Kontrola logu Vyřešeno

Místo pro vaše HiJackThis logy a logy z dalších programů…

Moderátoři: Mods_senior, Security team

Zamčeno
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 08 bře 2015 09:42

Vypni rez. ochranu u antiviru a antispywaru,příp. firewall..

Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Pokud budou problémy , spusť ho v nouz. režimu.

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
Reklama
Top
astupka
Level 1
Level 1
Příspěvky: 66
Registrován: prosinec 14
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod astupka » 08 bře 2015 09:57

Žádné problémy nenastaly, jenom to po mě chtělo vypnout ESET, který jsem měl v té době oddinstalovaný (tak jsem jeho stopy smázl ručně ještě z registru a pak to už šlo), přikládám log


ComboFix 15-03-01.01 - Ales 08.03.2015 9:49.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8120.5733 [GMT 1:00]
Spuštěný z: d:\users\Ales\Desktop\ComboFix.exe
AV: ESET Smart Security 7.0 *Enabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Personální firewall *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 7.0 *Enabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\iun6002.exe
c:\windows\msxml4-KB2758694-enu.LOG
c:\windows\SysWow64\DEBUG.log
d:\users\Ales\AppData\Roaming\inst.exe
d:\users\Ales\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\DropboxServis.exe.lnk
d:\users\Ales\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\quietHDD.exe.lnk
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-02-08 do 2015-03-08 )))))))))))))))))))))))))))))))
.
.
2015-03-07 20:49 . 2015-03-07 20:49 -------- d-----w- d:\users\Ales\AppData\Roaming\EDrawings
2015-03-07 13:36 . 2015-03-07 13:36 -------- d-----w- d:\users\Ales\AppData\Local\Macromedia
2015-03-06 13:52 . 2014-08-29 02:07 3179520 ----a-w- c:\windows\system32\rdpcorets.dll
2015-03-06 13:52 . 2014-05-08 09:32 16384 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2015-03-06 13:52 . 2014-12-11 17:47 87040 ----a-w- c:\windows\system32\TSWbPrxy.exe
2015-03-06 13:52 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2015-03-06 13:52 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2015-03-06 13:52 . 2014-09-05 02:11 6584320 ----a-w- c:\windows\system32\mstscax.dll
2015-03-06 13:52 . 2014-09-05 01:52 5703168 ----a-w- c:\windows\SysWow64\mstscax.dll
2015-03-06 13:50 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-03-06 13:50 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-03-06 12:58 . 2015-03-07 20:41 -------- d-----w- C:\CrashDumpsApp
2015-03-06 10:53 . 2015-03-06 10:53 -------- d-----w- d:\users\Ales\AppData\Local\GHISLER
2015-03-06 10:39 . 2015-03-06 10:12 24064 ----a-w- c:\windows\zoek-delete.exe
2015-03-06 09:15 . 2015-03-06 09:15 -------- d-----w- d:\users\Ales\.objectdb
2015-03-05 21:19 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-03-05 21:19 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2015-03-05 21:18 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2015-03-05 21:18 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2015-03-05 21:18 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2015-03-05 20:10 . 2015-03-05 20:10 -------- d-----w- c:\windows\SysWow64\Wat
2015-03-05 20:10 . 2015-03-05 20:10 -------- d-----w- c:\windows\system32\Wat
2015-03-05 19:13 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2015-03-05 19:13 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2015-03-05 19:13 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2015-03-05 19:13 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2015-03-05 19:13 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2015-03-05 19:00 . 2015-03-05 19:00 -------- d-----w- d:\users\Ales\AppData\Local\Adobe
2015-03-05 18:18 . 2015-03-06 10:03 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-03-05 18:18 . 2015-03-05 18:26 -------- d-----w- c:\programdata\RogueKiller
2015-03-05 10:08 . 2015-03-08 08:41 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-03-05 10:08 . 2014-11-21 05:14 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-03-05 10:08 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-03-05 10:08 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-03-05 09:52 . 2015-03-05 09:52 -------- d-----w- d:\users\Ales\AppData\Local\EgisTec
2015-03-05 07:57 . 2015-03-05 07:57 -------- d-----w- c:\program files (x86)\NirSoft
2015-03-05 06:53 . 2015-03-05 06:53 -------- d-----w- c:\program files (x86)\Microsoft CAPICOM 2.1.0.2
2015-03-04 22:38 . 2014-07-07 02:06 24576 ----a-w- c:\windows\system32\mfpmp.exe
2015-03-04 22:38 . 2014-07-07 02:02 2048 ----a-w- c:\windows\system32\mferror.dll
2015-03-04 22:38 . 2014-07-07 01:37 2048 ----a-w- c:\windows\SysWow64\mferror.dll
2015-03-04 22:37 . 2014-10-18 02:05 4121600 ----a-w- c:\windows\system32\mf.dll
2015-03-04 22:37 . 2014-10-18 01:33 3209728 ----a-w- c:\windows\SysWow64\mf.dll
2015-03-04 22:37 . 2014-07-07 02:06 206848 ----a-w- c:\windows\system32\mfps.dll
2015-03-04 22:37 . 2014-07-07 02:06 55808 ----a-w- c:\windows\system32\rrinstaller.exe
2015-03-04 22:37 . 2014-07-07 01:40 103424 ----a-w- c:\windows\SysWow64\mfps.dll
2015-03-04 22:37 . 2014-07-07 01:39 50176 ----a-w- c:\windows\SysWow64\rrinstaller.exe
2015-03-04 22:37 . 2014-07-07 01:39 23040 ----a-w- c:\windows\SysWow64\mfpmp.exe
2015-03-04 22:34 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-03-04 22:34 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-03-04 22:34 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-03-04 22:34 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-03-04 22:34 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-03-04 22:34 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-03-04 22:34 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-03-04 22:24 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-03-04 22:24 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-03-04 22:24 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-03-04 22:22 . 2015-03-04 22:22 -------- d-----w- c:\windows\PCHEALTH
2015-03-04 22:21 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-03-04 22:21 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-03-04 22:12 . 2015-03-04 22:18 -------- d-----w- c:\windows\system32\MRT
2015-03-04 22:07 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-03-04 22:07 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-03-04 22:07 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-03-04 22:07 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-03-04 22:07 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-03-04 22:07 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-03-04 22:07 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-03-04 22:07 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-03-04 22:05 . 2013-08-29 02:16 1732032 ----a-w- c:\windows\system32\ntdll.dll
2015-03-04 22:05 . 2013-08-29 02:16 859648 ----a-w- c:\windows\system32\tdh.dll
2015-03-04 22:05 . 2013-08-29 02:13 878080 ----a-w- c:\windows\system32\advapi32.dll
2015-03-04 22:05 . 2013-08-29 01:50 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2015-03-04 22:05 . 2013-08-29 01:50 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2015-03-04 22:05 . 2013-08-29 01:48 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2015-03-04 22:02 . 2015-01-14 06:09 5554112 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-04 22:01 . 2013-04-09 23:34 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-03-04 22:01 . 2013-04-02 22:51 1643520 ----a-w- c:\windows\system32\DWrite.dll
2015-03-04 21:59 . 2012-12-07 11:20 30720 ----a-w- c:\windows\system32\usk.rs
2015-03-04 21:56 . 2014-03-04 09:44 362496 ----a-w- c:\windows\system32\wow64win.dll
2015-03-04 21:55 . 2012-06-06 06:05 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2015-03-04 21:54 . 2010-12-23 10:42 1118720 ----a-w- c:\windows\system32\sbe.dll
2015-03-04 21:53 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2015-03-04 21:53 . 2011-04-29 03:05 410112 ----a-w- c:\windows\system32\drivers\srv2.sys
2015-03-04 21:53 . 2011-04-29 03:05 168448 ----a-w- c:\windows\system32\drivers\srvnet.sys
2015-03-04 21:53 . 2014-11-08 03:16 2048 ----a-w- c:\windows\system32\tzres.dll
2015-03-04 21:53 . 2014-11-08 02:45 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2015-03-04 21:53 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2015-03-04 21:53 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2015-03-04 21:51 . 2011-05-24 11:42 404480 ----a-w- c:\windows\system32\umpnpmgr.dll
2015-03-04 21:50 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2015-03-04 21:49 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-03-04 21:48 . 2014-06-25 02:05 14175744 ----a-w- c:\windows\system32\shell32.dll
2015-03-04 21:47 . 2014-04-05 02:47 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2015-03-04 21:46 . 2013-04-26 05:51 751104 ----a-w- c:\windows\system32\win32spl.dll
2015-03-04 21:45 . 2014-10-25 01:57 77824 ----a-w- c:\windows\system32\packager.dll
2015-03-04 21:19 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2015-03-04 21:19 . 2014-07-14 02:02 1216000 ----a-w- c:\windows\system32\rpcrt4.dll
2015-03-04 21:19 . 2014-07-14 01:40 664064 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2015-03-04 21:19 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
2015-03-04 21:19 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2015-03-04 21:19 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2015-03-04 21:19 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2015-03-04 21:19 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2015-03-04 16:05 . 2015-03-04 16:05 -------- dc----w- d:\users\Ales\AppData\Local\MigWiz
2015-03-02 08:37 . 2015-03-02 15:58 -------- d-----w- c:\windows\SysWow64\RTCOM
2015-03-01 12:30 . 2015-03-01 12:30 -------- d-----w- c:\users\Administrator\AppData\Local\Macromedia
2015-03-01 12:30 . 2015-03-01 12:30 -------- d-----w- c:\users\Administrator\AppData\Local\Mozilla
2015-03-01 12:25 . 2015-03-02 08:50 -------- d--h--w- c:\program files (x86)\Temp
2015-02-26 21:37 . 2015-02-27 08:27 -------- d-----w- d:\users\Ales\AppData\Roaming\QipGuard
2015-02-26 12:31 . 2015-02-26 12:31 -------- d-----w- c:\programdata\WabKey
2015-02-23 21:52 . 2015-02-23 21:52 41 ----a-w- c:\windows\system32\winchap.dll
2015-02-22 21:05 . 2015-02-22 21:13 -------- d-----w- d:\users\Ales\AppData\Roaming\usbdm
2015-02-22 21:03 . 2015-02-22 21:04 -------- d-----w- d:\users\Ales\.codewarrior
2015-02-22 21:03 . 2015-02-22 21:18 -------- d-----w- d:\users\Ales\workspace
2015-02-22 14:05 . 2015-02-22 14:05 -------- d-----w- c:\users\Administrator\AppData\Local\Google
2015-02-22 14:05 . 2015-02-22 14:05 -------- d-----w- c:\users\Administrator\AppData\Local\Microsoft
2015-02-22 10:08 . 2015-02-22 10:08 82816 ----a-w- d:\users\Ales\AppData\Roaming\pcouffin.sys
2015-02-22 10:08 . 2015-02-22 10:08 -------- d-----w- c:\program files (x86)\vso
2015-02-22 10:08 . 2015-02-28 21:29 -------- d-----w- c:\programdata\VSO
2015-02-22 09:53 . 2009-06-07 15:24 180224 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2015-02-22 09:53 . 2010-03-02 23:00 85504 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2015-02-22 09:53 . 2015-02-22 09:53 33019 ----a-w- c:\windows\SysWow64\CoreAAC-uninstall.exe
2015-02-22 09:52 . 2009-08-11 20:22 580096 ----a-w- c:\windows\system32\ac3filter64.acm
2015-02-22 09:52 . 2009-08-11 20:18 497664 ----a-w- c:\windows\SysWow64\ac3filter.acm
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-23 21:52 . 2015-02-23 21:52 41 ----a-w- c:\windows\system32\winchap.dll
