -------- d-----w- c:\users\JAKUB\AppData\Local\ChemTable Software
2013-07-15 16:49 . 2013-07-15 16:49 -------- d-----w- c:\program files (x86)\R.G. World Games
2013-07-15 15:55 . 2013-07-26 17:08 -------- d-----w- c:\program files (x86)\FIFA 13
2013-07-15 08:16 . 2013-07-19 17:02 -------- d--h--w- c:\windows\msdownld.tmp
2013-07-15 08:15 . 2013-07-15 08:15 -------- d-----w- c:\program files (x86)\7-Zip
2013-07-15 08:15 . 2013-07-15 08:17 -------- d-----w- c:\program files (x86)\PCSX2 1.0.0
2013-07-14 06:19 . 2013-07-25 09:00 -------- d-----w- c:\users\JAKUB\AppData\Roaming\DG
2013-07-14 06:18 . 2013-07-14 06:19 -------- d-----w- c:\program files (x86)\Thread Manager
2013-07-13 19:18 . 2013-07-15 15:37 -------- d-----w- c:\users\JAKUB\AppData\Local\Xpom
2013-07-13 07:38 . 2013-07-13 07:38 -------- d-----w- c:\windows\ERUNT
2013-07-12 12:42 . 2013-07-12 12:42 6129024 ----a-w- c:\program files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-07-12 12:42 . 2013-07-12 12:42 6129024 ----a-w- c:\program files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}\components\SkypeFfComponent.dll
2013-07-12 09:09 . 2013-07-25 09:00 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Malwarebytes
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\programdata\Malwarebytes
2013-07-12 09:09 . 2013-07-12 09:09 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-07-12 09:09 . 2013-04-04 12:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-07-11 14:30 . 2013-07-11 14:30 -------- d-----w- c:\programdata\RELOADED
2013-07-09 18:41 . 2013-07-09 18:41 0 ----a-w- c:\windows\ativpsrm.bin
2013-07-09 17:14 . 2013-07-09 17:14 -------- d-----w- c:\programdata\ATI
2013-07-09 17:12 . 2013-07-09 17:12 -------- d-----w- c:\program files\Common Files\ATI Technologies
2013-07-09 16:52 . 2013-07-09 17:11 -------- d-----w- c:\program files\ATI Technologies
2013-07-09 16:25 . 2013-07-09 17:10 -------- d-----w- c:\program files (x86)\ATI Technologies
2013-07-09 16:25 . 2013-07-09 16:51 -------- d-----w- C:\AMD
2013-07-07 06:51 . 2013-07-20 08:04 -------- d-----w- c:\users\JAKUB\AppData\Local\Application Data
2013-07-07 06:32 . 2013-07-07 06:32 -------- d-----w- c:\program files (x86)\Mixxx
2013-07-06 19:01 . 2013-07-06 19:05 -------- d-----w- c:\programdata\AVG
2013-07-06 08:25 . 2013-07-06 08:25 -------- d-----w- c:\program files (x86)\Imagenomic
2013-07-06 07:35 . 2013-07-06 07:35 -------- d-----w- c:\programdata\StarApp
2013-07-06 07:35 . 2013-07-06 07:35 -------- d-----w- c:\program files (x86)\SafeSaver
2013-07-05 11:56 . 2013-07-05 12:07 -------- d-----w- c:\users\JAKUB\AppData\Roaming\Uniblue
2013-07-05 11:49 . 2013-07-05 11:49 -------- d-----w- c:\program files (x86)\Pmcc
2013-07-05 06:49 . 2013-07-05 06:49 -------- d-----w- c:\programdata\Futuremark
2013-07-04 15:10 . 2013-07-04 15:10 -------- d-----w- c:\program files (x86)\AMD AVT
2013-07-04 15:10 . 2013-07-04 15:10 -------- d-----w- c:\program files (x86)\AMD APP
2013-07-02 19:40 . 2013-07-03 06:41 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2013-07-02 18:07 . 2013-07-02 18:07 -------- d-----w- C:\dumps
2013-07-02 18:07 . 2013-07-11 17:35 -------- d-----w- C:\New Folder
2013-07-02 17:03 . 2013-07-02 17:03 -------- d-----w- c:\program files (x86)\GamersFirst
2013-07-02 09:21 . 2013-07-19 17:10 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2013-07-02 09:21 . 2013-07-19 17:10 -------- d-----w- c:\program files (x86)\OpenAL
2013-07-02 09:21 . 2013-07-02 09:21 466520 ----a-w- c:\windows\system32\wrap_oal.dll
2013-07-02 09:21 . 2013-07-02 09:21 445016 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2013-07-02 09:19 . 2013-07-19 17:10 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2013-07-02 09:19 . 2012-09-19 16:06 19131904 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2013-07-02 09:19 . 2010-09-22 12:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2013-07-02 09:19 . 2013-07-19 17:10 -------- d-----w- c:\program files (x86)\BRS
2013-07-02 08:52 . 2013-07-02 18:21 -------- d-----w- c:\programdata\Codemasters
2013-07-02 08:45 . 2013-07-02 17:22 -------- d-----w- c:\users\JAKUB\AppData\Local\GamersFirst LIVE!
