Prosím o kontrolu Vyřešeno
Re: Prosím o kontrolu
Plus sem samozrejme hod log z ComboFix.
Re: Prosím o kontrolu
TXT se my zobrazil sám...
Re: Prosím o kontrolu
ComboFix 14-12-23.01 - Jiří . 12. 2014 0:02.1.4 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.7912.6338 [GMT 1:00]
Spuštěný z: c:\users\Ji°Ý\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-11-23 do 2014-12-23 )))))))))))))))))))))))))))))))
.
.
2014-12-23 23:07 . 2014-12-23 23:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-12-23 22:57 . 2014-12-23 22:57 -------- d-----w- c:\program files\CCleaner
2014-12-23 21:28 . 2014-12-23 21:28 -------- d-----w- c:\programdata\boost_interprocess
2014-12-23 21:27 . 2014-12-23 21:13 24064 ----a-w- c:\windows\zoek-delete.exe
2014-12-23 21:13 . 2014-12-23 21:24 -------- d-----w- C:\zoek_backup
2014-12-23 14:35 . 2014-12-23 20:35 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-12-23 14:35 . 2014-12-23 14:35 -------- d-----w- c:\programdata\RogueKiller
2014-12-23 14:28 . 2014-12-23 14:28 -------- d-----w- c:\windows\ERUNT
2014-12-22 17:42 . 2014-12-22 18:33 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-22 17:42 . 2014-11-21 05:14 64216 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-12-22 17:42 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\programdata\Malwarebytes
2014-12-22 17:42 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-12-22 17:32 . 2014-12-23 09:19 -------- d-----w- C:\AdwCleaner
2014-12-16 17:40 . 2014-12-16 17:40 -------- d-----w- c:\program files (x86)\Applian Technologies
2014-12-15 15:44 . 2014-12-15 15:44 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-12-15 15:22 . 2014-12-15 19:06 -------- d-----w- c:\windows\system32\AutoUpdateLicense
2014-12-15 15:11 . 2014-07-15 22:51 71168 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2014-12-15 13:48 . 2013-06-16 22:41 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2014-12-15 13:48 . 2014-11-19 07:29 582552 ----a-w- c:\windows\system32\AutoUpdate.exe
2014-12-15 13:48 . 2014-11-19 07:29 462760 ----a-w- c:\windows\system32\NotificationUI.exe
2014-12-15 13:48 . 2014-10-22 01:01 695808 ----a-w- c:\windows\system32\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 568832 ----a-w- c:\windows\SysWow64\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 124928 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:48 . 2014-10-22 01:01 198656 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.dll
2014-12-15 13:48 . 2014-10-22 01:00 125952 ----a-w- c:\windows\system32\WinSetupUI.dll
2014-12-15 13:48 . 2014-10-22 01:01 163840 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:47 . 2014-01-27 03:39 1939288 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-12-15 13:47 . 2014-01-02 23:32 523264 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-02-03 23:56 278872 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-12-15 13:47 . 2014-01-02 23:35 365568 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-01-31 00:06 599040 ----a-w- c:\windows\system32\WSDApi.dll
2014-12-15 13:47 . 2014-02-03 23:56 332632 ----a-w- c:\windows\system32\drivers\storport.sys
2014-12-15 13:47 . 2014-01-31 00:48 485888 ----a-w- c:\windows\SysWow64\WSDApi.dll
2014-12-15 13:47 . 2014-01-15 23:42 118784 ----a-w- c:\windows\system32\drivers\dfsc.sys
2014-12-15 13:19 . 2014-09-26 03:01 28616704 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:19 . 2014-09-26 02:33 27853824 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:18 . 2014-03-24 23:42 305152 ----a-w- c:\windows\SysWow64\wusa.exe
2014-12-15 13:18 . 2014-03-24 22:56 309760 ----a-w- c:\windows\system32\wusa.exe
2014-12-15 13:17 . 2013-08-30 05:18 374784 ----a-w- c:\windows\system32\clusapi.dll
2014-12-15 13:17 . 2013-08-30 05:19 626688 ----a-w- c:\windows\system32\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:48 488960 ----a-w- c:\windows\SysWow64\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:47 302080 ----a-w- c:\windows\SysWow64\clusapi.dll
2014-12-15 13:17 . 2013-10-05 06:10 285016 ----a-w- c:\windows\system32\drivers\spaceport.sys
2014-12-15 13:14 . 2013-07-24 23:07 13661696 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-07-24 23:10 10799104 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-08-30 05:20 1173504 ----a-w- c:\windows\system32\UIAutomationCore.dll
2014-12-15 13:14 . 2013-08-29 23:48 914432 ----a-w- c:\windows\SysWow64\UIAutomationCore.dll
2014-12-15 13:14 . 2013-09-13 22:33 328192 ----a-w- c:\windows\system32\ubpm.dll
2014-12-15 13:14 . 2013-08-21 06:39 465240 ----a-w- c:\windows\system32\drivers\fvevol.sys
2014-12-15 13:14 . 2013-08-10 06:30 151896 ----a-w- c:\windows\system32\drivers\tpm.sys
2014-12-15 13:14 . 2013-09-13 22:36 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2014-12-15 13:14 . 2013-08-30 05:43 61784 ----a-w- c:\windows\system32\drivers\crashdmp.sys
2014-12-15 13:11 . 2014-07-08 22:30 1220608 ----a-w- c:\windows\SysWow64\storagewmi.dll
2014-12-15 13:09 . 2013-04-09 23:17 1125888 ----a-w- c:\windows\system32\msctf.dll
2014-12-15 13:08 . 2014-04-29 22:32 126464 ----a-w- c:\windows\system32\Robocopy.exe
2014-12-15 12:19 . 2014-11-26 21:11 106440 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-15 12:19 . 2014-11-26 21:11 714184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-12-15 12:12 . 2014-12-15 12:24 -------- d-----r- c:\windows\BrowserChoice
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-s---w- c:\windows\system32\CompatTel
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-----w- c:\windows\system32\appraiser
2014-12-15 11:17 . 2014-12-15 11:19 -------- d-----w- c:\windows\system32\MRT
2014-12-15 11:13 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll
2014-12-15 11:13 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe
2014-12-15 11:13 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll
2014-12-15 10:12 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-12-15 10:12 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-12-15 10:01 . 2014-12-15 10:02 -------- d-----w- c:\program files\Bandizip
2014-12-15 02:17 . 2014-12-15 02:17 -------- d--h--r- c:\users\Public\AccountPictures
2014-12-14 22:09 . 2014-12-14 22:09 -------- d-----w- c:\program files (x86)\FDRLab
2014-12-14 21:35 . 2013-12-18 08:38 42808 ----a-w- c:\windows\system32\uxtA1CD.tmp
2014-12-14 21:30 . 2014-12-14 21:36 -------- d-----w- c:\programdata\AVG
2014-12-14 21:30 . 2014-12-14 21:30 -------- d--h--w- c:\programdata\Common Files