2015-02-05 21:01 . 2014-12-20 13:08 74056 ----a-w- c:\windows\system32\OpenCL.dll
2015-02-05 21:01 . 2014-12-20 13:08 60560 ----a-w- c:\windows\SysWow64\OpenCL.dll
2015-02-05 21:01 . 2014-12-20 13:07 18575880 ----a-w- c:\windows\system32\nvwgf2umx.dll
2015-02-05 21:01 . 2014-12-20 13:07 14119744 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2015-02-05 21:01 . 2014-12-20 13:07 3299512 ----a-w- c:\windows\system32\nvapi64.dll
2015-02-05 21:01 . 2014-12-20 13:07 2902784 ----a-w- c:\windows\SysWow64\nvapi.dll
2015-02-05 19:07 . 2014-12-20 13:08 6861128 ----a-w- c:\windows\system32\nvcpl.dll
2015-02-05 19:07 . 2014-12-20 13:08 3517584 ----a-w- c:\windows\system32\nvsvc64.dll
2015-02-05 19:07 . 2014-12-20 13:08 935056 ----a-w- c:\windows\system32\nvvsvc.exe
2015-02-05 19:07 . 2014-12-20 13:08 62792 ----a-w- c:\windows\system32\nvshext.dll
2015-02-05 19:07 . 2014-12-20 13:08 2558792 ----a-w- c:\windows\system32\nvsvcr.dll
2015-02-05 19:06 . 2014-12-20 13:08 385168 ----a-w- c:\windows\system32\nvmctray.dll
2015-02-05 17:18 . 2014-12-20 23:23 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-02-05 17:18 . 2014-12-20 23:23 701616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-02-05 12:50 . 2014-12-20 13:08 4236870 ----a-w- c:\windows\system32\nvcoproc.bin
2015-01-16 06:41 . 2014-12-20 13:09 1316184 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2015-01-16 06:41 . 2014-12-20 13:09 1278920 ----a-w- c:\windows\SysWow64\nvspcap.dll
2015-01-16 06:41 . 2014-12-20 13:09 1756424 ----a-w- c:\windows\system32\nvspbridge64.dll
2015-01-16 06:41 . 2014-12-20 13:09 1514528 ----a-w- c:\windows\system32\nvspcap64.dll
2015-01-13 04:15 . 2015-01-22 21:17 1540240 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2015-01-10 08:07 . 2015-01-22 21:17 1895240 ----a-w- c:\windows\system32\nvdispco6434725.dll
2015-01-10 08:07 . 2015-01-22 21:17 1556808 ----a-w- c:\windows\system32\nvdispgenco6434725.dll
2014-12-25 16:58 . 2014-12-25 16:58 111016 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-12-22 07:44 . 2014-12-22 07:44 55288 ----a-w- c:\windows\system32\drivers\GsRamDsk.sys
2014-12-22 07:44 . 2014-12-22 07:44 243712 ----a-w- c:\windows\system32\InstallDriver.exe
2014-12-21 22:55 . 2014-12-21 22:55 165504 ----a-w- c:\windows\system32\drivers\IT9135BDA.sys
2014-12-21 22:14 . 2014-12-21 22:14 2048 ----a-w- c:\windows\SysWow64\winver.exe
2014-12-21 22:14 . 2014-12-21 22:14 833024 ----a-w- c:\windows\SysWow64\user32.dll
2014-12-21 22:14 . 2014-12-21 22:14 410624 ----a-w- c:\windows\SysWow64\systemcpl.dll
2014-12-21 22:14 . 2014-12-21 22:14 113543 ----a-w- c:\windows\SysWow64\slmgr.vbs
2014-12-21 22:12 . 2014-12-21 22:12 113543 ----a-w- c:\windows\system32\slmgr.vbs
2014-12-21 22:09 . 2010-11-21 03:24 14848 ----a-w- c:\windows\system32\slwga.dll
2014-12-21 22:09 . 2010-11-21 03:24 1008640 ----a-w- c:\windows\system32\user32.dll
2014-12-21 22:09 . 2010-11-21 03:24 419840 ----a-w- c:\windows\system32\systemcpl.dll
2014-12-21 22:09 . 2010-11-21 03:23 13824 ----a-w- c:\windows\SysWow64\slwga.dll
2014-12-21 09:37 . 2014-12-21 09:37 564824 ----a-w- c:\windows\system32\drivers\sptd.sys
2014-12-18 17:41 . 2014-12-21 19:44 5557736 ----a-w- c:\programdata\Microsoft\Windows\Start Menu\Programs\dl.exe
2014-12-17 13:07 . 2014-12-22 08:30 50056 ----a-w- c:\windows\system32\imdisk.exe
2014-12-17 13:07 . 2014-12-22 08:30 48232 ----a-w- c:\windows\SysWow64\imdisk.exe
2014-12-17 13:07 . 2014-12-22 08:30 117360 ----a-w- c:\windows\system32\imdisk.cpl
2014-12-17 13:06 . 2014-12-22 08:30 106096 ----a-w- c:\windows\SysWow64\imdisk.cpl
2014-12-17 12:57 . 2014-12-22 08:30 43584 ----a-w- c:\windows\system32\drivers\imdisk.sys
2014-12-17 08:47 . 2014-12-22 08:30 18016 ----a-w- c:\windows\system32\imdsksvc.exe
2014-12-14 21:44 . 2014-12-22 08:30 20536 ----a-w- c:\windows\system32\drivers\awealloc.sys
2014-12-13 10:08 . 2014-12-26 21:05 1895056 ----a-w- c:\windows\system32\nvdispco6434709.dll
2014-12-13 10:08 . 2014-12-26 21:05 1556624 ----a-w- c:\windows\system32\nvdispgenco6434709.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2010-11-21 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
[-] 2014-12-21 . E573BD9AB55C8E333C202B9E255F972E . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
.
[-] 2014-12-21 . 2C9CC9F492CA596B1B9FC1AE5E916356 . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
[7] 2010-11-21 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yodm3D"="d:\programy\Yodm3D\Yodm3D.exe" [2007-04-21 2343936]
"Zoner Photo Studio Autoupdate"="d:\programy\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE" [2013-12-13 831488]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"VitaKeyTSR"="d:\programy\EgisTec BioExcess\BioExcess\EgisTSR.exe" [2010-11-22 383344]
.
d:\users\Ales\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox Ales.lnk - d:\programy\DropboxPortableAles\DropboxPortableAHK.exe [2014-12-31 3690496]
Dropbox Home.lnk - d:\programy\DropboxPortableHome\DropboxPortableAHK.exe [2014-12-31 3690496]
SSD Life.lnk - d:\programy\SSDlife\ssdlife.exe [2013-10-3 2737992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"MaxRecentDocs"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
R1 AntiLog32;AntiLog32;c:\windows\system32\drivers\AntiLog64.sys;c:\windows\SYSNATIVE\drivers\AntiLog64.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys;c:\windows\SYSNATIVE\Drivers\FPSensor.sys [x]
R2 MBAMService;MBAMService;d:\programy\Malwarebytes Anti-Malware\mbamservice.exe;d:\programy\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R3 AcpiCtlDrv;AcpiCtlDrv;c:\windows\system32\DRIVERS\AcpiCtlDrv.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiCtlDrv.sys [x]
R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys;c:\windows\SYSNATIVE\DRIVERS\acsock64.sys [x]
R3 CoordinatorServiceHost;SW Distributed TS Coordinator Service;d:\programy\SolidWorks\SolidWorks\swScheduler\DTSCoordinatorService.exe;d:\programy\SolidWorks\SolidWorks\swScheduler\DTSCoordinatorService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys;c:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
R3 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 MSICDSetup;MSICDSetup;k:\cdriver64.sys;k:\CDriver64.sys [x]
R3 NIApplicationWebServer;NI Application Web Server;d:\programy\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;d:\programy\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
R3 nimDNSResponder;National Instruments mDNS Responder Service;d:\programy\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe;d:\programy\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;k:\ntiolib_x64.sys;k:\NTIOLib_X64.sys [x]
R3 NTIOLib_FastBoot;NTIOLib_FastBoot;c:\program files (x86)\MSI\Fast Boot\NTIOLib_X64.sys;c:\program files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XTU3SERVICE;Intel(R) Extreme Tuning Utility Service;c:\program files (x86)\Intel\Extreme Tuning Utility\XtuService.exe;c:\program files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [x]
R4 IObitUnlocker;IObitUnlocker;d:\programy\IObit\IObit Unlocker\IObitUnlocker.sys;d:\programy\IObit\IObit Unlocker\IObitUnlocker.sys [x]
R4 NIApplicationWebServer64;NI Application Web Server (64-bit);c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 GsRamDsk;%DiskServiceDesc%;c:\windows\system32\DRIVERS\GsRamDsk.sys;c:\windows\SYSNATIVE\DRIVERS\GsRamDsk.sys [x]
S1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys;c:\windows\SYSNATIVE\drivers\mbamchameleon.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;d:\programy\ABBYY FineReader 11\NetworkLicenseServer.exe;d:\programy\ABBYY FineReader 11\NetworkLicenseServer.exe [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;d:\programy\IObit\Advanced SystemCare 7\ASCService.exe;d:\programy\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 AWEAlloc;AWE Memory Allocation Driver;c:\windows\system32\DRIVERS\awealloc.sys;c:\windows\SYSNATIVE\DRIVERS\awealloc.sys [x]
S2 EgisTec Service;EgisTec Service;d:\programy\EgisTec BioExcess\BioExcess\EgisService.exe;d:\programy\EgisTec BioExcess\BioExcess\EgisService.exe [x]
S2 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 ImDisk;ImDisk Virtual Disk Driver;c:\windows\system32\DRIVERS\imdisk.sys;c:\windows\SYSNATIVE\DRIVERS\imdisk.sys [x]
S2 ImDskSvc;ImDisk Virtual Disk Driver Helper;c:\windows\system32\imdsksvc.exe;c:\windows\SYSNATIVE\imdsksvc.exe [x]
S2 nldrv;nldrv;d:\programy\NetLimiter 4\nldrv.sys;d:\programy\NetLimiter 4\nldrv.sys [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 PDFSFilter;PDFSFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys;c:\windows\SYSNATIVE\DRIVERS\PDFsFilter.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTCore64;RTCore64;d:\programy\MSI Afterburner\RTCore64.sys;d:\programy\MSI Afterburner\RTCore64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-02-20 19:21 1084744 ----a-w- c:\program files (x86)\Google\Chrome\Application\40.0.2214.115\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-03-07 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-20 17:18]
.
2015-03-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-12-22 09:06]
.
2015-03-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore1d04312601a9d4d.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-12-22 09:06]
.
2015-03-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-12-22 09:06]
.
2015-03-07 c:\windows\Tasks\GoogleUpdateTaskMachineUA1d0431260385e80.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-12-22 09:06]
.
2015-02-06 c:\windows\Tasks\WebReg HP PSC 1310 series.job
- d:\programy\Hewlett-Packard\Digital Imaging\bin\hpqwrg.exe [2009-05-21 19:40]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-12-21 08:47 2471744 ----a-w- d:\programy\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="c:\program files\Classic Shell\ClassicStartMenu.exe" [2014-04-20 161984]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Office Excel - d:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - d:\users\Ales\AppData\Roaming\Mozilla\Firefox\Profiles\s445h79f.default\
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-CoreAAC Audio Decoder - c:\windows\system32\CoreAAC-uninstall.exe
AddRemove-dBpoweramp FLAC Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
AddRemove-{d370215a-d003-43ae-a3b6-1028af64d5a1} - c:\programdata\Package Cache\{d370215a-d003-43ae-a3b6-1028af64d5a1}\SetupChipset.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:f4,ba,44,54,c8,3d,96,68,2b,fb,97,71,2c,05,32,53,ac,3d,46,c2,f2,
a0,c6,a9,4e,51,3a,bf,4b,a2,46,d3,eb,d5,4c,0a,5d,02,fc,d7,df,ca,37,a5,81,27,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.16"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:f4,ba,44,54,c8,3d,96,68,2b,fb,97,71,2c,05,32,53,ac,3d,46,c2,f2,
a0,c6,a9,4e,51,3a,bf,4b,a2,46,d3,eb,d5,4c,0a,5d,02,fc,d7,df,ca,37,a5,81,27,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
d:\programy\MSI Afterburner\MSIAfterburner.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
d:\programy\Malwarebytes Anti-Malware\mbamscheduler.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
.
**************************************************************************
.
Celkový čas: 2015-03-08 09:55:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-03-08 08:55
.
Před spuštěním: Volných bajtů: 87 381 319 680
Po spuštění: Volných bajtů: 86 872 006 656
.
- - End Of File - - 8C4277E59214F68C85B2B3F603F52650
A36C5E4F47E84449FF07ED3517B43A31
Nahoru
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod Orcus » 08 bře 2015 10:02