2013-07-02 08:44 . 2013-07-02 08:44 -------- d-----w- c:\users\JAKUB\AppData\Local\GamersFirst
2013-07-02 06:35 . 2013-02-04 16:44 804384 ----a-w- c:\windows\SysWow64\fmodex.dll
2013-07-02 06:35 . 2013-02-04 16:44 312864 ----a-w- c:\windows\SysWow64\fmod_event.dll
2013-07-01 18:17 . 2013-07-25 18:03 -------- d-----w- C:\Hry
2013-07-01 17:59 . 2013-07-01 17:59 -------- d-----w- C:\Ubisoft
2013-07-01 17:56 . 2013-07-01 17:56 -------- d-----w- c:\users\JAKUB\AppData\Local\Apps
2013-07-01 17:56 . 2013-07-02 07:41 -------- d-----w- c:\users\JAKUB\AppData\Local\Deployment
2013-07-01 15:56 . 2013-07-05 11:36 106224 ----a-w- c:\windows\SysWow64\drivers\GRD.sys
2013-07-01 15:52 . 2013-07-01 15:52 48584 ----a-w- c:\windows\system32\drivers\gdwfpcd64.sys
2013-07-01 10:38 . 2013-07-04 14:35 -------- d-----w- c:\programdata\Package Cache
2013-07-01 09:38 . 2013-07-01 09:38 -------- d-----w- c:\windows\SysWow64\wbem\Logs
2013-07-01 09:08 . 2013-07-01 09:08 -------- d-----w- c:\program files (x86)\AthTek
2013-07-01 08:57 . 2013-07-01 08:57 526336 ----a-w- c:\windows\system32\ieui.dll
2013-07-01 08:45 . 2013-07-01 08:45 1910632 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-07-01 08:44 . 2013-07-01 08:44 751104 ----a-w- c:\windows\system32\win32spl.dll
2013-07-01 08:44 . 2013-07-01 08:44 492544 ----a-w- c:\windows\SysWow64\win32spl.dll
2013-07-01 08:44 . 2013-07-26 17:06 29 ----a-w- c:\windows\SysWow64\TempWmicBatchFile.bat
2013-07-01 08:44 . 2013-07-01 08:44 30720 ----a-w- c:\windows\system32\cryptdlg.dll
2013-07-01 08:44 . 2013-07-01 08:44 24576 ----a-w- c:\windows\SysWow64\cryptdlg.dll
2013-07-01 08:43 . 2013-07-01 08:43 1887232 ----a-w- c:\windows\system32\d3d11.dll
2013-07-01 08:43 . 2013-07-01 08:43 1505280 ----a-w- c:\windows\SysWow64\d3d11.dll
2013-07-01 08:43 . 2013-07-01 08:43 1424384 ----a-w- c:\windows\system32\WindowsCodecs.dll
2013-07-01 08:43 . 2013-07-01 08:43 1230336 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2013-07-01 08:42 . 2013-07-01 08:42 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2013-07-01 08:42 . 2013-07-01 08:42 52224 ----a-w- c:\windows\system32\certenc.dll
2013-07-01 08:42 . 2013-07-01 08:42 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2013-07-01 08:42 . 2013-07-01 08:42 184320 ----a-w- c:\windows\system32\cryptsvc.dll
2013-07-01 08:42 . 2013-07-01 08:42 1464320 ----a-w- c:\windows\system32\crypt32.dll
2013-07-01 08:42 . 2013-07-01 08:42 140288 ----a-w- c:\windows\SysWow64\cryptsvc.dll
2013-07-01 08:42 . 2013-07-01 08:42 139776 ----a-w- c:\windows\system32\cryptnet.dll
2013-07-01 08:42 . 2013-07-01 08:42 1192448 ----a-w- c:\windows\system32\certutil.exe
2013-07-01 08:42 . 2013-07-01 08:42 1160192 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-07-01 08:42 . 2013-07-01 08:42 103936 ----a-w- c:\windows\SysWow64\cryptnet.dll
2013-07-01 08:38 . 2013-07-01 08:38 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2013-07-01 08:38 . 2013-07-01 08:38 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2013-07-01 08:38 . 2013-07-01 08:38 340992 ----a-w- c:\windows\system32\schannel.dll
2013-07-01 08:38 . 2013-07-01 08:38 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-07-01 08:38 . 2013-07-01 08:38 22016 ----a-w- c:\windows\SysWow64\secur32.dll
2013-07-01 08:38 . 2013-07-01 08:38 154480 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2013-07-01 08:38 . 2013-07-01 08:38 1448448 ----a-w- c:\windows\system32\lsasrv.dll
2013-07-01 08:37 . 2013-07-01 08:37 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2013-07-01 08:37 . 2013-07-01 08:37 366592 ----a-w- c:\windows\system32\qdvd.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-07-20 08:46 . 2013-07-20 08:46 19138 ----a-w- C:\64to32Sidebar.zip
2013-07-03 06:41 . 2013-03-16 10:45 290776 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2013-07-03 06:30 . 2013-03-16 10:45 281288 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2013-07-02 19:34 . 2013-03-16 10:45 76888 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2013-07-01 08:38 . 2013-07-01 08:38 247808 ----a-w- c:\windows\SysWow64\schannel.dll