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----r- c:\program files (x86)\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\programdata\Skype
2014-12-14 20:33 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2014-12-14 20:33 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-12-14 20:33 . 2013-07-05 22:02 99328 ----a-w- c:\windows\system32\drivers\usbcir.sys
2014-12-14 20:33 . 2013-07-05 22:01 210560 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2014-12-14 20:32 . 2013-07-06 00:15 652288 ----a-w- c:\windows\system32\comctl32.dll
2014-12-14 20:32 . 2013-07-04 02:13 541696 ----a-w- c:\windows\SysWow64\comctl32.dll
2014-12-14 20:31 . 2014-12-14 20:32 -------- d-----w- c:\program files (x86)\OpenOffice 4
2014-12-14 20:31 . 2014-10-11 07:44 19764736 ----a-w- c:\windows\system32\shell32.dll
2014-12-14 20:31 . 2014-10-09 03:59 623616 ----a-w- c:\windows\system32\dnsapi.dll
2014-12-14 20:31 . 2014-09-22 05:38 673792 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-09-22 03:56 513536 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-10-09 03:59 212992 ----a-w- c:\windows\system32\dnsrslvr.dll
2014-12-14 20:29 . 2014-06-13 01:57 1453400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-12-14 20:29 . 2014-06-13 01:55 199680 ----a-w- c:\windows\system32\cdd.dll
2014-12-14 20:26 . 2013-03-02 02:44 703488 ----a-w- c:\windows\system32\drvstore.dll
2014-12-14 20:23 . 2014-01-31 00:48 143872 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2014-12-14 20:21 . 2014-06-17 23:27 1440256 ----a-w- c:\windows\SysWow64\osk.exe
2014-12-14 20:21 . 2014-06-17 23:24 1557504 ----a-w- c:\windows\system32\osk.exe
2014-12-14 20:21 . 2014-06-11 16:00 394624 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-12-14 20:21 . 2014-06-11 14:47 92672 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2014-12-14 20:21 . 2014-06-11 14:47 1616896 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-12-14 20:21 . 2014-07-31 23:40 1287680 ----a-w- c:\windows\system32\schedsvc.dll
2014-12-14 20:16 . 2013-10-10 09:21 1160192 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-12-14 20:16 . 2013-10-10 09:20 723968 ----a-w- c:\windows\system32\BFE.DLL
2014-12-14 20:16 . 2013-06-10 19:16 888832 ----a-w- c:\windows\system32\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:15 381952 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-06-10 19:10 702464 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:10 245248 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-10-10 11:53 96600 ----a-w- c:\windows\system32\drivers\wfplwfs.sys
2014-12-14 20:16 . 2014-09-03 02:48 510464 ----a-w- c:\windows\SysWow64\rastls.dll
2014-12-14 20:16 . 2014-09-03 02:21 585728 ----a-w- c:\windows\system32\rastls.dll
2014-12-14 19:58 . 2014-12-14 19:58 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2014-12-14 19:56 . 2014-08-09 08:29 144896 ----a-w- c:\windows\system32\tssdisai.dll
2014-12-14 19:55 . 2014-08-09 08:30 148480 ----a-w- c:\windows\system32\poqexec.exe
2014-12-14 19:42 . 2014-12-14 19:42 -------- d-----w- c:\programdata\VS Revo Group
2014-12-14 19:42 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2014-12-14 19:42 . 2014-12-23 20:56 -------- d-----w- c:\program files (x86)\Revo Uninstaller Pro
2014-12-14 19:41 . 2014-12-14 19:41 -------- d-----w- c:\programdata\FastStone
2014-12-14 19:40 . 2014-12-14 19:40 -------- d-----w- c:\program files (x86)\FastStone Capture
2014-12-14 19:38 . 2014-12-14 19:38 -------- d-----w- c:\program files (x86)\Auslogics
2014-12-14 19:32 . 2014-07-07 05:51 5982208 ----a-w- c:\windows\system32\mstscax.dll
2014-12-14 19:32 . 2014-07-07 04:00 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-12-14 19:30 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-10-18 08:44 778240 ----a-w- c:\windows\system32\oleaut32.dll
2014-12-14 19:30 . 2014-10-18 07:05 567808 ----a-w- c:\windows\SysWow64\oleaut32.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-12-14 18:20 . 2012-07-26 08:13 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-09-24 23:29 . 2014-12-14 19:22 318976 ----a-w- c:\windows\SysWow64\schannel.dll
2014-04-22 11:32 . 2014-04-22 11:32 476160 ----a-w- c:\program files (x86)\setup.exe
2014-04-22 11:32 . 2014-04-22 11:32 2306048 ----a-w- c:\program files (x86)\openoffice410.msi
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-14 642656]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2012-08-15 2994880]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-12-14 5227112]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\System32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ccSet_NARA;NARA Settings Manager;c:\windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NARAx64\0401000.00E\ccSetx64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [x]
S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMSvc;Launch Manager Service;c:\program files\Acer\Acer Launch Manager\LMSvc.exe;c:\program files\Acer\Acer Launch Manager\LMSvc.exe [x]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 LMDriver;Launch Manager Wireless Driver;c:\windows\System32\drivers\LMDriver.sys;c:\windows\SYSNATIVE\drivers\LMDriver.sys [x]
S3 RadioShim;Shim for HID-KMDF Interface layer;c:\windows\System32\drivers\RadioShim.sys;c:\windows\SYSNATIVE\drivers\RadioShim.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2014-12-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14 19:28]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-12-14 18:31 860984 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-15 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-15 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-15 444400]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-18 13427784]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 81.200.55.50 81.200.55.34
FF - ProfilePath - c:\users\Jiří\AppData\Roaming\Mozilla\Firefox\Profiles\yctljdej.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnG=Google+Search&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Celkový čas: 2014-12-24 00:10:40
ComboFix-quarantined-files.txt 2014-12-23 23:10
.
Před spuštěním: 809 071 968 256 bytes free
Po spuštění: 808 927 768 576 bytes free
.
- - End Of File - - 6B4E88C6770CA5791D1E2D966DDC9940
5FB38429D5D77768867C76DCBDB35194
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.7912.6338 [GMT 1:00]
Spuštěný z: c:\users\Ji°Ý\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\PFRO.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-11-23 do 2014-12-23 )))))))))))))))))))))))))))))))
.
.
