Preventivní kontrola logu Vyřešeno

[danieltk]

ComboFix 13-03-21.02 - hp_ntb 23.03.2013 14:05:05.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.1910.681 [GMT 1:00]
Spuštěný z: c:\users\hp_ntb\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\hp_ntb\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\msdownld.tmp"
"c:\windows\SysWow64\temp.000"
"c:\windows\SysWow64\temp.001"
"c:\windows\SysWow64\temp.002"
"c:\windows\SysWow64\temp.003"
"c:\windows\SysWow64\temp.004"
"c:\windows\Tasks\AutoKMS.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3044567635-3769668213-3917770056-1000Core.job"
"c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3044567635-3769668213-3917770056-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Guard-ICQ
c:\program files (x86)\Guard-ICQ\GuardICQ.exe
c:\program files (x86)\Skype\Updater
c:\program files (x86)\Skype\Updater\Updater.dll
c:\program files (x86)\Skype\Updater\Updater.exe
c:\program files\ESET
c:\program files\ESET\ESET Smart Security\ekrnLang.dll
c:\program files\ESET\ESET Smart Security\ekrnSmonLang.dll
c:\program files\ESET\ESET Smart Security\x86\ekrn.exe
c:\program files\ESET\ESET Smart Security\x86\ekrnSmon.dll
c:\program files\ESET\ESET Smart Security\x86\ekrnSmonEngine.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOESmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgOutlookSmon.dll
c:\program files\ESET\ESET Smart Security\x86\eplgTbSmon.dll
c:\program files\ESET\ESET Smart Security\x86\Microsoft.VC80.CRT.manifest
c:\program files\ESET\ESET Smart Security\x86\msvcp80.dll
c:\program files\ESET\ESET Smart Security\x86\msvcr80.dll
c:\windows\AutoKMS
c:\windows\AutoKMS\AutoKMS.exe
c:\windows\AutoKMS\AutoKMS.ini
c:\windows\AutoKMS\AutoKMS.log
c:\windows\SysWow64\temp.000
c:\windows\SysWow64\temp.001
c:\windows\SysWow64\temp.002
c:\windows\SysWow64\temp.003
c:\windows\SysWow64\temp.004
c:\windows\Tasks\AutoKMS.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3044567635-3769668213-3917770056-1000Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-3044567635-3769668213-3917770056-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_EAGLEX64
-------\Service_EagleX64
-------\Service_ekrn
-------\Service_Guard.Mail.ru
-------\Service_SkypeUpdate
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-23 do 2013-03-23 )))))))))))))))))))))))))))))))
.
.
2013-03-23 13:14 . 2013-03-23 13:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-23 08:43 . 2013-03-23 08:43 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment.temp
2013-03-23 08:42 . 2013-03-23 08:42 -------- d-----w- c:\programdata\Blizzard
2013-03-23 07:56 . 2013-03-23 13:01 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{741ECB2E-73DD-4F1C-9EE1-6B52D2765D80}\offreg.dll
2013-03-22 20:25 . 2013-03-22 20:25 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Malwarebytes
2013-03-22 20:25 . 2013-03-22 20:25 -------- d-----w- c:\programdata\Malwarebytes
2013-03-22 12:17 . 2013-03-15 06:28 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{741ECB2E-73DD-4F1C-9EE1-6B52D2765D80}\mpengine.dll
2013-03-21 20:23 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2013-03-21 20:20 . 2008-03-05 15:03 238088 ----a-w- c:\windows\SysWow64\xactengine3_0.dll
2013-03-21 20:20 . 2008-03-05 15:00 28168 ----a-w- c:\windows\system32\X3DAudio1_3.dll
2013-03-21 20:20 . 2008-03-05 15:00 25608 ----a-w- c:\windows\SysWow64\X3DAudio1_3.dll
2013-03-21 20:20 . 2008-03-05 14:56 1860120 ----a-w- c:\windows\system32\D3DCompiler_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll
2013-03-21 20:20 . 2008-02-05 22:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll
2013-03-21 20:20 . 2008-02-05 22:07 529424 ----a-w- c:\windows\system32\d3dx10_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 4910088 ----a-w- c:\windows\system32\D3DX9_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll
2013-03-21 20:20 . 2007-10-22 02:40 411656 ----a-w- c:\windows\system32\xactengine2_10.dll
2013-03-21 20:20 . 2007-10-22 02:39 267272 ----a-w- c:\windows\SysWow64\xactengine2_10.dll
2013-03-21 20:20 . 2007-10-02 08:56 508264 ----a-w- c:\windows\system32\d3dx10_36.dll
2013-03-21 20:20 . 2007-10-12 14:14 2006552 ----a-w- c:\windows\system32\D3DCompiler_36.dll
2013-03-21 20:19 . 2007-10-22 02:37 17928 ----a-w- c:\windows\SysWow64\X3DAudio1_2.dll
2013-03-21 20:19 . 2007-10-22 02:37 21000 ----a-w- c:\windows\system32\X3DAudio1_2.dll
2013-03-21 19:59 . 2007-10-02 08:56 444776 ----a-w- c:\windows\SysWow64\d3dx10_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 1374232 ----a-w- c:\windows\SysWow64\D3DCompiler_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 5081608 ----a-w- c:\windows\system32\d3dx9_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 3734536 ----a-w- c:\windows\SysWow64\d3dx9_36.dll
2013-03-21 19:59 . 2007-07-19 23:57 411496 ----a-w- c:\windows\system32\xactengine2_9.dll
2013-03-21 19:59 . 2007-07-19 23:57 267112 ----a-w- c:\windows\SysWow64\xactengine2_9.dll
2013-03-21 19:59 . 2007-07-19 17:14 508264 ----a-w- c:\windows\system32\d3dx10_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 444776 ----a-w- c:\windows\SysWow64\d3dx10_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 1985904 ----a-w- c:\windows\system32\D3DCompiler_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 1358192 ----a-w- c:\windows\SysWow64\D3DCompiler_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 5073256 ----a-w- c:\windows\system32\d3dx9_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll
2013-03-21 19:56 . 2013-03-21 20:23 -------- d--h--w- c:\windows\msdownld.tmp