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok).
Zkopíruj do něj následující celý text označený červeně:

ClearJavaCache::

KillAll::

File::
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore1d04312601a9d4d.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA1d0431260385e80.job
c:\windows\Tasks\WebReg HP PSC 1310 series.job

Folder::
c:\program files (x86)\Google\Update\

FireFox::
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul

RegLock::
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:f4,ba,44,54,c8,3d,96,68,2b,fb,97,71,2c,05,32,53,ac,3d,46,c2,f2,
a0,c6,a9,4e,51,3a,bf,4b,a2,46,d3,eb,d5,4c,0a,5d,02,fc,d7,df,ca,37,a5,81,27,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.16"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_305.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:f4,ba,44,54,c8,3d,96,68,2b,fb,97,71,2c,05,32,53,ac,3d,46,c2,f2,
a0,c6,a9,4e,51,3a,bf,4b,a2,46,d3,eb,d5,4c,0a,5d,02,fc,d7,df,ca,37,a5,81,27,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.


Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe
a když se oba soubory překryjí, skript upusť.


- Automaticky se spustí ComboFix, oprava může trvat i déle než 10 minut. ! Nech ComboFix dokončit svou práci !
- Vlož sem log, který vyběhne v závěru čistícího procesu

Upozornění : Může se stát, že po aplikaci skriptu a restartu počítače Windows nenaběhnou, pak znovu restartuj počítač, mačkej F8 a pak zvol poslední známou funkční konfiguraci.

====================================================

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
astupka
Level 1
Level 1
Příspěvky: 66
Registrován: prosinec 14
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod astupka » 08 bře 2015 10:27

1) poznámka - akorát se mi při spuštění stále souští ty dropboxy, jinak jsem já nic nespouštěl