2014-12-23 23:07 . 2014-12-23 23:07 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-12-23 22:57 . 2014-12-23 22:57 -------- d-----w- c:\program files\CCleaner
2014-12-23 21:28 . 2014-12-23 21:28 -------- d-----w- c:\programdata\boost_interprocess
2014-12-23 21:27 . 2014-12-23 21:13 24064 ----a-w- c:\windows\zoek-delete.exe
2014-12-23 21:13 . 2014-12-23 21:24 -------- d-----w- C:\zoek_backup
2014-12-23 14:35 . 2014-12-23 20:35 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-12-23 14:35 . 2014-12-23 14:35 -------- d-----w- c:\programdata\RogueKiller
2014-12-23 14:28 . 2014-12-23 14:28 -------- d-----w- c:\windows\ERUNT
2014-12-22 17:42 . 2014-12-22 18:33 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-22 17:42 . 2014-11-21 05:14 64216 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-12-22 17:42 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\programdata\Malwarebytes
2014-12-22 17:42 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-12-22 17:32 . 2014-12-23 09:19 -------- d-----w- C:\AdwCleaner
2014-12-16 17:40 . 2014-12-16 17:40 -------- d-----w- c:\program files (x86)\Applian Technologies
2014-12-15 15:44 . 2014-12-15 15:44 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-12-15 15:22 . 2014-12-15 19:06 -------- d-----w- c:\windows\system32\AutoUpdateLicense
2014-12-15 15:11 . 2014-07-15 22:51 71168 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2014-12-15 13:48 . 2013-06-16 22:41 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2014-12-15 13:48 . 2014-11-19 07:29 582552 ----a-w- c:\windows\system32\AutoUpdate.exe
2014-12-15 13:48 . 2014-11-19 07:29 462760 ----a-w- c:\windows\system32\NotificationUI.exe
2014-12-15 13:48 . 2014-10-22 01:01 695808 ----a-w- c:\windows\system32\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 568832 ----a-w- c:\windows\SysWow64\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 124928 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:48 . 2014-10-22 01:01 198656 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.dll
2014-12-15 13:48 . 2014-10-22 01:00 125952 ----a-w- c:\windows\system32\WinSetupUI.dll
2014-12-15 13:48 . 2014-10-22 01:01 163840 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:47 . 2014-01-27 03:39 1939288 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-12-15 13:47 . 2014-01-02 23:32 523264 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-02-03 23:56 278872 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-12-15 13:47 . 2014-01-02 23:35 365568 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-01-31 00:06 599040 ----a-w- c:\windows\system32\WSDApi.dll
2014-12-15 13:47 . 2014-02-03 23:56 332632 ----a-w- c:\windows\system32\drivers\storport.sys
2014-12-15 13:47 . 2014-01-31 00:48 485888 ----a-w- c:\windows\SysWow64\WSDApi.dll
2014-12-15 13:47 . 2014-01-15 23:42 118784 ----a-w- c:\windows\system32\drivers\dfsc.sys
2014-12-15 13:19 . 2014-09-26 03:01 28616704 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:19 . 2014-09-26 02:33 27853824 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:18 . 2014-03-24 23:42 305152 ----a-w- c:\windows\SysWow64\wusa.exe
2014-12-15 13:18 . 2014-03-24 22:56 309760 ----a-w- c:\windows\system32\wusa.exe
2014-12-15 13:17 . 2013-08-30 05:18 374784 ----a-w- c:\windows\system32\clusapi.dll
2014-12-15 13:17 . 2013-08-30 05:19 626688 ----a-w- c:\windows\system32\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:48 488960 ----a-w- c:\windows\SysWow64\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:47 302080 ----a-w- c:\windows\SysWow64\clusapi.dll
2014-12-15 13:17 . 2013-10-05 06:10 285016 ----a-w- c:\windows\system32\drivers\spaceport.sys
2014-12-15 13:14 . 2013-07-24 23:07 13661696 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-07-24 23:10 10799104 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-08-30 05:20 1173504 ----a-w- c:\windows\system32\UIAutomationCore.dll
2014-12-15 13:14 . 2013-08-29 23:48 914432 ----a-w- c:\windows\SysWow64\UIAutomationCore.dll
2014-12-15 13:14 . 2013-09-13 22:33 328192 ----a-w- c:\windows\system32\ubpm.dll
2014-12-15 13:14 . 2013-08-21 06:39 465240 ----a-w- c:\windows\system32\drivers\fvevol.sys
2014-12-15 13:14 . 2013-08-10 06:30 151896 ----a-w- c:\windows\system32\drivers\tpm.sys
2014-12-15 13:14 . 2013-09-13 22:36 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2014-12-15 13:14 . 2013-08-30 05:43 61784 ----a-w- c:\windows\system32\drivers\crashdmp.sys
2014-12-15 13:11 . 2014-07-08 22:30 1220608 ----a-w- c:\windows\SysWow64\storagewmi.dll
2014-12-15 13:09 . 2013-04-09 23:17 1125888 ----a-w- c:\windows\system32\msctf.dll
2014-12-15 13:08 . 2014-04-29 22:32 126464 ----a-w- c:\windows\system32\Robocopy.exe
2014-12-15 12:19 . 2014-11-26 21:11 106440 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-15 12:19 . 2014-11-26 21:11 714184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-12-15 12:12 . 2014-12-15 12:24 -------- d-----r- c:\windows\BrowserChoice
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-s---w- c:\windows\system32\CompatTel
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-----w- c:\windows\system32\appraiser
2014-12-15 11:17 . 2014-12-15 11:19 -------- d-----w- c:\windows\system32\MRT
2014-12-15 11:13 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll
2014-12-15 11:13 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe
2014-12-15 11:13 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll
2014-12-15 10:12 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-12-15 10:12 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-12-15 10:01 . 2014-12-15 10:02 -------- d-----w- c:\program files\Bandizip
2014-12-15 02:17 . 2014-12-15 02:17 -------- d--h--r- c:\users\Public\AccountPictures
2014-12-14 22:09 . 2014-12-14 22:09 -------- d-----w- c:\program files (x86)\FDRLab
2014-12-14 21:35 . 2013-12-18 08:38 42808 ----a-w- c:\windows\system32\uxtA1CD.tmp
2014-12-14 21:30 . 2014-12-14 21:36 -------- d-----w- c:\programdata\AVG
2014-12-14 21:30 . 2014-12-14 21:30 -------- d--h--w- c:\programdata\Common Files
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----r- c:\program files (x86)\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\programdata\Skype
2014-12-14 20:33 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2014-12-14 20:33 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-12-14 20:33 . 2013-07-05 22:02 99328 ----a-w- c:\windows\system32\drivers\usbcir.sys
2014-12-14 20:33 . 2013-07-05 22:01 210560 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2014-12-14 20:32 . 2013-07-06 00:15 652288 ----a-w- c:\windows\system32\comctl32.dll
2014-12-14 20:32 . 2013-07-04 02:13 541696 ----a-w- c:\windows\SysWow64\comctl32.dll
2014-12-14 20:31 . 2014-12-14 20:32 -------- d-----w- c:\program files (x86)\OpenOffice 4
2014-12-14 20:31 . 2014-10-11 07:44 19764736 ----a-w- c:\windows\system32\shell32.dll
2014-12-14 20:31 . 2014-10-09 03:59 623616 ----a-w- c:\windows\system32\dnsapi.dll
2014-12-14 20:31 . 2014-09-22 05:38 673792 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-09-22 03:56 513536 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-10-09 03:59 212992 ----a-w- c:\windows\system32\dnsrslvr.dll
2014-12-14 20:29 . 2014-06-13 01:57 1453400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-12-14 20:29 . 2014-06-13 01:55 199680 ----a-w- c:\windows\system32\cdd.dll
2014-12-14 20:26 . 2013-03-02 02:44 703488 ----a-w- c:\windows\system32\drvstore.dll
2014-12-14 20:23 . 2014-01-31 00:48 143872 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2014-12-14 20:21 . 2014-06-17 23:27 1440256 ----a-w- c:\windows\SysWow64\osk.exe
2014-12-14 20:21 . 2014-06-17 23:24 1557504 ----a-w- c:\windows\system32\osk.exe
2014-12-14 20:21 . 2014-06-11 16:00 394624 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-12-14 20:21 . 2014-06-11 14:47 92672 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2014-12-14 20:21 . 2014-06-11 14:47 1616896 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-12-14 20:21 . 2014-07-31 23:40 1287680 ----a-w- c:\windows\system32\schedsvc.dll
2014-12-14 20:16 . 2013-10-10 09:21 1160192 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-12-14 20:16 . 2013-10-10 09:20 723968 ----a-w- c:\windows\system32\BFE.DLL
2014-12-14 20:16 . 2013-06-10 19:16 888832 ----a-w- c:\windows\system32\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:15 381952 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-06-10 19:10 702464 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:10 245248 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-10-10 11:53 96600 ----a-w- c:\windows\system32\drivers\wfplwfs.sys
2014-12-14 20:16 . 2014-09-03 02:48 510464 ----a-w- c:\windows\SysWow64\rastls.dll