2013-07-01 08:17 . 2008-07-17 08:43 23552 ----a-w- c:\windows\xlkfs.dll
2013-06-18 12:17 . 2013-03-15 03:33 54368 ----a-w- c:\windows\system32\drivers\kltdi.sys
2013-06-11 18:54 . 2013-02-19 17:35 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-06-11 18:54 . 2013-02-19 17:35 692104 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-06-07 15:45 . 2013-06-07 15:45 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2013-05-29 20:45 . 2013-05-29 20:45 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2013-05-28 20:23 . 2013-05-28 20:23 652288 ----a-w- c:\windows\system32\ficvdec_x64.dll
2013-05-28 20:22 . 2013-05-28 20:22 641024 ----a-w- c:\windows\SysWow64\ficvdec_x86.dll
2013-05-17 19:50 . 2012-08-13 14:49 178448 ----a-w- c:\windows\system32\drivers\kneps.sys
2013-05-17 19:50 . 2013-05-17 19:29 90208 ----a-w- c:\windows\system32\drivers\klflt.sys
2013-05-17 19:50 . 2013-05-17 19:29 620128 ----a-w- c:\windows\system32\drivers\klif.sys
2013-05-16 18:25 . 2010-06-24 09:33 22240 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-05-15 20:18 . 2013-05-04 08:44 75016696 ----a-w- c:\windows\system32\MRT.exe
2013-05-13 20:07 . 2013-05-13 20:07 97280 ----a-w- c:\windows\system32\mshtmled.dll
2013-05-13 20:07 . 2013-05-13 20:07 92160 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-05-13 20:07 . 2013-05-13 20:07 905728 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-05-13 20:07 . 2013-05-13 20:07 81408 ----a-w- c:\windows\system32\icardie.dll
2013-05-13 20:07 . 2013-05-13 20:07 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-05-13 20:07 . 2013-05-13 20:07 762368 ----a-w- c:\windows\system32\ieapfltr.dll
2013-05-13 20:07 . 2013-05-13 20:07 73728 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-05-13 20:07 . 2013-05-13 20:07 719360 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-05-13 20:07 . 2013-05-13 20:07 62976 ----a-w- c:\windows\system32\pngfilt.dll
2013-05-13 20:07 . 2013-05-13 20:07 61952 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-05-13 20:07 . 2013-05-13 20:07 599552 ----a-w- c:\windows\system32\vbscript.dll
2013-05-13 20:07 . 2013-05-13 20:07 523264 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-05-13 20:07 . 2013-05-13 20:07 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-05-13 20:07 . 2013-05-13 20:07 51200 ----a-w- c:\windows\system32\imgutil.dll
2013-05-13 20:07 . 2013-05-13 20:07 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-05-13 20:07 . 2013-05-13 20:07 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-05-13 20:07 . 2013-05-13 20:07 452096 ----a-w- c:\windows\system32\dxtmsft.dll
2013-05-13 20:07 . 2013-05-13 20:07 441856 ----a-w- c:\windows\system32\html.iec
2013-05-13 20:07 . 2013-05-13 20:07 38400 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-05-13 20:07 . 2013-05-13 20:07 361984 ----a-w- c:\windows\SysWow64\html.iec
2013-05-13 20:07 . 2013-05-13 20:07 281600 ----a-w- c:\windows\system32\dxtrans.dll
2013-05-13 20:07 . 2013-05-13 20:07 27648 ----a-w- c:\windows\system32\licmgr10.dll
2013-05-13 20:07 . 2013-05-13 20:07 270848 ----a-w- c:\windows\system32\iedkcs32.dll
2013-05-13 20:07 . 2013-05-13 20:07 247296 ----a-w- c:\windows\system32\webcheck.dll
2013-05-13 20:07 . 2013-05-13 20:07 235008 ----a-w- c:\windows\system32\url.dll
2013-05-13 20:07 . 2013-05-13 20:07 23040 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-05-13 20:07 . 2013-05-13 20:07 226304 ----a-w- c:\windows\system32\elshyph.dll
2013-05-13 20:07 . 2013-05-13 20:07 216064 ----a-w- c:\windows\system32\msls31.dll
2013-05-13 20:07 . 2013-05-13 20:07 197120 ----a-w- c:\windows\system32\msrating.dll
2013-05-13 20:07 . 2013-05-13 20:07 185344 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-05-13 20:07 . 2013-05-13 20:07 173568 ----a-w- c:\windows\system32\ieUnatt.exe
2013-05-13 20:07 . 2013-05-13 20:07 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-05-13 20:07 . 2013-05-13 20:07 158720 ----a-w- c:\windows\SysWow64\msls31.dll
2013-05-13 20:07 . 2013-05-13 20:07 1509376 ----a-w- c:\windows\system32\inetcpl.cpl