ComboFix 15-03-01.01 - Ales 08.03.2015 10:08:16.2.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8120.6258 [GMT 1:00]
Spuštěný z: d:\users\Ales\Desktop\ComboFix.exe
Použité ovládací přepínače :: d:\users\Ales\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\Tasks\Adobe Flash Player Updater.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore1d04312601a9d4d.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA1d0431260385e80.job"
"c:\windows\Tasks\WebReg HP PSC 1310 series.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdateComRegisterShell64.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\1.3.26.9\GoogleUpdateWebPlugin.exe
c:\program files (x86)\Google\Update\1.3.26.9\goopdate.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.26.9\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.26.9\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.26.9\psmachine.dll
c:\program files (x86)\Google\Update\1.3.26.9\psmachine_64.dll
c:\program files (x86)\Google\Update\1.3.26.9\psuser.dll
c:\program files (x86)\Google\Update\1.3.26.9\psuser_64.dll
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.26.9\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\40.0.2214.115\40.0.2214.115_40.0.2214.111_chrome_updater.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Google\Update\Install\{4F2E4F56-1531-43E8-AF30-2D123A519451}\40.0.2214.115_40.0.2214.111_chrome_updater.exe
c:\program files (x86)\Google\Update\Install\{F2498CED-1665-4898-BB81-831AEA198A37}\GoogleUpdateSetup.exe
c:\windows\Tasks\Adobe Flash Player Updater.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore1d04312601a9d4d.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA1d0431260385e80.job
c:\windows\Tasks\WebReg HP PSC 1310 series.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-02-08 do 2015-03-08 )))))))))))))))))))))))))))))))
.
.
2015-03-07 20:49 . 2015-03-07 20:49 -------- d-----w- d:\users\Ales\AppData\Roaming\EDrawings
2015-03-07 13:36 . 2015-03-07 13:36 -------- d-----w- d:\users\Ales\AppData\Local\Macromedia
2015-03-06 13:52 . 2014-08-29 02:07 3179520 ----a-w- c:\windows\system32\rdpcorets.dll
2015-03-06 13:52 . 2014-05-08 09:32 16384 ----a-w- c:\windows\system32\RdpGroupPolicyExtension.dll
2015-03-06 13:52 . 2014-12-11 17:47 87040 ----a-w- c:\windows\system32\TSWbPrxy.exe
2015-03-06 13:52 . 2011-02-25 06:19 2871808 ----a-w- c:\windows\explorer.exe
2015-03-06 13:52 . 2011-02-25 05:30 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2015-03-06 13:52 . 2014-09-05 02:11 6584320 ----a-w- c:\windows\system32\mstscax.dll
2015-03-06 13:52 . 2014-09-05 01:52 5703168 ----a-w- c:\windows\SysWow64\mstscax.dll
2015-03-06 13:50 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2015-03-06 13:50 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2015-03-06 12:58 . 2015-03-07 20:41 -------- d-----w- C:\CrashDumpsApp
2015-03-06 10:53 . 2015-03-06 10:53 -------- d-----w- d:\users\Ales\AppData\Local\GHISLER
2015-03-06 10:39 . 2015-03-06 10:12 24064 ----a-w- c:\windows\zoek-delete.exe
2015-03-06 09:15 . 2015-03-06 09:15 -------- d-----w- d:\users\Ales\.objectdb
2015-03-05 21:19 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-03-05 21:19 . 2012-08-23 14:08 30208 ----a-w- c:\windows\system32\drivers\TsUsbGD.sys
2015-03-05 21:18 . 2012-08-23 14:13 243200 ----a-w- c:\windows\system32\rdpudd.dll
2015-03-05 21:18 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2015-03-05 21:18 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2015-03-05 20:10 . 2015-03-05 20:10 -------- d-----w- c:\windows\SysWow64\Wat
2015-03-05 20:10 . 2015-03-05 20:10 -------- d-----w- c:\windows\system32\Wat
2015-03-05 19:13 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2015-03-05 19:13 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2015-03-05 19:13 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2015-03-05 19:13 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2015-03-05 19:13 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2015-03-05 19:00 . 2015-03-05 19:00 -------- d-----w- d:\users\Ales\AppData\Local\Adobe
2015-03-05 18:18 . 2015-03-06 10:03 37624 ----a-w- c:\windows\system32\drivers\TrueSight.sys
2015-03-05 18:18 . 2015-03-05 18:26 -------- d-----w- c:\programdata\RogueKiller
2015-03-05 10:08 . 2015-03-08 08:41 129752 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2015-03-05 10:08 . 2014-11-21 05:14 63704 ----a-w- c:\windows\system32\drivers\mwac.sys
2015-03-05 10:08 . 2014-11-21 05:14 93400 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2015-03-05 10:08 . 2014-11-21 05:14 25816 ----a-w- c:\windows\system32\drivers\mbam.sys
2015-03-05 09:52 . 2015-03-05 09:52 -------- d-----w- d:\users\Ales\AppData\Local\EgisTec
2015-03-05 07:57 . 2015-03-05 07:57 -------- d-----w- c:\program files (x86)\NirSoft
2015-03-05 06:53 . 2015-03-05 06:53 -------- d-----w- c:\program files (x86)\Microsoft CAPICOM 2.1.0.2
2015-03-04 22:38 . 2014-07-07 02:06 24576 ----a-w- c:\windows\system32\mfpmp.exe
2015-03-04 22:38 . 2014-07-07 02:02 2048 ----a-w- c:\windows\system32\mferror.dll
2015-03-04 22:38 . 2014-07-07 01:37 2048 ----a-w- c:\windows\SysWow64\mferror.dll
2015-03-04 22:37 . 2014-10-18 02:05 4121600 ----a-w- c:\windows\system32\mf.dll
2015-03-04 22:37 . 2014-10-18 01:33 3209728 ----a-w- c:\windows\SysWow64\mf.dll
2015-03-04 22:37 . 2014-07-07 02:06 206848 ----a-w- c:\windows\system32\mfps.dll
2015-03-04 22:37 . 2014-07-07 02:06 55808 ----a-w- c:\windows\system32\rrinstaller.exe
2015-03-04 22:37 . 2014-07-07 01:40 103424 ----a-w- c:\windows\SysWow64\mfps.dll
2015-03-04 22:37 . 2014-07-07 01:39 50176 ----a-w- c:\windows\SysWow64\rrinstaller.exe
2015-03-04 22:37 . 2014-07-07 01:39 23040 ----a-w- c:\windows\SysWow64\mfpmp.exe
2015-03-04 22:34 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-03-04 22:34 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-03-04 22:34 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-03-04 22:34 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-03-04 22:34 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-03-04 22:34 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-03-04 22:34 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-03-04 22:24 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-03-04 22:24 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-03-04 22:24 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-03-04 22:22 . 2015-03-04 22:22 -------- d-----w- c:\windows\PCHEALTH
2015-03-04 22:21 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-03-04 22:21 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-03-04 22:12 . 2015-03-04 22:18 -------- d-----w- c:\windows\system32\MRT
2015-03-04 22:07 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-03-04 22:07 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-03-04 22:07 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-03-04 22:07 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-03-04 22:07 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-03-04 22:07 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-03-04 22:07 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-03-04 22:07 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-03-04 22:05 . 2013-08-29 02:16 1732032 ----a-w- c:\windows\system32\ntdll.dll
2015-03-04 22:05 . 2013-08-29 02:16 859648 ----a-w- c:\windows\system32\tdh.dll
2015-03-04 22:05 . 2013-08-29 02:13 878080 ----a-w- c:\windows\system32\advapi32.dll
2015-03-04 22:05 . 2013-08-29 01:50 1292192 ----a-w- c:\windows\SysWow64\ntdll.dll
2015-03-04 22:05 . 2013-08-29 01:50 619520 ----a-w- c:\windows\SysWow64\tdh.dll
2015-03-04 22:05 . 2013-08-29 01:48 640512 ----a-w- c:\windows\SysWow64\advapi32.dll
2015-03-04 22:02 . 2015-01-14 06:09 5554112 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-04 22:01 . 2013-04-09 23:34 1247744 ----a-w- c:\windows\SysWow64\DWrite.dll
2015-03-04 22:01 . 2013-04-02 22:51 1643520 ----a-w- c:\windows\system32\DWrite.dll
2015-03-04 21:59 . 2012-12-07 11:20 30720 ----a-w- c:\windows\system32\usk.rs
2015-03-04 21:56 . 2014-03-04 09:44 362496 ----a-w- c:\windows\system32\wow64win.dll
2015-03-04 21:55 . 2012-06-06 06:05 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2015-03-04 21:54 . 2010-12-23 10:42 1118720 ----a-w- c:\windows\system32\sbe.dll
2015-03-04 21:53 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2015-03-04 21:53 . 2011-04-29 03:05 410112 ----a-w- c:\windows\system32\drivers\srv2.sys
2015-03-04 21:53 . 2011-04-29 03:05 168448 ----a-w- c:\windows\system32\drivers\srvnet.sys
2015-03-04 21:53 . 2014-11-08 03:16 2048 ----a-w- c:\windows\system32\tzres.dll
2015-03-04 21:53 . 2014-11-08 02:45 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2015-03-04 21:53 . 2011-10-15 06:31 723456 ----a-w- c:\windows\system32\EncDec.dll
2015-03-04 21:53 . 2011-10-15 05:38 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2015-03-04 21:51 . 2011-05-24 11:42 404480 ----a-w- c:\windows\system32\umpnpmgr.dll
2015-03-04 21:50 . 2012-02-17 06:38 1031680 ----a-w- c:\windows\system32\rdpcore.dll
2015-03-04 21:49 . 2013-11-26 08:16 3419136 ----a-w- c:\windows\SysWow64\d2d1.dll
2015-03-04 21:48 . 2014-06-25 02:05 14175744 ----a-w- c:\windows\system32\shell32.dll
2015-03-04 21:47 . 2014-04-05 02:47 1903552 ----a-w- c:\windows\system32\drivers\tcpip.sys
2015-03-04 21:46 . 2013-04-26 05:51 751104 ----a-w- c:\windows\system32\win32spl.dll
2015-03-04 21:45 . 2014-10-25 01:57 77824 ----a-w- c:\windows\system32\packager.dll
2015-03-04 21:19 . 2013-08-28 01:12 461312 ----a-w- c:\windows\system32\scavengeui.dll
2015-03-04 21:19 . 2014-07-14 02:02 1216000 ----a-w- c:\windows\system32\rpcrt4.dll
2015-03-04 21:19 . 2014-07-14 01:40 664064 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2015-03-04 21:19 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
2015-03-04 21:19 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2015-03-04 21:19 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2015-03-04 21:19 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2015-03-04 21:19 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2015-03-04 16:05 . 2015-03-04 16:05 -------- dc----w- d:\users\Ales\AppData\Local\MigWiz
2015-03-02 08:37 . 2015-03-02 15:58 -------- d-----w- c:\windows\SysWow64\RTCOM
2015-03-01 12:30 . 2015-03-01 12:30 -------- d-----w- c:\users\Administrator\AppData\Local\Macromedia
2015-03-01 12:30 . 2015-03-01 12:30 -------- d-----w- c:\users\Administrator\AppData\Local\Mozilla
2015-03-01 12:25 . 2015-03-02 08:50 -------- d--h--w- c:\program files (x86)\Temp
2015-02-26 21:37 . 2015-02-27 08:27 -------- d-----w- d:\users\Ales\AppData\Roaming\QipGuard
2015-02-26 12:31 . 2015-02-26 12:31 -------- d-----w- c:\programdata\WabKey
2015-02-23 21:52 . 2015-02-23 21:52 41 ----a-w- c:\windows\system32\winchap.dll
2015-02-22 21:05 . 2015-02-22 21:13 -------- d-----w- d:\users\Ales\AppData\Roaming\usbdm
2015-02-22 21:03 . 2015-02-22 21:04 -------- d-----w- d:\users\Ales\.codewarrior
2015-02-22 21:03 . 2015-02-22 21:18 -------- d-----w- d:\users\Ales\workspace
2015-02-22 14:05 . 2015-02-22 14:05 -------- d-----w- c:\users\Administrator\AppData\Local\Google
2015-02-22 14:05 . 2015-02-22 14:05 -------- d-----w- c:\users\Administrator\AppData\Local\Microsoft
2015-02-22 10:08 . 2015-02-22 10:08 82816 ----a-w- d:\users\Ales\AppData\Roaming\pcouffin.sys
2015-02-22 10:08 . 2015-02-22 10:08 -------- d-----w- c:\program files (x86)\vso
2015-02-22 10:08 . 2015-02-28 21:29 -------- d-----w- c:\programdata\VSO
2015-02-22 09:53 . 2009-06-07 15:24 180224 ----a-w- c:\windows\SysWow64\xvidvfw.dll
2015-02-22 09:53 . 2010-03-02 23:00 85504 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2015-02-22 09:53 . 2015-02-22 09:53 33019 ----a-w- c:\windows\SysWow64\CoreAAC-uninstall.exe
2015-02-22 09:52 . 2009-08-11 20:22 580096 ----a-w- c:\windows\system32\ac3filter64.acm
2015-02-22 09:52 . 2009-08-11 20:18 497664 ----a-w- c:\windows\SysWow64\ac3filter.acm
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-02-23 21:52 . 2015-02-23 21:52 41 ----a-w- c:\windows\system32\winchap.dll
2015-02-05 21:01 . 2014-12-20 13:08 74056 ----a-w- c:\windows\system32\OpenCL.dll
2015-02-05 21:01 . 2014-12-20 13:08 60560 ----a-w- c:\windows\SysWow64\OpenCL.dll
2015-02-05 21:01 . 2014-12-20 13:07 18575880 ----a-w- c:\windows\system32\nvwgf2umx.dll
2015-02-05 21:01 . 2014-12-20 13:07 14119744 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2015-02-05 21:01 . 2014-12-20 13:07 3299512 ----a-w- c:\windows\system32\nvapi64.dll
2015-02-05 21:01 . 2014-12-20 13:07 2902784 ----a-w- c:\windows\SysWow64\nvapi.dll
