prosim o kontrolo logu - nektere aplikace mi po zapnuti prestanou odpovidat. Napriklad ucetni program, illustrator, nebo zarizeni a tiskarny. Obcas se mi to deje i u Wordu po zadani tisku. Spustim a vyskoci neodpovidat a nezbyde mi nic jineho nez aplikaci ukoncit.
Kód: Vybrat vše
ComboFix 15-05-25.01 - mh001 . 05. 2015 11:18:08.2.8 - x64
Microsoft Windows 8 Pro 6.2.9200.0.1250.420.1029.18.16076.13704 [GMT 2:00]
Spuštěný z: c:\users\mh001\Desktop\ComboFix.exe
AV: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\mh001\AppData\Local\assembly\tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-04-27 do 2015-05-27 )))))))))))))))))))))))))))))))
.
.
2015-05-27 09:20 . 2015-05-27 09:20 -------- d-----w- c:\users\Public\AppData\Local\temp
2015-05-27 09:20 . 2015-05-27 09:20 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-05-27 07:56 . 2015-05-27 07:56 -------- d-----w- c:\programdata\ALM
2015-05-27 07:56 . 2015-05-27 07:56 -------- d-----w- c:\programdata\Package Cache
2015-05-27 06:54 . 2015-05-03 03:16 12214312 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A1C5502F-BEF1-4A76-9481-417228254454}\mpengine.dll
2015-05-22 13:36 . 2015-05-22 13:37 -------- d-----w- c:\programdata\VideoCopilot
2015-05-21 13:13 . 2015-05-12 02:34 571024 ----a-w- c:\windows\SysWow64\nvStreaming.exe
2015-05-21 13:10 . 2015-05-21 13:13 -------- d-----w- c:\windows\LastGood.Tmp
2015-05-21 13:10 . 2014-11-22 10:46 38032 ----a-w- c:\windows\system32\drivers\nvvad64v.sys
2015-05-21 13:10 . 2014-11-22 10:46 32400 ----a-w- c:\windows\SysWow64\nvaudcap32v.dll
2015-05-13 13:49 . 2015-04-30 13:07 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 13:49 . 2015-04-30 13:07 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 12:29 . 2015-03-12 05:31 1688576 ----a-w- c:\windows\system32\wevtsvc.dll
2015-05-01 18:10 . 2015-05-01 18:10 229608 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2015-05-01 18:10 . 2015-05-01 18:10 229608 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2015-04-29 08:38 . 2015-04-29 08:39 -------- d-----w- c:\users\mh001\AppData\Roaming\PSpad
2015-04-29 08:38 . 2015-04-29 08:38 -------- d-----w- c:\program files (x86)\PSPad editor
2015-04-27 14:27 . 2015-04-27 14:27 -------- d-s---w- c:\windows\system32\CompatTel
2015-04-27 14:27 . 2015-04-27 14:27 -------- d-----w- c:\windows\system32\appraiser
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-13 13:51 . 2014-01-31 02:39 140425016 ----a-w- c:\windows\system32\MRT.exe
2015-05-13 06:52 . 2014-01-31 17:38 1558848 ----a-w- c:\windows\system32\nvhdagenco6420103.dll
2015-05-12 06:27 . 2014-01-31 18:00 30478992 ----a-w- c:\windows\system32\nvoglv64.dll
2015-05-12 06:27 . 2014-01-31 18:00 16145176 ----a-w- c:\windows\system32\nvopencl.dll
2015-05-12 06:27 . 2014-01-31 18:00 15048816 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2015-05-12 06:27 . 2014-01-31 18:00 14455296 ----a-w- c:\windows\system32\nvcuda.dll
2015-05-12 06:27 . 2014-01-31 17:36 17540416 ----a-w- c:\windows\system32\nvwgf2umx.dll
2015-05-12 06:27 . 2014-01-31 17:36 1099808 ----a-w- c:\windows\system32\nvumdshimx.dll
2015-05-12 06:27 . 2014-01-31 17:36 176064 ----a-w- c:\windows\system32\nvinitx.dll
2015-05-12 06:27 . 2014-01-31 17:36 154256 ----a-w- c:\windows\SysWow64\nvinit.dll
2015-05-12 06:27 . 2014-01-31 17:35 3363224 ----a-w- c:\windows\system32\nvapi64.dll
2015-05-12 06:27 . 2013-10-27 08:12 939080 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2015-05-12 06:27 . 2013-10-27 08:12 12849056 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2015-05-12 06:27 . 2013-10-27 08:12 2971776 ----a-w- c:\windows\SysWow64\nvapi.dll