2013-03-19 14:11 . 2013-03-19 14:11 -------- d-----w- c:\users\hp_ntb\AppData\Local\Microsoft Corporation
2013-03-16 21:34 . 2013-03-16 21:34 -------- d-----w- c:\windows\cs
2013-03-16 21:32 . 2013-03-16 21:33 -------- d-----w- c:\program files (x86)\Windows Live
2013-03-16 21:31 . 2009-09-04 16:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
2013-03-16 21:31 . 2009-09-04 16:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
2013-03-16 21:31 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
2013-03-16 21:31 . 2009-09-04 16:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
2013-03-16 21:28 . 2013-03-23 11:03 -------- d-----w- c:\users\hp_ntb\AppData\Local\Windows Live
2013-03-16 21:28 . 2013-03-16 21:28 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-03-14 19:26 . 2013-03-14 19:26 16486616 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-03-13 12:35 . 2013-03-13 12:35 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-12 15:00 . 2013-03-12 15:00 -------- d-----w- c:\users\Default\AppData\Roaming\IObit
2013-03-11 16:27 . 2013-03-11 16:27 -------- d-----w- c:\program files (x86)\Gameforge4D
2013-03-10 11:42 . 2013-03-10 20:18 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\DAEMON Tools Lite
2013-03-10 11:32 . 2013-03-10 11:37 761592 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-03-10 11:32 . 2013-03-10 11:37 171392 ----a-w- c:\windows\system32\drivers\sptddrv1.sys
2013-03-09 08:09 . 2013-03-09 08:09 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Kalydo
2013-03-08 21:00 . 2013-03-09 10:02 -------- d-----w- c:\programdata\DriverGenius
2013-03-08 20:54 . 2013-03-08 20:55 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\GetRightToGo
2013-03-08 15:22 . 2013-03-08 20:48 -------- d-----w- c:\program files\Minecraft 1.4.5
2013-03-08 15:11 . 2013-03-21 15:07 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\.minecraft
2013-03-06 12:04 . 2013-03-06 12:04 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-05 12:24 . 2013-03-05 12:24 -------- d-----w- c:\users\hp_ntb\AppData\Local\Facebook
2013-03-03 15:55 . 2013-03-03 15:55 -------- d-----w- c:\users\hp_ntb\AppData\Local\Diagnostics
2013-03-03 08:13 . 2013-03-03 08:13 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\ARA
2013-03-02 21:16 . 2013-03-10 20:12 -------- d-----w- c:\program files (x86)\HD Tune Pro
2013-03-02 21:16 . 2013-03-02 21:16 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\HD Tune Pro
2013-03-02 19:06 . 2013-03-02 19:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\JAM Software
2013-03-02 19:06 . 2013-03-02 19:06 -------- d-----w- c:\program files (x86)\JAM Software
2013-03-02 17:31 . 2013-03-02 17:31 -------- d-----w- C:\Games
2013-03-01 21:09 . 2013-03-06 23:33 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-01 21:09 . 2013-03-06 23:33 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-01 20:49 . 2003-09-03 01:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-03-01 20:49 . 2003-09-03 01:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-03-01 20:49 . 2003-09-03 01:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-03-01 20:49 . 2003-09-03 01:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-03-01 20:49 . 2013-03-01 20:49 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-03-01 20:49 . 2013-03-01 20:49 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-03-01 20:49 . 2003-09-03 01:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-02-27 13:54 . 2013-02-27 13:54 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\ProtectDISC
2013-02-27 13:53 . 2013-02-27 14:04 -------- d-----w- c:\programdata\Synetic
2013-02-26 12:58 . 2013-03-17 20:40 -------- d-----w- c:\program files\Speccy
2013-02-26 06:55 . 2013-02-26 06:55 71680 ----a-w- c:\windows\system32\frapsv64.dll
2013-02-26 06:55 . 2013-02-26 06:55 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2013-02-25 19:06 . 2013-02-25 19:06 -------- d-----w- c:\users\hp_ntb\AppData\Local\Downloaded Installations
2013-02-23 20:50 . 2012-05-08 17:34 32600 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2013-02-23 20:49 . 2010-11-26 17:02 17720 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2013-02-23 15:46 . 2013-03-01 21:07 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\DAEMON Tools Pro
2013-02-23 15:45 . 2013-03-01 21:07 -------- d-----w- c:\programdata\DAEMON Tools Pro
2013-02-23 15:34 . 2013-03-10 20:18 -------- d-----w- c:\programdata\DAEMON Tools Lite
2013-02-22 20:06 . 2013-02-22 20:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Hewlett-Packard
2013-02-22 20:04 . 2013-02-22 20:04 -------- d-----w- c:\programdata\{9BF4D58B-C6D6-467B-BC5A-FD0C1278F4AF}
2013-02-22 19:22 . 2013-03-06 23:33 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-02-22 19:22 . 2013-03-06 23:33 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-02-22 19:22 . 2013-03-06 23:33 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-02-22 19:22 . 2013-03-06 23:33 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-02-22 19:22 . 2013-03-06 23:33 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-02-22 19:22 . 2013-03-06 23:33 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-02-22 19:22 . 2013-03-06 23:32 41664 ----a-w- c:\windows\avastSS.scr
2013-02-22 19:22 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-02-22 19:21 . 2013-02-22 19:21 -------- d-----w- c:\program files\AVAST Software
2013-02-22 16:54 . 2013-02-22 16:54 -------- d-----w- c:\users\hp_ntb\AppData\Local\Google
2013-02-22 16:12 . 2005-03-18 16:19 3823312 ----a-w- c:\windows\system32\d3dx9_25.dll