2015-02-05 19:07 . 2014-12-20 13:08 6861128 ----a-w- c:\windows\system32\nvcpl.dll
2015-02-05 19:07 . 2014-12-20 13:08 3517584 ----a-w- c:\windows\system32\nvsvc64.dll
2015-02-05 19:07 . 2014-12-20 13:08 935056 ----a-w- c:\windows\system32\nvvsvc.exe
2015-02-05 19:07 . 2014-12-20 13:08 62792 ----a-w- c:\windows\system32\nvshext.dll
2015-02-05 19:07 . 2014-12-20 13:08 2558792 ----a-w- c:\windows\system32\nvsvcr.dll
2015-02-05 19:06 . 2014-12-20 13:08 385168 ----a-w- c:\windows\system32\nvmctray.dll
2015-02-05 17:18 . 2014-12-20 23:23 71344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-02-05 17:18 . 2014-12-20 23:23 701616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-02-05 12:50 . 2014-12-20 13:08 4236870 ----a-w- c:\windows\system32\nvcoproc.bin
2015-01-16 06:41 . 2014-12-20 13:09 1316184 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2015-01-16 06:41 . 2014-12-20 13:09 1278920 ----a-w- c:\windows\SysWow64\nvspcap.dll
2015-01-16 06:41 . 2014-12-20 13:09 1756424 ----a-w- c:\windows\system32\nvspbridge64.dll
2015-01-16 06:41 . 2014-12-20 13:09 1514528 ----a-w- c:\windows\system32\nvspcap64.dll
2015-01-13 04:15 . 2015-01-22 21:17 1540240 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2015-01-10 08:07 . 2015-01-22 21:17 1895240 ----a-w- c:\windows\system32\nvdispco6434725.dll
2015-01-10 08:07 . 2015-01-22 21:17 1556808 ----a-w- c:\windows\system32\nvdispgenco6434725.dll
2014-12-25 16:58 . 2014-12-25 16:58 111016 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2014-12-22 07:44 . 2014-12-22 07:44 55288 ----a-w- c:\windows\system32\drivers\GsRamDsk.sys
2014-12-22 07:44 . 2014-12-22 07:44 243712 ----a-w- c:\windows\system32\InstallDriver.exe
2014-12-21 22:55 . 2014-12-21 22:55 165504 ----a-w- c:\windows\system32\drivers\IT9135BDA.sys
2014-12-21 22:14 . 2014-12-21 22:14 2048 ----a-w- c:\windows\SysWow64\winver.exe
2014-12-21 22:14 . 2014-12-21 22:14 833024 ----a-w- c:\windows\SysWow64\user32.dll
2014-12-21 22:14 . 2014-12-21 22:14 410624 ----a-w- c:\windows\SysWow64\systemcpl.dll
2014-12-21 22:14 . 2014-12-21 22:14 113543 ----a-w- c:\windows\SysWow64\slmgr.vbs
2014-12-21 22:12 . 2014-12-21 22:12 113543 ----a-w- c:\windows\system32\slmgr.vbs
2014-12-21 22:09 . 2010-11-21 03:24 14848 ----a-w- c:\windows\system32\slwga.dll
2014-12-21 22:09 . 2010-11-21 03:24 1008640 ----a-w- c:\windows\system32\user32.dll
2014-12-21 22:09 . 2010-11-21 03:24 419840 ----a-w- c:\windows\system32\systemcpl.dll
2014-12-21 22:09 . 2010-11-21 03:23 13824 ----a-w- c:\windows\SysWow64\slwga.dll
2014-12-21 09:37 . 2014-12-21 09:37 564824 ----a-w- c:\windows\system32\drivers\sptd.sys
2014-12-18 17:41 . 2014-12-21 19:44 5557736 ----a-w- c:\programdata\Microsoft\Windows\Start Menu\Programs\dl.exe
2014-12-17 13:07 . 2014-12-22 08:30 50056 ----a-w- c:\windows\system32\imdisk.exe
2014-12-17 13:07 . 2014-12-22 08:30 48232 ----a-w- c:\windows\SysWow64\imdisk.exe
2014-12-17 13:07 . 2014-12-22 08:30 117360 ----a-w- c:\windows\system32\imdisk.cpl
2014-12-17 13:06 . 2014-12-22 08:30 106096 ----a-w- c:\windows\SysWow64\imdisk.cpl
2014-12-17 12:57 . 2014-12-22 08:30 43584 ----a-w- c:\windows\system32\drivers\imdisk.sys
2014-12-17 08:47 . 2014-12-22 08:30 18016 ----a-w- c:\windows\system32\imdsksvc.exe
2014-12-14 21:44 . 2014-12-22 08:30 20536 ----a-w- c:\windows\system32\drivers\awealloc.sys
2014-12-13 10:08 . 2014-12-26 21:05 1895056 ----a-w- c:\windows\system32\nvdispco6434709.dll
2014-12-13 10:08 . 2014-12-26 21:05 1556624 ----a-w- c:\windows\system32\nvdispgenco6434709.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2010-11-21 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
[-] 2014-12-21 . E573BD9AB55C8E333C202B9E255F972E . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
.
[-] 2014-12-21 . 2C9CC9F492CA596B1B9FC1AE5E916356 . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
[7] 2010-11-21 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Yodm3D"="d:\programy\Yodm3D\Yodm3D.exe" [2007-04-21 2343936]
"Zoner Photo Studio Autoupdate"="d:\programy\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXE" [2013-12-13 831488]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"VitaKeyTSR"="d:\programy\EgisTec BioExcess\BioExcess\EgisTSR.exe" [2010-11-22 383344]
.
d:\users\Ales\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox Ales.lnk - d:\programy\DropboxPortableAles\DropboxPortableAHK.exe [2014-12-31 3690496]
Dropbox Home.lnk - d:\programy\DropboxPortableHome\DropboxPortableAHK.exe [2014-12-31 3690496]
SSD Life.lnk - d:\programy\SSDlife\ssdlife.exe [2013-10-3 2737992]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"MaxRecentDocs"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\hitmanpro37.sys]
@=""
.
R1 AntiLog32;AntiLog32;c:\windows\system32\drivers\AntiLog64.sys;c:\windows\SYSNATIVE\drivers\AntiLog64.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys;c:\windows\SYSNATIVE\Drivers\FPSensor.sys [x]
R2 MBAMService;MBAMService;d:\programy\Malwarebytes Anti-Malware\mbamservice.exe;d:\programy\Malwarebytes Anti-Malware\mbamservice.exe [x]
R2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe;c:\program files (x86)\Nero\Update\NASvc.exe [x]
R3 AcpiCtlDrv;AcpiCtlDrv;c:\windows\system32\DRIVERS\AcpiCtlDrv.sys;c:\windows\SYSNATIVE\DRIVERS\AcpiCtlDrv.sys [x]
R3 acsock;acsock;c:\windows\system32\DRIVERS\acsock64.sys;c:\windows\SYSNATIVE\DRIVERS\acsock64.sys [x]
R3 CoordinatorServiceHost;SW Distributed TS Coordinator Service;d:\programy\SolidWorks\SolidWorks\swScheduler\DTSCoordinatorService.exe;d:\programy\SolidWorks\SolidWorks\swScheduler\DTSCoordinatorService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 ICCWDT;Intel(R) Watchdog Timer Driver (Intel(R) WDT);c:\windows\system32\DRIVERS\ICCWDT.sys;c:\windows\SYSNATIVE\DRIVERS\ICCWDT.sys [x]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys;c:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
R3 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 MBAMWebAccessControl;MBAMWebAccessControl;c:\windows\system32\drivers\mwac.sys;c:\windows\SYSNATIVE\drivers\mwac.sys [x]
R3 MBfilt;MBfilt;c:\windows\system32\drivers\MBfilt64.sys;c:\windows\SYSNATIVE\drivers\MBfilt64.sys [x]
R3 MSICDSetup;MSICDSetup;k:\cdriver64.sys;k:\CDriver64.sys [x]
R3 NIApplicationWebServer;NI Application Web Server;d:\programy\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;d:\programy\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
R3 nimDNSResponder;National Instruments mDNS Responder Service;d:\programy\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe;d:\programy\National Instruments\Shared\mDNS Responder\nimdnsResponder.exe [x]
R3 NTIOLib_1_0_C;NTIOLib_1_0_C;k:\ntiolib_x64.sys;k:\NTIOLib_X64.sys [x]
R3 NTIOLib_FastBoot;NTIOLib_FastBoot;c:\program files (x86)\MSI\Fast Boot\NTIOLib_X64.sys;c:\program files (x86)\MSI\Fast Boot\NTIOLib_X64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 vpnagent;Cisco AnyConnect Secure Mobility Agent;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe;c:\program files (x86)\Cisco\Cisco AnyConnect Secure Mobility Client\vpnagent.exe [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R3 XTU3SERVICE;Intel(R) Extreme Tuning Utility Service;c:\program files (x86)\Intel\Extreme Tuning Utility\XtuService.exe;c:\program files (x86)\Intel\Extreme Tuning Utility\XtuService.exe [x]
R4 IObitUnlocker;IObitUnlocker;d:\programy\IObit\IObit Unlocker\IObitUnlocker.sys;d:\programy\IObit\IObit Unlocker\IObitUnlocker.sys [x]
R4 NIApplicationWebServer64;NI Application Web Server (64-bit);c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe;c:\program files\National Instruments\Shared\NI WebServer\ApplicationWebServer.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 GsRamDsk;%DiskServiceDesc%;c:\windows\system32\DRIVERS\GsRamDsk.sys;c:\windows\SYSNATIVE\DRIVERS\GsRamDsk.sys [x]
S1 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys;c:\windows\SYSNATIVE\drivers\mbamchameleon.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys;c:\windows\SYSNATIVE\DRIVERS\mwlPSDVDisk.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxUSBMon.sys [x]
S2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;d:\programy\ABBYY FineReader 11\NetworkLicenseServer.exe;d:\programy\ABBYY FineReader 11\NetworkLicenseServer.exe [x]
S2 AdvancedSystemCareService7;Advanced SystemCare Service 7;d:\programy\IObit\Advanced SystemCare 7\ASCService.exe;d:\programy\IObit\Advanced SystemCare 7\ASCService.exe [x]
S2 AWEAlloc;AWE Memory Allocation Driver;c:\windows\system32\DRIVERS\awealloc.sys;c:\windows\SYSNATIVE\DRIVERS\awealloc.sys [x]
S2 EgisTec Service;EgisTec Service;d:\programy\EgisTec BioExcess\BioExcess\EgisService.exe;d:\programy\EgisTec BioExcess\BioExcess\EgisService.exe [x]
S2 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe;c:\program files (x86)\Common Files\EgisTec\Services\EgisTicketService.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 ImDisk;ImDisk Virtual Disk Driver;c:\windows\system32\DRIVERS\imdisk.sys;c:\windows\SYSNATIVE\DRIVERS\imdisk.sys [x]
S2 ImDskSvc;ImDisk Virtual Disk Driver Helper;c:\windows\system32\imdsksvc.exe;c:\windows\SYSNATIVE\imdsksvc.exe [x]
S2 nldrv;nldrv;d:\programy\NetLimiter 4\nldrv.sys;d:\programy\NetLimiter 4\nldrv.sys [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 PDFSFilter;PDFSFilter;c:\windows\system32\DRIVERS\PDFsFilter.sys;c:\windows\SYSNATIVE\DRIVERS\PDFsFilter.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTCore64;RTCore64;d:\programy\MSI Afterburner\RTCore64.sys;d:\programy\MSI Afterburner\RTCore64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-02-20 19:21 1084744 ----a-w- c:\program files (x86)\Google\Chrome\Application\40.0.2214.115\Installer\chrmstp.exe
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-12-21 08:47 2471744 ----a-w- d:\programy\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt1"]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt2"]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt3"]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt4"]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt5"]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt6"]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt7"]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\"DropboxExt8"]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-02-11 01:12 185824 ----a-w- d:\programy\DropboxPortableAles\.dbfiles\profile\AppData\Roaming\Dropbox\bin\DropboxExt64.25.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Classic Start Menu"="c:\program files\Classic Shell\ClassicStartMenu.exe" [2014-04-20 161984]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
IE: E&xportovat do aplikace Microsoft Office Excel - d:\programy\MICROS~1\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - d:\users\Ales\AppData\Roaming\Mozilla\Firefox\Profiles\s445h79f.default\
FF - prefs.js: browser.startup.homepage - chrome://speeddial/content/speeddial.xul
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-CoreAAC Audio Decoder - c:\windows\system32\CoreAAC-uninstall.exe
AddRemove-dBpoweramp FLAC Codec - c:\windows\system32\SpoonUninstall.exe
AddRemove-dBpoweramp Music Converter - c:\windows\system32\SpoonUninstall.exe
AddRemove-{d370215a-d003-43ae-a3b6-1028af64d5a1} - c:\programdata\Package Cache\{d370215a-d003-43ae-a3b6-1028af64d5a1}\SetupChipset.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_305_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{BEB3C0C7-B648-4257-96D9-B5D024816E27}\Version*Version]
"Version"=hex:f4,ba,44,54,c8,3d,96,68,2b,fb,97,71,2c,05,32,53,ac,3d,46,c2,f2,
a0,c6,a9,4e,51,3a,bf,4b,a2,46,d3,eb,d5,4c,0a,5d,02,fc,d7,df,ca,37,a5,81,27,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Minnetonka Audio Software\SurCode Dolby Digital Premiere\Version*Version]
"Version"=hex:f4,ba,44,54,c8,3d,96,68,2b,fb,97,71,2c,05,32,53,ac,3d,46,c2,f2,
a0,c6,a9,4e,51,3a,bf,4b,a2,46,d3,eb,d5,4c,0a,5d,02,fc,d7,df,ca,37,a5,81,27,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
d:\programy\Malwarebytes Anti-Malware\mbamscheduler.exe
d:\programy\MSI Afterburner\MSIAfterburner.exe
c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe
.
**************************************************************************
.
Celkový čas: 2015-03-08 10:15:21 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-03-08 09:15
ComboFix2.txt 2015-03-08 08:55
.
Před spuštěním: Volných bajtů: 87 046 795 264
Po spuštění: Volných bajtů: 87 275 356 160
.
- - End Of File - - B516E536297833A026D7296A13398BFD
A36C5E4F47E84449FF07ED3517B43A31