2014-12-14 20:16 . 2014-09-03 02:21 585728 ----a-w- c:\windows\system32\rastls.dll
2014-12-14 19:58 . 2014-12-14 19:58 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2014-12-14 19:56 . 2014-08-09 08:29 144896 ----a-w- c:\windows\system32\tssdisai.dll
2014-12-14 19:55 . 2014-08-09 08:30 148480 ----a-w- c:\windows\system32\poqexec.exe
2014-12-14 19:42 . 2014-12-14 19:42 -------- d-----w- c:\programdata\VS Revo Group
2014-12-14 19:42 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2014-12-14 19:42 . 2014-12-23 20:56 -------- d-----w- c:\program files (x86)\Revo Uninstaller Pro
2014-12-14 19:41 . 2014-12-14 19:41 -------- d-----w- c:\programdata\FastStone
2014-12-14 19:40 . 2014-12-14 19:40 -------- d-----w- c:\program files (x86)\FastStone Capture
2014-12-14 19:38 . 2014-12-14 19:38 -------- d-----w- c:\program files (x86)\Auslogics
2014-12-14 19:32 . 2014-07-07 05:51 5982208 ----a-w- c:\windows\system32\mstscax.dll
2014-12-14 19:32 . 2014-07-07 04:00 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-12-14 19:30 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-10-18 08:44 778240 ----a-w- c:\windows\system32\oleaut32.dll
2014-12-14 19:30 . 2014-10-18 07:05 567808 ----a-w- c:\windows\SysWow64\oleaut32.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-12-14 18:20 . 2012-07-26 08:13 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-09-24 23:29 . 2014-12-14 19:22 318976 ----a-w- c:\windows\SysWow64\schannel.dll
2014-04-22 11:32 . 2014-04-22 11:32 476160 ----a-w- c:\program files (x86)\setup.exe
2014-04-22 11:32 . 2014-04-22 11:32 2306048 ----a-w- c:\program files (x86)\openoffice410.msi
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-14 642656]
"Norton Online Backup"="c:\program files (x86)\Symantec\Norton Online Backup\NOBuClient.exe" [2012-08-15 2994880]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-12-14 5227112]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\System32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ccSet_NARA;NARA Settings Manager;c:\windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NARAx64\0401000.00E\ccSetx64.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [x]
S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMSvc;Launch Manager Service;c:\program files\Acer\Acer Launch Manager\LMSvc.exe;c:\program files\Acer\Acer Launch Manager\LMSvc.exe [x]
S2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe;c:\program files (x86)\McAfee\SiteAdvisor\McSACore.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 NOBU;Norton Online Backup;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE;c:\program files (x86)\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 LMDriver;Launch Manager Wireless Driver;c:\windows\System32\drivers\LMDriver.sys;c:\windows\SYSNATIVE\drivers\LMDriver.sys [x]
S3 RadioShim;Shim for HID-KMDF Interface layer;c:\windows\System32\drivers\RadioShim.sys;c:\windows\SYSNATIVE\drivers\RadioShim.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2014-12-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14 19:28]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-12-14 18:31 860984 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-15 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-15 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-15 444400]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-18 13427784]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 81.200.55.50 81.200.55.34
FF - ProfilePath - c:\users\Jiří\AppData\Roaming\Mozilla\Firefox\Profiles\yctljdej.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnG=Google+Search&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Celkový čas: 2014-12-24 00:10:40
ComboFix-quarantined-files.txt 2014-12-23 23:10
.
Před spuštěním: 809 071 968 256 bytes free
Po spuštění: 808 927 768 576 bytes free
.
- - End Of File - - 6B4E88C6770CA5791D1E2D966DDC9940
5FB38429D5D77768867C76DCBDB35194
Re: Prosím o kontrolu
Heezky procisteno :) Ted ten log, idealne z FRST, ale Hijack by mozna tky stacil...
Re: Prosím o kontrolu
...jinak už jsem vše odinstaloval a nainstaloval ten CClener...snad bude vše O.K.
Re: Prosím o kontrolu
To potvrdim az uvidim ten zadany log.
Re: Prosím o kontrolu
tak teď nerozumím...mám ještě něco udělat...znovu ten poslední log?
Re: Prosím o kontrolu
Potom az ComboFix ukonci praci a PC se restartuje, jelikoz Hijack je stara aplikace, dej sem log z tohoto: http://download.bleepingcomputer.com/dl ... FRST64.exe
Protoze to bude chtit procistit.
Protoze to bude chtit procistit.
Re: Prosím o kontrolu
...a kde najdu ten TXT?...zase se my zobrazil na ploše...
Re: Prosím o kontrolu
? FRST ulozte na plochu, kliknete na Scan, objevi se vam log v poznamkovem bloku, ten sem pomoci ctrl+c a ctrl+v dejte...
Re: Prosím o kontrolu
ComboFix 14-12-23.01 - Jiří . 12. 2014 0:42.2.4 - x64
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.7912.6220 [GMT 1:00]
Spuštěný z: c:\users\Ji°Ý\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
/wow section - STAGE 3
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-11-23 do 2014-12-23 )))))))))))))))))))))))))))))))
.
.
2014-12-23 23:51 . 2014-12-23 23:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-12-23 22:57 . 2014-12-23 22:57 -------- d-----w- c:\program files\CCleaner
2014-12-23 21:28 . 2014-12-23 21:28 -------- d-----w- c:\programdata\boost_interprocess
2014-12-23 21:27 . 2014-12-23 21:13 24064 ----a-w- c:\windows\zoek-delete.exe
2014-12-23 21:13 . 2014-12-23 21:24 -------- d-----w- C:\zoek_backup
2014-12-23 14:35 . 2014-12-23 20:35 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-12-23 14:35 . 2014-12-23 14:35 -------- d-----w- c:\programdata\RogueKiller
2014-12-23 14:28 . 2014-12-23 14:28 -------- d-----w- c:\windows\ERUNT
2014-12-22 17:42 . 2014-12-22 18:33 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-22 17:42 . 2014-11-21 05:14 64216 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-12-22 17:42 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\programdata\Malwarebytes
2014-12-22 17:42 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-12-22 17:32 . 2014-12-23 09:19 -------- d-----w- C:\AdwCleaner
2014-12-16 17:40 . 2014-12-16 17:40 -------- d-----w- c:\program files (x86)\Applian Technologies
2014-12-15 15:44 . 2014-12-15 15:44 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-12-15 15:22 . 2014-12-15 19:06 -------- d-----w- c:\windows\system32\AutoUpdateLicense
2014-12-15 15:11 . 2014-07-15 22:51 71168 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2014-12-15 13:48 . 2013-06-16 22:41 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2014-12-15 13:48 . 2014-11-19 07:29 582552 ----a-w- c:\windows\system32\AutoUpdate.exe
2014-12-15 13:48 . 2014-11-19 07:29 462760 ----a-w- c:\windows\system32\NotificationUI.exe
2014-12-15 13:48 . 2014-10-22 01:01 695808 ----a-w- c:\windows\system32\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 568832 ----a-w- c:\windows\SysWow64\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 124928 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:48 . 2014-10-22 01:01 198656 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.dll
2014-12-15 13:48 . 2014-10-22 01:00 125952 ----a-w- c:\windows\system32\WinSetupUI.dll
2014-12-15 13:48 . 2014-10-22 01:01 163840 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:47 . 2014-01-27 03:39 1939288 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-12-15 13:47 . 2014-01-02 23:32 523264 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-02-03 23:56 278872 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-12-15 13:47 . 2014-01-02 23:35 365568 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-01-31 00:06 599040 ----a-w- c:\windows\system32\WSDApi.dll
2014-12-15 13:47 . 2014-02-03 23:56 332632 ----a-w- c:\windows\system32\drivers\storport.sys
2014-12-15 13:47 . 2014-01-31 00:48 485888 ----a-w- c:\windows\SysWow64\WSDApi.dll
2014-12-15 13:47 . 2014-01-15 23:42 118784 ----a-w- c:\windows\system32\drivers\dfsc.sys
2014-12-15 13:19 . 2014-09-26 03:01 28616704 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:19 . 2014-09-26 02:33 27853824 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:18 . 2014-03-24 23:42 305152 ----a-w- c:\windows\SysWow64\wusa.exe
2014-12-15 13:18 . 2014-03-24 22:56 309760 ----a-w- c:\windows\system32\wusa.exe
2014-12-15 13:17 . 2013-08-30 05:18 374784 ----a-w- c:\windows\system32\clusapi.dll
2014-12-15 13:17 . 2013-08-30 05:19 626688 ----a-w- c:\windows\system32\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:48 488960 ----a-w- c:\windows\SysWow64\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:47 302080 ----a-w- c:\windows\SysWow64\clusapi.dll
2014-12-15 13:17 . 2013-10-05 06:10 285016 ----a-w- c:\windows\system32\drivers\spaceport.sys