2013-02-22 16:12 . 2005-02-05 18:45 3544272 ----a-w- c:\windows\system32\d3dx9_24.dll
2013-02-22 14:52 . 2013-02-22 14:54 -------- d-----w- c:\windows\sdmf
2013-02-22 14:52 . 2013-02-22 14:52 -------- d-----w- c:\windows\SvcFiles
2013-02-22 14:41 . 2004-08-08 11:58 749568 ----a-w- c:\windows\SysWow64\VBOLock.ocx
2013-02-22 14:41 . 2004-08-04 02:56 431616 ----a-w- c:\windows\SysWow64\temp.006
2013-02-22 14:41 . 2000-05-21 23:00 203976 ----a-w- c:\windows\SysWow64\RICHTX32.OCX
2013-02-22 14:41 . 2001-03-13 13:53 326656 ----a-w- c:\windows\SysWow64\temp.005
2013-02-22 14:41 . 2001-03-13 13:49 140288 ----a-w- c:\windows\SysWow64\COMDLG32.OCX
2013-02-22 14:41 . 1999-12-07 06:00 61491 ----a-w- c:\windows\SysWow64\wbemdisp.TLB
2013-02-22 14:41 . 1996-11-08 01:48 368912 ----a-w- c:\windows\SysWow64\vbar332.dll
2013-02-22 14:34 . 2013-02-22 14:34 2560 ----a-w- c:\windows\_MSRSTRT.EXE
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-17 20:35 . 2013-02-10 09:19 6656 ----a-w- c:\windows\system32\lpcio.dll
2013-03-16 21:32 . 2010-06-24 10:33 19696 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-03-14 19:26 . 2013-02-11 20:36 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-14 19:26 . 2013-02-11 20:36 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 13:05 . 2013-02-10 09:56 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-03-06 23:32 . 2013-02-11 20:15 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-03-06 12:04 . 2013-02-17 19:25 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-03-06 12:04 . 2013-02-17 19:25 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-02-14 16:01 . 2013-02-14 16:01 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-02-12 05:45 . 2013-03-13 12:26 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 12:26 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 12:26 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 05:45 . 2013-03-13 12:26 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 04:48 . 2013-03-13 12:26 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 12:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-11 19:38 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-02-11 19:38 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-01-17 00:28 . 2013-02-09 18:05 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-15 17:49 . 2013-02-19 13:51 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-01-05 05:53 . 2013-02-12 18:57 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-12 18:57 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-12 18:57 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-12 18:58 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-12 18:58 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-12 18:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-12 18:57 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-12 18:58 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-12 18:58 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-12 18:58 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-12 18:58 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-12 18:57 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-12 18:57 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-03-12 56088]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"4StoryPrePatch"="c:\program files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe" [2013-02-19 327680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2013-03-10 761592]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
R2 RtVOsdService;RtVOsdService Installer;c:\program files\Realtek\RtVOsd\RtVOsdService.exe [2010-06-24 315392]
R3 cyhid;Cypress Input Device;c:\windows\system32\DRIVERS\cyhid.sys [2012-01-18 124928]
R3 cykbfltrService;Cypress Keyboard Filter Driver;c:\windows\system32\DRIVERS\cykbfltr.sys [2012-01-18 14336]
R3 cymfltrService;Cypress Trackpad Filter Driver;c:\windows\system32\DRIVERS\cymfltr.sys [2012-01-18 84480]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-02-14 21712]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-02-11 1255736]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2012-03-12 627992]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2012-03-12 24344]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-01-15 465216]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-17 98208]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x64.sys [2010-05-11 20968]
S2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-03-12 7168]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [2011-04-14 31216]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-11 19:26]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-28 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-28 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-28 415256]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - http://www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - ExtSQL: 2013-02-12 08:35; {ab91efd4-6975-4081-8552-1b3922ed79e2}; c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
FF - ExtSQL: 2013-02-22 20:26; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-Guard.Mail.ru - c:\program files (x86)\Guard-ICQ\GuardICQ.exe
AddRemove-SMAC 2.0 - c:\progra~2\KLC\SMAC\UNWISE.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
.
**************************************************************************
.
Celkový čas: 2013-03-23 14:27:51 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-03-23 13:27
.
Před spuštěním: Volných bajtů: 30 048 202 752
Po spuštění: Volných bajtů: 29 972 185 088
.
- - End Of File - - 68FE53E42765EBBB8247A2AF8DFE2AAD