2) poznámka - u těch MBR tabulek - patrně je teď MBR zapsána rovnou na tom kingstonu, kde je systém - tedy oddílu 1

- jinak jsem měl dříve MBR zapsanou na tom kingstonu oddílu 0 - tam byl grub4dos, ze kterého jsem zaváděl sedmičkovej zavaděč na kingstonu oddílu 1, pak XPčkovej zavaděč na tom ST1000DM003 oddílu 3, a další... - to jenom pro upřesnění, ale nemá to na to asi vliv, ale raději jsem to zmínil



aswMBR version 1.0.1.2290 Copyright(c) 2014 AVAST Software
Run date: 2015-03-08 10:17:49
-----------------------------
10:17:49.756 OS Version: Windows x64 6.1.7601 Service Pack 1
10:17:49.756 Number of processors: 4 586 0x3C03
10:17:49.756 ComputerName: ALES-PC UserName: Ales
10:17:49.906 Initialize success
10:17:49.916 VM: initialized successfully
10:17:49.916 VM: Intel CPU supported
10:17:54.686 VM: disk I/O atapi.sys
10:17:59.698 Disk 0 \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T1L0-4
10:17:59.698 Disk 0 Vendor: ST1000DM003-1CH162 CC47 Size: 953869MB BusType: 3
10:17:59.708 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-3
10:17:59.708 Disk 1 Vendor: WDC_WD20EARX-00PASB0 51.0AB51 Size: 1907729MB BusType: 3
10:17:59.718 Disk 2 (boot) \Device\Harddisk2\DR2 -> \Device\Ide\IdeDeviceP0T0L0-0
10:17:59.718 Disk 2 Vendor: KINGSTON_SV300S37A120G 505ABBF1 Size: 114473MB BusType: 3
10:17:59.728 Disk 2 MBR read successfully
10:17:59.738 Disk 2 MBR scan
10:17:59.738 Disk 2 unknown MBR code
10:17:59.858 Disk 2 Partition 1 80 (A) 07 HPFS/NTFS NTFS 1638 MB offset 2048
10:17:59.858 Disk 2 default boot code
10:17:59.868 Disk 2 Partition 2 00 07 HPFS/NTFS NTFS 112832 MB offset 3356672
10:17:59.878 Disk 2 scanning C:\Windows\system32\drivers
10:18:00.478 Service scanning
10:18:01.728 Service MSICDSetup K:\CDriver64.sys **LOCKED** 21
10:18:01.838 Service NTIOLib_1_0_C K:\NTIOLib_X64.sys **LOCKED** 21
10:18:03.048 Modules scanning
10:18:03.058 Disk 2 trace - called modules:
10:18:03.068 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys >>UNKNOWN [0xfffffa80067f62c0]<<sptd.sys ataport.SYS pciide.sys PCIIDEX.SYS hal.dll atapi.sys
10:18:03.078 1 nt!IofCallDriver -> \Device\Harddisk2\DR2[0xfffffa8006faf060]
10:18:03.088 3 CLASSPNP.SYS[fffff88001a9043f] -> nt!IofCallDriver -> [0xfffffa80069c3520]
10:18:03.088 5 ACPI.sys[fffff8800100b7a1] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0xfffffa80069c5060]
10:18:03.088 \Driver\atapi[0xfffffa80069b2920] -> IRP_MJ_CREATE -> 0xfffffa80067f62c0
10:18:03.098 Disk 2 statistics 118853/0/0 @ 162,11 MB/s
10:18:03.098 Scan finished successfully
10:18:19.008 Disk 2 MBR has been saved successfully to "D:\Users\Ales\Desktop\MBR.dat"
10:18:19.008 The log file has been saved successfully to "D:\Users\Ales\Desktop\aswMBR.txt"
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 08 bře 2015 19:41

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

Vyčisti systém CCleanerem

Stáhni si OTC

na plochu. Poklepej na něj. Potom klikni na Clean up!.
Restartuj PC , pokud Ti bude doporučeno.


Vlož nový log z HJT + informuj o problémech.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
astupka
Level 1
Level 1
Příspěvky: 66
Registrován: prosinec 14
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod astupka » 08 bře 2015 22:30

1) Combofix asi už je pryč - systém nemůže položku najít
2) ccleaner ok
3) s tím OTC mám trošku problém se stažením - není někde mirror? Dám stáhnout, chvíli načítá a nic, ani po registraci na té stránce to nejde

Děkuji
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 09 bře 2015 10:10

Stáhni si zde DelFix
https://toolslib.net/downloads/viewdownload/2-delfix/

ulož si soubor na plochu.
Poklepáním na ikonu spusť nástroj Delfix.exe
( Ve Windows Vista, Windows 7 a 8, musíš spustit soubor pravým tlačítkem myši -> Spustit jako správce .
V hlavním menu, zkontroluj tyto možnosti - Odstranění dezinfekce nástrojů (Remove desinfection tools) – Vyčistit body obnovy (Purge System Restore)
Poté klikněte na tlačítko Spustit (Run) a nech nástroj dělat svoji práci

Poté se zpráva se otevře (DelFix.txt). Vlož celý obsah zprávy sem.Jinak je zpráva zde:
v C: \ DelFix.txt

Stáhni si CrystalDiskInfo
Spusť program a klikni na Úpravy-Kopírovat. Poté sem vlož pomocí Ctrl+V obsah logu.

Stáhni si Memtest:

Políčko , ve kterém je napsáno:
All unused RAM -ponech , jak je.
-dej Start , nech nejméně 2h běžet , pokud bude po 2h stále 0 errors , jsou v pořádku.

stáhni SuperAntiSpyware
aktualizuj databázi , proveď sken a následně nákazy smaž
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
astupka
Level 1
Level 1
Příspěvky: 66
Registrován: prosinec 14
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod astupka » 09 bře 2015 10:17

Ok, první 2 body jsou zde, teď jdu dát běhat ten memtest.

1)

# DelFix v10.9 - Logfile created 09/03/2015 at 10:12:43
# Updated 27/02/2015 by Xplode
# Username : Ales - ALES-PC
# Operating System : Windows 7 Professional Service Pack 1 (64 bits)

~ Removing disinfection tools ...

Deleted : C:\Windows\grep.exe
Deleted : C:\Windows\PEV.exe
Deleted : C:\Windows\NIRCMD.exe
Deleted : C:\Windows\MBR.exe
Deleted : C:\Windows\SED.exe
Deleted : C:\Windows\SWREG.exe
Deleted : C:\Windows\SWSC.exe
Deleted : C:\Windows\SWXCACLS.exe
Deleted : C:\Windows\Zip.exe
Deleted : HKLM\SOFTWARE\AdwCleaner
Deleted : HKLM\SOFTWARE\Swearware
Deleted : HKLM\SOFTWARE\TrendMicro\Hijackthis
Deleted : HKLM\SYSTEM\CurrentControlSet\Enum\Root\LEGACY_ASWMBR

~ Cleaning system restore ...


New restore point created !

########## - EOF - ##########





2)
----------------------------------------------------------------------------
CrystalDiskInfo 6.2.2 (C) 2008-2014 hiyohiyo
Crystal Dew World : http://crystalmark.info/
----------------------------------------------------------------------------

OS : Windows 7 Professional SP1 [6.1 Build 7601] (x64)
Date : 2015/03/09 10:14:20

-- Controller Map ----------------------------------------------------------
+ ATA Channel 0 (0) [ATA]
- KINGSTON SV300S37A120G ATA Device
+ ATA Channel 1 (1) [ATA]
- ST1000DM003-1CH162 ATA Device
+ Intel(R) 8 Series/C220 Series 4 port Serial ATA Storage Controller - 8C00 [ATA]
- ATA Channel 0 (0)
- ATA Channel 1 (1)
+ Intel(R) 8 Series/C220 Series 2 port Serial ATA Storage Controller - 8C08 [ATA]
+ ATA Channel 0 (0)
- HL-DT-ST DVDRAM GH24NSB0 ATA Device
+ ATA Channel 1 (1)
- WDC WD20EARX-00PASB0 ATA Device
+ Virtual CloneDrive [SCSI]
- ELBY CLONEDRIVE SCSI CdRom Device
+ JMicron JMB36X Controller [SCSI]
- ASUS DRW-1612BL SCSI CdRom Device

-- Disk List ---------------------------------------------------------------
(1) ST1000DM003-1CH162 : 1000,2 GB [0/2/1, pd1] - st
(2) KINGSTON SV300S37A120G : 120,0 GB [1/1/0, pd1] - sf
(3) WDC WD20EARX-00PASB0 : 2000,3 GB [2/4/0, pd1] - wd
(4) SanDisk pSSD : 31,3 GB [4/X/X, sa1] (V=0781, P=5580) - sd

----------------------------------------------------------------------------
(1) ST1000DM003-1CH162
----------------------------------------------------------------------------
Model : ST1000DM003-1CH162
Firmware : CC47
Serial Number : Z1D7JNXY
Disk Size : 1000,2 GB (8,4/137,4/1000,2/1000,2)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 1953525168
Rotation Rate : 7200 RPM
Interface : Serial ATA
Major Version : ACS-2
Minor Version : ACS-3 Revision 3b
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3445 hod.
Power On Count : 1084 krát
Temperature : 32 C (89 F)
Health Status : Dobrý
Features : S.M.A.R.T., APM, 48bit LBA, NCQ
APM Level : 8080h [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 116 _99 __6 000006E5B0E8 Počet chyb čtení
03 _97 _97 __0 000000000000 Čas na roztočení ploten
04 _99 _99 _20 00000000046D Počet spuštění/zastavení
05 100 100 _10 000000000000 Počet přemapovaných sektorů
07 _77 _60 _30 0000033E73EB Počet chybných hledání
09 _97 _97 __0 000000000D75 Hodin v činnosti
0A 100 100 _97 000000000000 Počet opakovaných pokusů o roztočení ploten
0C _99 _99 _20 00000000043C Počet cyklů zapnutí zařízení
B7 100 100 __0 000000000000 Specifický pro výrobce
B8 100 100 _99 000000000000 Ukončovacích chyb
BB 100 100 __0 000000000000 Ohlášeno neopravitelných chyb
BC 100 100 __0 000000000005 Časový limit příkazu
BD _99 _99 __0 000000000001 Vysoká rychlost zápisu
BE _68 _61 _45 000023140020 Teplota toku vzduchu
BF 100 100 __0 000000000000 Počet udalostí zaznamenaných otřesovým senzorem
C0 100 100 __0 000000000058 Počet vypnutí disku
C1 _94 _94 __0 0000000034C0 Počet cyklů načítání/vymazání
C2 _32 _40 __0 000C00000020 Teplota
C5 100 100 __0 000000000000 Počet podezřelých sektorů
C6 100 100 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
F0 100 253 __0 125E00000C87 Čas nastavování hlaviček - v hodinách
F1 100 253 __0 000748198D6C Total Host Writes
F2 100 253 __0 0007743C682F Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2020 2020 2020 2020 5A31 4437 4A4E 5859
020: 0000 0000 0004 4343 3437 2020 2020 5354 3130 3030
030: 444D 3030 332D 3143 4831 3632 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 850E 0006 004C 0040
080: 03F0 001F 346B 7D69 4163 3469 BC49 4163 207F 0035
090: 0035 8080 FFFE 0000 D000 0000 0000 0000 0000 0000
100: 6DB0 7470 0000 0000 0000 0000 6003 0000 5000 C500
110: 652F 18D0 0000 0000 0000 0000 0000 0000 0000 401E
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 6DB0
130: 7470 6DB0 7470 2020 0002 0140 0100 5000 3C06 3C0A
140: 0000 003C 0000 0008 0000 0000 05FF 0280 0000 0000
150: 0008 0000 0000 0000 0000 0000 0000 0000 5800 8800
160: 0000 0000 0000 0000 0000 0000 0000 0000 0002 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3085 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 1C20 0000 0000
220: 0000 0000 107E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0003 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 2BA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 74 63 E8 B0 E5 06 00 00 00 03 03
010: 00 61 61 00 00 00 00 00 00 00 04 32 00 63 63 6D
020: 04 00 00 00 00 00 05 33 00 64 64 00 00 00 00 00
030: 00 00 07 0F 00 4D 3C EB 73 3E 03 00 00 00 09 32
040: 00 61 61 75 0D 00 00 00 00 00 0A 13 00 64 64 00
050: 00 00 00 00 00 00 0C 32 00 63 63 3C 04 00 00 00
060: 00 00 B7 32 00 64 64 00 00 00 00 00 00 00 B8 32
070: 00 64 64 00 00 00 00 00 00 00 BB 32 00 64 64 00
080: 00 00 00 00 00 00 BC 32 00 64 64 05 00 00 00 00
090: 00 00 BD 3A 00 63 63 01 00 00 00 00 00 00 BE 22
0A0: 00 44 3D 20 00 14 23 00 00 00 BF 32 00 64 64 00
0B0: 00 00 00 00 00 00 C0 32 00 64 64 58 00 00 00 00
0C0: 00 00 C1 32 00 5E 5E C0 34 00 00 00 00 00 C2 22
0D0: 00 20 28 20 00 00 00 0C 00 00 C5 12 00 64 64 00
0E0: 00 00 00 00 00 00 C6 10 00 64 64 00 00 00 00 00
0F0: 00 00 C7 3E 00 C8 C8 00 00 00 00 00 00 00 F0 00
100: 00 64 FD 87 0C 00 00 5E 12 19 F1 00 00 64 FD 6C
110: 8D 19 48 07 00 00 F2 00 00 64 FD 2F 68 3C 74 07
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 48 02 00 73
170: 03 00 01 00 01 6E 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 A6 07 00 00 01 03 03 03 03 03 03 03
190: 03 00 00 00 00 00 00 00 00 01 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 E9 9A E1 EC 47 0B 00 00
1B0: 00 00 00 00 01 00 29 0B 6C 8D 19 48 07 00 00 00
1C0: 2F 68 3C 74 07 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 5C 26 00 00 01 00 00 00
1E0: 00 00 00 00 40 CF 06 00 00 00 00 00 00 00 00 02
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 B6