2014-12-15 13:14 . 2013-07-24 23:07 13661696 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-07-24 23:10 10799104 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-08-30 05:20 1173504 ----a-w- c:\windows\system32\UIAutomationCore.dll
2014-12-15 13:14 . 2013-08-29 23:48 914432 ----a-w- c:\windows\SysWow64\UIAutomationCore.dll
2014-12-15 13:14 . 2013-09-13 22:33 328192 ----a-w- c:\windows\system32\ubpm.dll
2014-12-15 13:14 . 2013-08-21 06:39 465240 ----a-w- c:\windows\system32\drivers\fvevol.sys
2014-12-15 13:14 . 2013-08-10 06:30 151896 ----a-w- c:\windows\system32\drivers\tpm.sys
2014-12-15 13:14 . 2013-09-13 22:36 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2014-12-15 13:14 . 2013-08-30 05:43 61784 ----a-w- c:\windows\system32\drivers\crashdmp.sys
2014-12-15 13:11 . 2014-07-08 22:30 1220608 ----a-w- c:\windows\SysWow64\storagewmi.dll
2014-12-15 13:09 . 2013-04-09 23:17 1125888 ----a-w- c:\windows\system32\msctf.dll
2014-12-15 13:08 . 2014-04-29 22:32 126464 ----a-w- c:\windows\system32\Robocopy.exe
2014-12-15 12:19 . 2014-11-26 21:11 106440 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-15 12:19 . 2014-11-26 21:11 714184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-12-15 12:12 . 2014-12-15 12:24 -------- d-----r- c:\windows\BrowserChoice
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-s---w- c:\windows\system32\CompatTel
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-----w- c:\windows\system32\appraiser
2014-12-15 11:17 . 2014-12-15 11:19 -------- d-----w- c:\windows\system32\MRT
2014-12-15 11:13 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll
2014-12-15 11:13 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe
2014-12-15 11:13 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll
2014-12-15 10:12 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-12-15 10:12 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-12-15 10:01 . 2014-12-15 10:02 -------- d-----w- c:\program files\Bandizip
2014-12-15 02:17 . 2014-12-15 02:17 -------- d--h--r- c:\users\Public\AccountPictures
2014-12-14 22:09 . 2014-12-14 22:09 -------- d-----w- c:\program files (x86)\FDRLab
2014-12-14 21:35 . 2013-12-18 08:38 42808 ----a-w- c:\windows\system32\uxtA1CD.tmp
2014-12-14 21:30 . 2014-12-14 21:36 -------- d-----w- c:\programdata\AVG
2014-12-14 21:30 . 2014-12-14 21:30 -------- d--h--w- c:\programdata\Common Files
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----r- c:\program files (x86)\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\programdata\Skype
2014-12-14 20:33 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2014-12-14 20:33 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-12-14 20:33 . 2013-07-05 22:02 99328 ----a-w- c:\windows\system32\drivers\usbcir.sys
2014-12-14 20:33 . 2013-07-05 22:01 210560 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2014-12-14 20:32 . 2013-07-06 00:15 652288 ----a-w- c:\windows\system32\comctl32.dll
2014-12-14 20:32 . 2013-07-04 02:13 541696 ----a-w- c:\windows\SysWow64\comctl32.dll
2014-12-14 20:31 . 2014-12-14 20:32 -------- d-----w- c:\program files (x86)\OpenOffice 4
2014-12-14 20:31 . 2014-10-11 07:44 19764736 ----a-w- c:\windows\system32\shell32.dll
2014-12-14 20:31 . 2014-10-09 03:59 623616 ----a-w- c:\windows\system32\dnsapi.dll
2014-12-14 20:31 . 2014-09-22 05:38 673792 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-09-22 03:56 513536 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-10-09 03:59 212992 ----a-w- c:\windows\system32\dnsrslvr.dll
2014-12-14 20:29 . 2014-06-13 01:57 1453400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-12-14 20:29 . 2014-06-13 01:55 199680 ----a-w- c:\windows\system32\cdd.dll
2014-12-14 20:26 . 2013-03-02 02:44 703488 ----a-w- c:\windows\system32\drvstore.dll
2014-12-14 20:23 . 2014-01-31 00:48 143872 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2014-12-14 20:21 . 2014-06-17 23:27 1440256 ----a-w- c:\windows\SysWow64\osk.exe
2014-12-14 20:21 . 2014-06-17 23:24 1557504 ----a-w- c:\windows\system32\osk.exe
2014-12-14 20:21 . 2014-06-11 16:00 394624 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-12-14 20:21 . 2014-06-11 14:47 92672 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2014-12-14 20:21 . 2014-06-11 14:47 1616896 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-12-14 20:21 . 2014-07-31 23:40 1287680 ----a-w- c:\windows\system32\schedsvc.dll
2014-12-14 20:16 . 2013-10-10 09:21 1160192 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-12-14 20:16 . 2013-10-10 09:20 723968 ----a-w- c:\windows\system32\BFE.DLL
2014-12-14 20:16 . 2013-06-10 19:16 888832 ----a-w- c:\windows\system32\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:15 381952 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-06-10 19:10 702464 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:10 245248 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-10-10 11:53 96600 ----a-w- c:\windows\system32\drivers\wfplwfs.sys
2014-12-14 20:16 . 2014-09-03 02:48 510464 ----a-w- c:\windows\SysWow64\rastls.dll
2014-12-14 20:16 . 2014-09-03 02:21 585728 ----a-w- c:\windows\system32\rastls.dll
2014-12-14 19:58 . 2014-12-14 19:58 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2014-12-14 19:56 . 2014-08-09 08:29 144896 ----a-w- c:\windows\system32\tssdisai.dll
2014-12-14 19:55 . 2014-08-09 08:30 148480 ----a-w- c:\windows\system32\poqexec.exe
2014-12-14 19:42 . 2014-12-14 19:42 -------- d-----w- c:\programdata\VS Revo Group
2014-12-14 19:42 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2014-12-14 19:42 . 2014-12-23 20:56 -------- d-----w- c:\program files (x86)\Revo Uninstaller Pro
2014-12-14 19:41 . 2014-12-14 19:41 -------- d-----w- c:\programdata\FastStone
2014-12-14 19:40 . 2014-12-14 19:40 -------- d-----w- c:\program files (x86)\FastStone Capture
2014-12-14 19:38 . 2014-12-14 19:38 -------- d-----w- c:\program files (x86)\Auslogics
2014-12-14 19:32 . 2014-07-07 05:51 5982208 ----a-w- c:\windows\system32\mstscax.dll
2014-12-14 19:32 . 2014-07-07 04:00 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-12-14 19:30 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-10-18 08:44 778240 ----a-w- c:\windows\system32\oleaut32.dll
2014-12-14 19:30 . 2014-10-18 07:05 567808 ----a-w- c:\windows\SysWow64\oleaut32.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-12-14 18:20 . 2012-07-26 08:13 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-04-22 11:32 . 2014-04-22 11:32 476160 ----a-w- c:\program files (x86)\setup.exe
2014-04-22 11:32 . 2014-04-22 11:32 2306048 ----a-w- c:\program files (x86)\openoffice410.msi
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-14 642656]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-12-14 5227112]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 0210721419376804mcinstcleanup;McAfee Application Installer Cleanup (0210721419376804);c:\users\JI10BB~1\AppData\Local\Temp\021072~1.EXE;c:\users\JI10BB~1\AppData\Local\Temp\021072~1.EXE [x]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\System32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [x]
S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMSvc;Launch Manager Service;c:\program files\Acer\Acer Launch Manager\LMSvc.exe;c:\program files\Acer\Acer Launch Manager\LMSvc.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 LMDriver;Launch Manager Wireless Driver;c:\windows\System32\drivers\LMDriver.sys;c:\windows\SYSNATIVE\drivers\LMDriver.sys [x]
S3 RadioShim;Shim for HID-KMDF Interface layer;c:\windows\System32\drivers\RadioShim.sys;c:\windows\SYSNATIVE\drivers\RadioShim.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S4 ccSet_NARA;NARA Settings Manager;c:\windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NARAx64\0401000.00E\ccSetx64.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2014-12-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14 19:28]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-12-14 18:31 860984 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-15 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-15 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-15 444400]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-18 13427784]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 81.200.55.50 81.200.55.34
FF - ProfilePath - c:\users\Jiří\AppData\Roaming\Mozilla\Firefox\Profiles\yctljdej.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnG=Google+Search&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\$McRebootA5E6DEAA56$.lnk - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Celkový čas: 2014-12-24 00:54:04
ComboFix-quarantined-files.txt 2014-12-23 23:54
ComboFix2.txt 2014-12-23 23:10
.