2013-05-13 20:07 . 2013-05-13 20:07 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-05-13 20:07 . 2013-05-13 20:07 149504 ----a-w- c:\windows\system32\occache.dll
2013-05-13 20:07 . 2013-05-13 20:07 144896 ----a-w- c:\windows\system32\wextract.exe
2013-05-13 20:07 . 2013-05-13 20:07 1441280 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-05-13 20:07 . 2013-05-13 20:07 1400416 ----a-w- c:\windows\system32\ieapfltr.dat
2013-05-13 20:07 . 2013-05-13 20:07 138752 ----a-w- c:\windows\SysWow64\wextract.exe
2013-05-13 20:07 . 2013-05-13 20:07 13824 ----a-w- c:\windows\system32\mshta.exe
2013-05-13 20:07 . 2013-05-13 20:07 137216 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-05-13 20:07 . 2013-05-13 20:07 136192 ----a-w- c:\windows\system32\iepeers.dll
2013-05-13 20:07 . 2013-05-13 20:07 135680 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-05-13 20:07 . 2013-05-13 20:07 12800 ----a-w- c:\windows\SysWow64\mshta.exe
2013-05-13 20:07 . 2013-05-13 20:07 12800 ----a-w- c:\windows\system32\msfeedssync.exe
2013-05-13 20:07 . 2013-05-13 20:07 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-05-13 20:07 . 2013-05-13 20:07 1054720 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-05-13 20:07 . 2013-05-13 20:07 102912 ----a-w- c:\windows\system32\inseng.dll
2013-05-13 20:05 . 2013-05-13 20:05 9728 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 9728 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 648192 ----a-w- c:\windows\system32\d3d10level9.dll
2013-05-13 20:05 . 2013-05-13 20:05 604160 ----a-w- c:\windows\SysWow64\d3d10level9.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shlwapi-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 5632 ---ha-w- c:\windows\system32\api-ms-win-downlevel-ole32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 522752 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2013-05-13 20:05 . 2013-05-13 20:05 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-05-13 20:05 . 2013-05-13 20:05 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-05-13 20:05 . 2013-05-13 20:05 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 4096 ---ha-w- c:\windows\system32\api-ms-win-downlevel-user32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3928064 ----a-w- c:\windows\system32\d2d1.dll
2013-05-13 20:05 . 2013-05-13 20:05 364544 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2013-05-13 20:05 . 2013-05-13 20:05 363008 ----a-w- c:\windows\system32\dxgi.dll
2013-05-13 20:05 . 2013-05-13 20:05 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3584 ---ha-w- c:\windows\system32\api-ms-win-downlevel-advapi32-l2-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2013-05-13 20:05 . 2013-05-13 20:05 333312 ----a-w- c:\windows\system32\d3d10_1core.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-version-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 3072 ---ha-w- c:\windows\system32\api-ms-win-downlevel-shell32-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 296960 ----a-w- c:\windows\system32\d3d10core.dll
2013-05-13 20:05 . 2013-05-13 20:05 293376 ----a-w- c:\windows\SysWow64\dxgi.dll
2013-05-13 20:05 . 2013-05-13 20:05 2776576 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2013-05-13 20:05 . 2013-05-13 20:05 2565120 ----a-w- c:\windows\system32\d3d10warp.dll
2013-05-13 20:05 . 2013-05-13 20:05 2560 ---ha-w- c:\windows\SysWow64\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 2560 ---ha-w- c:\windows\system32\api-ms-win-downlevel-normaliz-l1-1-0.dll
2013-05-13 20:05 . 2013-05-13 20:05 249856 ----a-w- c:\windows\SysWow64\d3d10_1core.dll
2013-05-13 20:05 . 2013-05-13 20:05 245248 ----a-w- c:\windows\system32\WindowsCodecsExt.dll
2013-05-13 20:05 . 2013-05-13 20:05 2284544 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"SpeedUpMyPC"="c:\program files (x86)\Uniblue\SpeedUpMyPC\launcher.exe" [2012-07-08 68504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avgnt"="c:\program files (x86)\Avira\AntiVir Desktop\avgnt.exe" [2013-07-25 345144]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [x]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R2 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 atillk64;atillk64; [x]