[Reklama]

[danieltk]

a to je už vše. jestli by to bylo už vše tak by jsem chtěl eště zkontrovat log acer extensa 5230E s windows xp pomalé načítáni mám přidat nový příspěvek nebo tady to do toho dát?

[danieltk]

jo ale stejne to nevyřešilo muj problem s hibernaci

[memphisto]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::
RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_180.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upus.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[danieltk]

to mi najelo na začátku viz.obrazek

tady je ten log:

ComboFix 13-03-23.01 - hp_ntb 23.03.2013 20:08:26.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.1910.928 [GMT 1:00]
Spuštěný z: c:\users\hp_ntb\Downloads\ComboFix.exe
Použité ovládací přepínače :: c:\users\hp_ntb\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-23 do 2013-03-23 )))))))))))))))))))))))))))))))
.
.
2013-03-23 19:14 . 2013-03-23 19:14 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-23 17:59 . 2013-03-23 17:59 -------- d-----w- c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-23 17:48 . 2013-03-23 17:48 -------- d-----r- C:\MSOCache
2013-03-23 17:47 . 2013-03-23 17:48 -------- d-----w- c:\programdata\Microsoft Help
2013-03-23 16:15 . 2013-03-23 16:15 -------- d-----w- c:\programdata\IObit
2013-03-23 08:43 . 2013-03-23 08:43 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment.temp
2013-03-23 07:56 . 2013-03-23 13:27 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{741ECB2E-73DD-4F1C-9EE1-6B52D2765D80}\offreg.dll
2013-03-22 20:25 . 2013-03-22 20:25 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Malwarebytes
2013-03-22 12:17 . 2013-03-15 06:28 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{741ECB2E-73DD-4F1C-9EE1-6B52D2765D80}\mpengine.dll
2013-03-21 20:23 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2013-03-21 20:20 . 2008-03-05 15:03 238088 ----a-w- c:\windows\SysWow64\xactengine3_0.dll
2013-03-21 20:20 . 2008-03-05 15:00 28168 ----a-w- c:\windows\system32\X3DAudio1_3.dll
2013-03-21 20:20 . 2008-03-05 15:00 25608 ----a-w- c:\windows\SysWow64\X3DAudio1_3.dll
2013-03-21 20:20 . 2008-03-05 14:56 1860120 ----a-w- c:\windows\system32\D3DCompiler_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll
2013-03-21 20:20 . 2008-02-05 22:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll
2013-03-21 20:20 . 2008-02-05 22:07 529424 ----a-w- c:\windows\system32\d3dx10_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 4910088 ----a-w- c:\windows\system32\D3DX9_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll
2013-03-21 20:20 . 2007-10-22 02:40 411656 ----a-w- c:\windows\system32\xactengine2_10.dll
2013-03-21 20:20 . 2007-10-22 02:39 267272 ----a-w- c:\windows\SysWow64\xactengine2_10.dll
2013-03-21 20:20 . 2007-10-02 08:56 508264 ----a-w- c:\windows\system32\d3dx10_36.dll
2013-03-21 20:20 . 2007-10-12 14:14 2006552 ----a-w- c:\windows\system32\D3DCompiler_36.dll
2013-03-21 20:19 . 2007-10-22 02:37 17928 ----a-w- c:\windows\SysWow64\X3DAudio1_2.dll
2013-03-21 20:19 . 2007-10-22 02:37 21000 ----a-w- c:\windows\system32\X3DAudio1_2.dll
2013-03-21 19:59 . 2007-10-02 08:56 444776 ----a-w- c:\windows\SysWow64\d3dx10_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 1374232 ----a-w- c:\windows\SysWow64\D3DCompiler_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 5081608 ----a-w- c:\windows\system32\d3dx9_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 3734536 ----a-w- c:\windows\SysWow64\d3dx9_36.dll
2013-03-21 19:59 . 2007-07-19 23:57 411496 ----a-w- c:\windows\system32\xactengine2_9.dll
2013-03-21 19:59 . 2007-07-19 23:57 267112 ----a-w- c:\windows\SysWow64\xactengine2_9.dll
2013-03-21 19:59 . 2007-07-19 17:14 508264 ----a-w- c:\windows\system32\d3dx10_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 444776 ----a-w- c:\windows\SysWow64\d3dx10_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 1985904 ----a-w- c:\windows\system32\D3DCompiler_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 1358192 ----a-w- c:\windows\SysWow64\D3DCompiler_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 5073256 ----a-w- c:\windows\system32\d3dx9_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll
2013-03-21 19:56 . 2013-03-21 20:23 -------- d--h--w- c:\windows\msdownld.tmp
2013-03-19 14:11 . 2013-03-19 14:11 -------- d-----w- c:\users\hp_ntb\AppData\Local\Microsoft Corporation
2013-03-16 21:34 . 2013-03-16 21:34 -------- d-----w- c:\windows\cs
2013-03-16 21:32 . 2013-03-16 21:33 -------- d-----w- c:\program files (x86)\Windows Live
2013-03-16 21:31 . 2009-09-04 16:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
2013-03-16 21:31 . 2009-09-04 16:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
2013-03-16 21:31 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
2013-03-16 21:31 . 2009-09-04 16:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
2013-03-16 21:28 . 2013-03-23 11:03 -------- d-----w- c:\users\hp_ntb\AppData\Local\Windows Live