Před spuštěním: 808 688 005 120 bytes free
Po spuštění: 808 613 122 048 bytes free
.
- - End Of File - - 2226E8C5042755D6C82F0FDD2260A1E9
5FB38429D5D77768867C76DCBDB35194
Microsoft Windows 8 6.2.9200.0.1250.420.1029.18.7912.6220 [GMT 1:00]
Spuštěný z: c:\users\Ji°Ý\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
AV: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: avast! Antivirus *Enabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
/wow section - STAGE 3
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-11-23 do 2014-12-23 )))))))))))))))))))))))))))))))
.
.
2014-12-23 23:51 . 2014-12-23 23:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-12-23 22:57 . 2014-12-23 22:57 -------- d-----w- c:\program files\CCleaner
2014-12-23 21:28 . 2014-12-23 21:28 -------- d-----w- c:\programdata\boost_interprocess
2014-12-23 21:27 . 2014-12-23 21:13 24064 ----a-w- c:\windows\zoek-delete.exe
2014-12-23 21:13 . 2014-12-23 21:24 -------- d-----w- C:\zoek_backup
2014-12-23 14:35 . 2014-12-23 20:35 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2014-12-23 14:35 . 2014-12-23 14:35 -------- d-----w- c:\programdata\RogueKiller
2014-12-23 14:28 . 2014-12-23 14:28 -------- d-----w- c:\windows\ERUNT
2014-12-22 17:42 . 2014-12-22 18:33 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-22 17:42 . 2014-11-21 05:14 64216 ----a-w- c:\windows\system32\drivers\mwac.sys
2014-12-22 17:42 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\program files (x86)\Malwarebytes Anti-Malware
2014-12-22 17:42 . 2014-12-22 17:42 -------- d-----w- c:\programdata\Malwarebytes
2014-12-22 17:42 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2014-12-22 17:32 . 2014-12-23 09:19 -------- d-----w- C:\AdwCleaner
2014-12-16 17:40 . 2014-12-16 17:40 -------- d-----w- c:\program files (x86)\Applian Technologies
2014-12-15 15:44 . 2014-12-15 15:44 -------- d-----w- c:\program files (x86)\Seznam.cz
2014-12-15 15:22 . 2014-12-15 19:06 -------- d-----w- c:\windows\system32\AutoUpdateLicense
2014-12-15 15:11 . 2014-07-15 22:51 71168 ----a-w- c:\windows\system32\drivers\hdaudbus.sys
2014-12-15 13:48 . 2013-06-16 22:41 997632 ----a-w- c:\windows\system32\drivers\ndis.sys
2014-12-15 13:48 . 2014-11-19 07:29 582552 ----a-w- c:\windows\system32\AutoUpdate.exe
2014-12-15 13:48 . 2014-11-19 07:29 462760 ----a-w- c:\windows\system32\NotificationUI.exe
2014-12-15 13:48 . 2014-10-22 01:01 695808 ----a-w- c:\windows\system32\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 568832 ----a-w- c:\windows\SysWow64\WSShared.dll
2014-12-15 13:48 . 2014-10-22 01:08 124928 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:48 . 2014-10-22 01:01 198656 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.dll
2014-12-15 13:48 . 2014-10-22 01:00 125952 ----a-w- c:\windows\system32\WinSetupUI.dll
2014-12-15 13:48 . 2014-10-22 01:01 163840 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2014-12-15 13:47 . 2014-01-27 03:39 1939288 ----a-w- c:\windows\system32\drivers\ntfs.sys
2014-12-15 13:47 . 2014-01-02 23:32 523264 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-02-03 23:56 278872 ----a-w- c:\windows\system32\drivers\msiscsi.sys
2014-12-15 13:47 . 2014-01-02 23:35 365568 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2014-12-15 13:47 . 2014-01-31 00:06 599040 ----a-w- c:\windows\system32\WSDApi.dll
2014-12-15 13:47 . 2014-02-03 23:56 332632 ----a-w- c:\windows\system32\drivers\storport.sys
2014-12-15 13:47 . 2014-01-31 00:48 485888 ----a-w- c:\windows\SysWow64\WSDApi.dll
2014-12-15 13:47 . 2014-01-15 23:42 118784 ----a-w- c:\windows\system32\drivers\dfsc.sys
2014-12-15 13:19 . 2014-09-26 03:01 28616704 ----a-w- c:\program files\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:19 . 2014-09-26 02:33 27853824 ----a-w- c:\program files (x86)\Common Files\Microsoft Shared\Microsoft Camera Codec Pack\MicrosoftRawCodec.dll
2014-12-15 13:18 . 2014-03-24 23:42 305152 ----a-w- c:\windows\SysWow64\wusa.exe
2014-12-15 13:18 . 2014-03-24 22:56 309760 ----a-w- c:\windows\system32\wusa.exe
2014-12-15 13:17 . 2013-08-30 05:18 374784 ----a-w- c:\windows\system32\clusapi.dll
2014-12-15 13:17 . 2013-08-30 05:19 626688 ----a-w- c:\windows\system32\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:48 488960 ----a-w- c:\windows\SysWow64\resutils.dll
2014-12-15 13:17 . 2013-08-29 23:47 302080 ----a-w- c:\windows\SysWow64\clusapi.dll
2014-12-15 13:17 . 2013-10-05 06:10 285016 ----a-w- c:\windows\system32\drivers\spaceport.sys
2014-12-15 13:14 . 2013-07-24 23:07 13661696 ----a-w- c:\windows\system32\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-07-24 23:10 10799104 ----a-w- c:\windows\SysWow64\Windows.UI.Xaml.dll
2014-12-15 13:14 . 2013-08-30 05:20 1173504 ----a-w- c:\windows\system32\UIAutomationCore.dll
2014-12-15 13:14 . 2013-08-29 23:48 914432 ----a-w- c:\windows\SysWow64\UIAutomationCore.dll
2014-12-15 13:14 . 2013-09-13 22:33 328192 ----a-w- c:\windows\system32\ubpm.dll
2014-12-15 13:14 . 2013-08-21 06:39 465240 ----a-w- c:\windows\system32\drivers\fvevol.sys
2014-12-15 13:14 . 2013-08-10 06:30 151896 ----a-w- c:\windows\system32\drivers\tpm.sys
2014-12-15 13:14 . 2013-09-13 22:36 247296 ----a-w- c:\windows\SysWow64\ubpm.dll
2014-12-15 13:14 . 2013-08-30 05:43 61784 ----a-w- c:\windows\system32\drivers\crashdmp.sys
2014-12-15 13:11 . 2014-07-08 22:30 1220608 ----a-w- c:\windows\SysWow64\storagewmi.dll
2014-12-15 13:09 . 2013-04-09 23:17 1125888 ----a-w- c:\windows\system32\msctf.dll
2014-12-15 13:08 . 2014-04-29 22:32 126464 ----a-w- c:\windows\system32\Robocopy.exe
2014-12-15 12:19 . 2014-11-26 21:11 106440 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-12-15 12:19 . 2014-11-26 21:11 714184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-12-15 12:12 . 2014-12-15 12:24 -------- d-----r- c:\windows\BrowserChoice
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-s---w- c:\windows\system32\CompatTel
2014-12-15 12:09 . 2014-12-15 12:09 -------- d-----w- c:\windows\system32\appraiser
2014-12-15 11:17 . 2014-12-15 11:19 -------- d-----w- c:\windows\system32\MRT