2015-05-12 03:30 . 2014-01-31 17:34 937288 ----a-w- c:\windows\system32\nvvsvc.exe
2015-05-12 03:30 . 2014-01-31 17:34 62608 ----a-w- c:\windows\system32\nvshext.dll
2015-05-12 03:30 . 2014-01-31 17:34 385352 ----a-w- c:\windows\system32\nvmctray.dll
2015-05-12 03:30 . 2014-01-31 17:34 2558608 ----a-w- c:\windows\system32\nvsvcr.dll
2015-05-12 03:30 . 2014-01-31 17:34 6872392 ----a-w- c:\windows\system32\nvcpl.dll
2015-05-12 03:30 . 2014-01-31 17:34 3490448 ----a-w- c:\windows\system32\nvsvc64.dll
2015-05-11 17:01 . 2014-01-31 17:34 4391871 ----a-w- c:\windows\system32\nvcoproc.bin
2015-05-08 00:35 . 2014-09-20 23:35 1316184 ----a-w- c:\windows\SysWow64\nvspbridge.dll
2015-05-08 00:35 . 2014-01-31 17:56 1316000 ----a-w- c:\windows\SysWow64\nvspcap.dll
2015-05-08 00:34 . 2014-09-20 23:35 1756424 ----a-w- c:\windows\system32\nvspbridge64.dll
2015-05-08 00:34 . 2014-01-31 17:56 1570672 ----a-w- c:\windows\system32\nvspcap64.dll
2015-05-05 17:49 . 2014-11-18 06:36 792032 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-05-05 17:49 . 2014-11-18 06:36 177632 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-05-02 03:59 . 2015-05-13 12:28 318976 ----a-w- c:\windows\SysWow64\schannel.dll
2015-05-02 03:36 . 2015-05-13 12:28 413696 ----a-w- c:\windows\system32\schannel.dll
2015-03-23 09:40 . 2015-04-15 07:18 1187344 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D89D186C-B3A8-4419-9245-21ED5C509F81}\gapaengine.dll
2015-03-23 05:19 . 2015-04-15 07:17 726528 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 05:17 . 2015-04-15 07:17 769024 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 05:17 . 2015-04-15 07:17 419328 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 05:17 . 2015-04-15 07:17 957440 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 05:17 . 2015-04-15 07:17 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 05:17 . 2015-04-15 07:17 30720 ----a-w- c:\windows\system32\acmigration.dll
2015-03-22 22:04 . 2015-04-15 07:17 1111552 ----a-w- c:\windows\system32\aeinv.dll
2015-03-17 07:00 . 2015-04-15 07:17 6971712 ----a-w- c:\windows\system32\ntoskrnl.exe
2015-03-17 06:52 . 2015-04-15 07:17 1822696 ----a-w- c:\windows\system32\ntdll.dll
2015-03-17 04:45 . 2015-04-15 07:17 1409496 ----a-w- c:\windows\SysWow64\ntdll.dll
2015-03-14 08:07 . 2015-04-15 07:17 1120256 ----a-w- c:\windows\system32\msctf.dll
2015-03-14 06:33 . 2015-04-15 07:17 891904 ----a-w- c:\windows\SysWow64\msctf.dll
2015-03-06 07:39 . 2015-03-11 06:44 588800 ----a-w- c:\windows\system32\SHCore.dll
2015-03-06 05:48 . 2015-03-11 06:44 452608 ----a-w- c:\windows\SysWow64\SHCore.dll
2015-03-04 07:29 . 2015-04-15 07:17 361280 ----a-w- c:\windows\system32\drivers\clfs.sys
2015-03-04 07:26 . 2015-03-25 07:24 596480 ----a-w- c:\windows\system32\AutoUpdate.exe
2015-03-04 07:26 . 2015-03-25 07:24 467952 ----a-w- c:\windows\system32\NotificationUI.exe
2015-03-04 06:41 . 2015-03-25 07:24 695808 ----a-w- c:\windows\system32\WSShared.dll
2015-03-04 06:41 . 2015-03-25 07:24 163840 ----a-w- c:\windows\system32\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-04 06:39 . 2015-04-15 07:17 74752 ----a-w- c:\windows\system32\clfsw32.dll
2015-03-04 06:39 . 2015-05-13 12:28 39936 ----a-w- c:\windows\apppatch\apppatch64\acspecfc.dll
2015-03-04 06:39 . 2015-05-13 12:28 276992 ----a-w- c:\windows\apppatch\apppatch64\AcGenral.dll
2015-03-04 04:53 . 2015-03-25 07:24 568832 ----a-w- c:\windows\SysWow64\WSShared.dll