2013-03-16 21:28 . 2013-03-16 21:28 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-03-14 19:26 . 2013-03-14 19:26 16486616 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-03-13 12:35 . 2013-03-13 12:35 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-12 15:00 . 2013-03-12 15:00 -------- d-----w- c:\users\Default\AppData\Roaming\IObit
2013-03-11 16:27 . 2013-03-11 16:27 -------- d-----w- c:\program files (x86)\Gameforge4D
2013-03-10 11:42 . 2013-03-10 20:18 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\DAEMON Tools Lite
2013-03-10 11:32 . 2013-03-10 11:37 761592 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-03-10 11:32 . 2013-03-10 11:37 171392 ----a-w- c:\windows\system32\drivers\sptddrv1.sys
2013-03-09 08:09 . 2013-03-09 08:09 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Kalydo
2013-03-08 20:54 . 2013-03-08 20:55 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\GetRightToGo
2013-03-08 15:22 . 2013-03-08 20:48 -------- d-----w- c:\program files\Minecraft 1.4.5
2013-03-08 15:11 . 2013-03-21 15:07 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\.minecraft
2013-03-06 12:04 . 2013-03-06 12:04 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-05 12:24 . 2013-03-05 12:24 -------- d-----w- c:\users\hp_ntb\AppData\Local\Facebook
2013-03-03 15:55 . 2013-03-03 15:55 -------- d-----w- c:\users\hp_ntb\AppData\Local\Diagnostics
2013-03-03 08:13 . 2013-03-03 08:13 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\ARA
2013-03-02 21:16 . 2013-03-10 20:12 -------- d-----w- c:\program files (x86)\HD Tune Pro
2013-03-02 21:16 . 2013-03-02 21:16 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\HD Tune Pro
2013-03-02 19:06 . 2013-03-02 19:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\JAM Software
2013-03-02 19:06 . 2013-03-02 19:06 -------- d-----w- c:\program files (x86)\JAM Software
2013-03-02 17:31 . 2013-03-02 17:31 -------- d-----w- C:\Games
2013-03-01 21:09 . 2013-03-06 23:33 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-01 21:09 . 2013-03-06 23:33 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-01 20:49 . 2003-09-03 01:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-03-01 20:49 . 2003-09-03 01:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-03-01 20:49 . 2003-09-03 01:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-03-01 20:49 . 2003-09-03 01:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-03-01 20:49 . 2013-03-01 20:49 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-03-01 20:49 . 2013-03-01 20:49 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-03-01 20:49 . 2003-09-03 01:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-02-27 13:54 . 2013-02-27 13:54 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\ProtectDISC
2013-02-26 12:58 . 2013-03-17 20:40 -------- d-----w- c:\program files\Speccy
2013-02-26 06:55 . 2013-02-26 06:55 71680 ----a-w- c:\windows\system32\frapsv64.dll
2013-02-26 06:55 . 2013-02-26 06:55 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2013-02-25 19:06 . 2013-02-25 19:06 -------- d-----w- c:\users\hp_ntb\AppData\Local\Downloaded Installations
2013-02-23 20:50 . 2012-05-08 17:34 32600 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2013-02-23 20:49 . 2010-11-26 17:02 17720 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2013-02-23 15:46 . 2013-03-01 21:07 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\DAEMON Tools Pro
2013-02-22 20:06 . 2013-02-22 20:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Hewlett-Packard
2013-02-22 19:22 . 2013-03-06 23:33 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-02-22 19:22 . 2013-03-06 23:33 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-02-22 19:22 . 2013-03-06 23:33 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-02-22 19:22 . 2013-03-06 23:33 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-02-22 19:22 . 2013-03-06 23:33 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-02-22 19:22 . 2013-03-06 23:33 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-02-22 19:22 . 2013-03-06 23:32 41664 ----a-w- c:\windows\avastSS.scr
2013-02-22 19:22 . 2012-10-30 22:50 227648 ----a-w- c:\windows\SysWow64\aswBoot.exe
2013-02-22 19:21 . 2013-02-22 19:21 -------- d-----w- c:\program files\AVAST Software
2013-02-22 16:54 . 2013-02-22 16:54 -------- d-----w- c:\users\hp_ntb\AppData\Local\Google
2013-02-22 16:12 . 2005-03-18 16:19 3823312 ----a-w- c:\windows\system32\d3dx9_25.dll
2013-02-22 16:12 . 2005-02-05 18:45 3544272 ----a-w- c:\windows\system32\d3dx9_24.dll
2013-02-22 14:52 . 2013-02-22 14:54 -------- d-----w- c:\windows\sdmf
2013-02-22 14:52 . 2013-02-22 14:52 -------- d-----w- c:\windows\SvcFiles
2013-02-22 14:41 . 2004-08-08 11:58 749568 ----a-w- c:\windows\SysWow64\VBOLock.ocx
2013-02-22 14:41 . 2004-08-04 02:56 431616 ----a-w- c:\windows\SysWow64\temp.006
2013-02-22 14:41 . 2000-05-21 23:00 203976 ----a-w- c:\windows\SysWow64\RICHTX32.OCX
2013-02-22 14:41 . 2001-03-13 13:53 326656 ----a-w- c:\windows\SysWow64\temp.005