R3 EagleX64;EagleX64; [x]
R3 Futuremark SystemInfo Service;Futuremark SystemInfo Service;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe;c:\program files (x86)\Futuremark\Futuremark SystemInfo\FMSISvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 GDPkIcpt;GDPkIcpt; [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RivaTuner64;RivaTuner64;c:\program files (x86)\RivaTuner v2.23\RivaTuner64.sys;c:\program files (x86)\RivaTuner v2.23\RivaTuner64.sys [x]
R3 RTCore64;RTCore64;c:\program files (x86)\RMClock\RTCore64.sys;c:\program files (x86)\RMClock\RTCore64.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys;c:\program files (x86)\Razer\Razer Game Booster\Driver\WinRing0x64.sys [x]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys;c:\windows\SYSNATIVE\DRIVERS\amd_xata.sys [x]
S1 avfwot;avfwot;c:\windows\system32\DRIVERS\avfwot.sys;c:\windows\SYSNATIVE\DRIVERS\avfwot.sys [x]
S1 avkmgr;avkmgr;c:\windows\system32\DRIVERS\avkmgr.sys;c:\windows\SYSNATIVE\DRIVERS\avkmgr.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 kltdi;kltdi;c:\windows\system32\DRIVERS\kltdi.sys;c:\windows\SYSNATIVE\DRIVERS\kltdi.sys [x]
S1 kneps;kneps;c:\windows\system32\DRIVERS\kneps.sys;c:\windows\SYSNATIVE\DRIVERS\kneps.sys [x]
S1 xlkfs;xlkfs;c:\windows\system32\DRIVERS\xlkfs.sys;c:\windows\SYSNATIVE\DRIVERS\xlkfs.sys [x]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 AntiVirFirewallService;Avira FireWall;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avfwsvc.exe [x]
S2 AntiVirMailService;Avira Mail Protection;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe;c:\program files (x86)\Avira\AntiVir Desktop\avmailc.exe [x]
S2 AntiVirSchedulerService;Avira Scheduler;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe;c:\program files (x86)\Avira\AntiVir Desktop\sched.exe [x]
S2 AntiVirWebService;Avira Web Protection;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE;c:\program files (x86)\Avira\AntiVir Desktop\AVWEBGRD.EXE [x]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
S2 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Bluetooth Suite\adminservice.exe [x]
S2 CronService;Cron Service for Prey;c:\prey\platform\windows\cronsvc.exe;c:\prey\platform\windows\cronsvc.exe [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IconMan_R;IconMan_R;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe;c:\program files (x86)\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
S2 pdfcDispatcher;PDF Document Manager;c:\program files (x86)\PDF Complete\pdfsvc.exe;c:\program files (x86)\PDF Complete\pdfsvc.exe [x]
S2 PoSrv1;AVStreamer Service;c:\program files (x86)\ePlayWorks\AVStreamer\PoSrv.exe;c:\program files (x86)\ePlayWorks\AVStreamer\PoSrv.exe [x]
S2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
S2 TeamViewer8;TeamViewer 8;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version8\TeamViewer_Service.exe [x]
S3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\DRIVERS\avfwim.sys;c:\windows\SYSNATIVE\DRIVERS\avfwim.sys [x]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys;c:\windows\SYSNATIVE\DRIVERS\btath_bus.sys [x]
S3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_hcrp.sys [x]
S3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
S3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys;c:\windows\SYSNATIVE\DRIVERS\btath_rcp.sys [x]
S3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 klkbdflt;Kaspersky Lab KLKBDFLT;c:\windows\system32\DRIVERS\klkbdflt.sys;c:\windows\SYSNATIVE\DRIVERS\klkbdflt.sys [x]
S3 klmouflt;Kaspersky Lab KLMOUFLT;c:\windows\system32\DRIVERS\klmouflt.sys;c:\windows\SYSNATIVE\DRIVERS\klmouflt.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsPStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-07-13 16:09 1173456 ----a-w- c:\program files (x86)\Google\Chrome\Application\28.0.1500.72\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-07-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-19 18:54]
.
2013-07-26 c:\windows\Tasks\GlaryInitialize.job