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 01 06 00 00 00 00 00 00 00 00 00 00 03 00
010: 00 00 00 00 00 00 00 00 00 00 04 14 00 00 00 00
020: 00 00 00 00 00 00 05 0A 00 00 00 00 00 00 00 00
030: 00 00 07 1E 00 00 00 00 00 00 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 61 00 00 00 00
050: 00 00 00 00 00 00 0C 14 00 00 00 00 00 00 00 00
060: 00 00 B7 00 00 00 00 00 00 00 00 00 00 00 B8 63
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BC 00 00 00 00 00 00 00 00 00
090: 00 00 BD 00 00 00 00 00 00 00 00 00 00 00 BE 2D
0A0: 00 00 00 00 00 00 00 00 00 00 BF 00 00 00 00 00
0B0: 00 00 00 00 00 00 C0 00 00 00 00 00 00 00 00 00
0C0: 00 00 C1 00 00 00 00 00 00 00 00 00 00 00 C2 00
0D0: 00 00 00 00 00 00 00 00 00 00 C5 00 00 00 00 00
0E0: 00 00 00 00 00 00 C6 00 00 00 00 00 00 00 00 00
0F0: 00 00 C7 00 00 00 00 00 00 00 00 00 00 00 F0 00
100: 00 00 00 00 00 00 00 00 00 00 F1 00 00 00 00 00
110: 00 00 00 00 00 00 F2 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 FD

----------------------------------------------------------------------------
(2) KINGSTON SV300S37A120G
----------------------------------------------------------------------------
Model : KINGSTON SV300S37A120G
Firmware : 505ABBF1
Serial Number : 50026B773A02BBBE
Disk Size : 120,0 GB (8,4/120,0/120,0/120,0)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 234441648
Rotation Rate : ---- (SSD)
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ACS-2 Revision 3
Transfer Mode : SATA/600 | SATA/600
Power On Hours : 3470 hod.
Power On Count : 1068 krát
Host Reads : 3699 GB
Host Writes : 1911 GB
Temperature : 28 C (82 F)
Health Status : Dobrý (100 %)
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 00FEh [ON]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr Raw Values (7) Attribute Name
01 112 112 _50 00000003C2B1FB Raw Read Error Rate
05 100 100 __3 00000000000000 Retired Block Count
09 _97 _97 __0 0E179400000D8E Power-on Hours
0C _99 _99 __0 0000000000042C Power Cycle Count
AB __0 __0 __0 00000000000000 Program Fail Count
AC __0 __0 __0 00000000000000 Erase Fail Count
AE __0 __0 __0 00000000000053 Unexpected Power Loss Count
B1 __0 __0 __0 00000000000004 Wear Range Delta
B5 __0 __0 __0 00000000000000 Program Fail Count
B6 __0 __0 __0 00000000000000 Erase Fail Count
BB _23 _23 __0 0000000000004D Reported Uncorrectable Errors
BD _28 _66 __0 00000D0042001C Specifický pro výrobce
C2 _28 _66 __0 00000D0042001C Temperature
C3 120 120 __0 00000003C2B1FB On-the-Fly ECC Uncorrectable Error Count
C4 100 100 __3 00000000000000 Reallocation Event Count
C9 120 120 __0 00000003C2B1FB Uncorrectable Soft Read Error Rate
CC 120 120 __0 00000003C2B1FB Soft ECC Correction Rate
E6 100 100 __0 00000000000064 Life Curve Status
E7 100 100 _10 00000000000000 SSD Life Left
E9 __0 __0 __0 00000000001233 Specifický pro výrobce
EA __0 __0 __0 00000000000777 Specifický pro výrobce
F1 __0 __0 __0 00000000000777 Lifetime Writes from Host
F2 __0 __0 __0 00000000000E73 Lifetime Reads from Host

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0C5A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3530 3032 3642 3737 3341 3032 4242 4245 2020 2020
020: 0000 0000 0004 3530 3541 4242 4631 4B49 4E47 5354
030: 4F4E 2053 5633 3030 5333 3741 3132 3047 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 4000 2F00
050: 4000 0200 0200 0007 3FFF 0010 003F FC10 00FB 0110
060: 4BB0 0DF9 0000 0007 0003 0078 0078 0078 0078 4200
070: 0000 0000 0000 0000 0000 001F C70E 0006 004C 0040
080: 01FC 0110 746B 7469 6163 7429 B649 6163 207F 0001
090: 0000 00FE FFFE 0000 00FE 0000 0000 0000 0000 0000
100: 4BB0 0DF9 0000 0000 0000 0001 4000 0000 5002 6B77
110: 3A02 BBBE 0000 0000 0000 0000 0000 0000 0000 401A
120: 4018 0000 0000 0000 0000 0000 0000 0000 0009 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0001
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0021 0000 0000 4000
210: 0000 0000 0100 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 103F 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 DEA5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 0F 00 70 70 FB B1 C2 03 00 00 00 05 33
010: 00 64 64 00 00 00 00 00 00 00 09 32 00 61 61 8E
020: 0D 00 00 94 17 0E 0C 32 00 63 63 2C 04 00 00 00
030: 00 00 AB 32 00 00 00 00 00 00 00 00 00 00 AC 32
040: 00 00 00 00 00 00 00 00 00 00 AE 30 00 00 00 53
050: 00 00 00 00 00 00 B1 00 00 00 00 04 00 00 00 00
060: 00 00 B5 32 00 00 00 00 00 00 00 00 00 00 B6 32
070: 00 00 00 00 00 00 00 00 00 00 BB 32 00 17 17 4D
080: 00 00 00 00 00 00 BD 00 00 1C 42 1C 00 42 00 0D
090: 00 00 C2 22 00 1C 42 1C 00 42 00 0D 00 00 C3 1C
0A0: 00 78 78 FB B1 C2 03 00 00 00 C4 33 00 64 64 00
0B0: 00 00 00 00 00 00 C9 1C 00 78 78 FB B1 C2 03 00
0C0: 00 00 CC 1C 00 78 78 FB B1 C2 03 00 00 00 E6 13
0D0: 00 64 64 64 00 00 00 00 00 00 E7 13 00 64 64 00
0E0: 00 00 00 00 00 00 E9 00 00 00 00 33 12 00 00 00
0F0: 00 00 EA 32 00 00 00 77 07 00 00 00 00 00 F1 32
100: 00 00 00 77 07 00 00 00 00 00 F2 32 00 00 00 73
110: 0E 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 7B
170: 03 00 01 00 01 30 02 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D0

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 0A 00 01 32 00 00 00 00 00 00 00 00 00 00 05 03
010: 00 00 00 00 00 00 00 00 00 00 09 00 00 00 00 00
020: 00 00 00 00 00 00 0C 00 00 00 00 00 00 00 00 00
030: 00 00 AB 00 00 00 00 00 00 00 00 00 00 00 AC 00
040: 00 00 00 00 00 00 00 00 00 00 AE 00 00 00 00 00
050: 00 00 00 00 00 00 B1 00 00 00 00 00 00 00 00 00
060: 00 00 B5 00 00 00 00 00 00 00 00 00 00 00 B6 00
070: 00 00 00 00 00 00 00 00 00 00 BB 00 00 00 00 00
080: 00 00 00 00 00 00 BD 00 00 00 00 00 00 00 00 00
090: 00 00 C2 00 00 00 00 00 00 00 00 00 00 00 C3 00
0A0: 00 00 00 00 00 00 00 00 00 00 C4 03 00 00 00 00
0B0: 00 00 00 00 00 00 C9 00 00 00 00 00 00 00 00 00
0C0: 00 00 CC 00 00 00 00 00 00 00 00 00 00 00 E6 00
0D0: 00 00 00 00 00 00 00 00 00 00 E7 0A 00 00 00 00
0E0: 00 00 00 00 00 00 E9 00 00 00 00 00 00 00 00 00
0F0: 00 00 EA 00 00 00 00 00 00 00 00 00 00 00 F1 00
100: 00 00 00 00 00 00 00 00 00 00 F2 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 9F

----------------------------------------------------------------------------
(3) WDC WD20EARX-00PASB0
----------------------------------------------------------------------------
Model : WDC WD20EARX-00PASB0
Firmware : 51.0AB51
Serial Number : WD-WCAZAE870286
Disk Size : 2000,3 GB (8,4/137,4/2000,3/2000,3)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 3907029168
Rotation Rate : Neznámy údaj
Interface : Serial ATA
Major Version : ATA8-ACS
Minor Version : ----
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 2707 hod.
Power On Count : 790 krát
Temperature : 30 C (86 F)
Health Status : Dobrý
Features : S.M.A.R.T., 48bit LBA, NCQ
APM Level : ----
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
01 200 200 _51 000000000000 Počet chyb čtení
03 169 167 _21 00000000196C Čas na roztočení ploten
04 _99 _99 __0 0000000005F6 Počet spuštění/zastavení
05 200 200 140 000000000000 Počet přemapovaných sektorů
07 200 200 __0 000000000000 Počet chybných hledání
09 _97 _97 __0 000000000A93 Hodin v činnosti
0A 100 100 __0 000000000000 Počet opakovaných pokusů o roztočení ploten
0B 100 100 __0 000000000000 Počet pokusů o překalibrování
0C 100 100 __0 000000000316 Počet cyklů zapnutí zařízení
C0 200 200 __0 00000000002D Počet vypnutí disku
C1 197 197 __0 000000002981 Počet cyklů načítání/vymazání
C2 120 111 __0 00000000001E Teplota
C4 200 200 __0 000000000000 Počet udalostí s číslem realokování sektorů
C5 200 200 __0 000000000000 Počet podezřelých sektorů
C6 200 200 __0 000000000000 Počet neopravitelných sektorů
C7 200 200 __0 000000000000 Počet chyb v kontrolním součtu UltraDMA
C8 200 200 __0 000000000000 Počet chyb při zápisu sektorů