2013-02-22 14:41 . 2001-03-13 13:49 140288 ----a-w- c:\windows\SysWow64\COMDLG32.OCX
2013-02-22 14:41 . 1999-12-07 06:00 61491 ----a-w- c:\windows\SysWow64\wbemdisp.TLB
2013-02-22 14:41 . 1996-11-08 01:48 368912 ----a-w- c:\windows\SysWow64\vbar332.dll
2013-02-22 14:34 . 2013-02-22 14:34 2560 ----a-w- c:\windows\_MSRSTRT.EXE
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-17 20:35 . 2013-02-10 09:19 6656 ----a-w- c:\windows\system32\lpcio.dll
2013-03-16 21:32 . 2010-06-24 10:33 19696 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-03-14 19:26 . 2013-02-11 20:36 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-14 19:26 . 2013-02-11 20:36 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 13:05 . 2013-02-10 09:56 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-03-06 23:32 . 2013-02-11 20:15 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-03-06 12:04 . 2013-02-17 19:25 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-03-06 12:04 . 2013-02-17 19:25 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-02-14 16:01 . 2013-02-14 16:01 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-02-12 05:45 . 2013-03-13 12:26 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 12:26 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 12:26 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 05:45 . 2013-03-13 12:26 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 04:48 . 2013-03-13 12:26 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 12:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-11 19:38 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-02-11 19:38 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-01-17 00:28 . 2013-02-09 18:05 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-15 17:49 . 2013-02-19 13:51 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-01-05 05:53 . 2013-02-12 18:57 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-12 18:57 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-12 18:57 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-12 18:58 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-12 18:58 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-12 18:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-12 18:57 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-12 18:58 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-12 18:58 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-12 18:58 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-12 18:58 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-12 18:57 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-12 18:57 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-03-12 56088]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"4StoryPrePatch"="c:\program files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe" [2013-02-19 327680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2013-03-10 761592]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
R2 RtVOsdService;RtVOsdService Installer;c:\program files\Realtek\RtVOsd\RtVOsdService.exe [2010-06-24 315392]
R3 cyhid;Cypress Input Device;c:\windows\system32\DRIVERS\cyhid.sys [2012-01-18 124928]
R3 cykbfltrService;Cypress Keyboard Filter Driver;c:\windows\system32\DRIVERS\cykbfltr.sys [2012-01-18 14336]
R3 cymfltrService;Cypress Trackpad Filter Driver;c:\windows\system32\DRIVERS\cymfltr.sys [2012-01-18 84480]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-02-14 21712]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-02-11 1255736]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2012-03-12 627992]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2012-03-12 24344]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-01-15 465216]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-17 98208]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x64.sys [2010-05-11 20968]
S2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-03-12 7168]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [2011-04-14 31216]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-11 19:26]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-28 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-28 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-28 415256]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - ExtSQL: 2013-02-12 08:35; {ab91efd4-6975-4081-8552-1b3922ed79e2}; c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
FF - ExtSQL: 2013-02-22 20:26; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Guard.Mail.ru - c:\program files (x86)\Guard-ICQ\GuardICQ.exe
AddRemove-SMAC 2.0 - c:\progra~2\KLC\SMAC\UNWISE.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
.
**************************************************************************
.
Celkový čas: 2013-03-23 20:19:58 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-03-23 19:19
ComboFix2.txt 2013-03-23 13:27
.
Před spuštěním: Volných bajtů: 35 484 778 496
Po spuštění: Volných bajtů: 35 414 806 528
.
- - End Of File - - B7ABE3C851276566463F472FA5D2EE09