- c:\program files (x86)\Glary Utilities\initialize.exe [2013-05-11 11:10]
.
2013-07-26 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-24 14:30]
.
2013-07-26 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-04-24 14:30]
.
2013-07-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core.job
- c:\users\JAKUB\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-25 15:11]
.
2013-07-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA.job
- c:\users\JAKUB\AppData\Local\Google\Update\GoogleUpdate.exe [2013-03-25 15:11]
.
2013-06-28 c:\windows\Tasks\HPCeeScheduleForJAKUB.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-09-13 20:15]
.
.
--------- X64 Entries -----------
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office15\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Se&nd to OneNote - c:\progra~1\MICROS~2\Office15\ONBttnIE.dll/105
LSP: c:\program files (x86)\Avira\AntiVir Desktop\avsda.dll
FF - ProfilePath - c:\users\JAKUB\AppData\Roaming\Mozilla\Firefox\Profiles\4anqzj7d.default\
FF - prefs.js: browser.search.selectedEngine - Поиск@Mail.Ru
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{41564952-412D-5637-00A7-7A786E7484D7} - c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll
Toolbar-{41564952-412D-5637-00A7-7A786E7484D7} - c:\program files (x86)\AskPartnerNetwork\Toolbar\AVIRA-V7\Passport.dll
AddRemove-CZ SK IPTV v2.0.3 - c:\windows\CZ SK IPTV v2.0.3
AddRemove-{50316C0A-CC2A-460A-9EA5-F486E54AC17D}_is1 - c:\program files (x86)\AVG\AVG PC Tuneup 2011\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files (x86)\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1617569673-3034970362-4137664275-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@DACL=(02 0000)
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,6e,df,
95,b6,89,ed,07,92,4e,ce,e8,47,6a,3d,27
"{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}"=hex:51,66,7a,6c,4c,1d,3b,1b,d4,e9,04,
95,31,58,bd,0f,9c,0d,50,ec,1c,9c,c7,3e
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,24,
88,32,1a,d6,0e,94,c0,10,24,75,4b,25,de
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,21,da,
ca,7a,af,29,03,82,82,42,9c,2c,7b,85,57
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,dc,
c3,75,f2,32,07,a6,78,dd,65,c2,86,ce,b1
"{4D2D3B0F-69BE-477A-90F5-FDDB05357975}"=hex:51,66,7a,6c,4c,1d,3b,1b,1f,24,39,
55,8e,3f,13,03,8a,f9,bc,9b,06,76,3f,6d
"{0124123D-61B4-456F-AF86-78C53A0790C5}"=hex:51,66,7a,6c,4c,1d,3b,1b,2d,0d,30,
19,84,37,06,01,b5,8a,39,85,39,44,d6,dd
"{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}"=hex:51,66,7a,6c,4c,1d,3b,1b,b0,84,c4,
29,c5,44,a7,08,a4,86,68,63,e4,25,43,c2
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,3b,1b,79,47,94,
b6,6c,78,bd,0a,95,77,b0,b7,86,59,02,8f
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,3b,1b,25,b7,e7,
ac,11,58,30,0d,a0,2e,03,f3,03,cd,44,e7
"{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}"=hex:51,66,7a,6c,4c,1d,3b,1b,1a,91,5d,
c8,87,13,c7,06,b3,a6,ea,e4,60,98,95,a7
"{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}"=hex:51,66,7a,6c,4c,1d,3b,1b,0e,19,66,
e5,ee,c9,24,0c,bf,86,4a,eb,42,12,8c,c0
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"=""
"AuthorizationCode"=""
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Full Uninstall\FullUninstallAgent.exe
c:\program files (x86)\Google\Update\1.3.21.153\GoogleCrashHandler.exe
c:\program files (x86)\Avira\AntiVir Desktop\avguard.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
c:\program files (x86)\Uniblue\SpeedUpMyPC\sump.exe
c:\windows\SysWow64\perfhost.exe
c:\windows\SysWOW64\DllHost.exe
.
**************************************************************************
.
Celkový čas: 2013-07-26 19:33:47 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-07-26 17:33
ComboFix2.txt 2013-07-20 18:39
ComboFix3.txt 2013-07-20 11:42
ComboFix4.txt 2013-07-18 07:23
ComboFix5.txt 2013-07-26 17:14
.
Před spuštěním: Volných bajtů: 118 014 861 312
Po spuštění: Volných bajtů: 117 959 315 456
.
- - End Of File - - F19C5917705953833D9562CC96150FD9
A36C5E4F47E84449FF07ED3517B43A31
Žádný učenec z nebe nespadl, ale blbce jako by shazovali.