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 427A 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 2020 2020 2057 442D 5743 415A 4145 3837 3032 3836
020: 0000 0000 0032 3531 2E30 4142 3531 5744 4320 5744
030: 3230 4541 5258 2D30 3050 4153 4230 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2020 8010 0000 2F00
050: 4001 0000 0000 0007 3FFF 0010 003F FC10 00FB 0100
060: FFFF 0FFF 0000 0007 0003 0078 0078 0078 0078 0000
070: 0000 0000 0000 0000 0000 001F 170E 0004 0044 0040
080: 01FE 0000 746B 7D61 4123 7469 BC41 4123 207F 00C9
090: 00C9 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 88B0 E8E0 0000 0000 0000 0000 6003 0000 5001 4EE1
110: 04BB 98A0 0000 0000 0000 0000 0000 0000 0000 401C
120: 401C 0000 0000 0000 0000 0000 0000 0000 0029 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0004 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
170: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 3035 0000 0000 4000
210: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
220: 0000 0000 103E 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 1000 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 97A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 2F 00 C8 C8 00 00 00 00 00 00 00 03 27
010: 00 A9 A7 6C 19 00 00 00 00 00 04 32 00 63 63 F6
020: 05 00 00 00 00 00 05 33 00 C8 C8 00 00 00 00 00
030: 00 00 07 2E 00 C8 C8 00 00 00 00 00 00 00 09 32
040: 00 61 61 93 0A 00 00 00 00 00 0A 32 00 64 64 00
050: 00 00 00 00 00 00 0B 32 00 64 64 00 00 00 00 00
060: 00 00 0C 32 00 64 64 16 03 00 00 00 00 00 C0 32
070: 00 C8 C8 2D 00 00 00 00 00 00 C1 32 00 C5 C5 81
080: 29 00 00 00 00 00 C2 22 00 78 6F 1E 00 00 00 00
090: 00 00 C4 32 00 C8 C8 00 00 00 00 00 00 00 C5 32
0A0: 00 C8 C8 00 00 00 00 00 00 00 C6 30 00 C8 C8 00
0B0: 00 00 00 00 00 00 C7 32 00 C8 C8 00 00 00 00 00
0C0: 00 00 C8 08 00 C8 C8 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 82 00 B0 9A 01 7B
170: 03 00 01 00 02 FF 05 7D 01 00 00 00 00 00 00 00
180: 00 00 01 06 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D9

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 10 00 01 33 C8 C8 C8 C8 C8 C8 00 00 00 00 03 15
010: 00 00 00 00 00 00 00 00 00 00 04 00 00 00 00 00
020: 00 00 00 00 00 00 05 8C 00 00 00 00 00 00 00 00
030: 00 00 07 00 C8 C8 C8 C8 C8 C8 00 00 00 00 09 00
040: 00 00 00 00 00 00 00 00 00 00 0A 00 00 00 00 00
050: 00 00 00 00 00 00 0B 00 00 00 00 00 00 00 00 00
060: 00 00 0C 00 00 00 00 00 00 00 00 00 00 00 C0 00
070: 00 00 00 00 00 00 00 00 00 00 C1 00 00 00 00 00
080: 00 00 00 00 00 00 C2 00 00 00 00 00 00 00 00 00
090: 00 00 C4 00 00 00 00 00 00 00 00 00 00 00 C5 00
0A0: 00 00 00 00 00 00 00 00 00 00 C6 00 00 00 00 00
0B0: 00 00 00 00 00 00 C7 00 00 00 00 00 00 00 00 00
0C0: 00 00 C8 00 C8 C8 C8 C8 C8 C8 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 AD

----------------------------------------------------------------------------
(4) SanDisk pSSD
----------------------------------------------------------------------------
Enclosure : SanDisk Extreme USB Device (V=0781, P=5580, sa1) - sd
Model : SanDisk pSSD
Firmware : 3
Serial Number : 0d4dd5ebc
Disk Size : 31,3 GB (8,4/31,3/31,3/31,3)
Buffer Size : Neznámy údaj
Queue Depth : 32
# of Sectors : 61282631
Rotation Rate : ---- (SSD)
Interface : USB (Serial ATA)
Major Version : ATA8-ACS
Minor Version : ATA8-ACS version 2d
Transfer Mode : SATA/300 | SATA/600
Power On Hours : 188 hod.
Power On Count : 702 krát
Host Reads : 74 GB
Host Writes : 48 GB
Temperature : Neznámy údaj
Health Status : Dobrý (100 %)
Features : S.M.A.R.T., APM, 48bit LBA, NCQ, TRIM
APM Level : 0000h [OFF]
AAM Level : ----

-- S.M.A.R.T. --------------------------------------------------------------
ID Cur Wor Thr RawValues(6) Attribute Name
05 100 100 __0 000000000000 Retired Block Count
09 100 100 __0 0000000000BC Power-On Hours
0C 100 100 __0 0000000002BE Power Cycle Count
AB 100 100 __0 000000000000 Program Fail Count
AC 100 100 __0 000000000000 Erase Fail Count
AD 100 100 __0 000000000003 Specifický pro výrobce
AE 100 100 __0 000000000148 Unexpected Power Loss Count
BB 100 100 __0 000000000000 Reported Uncorrectable Errors
E6 100 100 __0 00000000000A Specifický pro výrobce
E8 100 100 __5 000000000000 Remaining Life
EA 100 100 __0 000000000004 Specifický pro výrobce
F1 100 100 __0 00000607411D Total Host Writes
F2 100 100 __0 0000095D0549 Total Host Reads

-- IDENTIFY_DEVICE ---------------------------------------------------------
0 1 2 3 4 5 6 7 8 9
000: 0040 3FFF C837 0010 0000 0000 003F 0000 0000 0000
010: 3064 3464 6435 6562 6320 2020 2020 2020 2020 2020
020: 0000 0000 0000 3300 0000 0000 0000 5361 6E44 6973
030: 6B20 7053 5344 2020 2020 2020 2020 2020 2020 2020
040: 2020 2020 2020 2020 2020 2020 2000 8001 0000 2F00
050: 4000 0200 0000 0007 3FFF 0010 003F FC10 00FB 9101
060: 1947 03A7 0000 0007 0003 0078 0078 0078 0078 5020
070: 0000 0000 0000 0000 0000 001F 010E 0004 0040 0040
080: 01F0 0107 746B 7C09 4163 7409 BC01 4163 407F 0001
090: 0001 0000 FFFE 0000 0000 0000 0000 0000 0000 0000
100: 1947 03A7 0000 0000 0000 0008 4000 0000 5001 B400
110: DDD4 BC5E 0000 0000 0000 0000 0000 0000 0000 4014
120: 4014 0000 0000 0000 0000 0000 0000 0000 0001 0000
130: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
140: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
150: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
160: 0000 0000 0000 0000 0000 0000 0000 0000 0004 0001
170: 2020 2020 2020 2020 0000 0000 0000 0000 0000 0000
180: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
190: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
200: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
210: 0000 0000 0000 0000 0000 0000 0000 0001 0000 0000
220: 0000 0000 1011 0000 0000 0000 0000 0000 0000 0000
230: 0000 0000 0000 0000 0001 00FF 0000 0000 0000 0000
240: 0000 0000 0000 0000 0000 0000 0000 0000 0000 0000
250: 0000 0000 0000 0000 0000 C2A5

-- SMART_READ_DATA ---------------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 05 02 00 64 64 00 00 00 00 00 00 00 09 02
010: 00 64 64 BC 00 00 00 00 00 00 0C 02 00 64 64 BE
020: 02 00 00 00 00 00 AB 02 00 64 64 00 00 00 00 00
030: 00 00 AC 02 00 64 64 00 00 00 00 00 00 00 AD 02
040: 00 64 64 03 00 00 00 00 00 00 AE 02 00 64 64 48
050: 01 00 00 00 00 00 BB 02 00 64 64 00 00 00 00 00
060: 00 00 E6 02 00 64 64 0A 00 00 00 00 00 00 E8 03
070: 00 64 64 00 00 00 00 00 00 00 EA 02 00 64 64 04
080: 00 00 00 00 00 00 F1 02 00 64 64 1D 41 07 06 00
090: 00 00 F2 02 00 64 64 49 05 5D 09 00 00 00 00 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 78 00 00 51
170: 03 00 01 00 02 07 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 CF

-- SMART_READ_THRESHOLD ----------------------------------------------------
+0 +1 +2 +3 +4 +5 +6 +7 +8 +9 +A +B +C +D +E +F
000: 01 00 05 00 00 00 00 00 00 00 00 00 00 00 09 00
010: 00 00 00 00 00 00 00 00 00 00 0C 00 00 00 00 00
020: 00 00 00 00 00 00 AB 00 00 00 00 00 00 00 00 00
030: 00 00 AC 00 00 00 00 00 00 00 00 00 00 00 AD 00
040: 00 00 00 00 00 00 00 00 00 00 AE 00 00 00 00 00
050: 00 00 00 00 00 00 BB 00 00 00 00 00 00 00 00 00
060: 00 00 E6 00 00 00 00 00 00 00 00 00 00 00 E8 05
070: 00 00 00 00 00 00 00 00 00 00 EA 00 00 00 00 00
080: 00 00 00 00 00 00 F1 00 00 00 00 00 00 00 00 00
090: 00 00 F2 00 00 00 00 00 00 00 00 00 00 00 00 00
0A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
0F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
110: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
120: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
130: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
140: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
150: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
160: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
170: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
190: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1A0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1B0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1C0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1D0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1E0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
1F0: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 D8
Nahoru
astupka
Level 1
Level 1
Příspěvky: 66
Registrován: prosinec 14
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod astupka » 09 bře 2015 10:19

Akorát ten memtest nahodim z DOSU, jetli nevadí - to klasické bootovací iso
Nahoru
Uživatelský avatar
jaro3
člen Security týmu
Guru Level 15
Guru Level 15
Příspěvky: 43298
Registrován: červen 07
Bydliště: Jižní Čechy
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod jaro3 » 09 bře 2015 10:21

Disky OK.

(3) WDC WD20EARX-00PASB0
00000000196C Čas na roztočení ploten

Udělej odpoledne , večer znovu CDI.
Při práci s programy HJT, ComboFix,MbAM, SDFix aj. zavřete všechny ostatní aplikace a prohlížeče!
Neposílejte logy do soukromých zpráv.Po dobu mé nepřítomnosti mě zastupuje memphisto , Žbeky a Orcus.
Pokud budete spokojeni , můžete podpořit naše forum:Podpora fóra
Nahoru
astupka
Level 1
Level 1
Příspěvky: 66
Registrován: prosinec 14
Pohlaví: Nespecifikováno
Stav:
Offline

Re: Kontrola logu

Příspěvekod astupka » 09 bře 2015 13:44

Ram jsou po 3 hodinovém testu OK, žádná chyba, CDI udělám tedy znova večer.
Nahoru
Uživatelský avatar
Orcus
člen Security týmu
Elite Level 10.5
Elite Level 10.5
Příspěvky: 10645
Registrován: duben 10
Bydliště: Okolo rostou 3 růže =o)
Pohlaví: Muž
Stav:
Offline

Re: Kontrola logu

Příspěvekod Orcus » 09 bře 2015 14:35

OK.
Láska hřeje, ale uhlí je uhlí. :fire:


Log z HJT vkládejte do HJT sekce. Je-li moc dlouhý, rozděl jej do více zpráv.

Pár rad k bezpečnosti PC.

Po dobu mé nepřítomnosti mě zastupuje memphisto, jaro3 a Diallix

Pokud budete spokojeni , můžete podpořit naše fórum.
Nahoru
Zamčeno

Zpět na “HiJackThis”

Kdo je online

Uživatelé prohlížející si toto fórum: Žádní registrovaní uživatelé a 78 hostů