[jaro3]

gfxui is part of Intel graphics files. if you want to remove or turn off this function, just set it up in the system configuration. Type "msconfig" then go to "startup" then look for "intel common user interface" and find the one that says "hkcmd.exe" and uncheck/switch it off. This is one way to solve your problem.

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:

Kód: Vybrat vše

KillAll::
File::
c:\windows\_MSRSTRT.EXE

Folder::
c:\windows\msdownld.tmp

DirLook::
c:\windows\sdmf
c:\windows\SvcFiles

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu + nový log z HJT

Upozornění : Může se stát, že po aplikaci Combofixu a restartu počítače, Windows nenaběhnou , nebo nenajede plocha , budou problémy s připojením, pak znovu restartuj počítač, pokud to nepomůže , po restartu mačkej klávesu F8 a pak zvol poslední známou funkční konfiguraci. , či použij bod obnovy.

Stáhni si aswMBR
na svojí plochu. Uzavři všechna okna , programy a prohlížeče. Poklepej na aswMBR.exe. Pokud se objeví hláška o možnosti stáhnutí databáze Avastu , klikni na NE. Poté klikni na „Scan“ . Po skenu klikni na „Save Log“ a ulož si log na plochu .Zkopíruj sem celý obsah toho logu. Pak klikni na „Exit“ k zavření programu.

[danieltk]

pc se neresetovalo asi protože se zčernala obrazovka a čudlík na zapnutí svítil tak jsem na ten čudlík klikl pc se vyplo a zase mi najel ten obrázek co jsem dával předtím tady
forum mi píše: Vaše zpráva obsahuje 90078 znaků. Maximální povolený počet znaků je 60000.

[danieltk]

tady je ten log s toho aswMBR:

aswMBR version 0.9.9.1771 Copyright(c) 2011 AVAST Software
Run date: 2013-03-24 14:39:24
-----------------------------
14:39:24.240 OS Version: Windows x64 6.1.7601 Service Pack 1
14:39:24.240 Number of processors: 2 586 0x2505
14:39:24.240 ComputerName: DANEK-PC UserName: hp_ntb
14:39:25.098 Initialize success
14:39:25.317 AVAST engine defs: 13032400
14:39:28.374 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000068
14:39:28.374 Disk 0 Vendor: ATA_____ 1A01 Size: 305245MB BusType: 11
14:39:28.483 Disk 0 MBR read successfully
14:39:28.483 Disk 0 MBR scan
14:39:28.483 Disk 0 Windows 7 default MBR code
14:39:28.483 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
14:39:28.499 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 85144 MB offset 206848
14:39:28.515 Disk 0 scanning C:\Windows\system32\drivers
14:39:36.486 Service scanning
14:39:56.283 Modules scanning
14:39:56.283 Disk 0 trace - called modules:
14:39:56.298 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStorF.sys storport.sys hal.dll iaStorA.sys
14:39:56.298 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80044b2060]
14:39:56.314 3 CLASSPNP.SYS[fffff880017c643f] -> nt!IofCallDriver -> [0xfffffa80044b17a0]
14:39:56.314 5 iaStorF.sys[fffff88001ab6789] -> nt!IofCallDriver -> \Device\00000068[0xfffffa8004394570]
14:39:56.751 AVAST engine scan C:\Windows
14:39:58.638 AVAST engine scan C:\Windows\system32
14:42:00.069 AVAST engine scan C:\Windows\system32\drivers
14:42:09.398 AVAST engine scan C:\Users\hp_ntb
14:45:28.626 AVAST engine scan C:\ProgramData
14:45:42.463 Scan finished successfully
14:50:30.221 Disk 0 MBR has been saved successfully to "C:\Users\hp_ntb\Desktop\MBR.dat"
14:50:30.221 The log file has been saved successfully to "C:\Users\hp_ntb\Desktop\aswMBR.txt"

[memphisto]

Dodej ještě ty další logy z CF, apod.