CPU: Intel Xeon E5450 @ 3.0 Ghz
GPU: Sapphire Radeon RX 570 Pulse 4GB
MB: MICRO-STAR INTERNATIONAL CO.,LTD MS-7395
RAM: 8,00GB Dual-Channel DDR2
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod memphisto » 26 črc 2013 22:23

To PC Tune up od AVG jsi měl koupeno?
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod jaro3 » 26 črc 2013 22:42

Takovej bordel v security:
AVG , Avira , Kaspersky , F-Secure.
Tu Aviru chceš nechat?
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
MrAnnix99
Level 3.5
Level 3.5
Příspěvky: 935
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod MrAnnix99 » 27 črc 2013 09:37

Jo.
Žádný učenec z nebe nespadl, ale blbce jako by shazovali.

CPU: Intel Xeon E5450 @ 3.0 Ghz
GPU: Sapphire Radeon RX 570 Pulse 4GB
MB: MICRO-STAR INTERNATIONAL CO.,LTD MS-7395
RAM: 8,00GB Dual-Channel DDR2
Nahoru
Uživatelský avatar
memphisto
Guru Level 13
Guru Level 13
Příspěvky: 21113
Registrován: září 06
Bydliště: Zlín - České Budějovice
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod memphisto » 27 črc 2013 10:04