2014-12-15 11:13 . 2014-10-09 04:00 69632 ----a-w- c:\windows\system32\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 52224 ----a-w- c:\windows\SysWow64\vsstrace.dll
2014-12-15 11:13 . 2014-10-09 03:59 1195520 ----a-w- c:\windows\SysWow64\vssapi.dll
2014-12-15 11:13 . 2014-10-09 04:00 1484288 ----a-w- c:\windows\system32\VSSVC.exe
2014-12-15 11:13 . 2014-10-09 04:00 1519104 ----a-w- c:\windows\system32\vssapi.dll
2014-12-15 10:12 . 2014-06-10 22:44 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2014-12-15 10:12 . 2014-06-10 22:43 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2014-12-15 10:01 . 2014-12-15 10:02 -------- d-----w- c:\program files\Bandizip
2014-12-15 02:17 . 2014-12-15 02:17 -------- d--h--r- c:\users\Public\AccountPictures
2014-12-14 22:09 . 2014-12-14 22:09 -------- d-----w- c:\program files (x86)\FDRLab
2014-12-14 21:35 . 2013-12-18 08:38 42808 ----a-w- c:\windows\system32\uxtA1CD.tmp
2014-12-14 21:30 . 2014-12-14 21:36 -------- d-----w- c:\programdata\AVG
2014-12-14 21:30 . 2014-12-14 21:30 -------- d--h--w- c:\programdata\Common Files
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\program files (x86)\Common Files\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----r- c:\program files (x86)\Skype
2014-12-14 21:29 . 2014-12-14 21:29 -------- d-----w- c:\programdata\Skype
2014-12-14 20:33 . 2013-06-22 05:45 785624 ----a-w- c:\windows\system32\drivers\Wdf01000.sys
2014-12-14 20:33 . 2013-06-22 05:45 54488 ----a-w- c:\windows\system32\drivers\WdfLdr.sys
2014-12-14 20:33 . 2013-07-05 22:02 99328 ----a-w- c:\windows\system32\drivers\usbcir.sys
2014-12-14 20:33 . 2013-07-05 22:01 210560 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2014-12-14 20:32 . 2013-07-06 00:15 652288 ----a-w- c:\windows\system32\comctl32.dll
2014-12-14 20:32 . 2013-07-04 02:13 541696 ----a-w- c:\windows\SysWow64\comctl32.dll
2014-12-14 20:31 . 2014-12-14 20:32 -------- d-----w- c:\program files (x86)\OpenOffice 4
2014-12-14 20:31 . 2014-10-11 07:44 19764736 ----a-w- c:\windows\system32\shell32.dll
2014-12-14 20:31 . 2014-10-09 03:59 623616 ----a-w- c:\windows\system32\dnsapi.dll
2014-12-14 20:31 . 2014-09-22 05:38 673792 ----a-w- c:\windows\system32\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-09-22 03:56 513536 ----a-w- c:\windows\SysWow64\mfmpeg2srcsnk.dll
2014-12-14 20:31 . 2014-10-09 03:59 212992 ----a-w- c:\windows\system32\dnsrslvr.dll
2014-12-14 20:29 . 2014-06-13 01:57 1453400 ----a-w- c:\windows\system32\drivers\dxgkrnl.sys
2014-12-14 20:29 . 2014-06-13 01:55 199680 ----a-w- c:\windows\system32\cdd.dll
2014-12-14 20:26 . 2013-03-02 02:44 703488 ----a-w- c:\windows\system32\drvstore.dll
2014-12-14 20:23 . 2014-01-31 00:48 143872 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.dll
2014-12-14 20:21 . 2014-06-17 23:27 1440256 ----a-w- c:\windows\SysWow64\osk.exe
2014-12-14 20:21 . 2014-06-17 23:24 1557504 ----a-w- c:\windows\system32\osk.exe
2014-12-14 20:21 . 2014-06-11 16:00 394624 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TabTip.exe
2014-12-14 20:21 . 2014-06-11 14:47 92672 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\TipBand.dll
2014-12-14 20:21 . 2014-06-11 14:47 1616896 ----a-w- c:\program files\Common Files\Microsoft Shared\ink\tabskb.dll
2014-12-14 20:21 . 2014-07-31 23:40 1287680 ----a-w- c:\windows\system32\schedsvc.dll
2014-12-14 20:16 . 2013-10-10 09:21 1160192 ----a-w- c:\windows\system32\IKEEXT.DLL
2014-12-14 20:16 . 2013-10-10 09:20 723968 ----a-w- c:\windows\system32\BFE.DLL
2014-12-14 20:16 . 2013-06-10 19:16 888832 ----a-w- c:\windows\system32\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:15 381952 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-06-10 19:10 702464 ----a-w- c:\windows\SysWow64\nshwfp.dll
2014-12-14 20:16 . 2013-06-10 19:10 245248 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2014-12-14 20:16 . 2013-10-10 11:53 96600 ----a-w- c:\windows\system32\drivers\wfplwfs.sys
2014-12-14 20:16 . 2014-09-03 02:48 510464 ----a-w- c:\windows\SysWow64\rastls.dll
2014-12-14 20:16 . 2014-09-03 02:21 585728 ----a-w- c:\windows\system32\rastls.dll
2014-12-14 19:58 . 2014-12-14 19:58 -------- d-----w- c:\program files (x86)\Mozilla Thunderbird
2014-12-14 19:56 . 2014-08-09 08:29 144896 ----a-w- c:\windows\system32\tssdisai.dll
2014-12-14 19:55 . 2014-08-09 08:30 148480 ----a-w- c:\windows\system32\poqexec.exe
2014-12-14 19:42 . 2014-12-14 19:42 -------- d-----w- c:\programdata\VS Revo Group
2014-12-14 19:42 . 2009-12-30 09:21 31800 ----a-w- c:\windows\system32\drivers\revoflt.sys
2014-12-14 19:42 . 2014-12-23 20:56 -------- d-----w- c:\program files (x86)\Revo Uninstaller Pro
2014-12-14 19:41 . 2014-12-14 19:41 -------- d-----w- c:\programdata\FastStone
2014-12-14 19:40 . 2014-12-14 19:40 -------- d-----w- c:\program files (x86)\FastStone Capture
2014-12-14 19:38 . 2014-12-14 19:38 -------- d-----w- c:\program files (x86)\Auslogics
2014-12-14 19:32 . 2014-07-07 05:51 5982208 ----a-w- c:\windows\system32\mstscax.dll
2014-12-14 19:32 . 2014-07-07 04:00 5095424 ----a-w- c:\windows\SysWow64\mstscax.dll
2014-12-14 19:30 . 2014-07-24 03:33 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-07-24 03:33 869544 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
2014-12-14 19:30 . 2014-10-18 08:44 778240 ----a-w- c:\windows\system32\oleaut32.dll
2014-12-14 19:30 . 2014-10-18 07:05 567808 ----a-w- c:\windows\SysWow64\oleaut32.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-12-14 18:20 . 2012-07-26 08:13 23256 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-04-22 11:32 . 2014-04-22 11:32 476160 ----a-w- c:\program files (x86)\setup.exe
2014-04-22 11:32 . 2014-04-22 11:32 2306048 ----a-w- c:\program files (x86)\openoffice410.msi
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-03-14 642656]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-12-14 5227112]
"seznam-listicka-distribuce"="c:\program files (x86)\Seznam.cz\distribution\szninstall.exe" [2013-05-16 1062472]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLinkedConnections"= 1 (0x1)
"SoftwareSASGeneration"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcpltsvc]
@=""
.