2015-03-04 04:53 . 2015-03-25 07:24 124928 ----a-w- c:\windows\SysWow64\Windows.ApplicationModel.Store.TestingFramework.dll
2015-03-04 04:52 . 2015-04-15 07:17 57856 ----a-w- c:\windows\SysWow64\clfsw32.dll
2015-03-04 04:52 . 2015-05-13 12:28 429056 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-03-04 04:52 . 2015-05-13 12:28 2362368 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-03-03 13:17 . 2014-01-31 02:51 295552 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 15:19 1729752 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 15:19 1729752 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 15:19 1729752 ----a-w- c:\progra~2\MICROS~1\Office15\GROOVEEX.DLL
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"GoogleChromeAutoLaunch_B3F7B5E2539664F03F66077A82DC5A14"="c:\program files (x86)\Google\Chrome\Application\chrome.exe" [2015-05-22 813896]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2014-12-12 7394584]
"SystemBoosterPro"="c:\program files (x86)\oTweak\SystemBoosterPro\SystemBoosterPro.exe" [2015-01-12 2049024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"AdobeCEPServiceManager"="c:\program files (x86)\Common Files\Adobe\CEPServiceManager4\CEPServiceManager.exe" [2013-03-13 1039248]
"PowerDVD13Agent"="c:\program files (x86)\CyberLink\PowerDVD13\PowerDVD13Agent.exe" [2013-07-05 517144]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2013-09-13 59720]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2014-10-02 421888]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\StartUp\
Canon LBP2900 Status Window.lnk - c:\windows\System32\spool\drivers\x64\3\CNAB4LAD.EXE [2014-2-10 60384]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.8.150\SSScheduler.exe [2014-4-9 332016]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"PromptOnSecureDesktop"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableCursorSuppression"= 1 (0x1)
"ConsentPromptBehaviorUser"= 3 (0x3)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 AM10;Cisco AM10 Driver;c:\windows\system32\DRIVERS\am10w7.sys;c:\windows\SYSNATIVE\DRIVERS\am10w7.sys [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
R3 Intel(R) Capability Licensing Service TCP IP Interface;Intel(R) Capability Licensing Service TCP IP Interface;c:\program files\Intel\iCLS Client\SocketHeciServer.exe;c:\program files\Intel\iCLS Client\SocketHeciServer.exe [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe;c:\program files\McAfee Security Scan\3.8.150\McCHSvc.exe [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 t_mouse.sys;HID-compliand device;c:\windows\system32\DRIVERS\t_mouse.sys;c:\windows\SYSNATIVE\DRIVERS\t_mouse.sys [x]
R3 vmicheartbeat;Služba prezenčního signálu technologie Hyper-V;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S0 iaStorA;iaStorA;c:\windows\System32\drivers\iaStorA.sys;c:\windows\SYSNATIVE\drivers\iaStorA.sys [x]
S1 {572f484b-455f-44b0-9d6a-da3ad2071365}Gw64;{572f484b-455f-44b0-9d6a-da3ad2071365}Gw64;c:\windows\system32\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}Gw64.sys;c:\windows\SYSNATIVE\drivers\{572f484b-455f-44b0-9d6a-da3ad2071365}Gw64.sys [x]
S2 {09F57980-3432-4AFC-957D-27AC45FAE1F5};Power Control [2014/02/16 14:16];c:\program files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl;c:\program files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl [x]