Jo na AVG nebo tu AVIRU?
PRAVIDLA PC-HELP.CZ, PRAVIDLA sekce HijackThis, HijackThis návod, Memtest, CCleaner
Logy z programu HijackThis neposílejte prosím přes SZ, ale vkládejte je do patřičné sekce. Děkuji
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod jaro3 » 27 črc 2013 10:05

ještě jeden script:

Kód: Vybrat vše

ClearJavaCache::

KillAll::
Collect::
c:\windows\xlkfs.dll

File::
c:\windows\ativpsrm.bin
c:\windows\system32\drivers\kltdi.sys
c:\windows\system32\drivers\kneps.sys
c:\windows\system32\drivers\klflt.sys
c:\windows\system32\drivers\klif.sys
c:\windows\system32\DRIVERS\klkbdflt.sys
c:\windows\system32\DRIVERS\klmouflt.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1617569673-3034970362-4137664275-1001UA.job

Folder::
c:\windows\msdownld.tmp
c:\programdata\AVG
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Google\Update
c:\users\JAKUB\AppData\Local\Google\Update

DirLook::
c:\users\JAKUB\AppData\Local\_
C:\New Folder

Driver::
SkypeUpdate
kltdi
kneps
xlkfs
klkbdflt
klmouflt

Registry::
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000000

RegLock::
[HKEY_USERS\S-1-5-21-1617569673-3034970362-4137664275-1001\Software\Microsoft\Internet Explorer\Approved Extensions]
@DACL=(02 0000)
"{8DCB7100-DF86-4384-8842-8FA844297B3F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,6e,df,
 95,b6,89,ed,07,92,4e,ce,e8,47,6a,3d,27
"{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}"=hex:51,66,7a,6c,4c,1d,3b,1b,d4,e9,04,
 95,31,58,bd,0f,9c,0d,50,ec,1c,9c,c7,3e
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cb,24,
 88,32,1a,d6,0e,94,c0,10,24,75,4b,25,de
"{D2CE3E00-F94A-4740-988E-03DC2F38C34F}"=hex:51,66,7a,6c,4c,1d,3b,1b,10,21,da,
 ca,7a,af,29,03,82,82,42,9c,2c,7b,85,57
"{DBC80044-A445-435B-BC74-9C25C1C588A9}"=hex:51,66,7a,6c,4c,1d,3b,1b,54,1f,dc,
 c3,75,f2,32,07,a6,78,dd,65,c2,86,ce,b1
"{4D2D3B0F-69BE-477A-90F5-FDDB05357975}"=hex:51,66,7a,6c,4c,1d,3b,1b,1f,24,39,
 55,8e,3f,13,03,8a,f9,bc,9b,06,76,3f,6d
"{0124123D-61B4-456F-AF86-78C53A0790C5}"=hex:51,66,7a,6c,4c,1d,3b,1b,2d,0d,30,
 19,84,37,06,01,b5,8a,39,85,39,44,d6,dd
"{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}"=hex:51,66,7a,6c,4c,1d,3b,1b,b0,84,c4,
 29,c5,44,a7,08,a4,86,68,63,e4,25,43,c2
"{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}"=hex:51,66,7a,6c,4c,1d,3b,1b,79,47,94,
 b6,6c,78,bd,0a,95,77,b0,b7,86,59,02,8f
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,3b,1b,25,b7,e7,
 ac,11,58,30,0d,a0,2e,03,f3,03,cd,44,e7
"{D0498E0A-45B7-42AE-A9AA-ABA463DBD3BF}"=hex:51,66,7a,6c,4c,1d,3b,1b,1a,91,5d,
 c8,87,13,c7,06,b3,a6,ea,e4,60,98,95,a7
"{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}"=hex:51,66,7a,6c,4c,1d,3b,1b,0e,19,66,
 e5,ee,c9,24,0c,bf,86,4a,eb,42,12,8c,c0
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_7_700_224_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_7_700_224.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\F-Secure\My Services Agent\Protected]
@Denied: ) (Everyone)
"AgentIdentifier"=""
"AuthorizationCode"=""
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)


stejný postup-
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Uživatelský avatar
MrAnnix99
Level 3.5
Level 3.5
Příspěvky: 935
Registrován: únor 13
Pohlaví: Muž
Stav:
Offline

Re: Zasekaný ntb HP 635

Příspěvekod MrAnnix99 » 28 črc 2013 20:22

Stačí v normal režimu, nebo nouzový režim?
Žádný učenec z nebe nespadl, ale blbce jako by shazovali.

CPU: Intel Xeon E5450 @ 3.0 Ghz
GPU: Sapphire Radeon RX 570 Pulse 4GB
MB: MICRO-STAR INTERNATIONAL CO.,LTD MS-7395
RAM: 8,00GB Dual-Channel DDR2
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 118 hostů