R2 0210721419376804mcinstcleanup;McAfee Application Installer Cleanup (0210721419376804);c:\users\JI10BB~1\AppData\Local\Temp\021072~1.EXE;c:\users\JI10BB~1\AppData\Local\Temp\021072~1.EXE [x]
R2 aswStm;aswStm;c:\windows\system32\drivers\aswStm.sys;c:\windows\SYSNATIVE\drivers\aswStm.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AthBTPort;Qualcomm Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_flt.sys [x]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys;c:\windows\SYSNATIVE\drivers\btath_a2dp.sys [x]
R3 btath_avdt;Qualcomm Atheros Bluetooth AVDT Service;c:\windows\system32\drivers\btath_avdt.sys;c:\windows\SYSNATIVE\drivers\btath_avdt.sys [x]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\System32\drivers\btath_hcrp.sys;c:\windows\SYSNATIVE\drivers\btath_hcrp.sys [x]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys;c:\windows\SYSNATIVE\DRIVERS\btath_lwflt.sys [x]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\System32\drivers\btath_rcp.sys;c:\windows\SYSNATIVE\drivers\btath_rcp.sys [x]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys;c:\windows\SYSNATIVE\DRIVERS\btfilter.sys [x]
R3 BthLEEnum;Ovladač úspory energie technologie Bluetooth;c:\windows\system32\DRIVERS\BthLEEnum.sys;c:\windows\SYSNATIVE\DRIVERS\BthLEEnum.sys [x]
R3 DeviceFastLaneService;Device Fast-lane Service;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe;c:\program files\Acer\Acer Device Fast-lane\DeviceFastLaneSvc.exe [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys;c:\windows\SYSNATIVE\DRIVERS\revoflt.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
R3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\system32\DRIVERS\WUDFRd.sys;c:\windows\SYSNATIVE\DRIVERS\WUDFRd.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\System32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys;c:\windows\SYSNATIVE\drivers\aswHwid.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 AtherosSvc;AtherosSvc;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe;c:\program files (x86)\Qualcomm Atheros\Bluetooth Suite\adminservice.exe [x]
S2 CCDMonitorService;CCDMonitorService;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe;c:\program files (x86)\Acer\Acer Cloud\CCDMonitorService.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 LMSvc;Launch Manager Service;c:\program files\Acer\Acer Launch Manager\LMSvc.exe;c:\program files\Acer\Acer Launch Manager\LMSvc.exe [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
S2 VBoxAswDrv;VBoxAsw Support Driver;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys;c:\program files\AVAST Software\Avast\ng\vbox\VBoxAswDrv.sys [x]
S3 AvastVBoxSvc;AvastVBox COM Service;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe;c:\program files\AVAST Software\Avast\ng\vbox\AvastVBoxSVC.exe [x]
S3 bScsiSDa;bScsiSDa;c:\windows\System32\drivers\bScsiSDa.sys;c:\windows\SYSNATIVE\drivers\bScsiSDa.sys [x]
S3 BTATH_BUS;Qualcomm Atheros Bluetooth Bus;c:\windows\System32\drivers\btath_bus.sys;c:\windows\SYSNATIVE\drivers\btath_bus.sys [x]
S3 ePowerSvc;ePower Service;c:\program files\Acer\Acer Power Management\ePowerSvc.exe;c:\program files\Acer\Acer Power Management\ePowerSvc.exe [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys;c:\windows\SYSNATIVE\DRIVERS\k57nd60a.sys [x]
S3 LMDriver;Launch Manager Wireless Driver;c:\windows\System32\drivers\LMDriver.sys;c:\windows\SYSNATIVE\drivers\LMDriver.sys [x]
S3 RadioShim;Shim for HID-KMDF Interface layer;c:\windows\System32\drivers\RadioShim.sys;c:\windows\SYSNATIVE\drivers\RadioShim.sys [x]
S3 SmbDrvI;SmbDrvI;c:\windows\system32\DRIVERS\Smb_driver_Intel.sys;c:\windows\SYSNATIVE\DRIVERS\Smb_driver_Intel.sys [x]
S4 ccSet_NARA;NARA Settings Manager;c:\windows\system32\drivers\NARAx64\0401000.00E\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NARAx64\0401000.00E\ccSetx64.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2014-12-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-14 19:28]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-12-14 18:31 860984 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-05-15 165872]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-05-15 407536]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-05-15 444400]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-03-18 13427784]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 81.200.55.50 81.200.55.34
FF - ProfilePath - c:\users\Jiří\AppData\Roaming\Mozilla\Firefox\Profiles\yctljdej.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.google.com/search?btnG=Google+Search&q=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxps://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?btnG=Google+Search&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\$McRebootA5E6DEAA56$.lnk - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B9A09F18-45AB-4F09-A117-A4ADDA8FA8C8}]
@Denied: (A) (Everyone)
"Solution"="{36eb6792-3a29-43b3-8cd0-f67d266fb426}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane\0]
"Key"="ActionsPane"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\8.0\\ActionsPane.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Celkový čas: 2014-12-24 00:54:04
ComboFix-quarantined-files.txt 2014-12-23 23:54
ComboFix2.txt 2014-12-23 23:10
.
Před spuštěním: 808 688 005 120 bytes free
Po spuštění: 808 613 122 048 bytes free
.
- - End Of File - - 2226E8C5042755D6C82F0FDD2260A1E9
5FB38429D5D77768867C76DCBDB35194
Re: Prosím o kontrolu
Ctete vubec? 
Asi ne... Toto je log ComboFix, ja chtel FRST.
Asi ne... Toto je log ComboFix, ja chtel FRST.Kdo je online
Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 120 hostů