S2 CyberLink PowerDVD 13 Media Server Monitor Service;CyberLink PowerDVD 13 Media Server Monitor Service;c:\program files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe;c:\program files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSMonitorServicePDVD13.exe [x]
S2 CyberLink PowerDVD 13 Media Server Service;CyberLink PowerDVD 13 Media Server Service;c:\program files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe;c:\program files (x86)\CyberLink\PowerDVD13\Kernel\DMS\CLMSServerPDVD13.exe [x]
S2 FGUARD64;FGUARD64;c:\program files\Folder Guard\FGUARD64.SYS;c:\program files\Folder Guard\FGUARD64.SYS [x]
S2 Folder Guard;Folder Guard;c:\program files\Folder Guard\FG64.exe;c:\program files\Folder Guard\FG64.exe [x]
S2 GfExperienceService;NVIDIA GeForce Experience Service;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe;c:\program files\NVIDIA Corporation\GeForce Experience Service\GfExperienceService.exe [x]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 NvStreamKms;NvStreamKms;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys;c:\program files\NVIDIA Corporation\NvStreamSrv\NvStreamKms.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 RTL8168;Realtek 8168 NT Driver;c:\windows\system32\DRIVERS\Rt630x64.sys;c:\windows\SYSNATIVE\DRIVERS\Rt630x64.sys [x]
S3 WUDFWpdMtp;WUDFWpdMtp;c:\windows\System32\drivers\WUDFRd.sys;c:\windows\SYSNATIVE\drivers\WUDFRd.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-25 21:39 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.81\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-05-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-01-31 13:37]
.
2015-01-31 c:\windows\Tasks\DriverToolkit Autorun.job
- c:\program files (x86)\DriverToolkit\DriverToolkit.exe [2015-01-31 09:12]
.
2015-05-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-02-12 22:10]
.
2015-05-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-02-12 22:10]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2013-09-03 13651672]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2013-08-07 36352]
"MouseDriver"="TiltWheelMouse.exe" [2013-04-09 241152]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2013-12-20 391128]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2013-12-20 771544]
"Persistence"="c:\windows\system32\igfxpers.exe" [2013-12-20 770520]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2015-05-08 2685072]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2015-05-08 1570672]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2014-02-27 558496]
"FG_Monitor"="c:\program files\Folder Guard\FG64.exe" [2013-08-25 187976]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office15\EXCEL.EXE/3000
TCP: DhcpNameServer = 109.164.64.64 8.8.8.8
Filter: text/xml - {807583E5-5146-11D5-A672-00B0D022E945} - c:\program files (x86)\Common Files\Microsoft Shared\OFFICE15\MSOXMLMF.DLL
FF - ProfilePath - c:\users\mh001\AppData\Roaming\Mozilla\Firefox\Profiles\6fp4d8ot.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-ProFact 4.0_is1 - c:\profact 4.0\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\{09F57980-3432-4AFC-957D-27AC45FAE1F5}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD13\Common\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4d36e96d-e325-11ce-bfc1-08002be10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
@SACL=(02 0000)
.
Celkový čas: 2015-05-27 11:21:57
ComboFix-quarantined-files.txt 2015-05-27 09:21
ComboFix2.txt 2015-02-03 10:08
.
Před spuštěním: 11 669 880 832 bytes free
Po spuštění: 19 177 414 656 bytes free
.
- - End Of File - - 4D4890DE7E6C1F1AFD4A6A585D4786E5
A36C5E4F47E84449FF07ED3517B43A31