[danieltk]

z cf to napíše to forum vis co Vaše zpráva obsahuje 90078 znaků. Maximální povolený počet znaků je 60000.

[Žbeky]

Ne, nevím

[danieltk]

ComboFix 13-03-24.03 - hp_ntb 24.03.2013 20:47:40.5.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.1910.372 [GMT 1:00]
Spuštěný z: c:\users\hp_ntb\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-02-24 do 2013-03-24 )))))))))))))))))))))))))))))))
.
.
2013-03-24 19:54 . 2013-03-24 19:54 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-03-23 21:13 . 2013-03-23 21:13 -------- d-----w- c:\program files (x86)\BlueStacks
2013-03-23 20:41 . 2013-03-23 20:41 -------- d-----w- c:\program files (x86)\SoftwareUpdater
2013-03-23 20:37 . 2013-03-23 21:13 -------- d-----w- c:\programdata\BlueStacks
2013-03-23 20:37 . 2013-03-23 21:10 -------- d-----w- c:\users\hp_ntb\AppData\Local\BlueStacks
2013-03-23 20:17 . 2013-03-24 14:51 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Yontoo
2013-03-23 20:17 . 2013-03-23 20:17 -------- d-----w- c:\program files (x86)\Yontoo
2013-03-23 20:17 . 2013-03-23 20:17 -------- d-----w- c:\programdata\Tarma Installer
2013-03-23 17:59 . 2013-03-23 17:59 -------- d-----w- c:\programdata\{CED89F1A-945F-46EC-B23C-5EAF6D2DB12A}
2013-03-23 17:48 . 2013-03-23 17:48 -------- d-----r- C:\MSOCache
2013-03-23 17:47 . 2013-03-23 17:48 -------- d-----w- c:\programdata\Microsoft Help
2013-03-23 16:15 . 2013-03-23 16:15 -------- d-----w- c:\programdata\IObit
2013-03-23 08:43 . 2013-03-23 08:43 -------- d-----w- c:\program files (x86)\Common Files\Blizzard Entertainment.temp
2013-03-23 07:56 . 2013-03-24 07:47 76232 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{741ECB2E-73DD-4F1C-9EE1-6B52D2765D80}\offreg.dll
2013-03-22 20:25 . 2013-03-22 20:25 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Malwarebytes
2013-03-22 12:17 . 2013-03-15 06:28 9311288 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{741ECB2E-73DD-4F1C-9EE1-6B52D2765D80}\mpengine.dll
2013-03-21 20:23 . 2009-09-04 16:29 1974616 ----a-w- c:\windows\SysWow64\D3DCompiler_42.dll
2013-03-21 20:20 . 2008-03-05 15:03 238088 ----a-w- c:\windows\SysWow64\xactengine3_0.dll
2013-03-21 20:20 . 2008-03-05 15:00 28168 ----a-w- c:\windows\system32\X3DAudio1_3.dll
2013-03-21 20:20 . 2008-03-05 15:00 25608 ----a-w- c:\windows\SysWow64\X3DAudio1_3.dll
2013-03-21 20:20 . 2008-03-05 14:56 1860120 ----a-w- c:\windows\system32\D3DCompiler_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 1420824 ----a-w- c:\windows\SysWow64\D3DCompiler_37.dll
2013-03-21 20:20 . 2008-02-05 22:07 462864 ----a-w- c:\windows\SysWow64\d3dx10_37.dll
2013-03-21 20:20 . 2008-02-05 22:07 529424 ----a-w- c:\windows\system32\d3dx10_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 4910088 ----a-w- c:\windows\system32\D3DX9_37.dll
2013-03-21 20:20 . 2008-03-05 14:56 3786760 ----a-w- c:\windows\SysWow64\D3DX9_37.dll
2013-03-21 20:20 . 2007-10-22 02:40 411656 ----a-w- c:\windows\system32\xactengine2_10.dll
2013-03-21 20:20 . 2007-10-22 02:39 267272 ----a-w- c:\windows\SysWow64\xactengine2_10.dll
2013-03-21 20:20 . 2007-10-02 08:56 508264 ----a-w- c:\windows\system32\d3dx10_36.dll
2013-03-21 20:20 . 2007-10-12 14:14 2006552 ----a-w- c:\windows\system32\D3DCompiler_36.dll
2013-03-21 20:19 . 2007-10-22 02:37 17928 ----a-w- c:\windows\SysWow64\X3DAudio1_2.dll
2013-03-21 20:19 . 2007-10-22 02:37 21000 ----a-w- c:\windows\system32\X3DAudio1_2.dll
2013-03-21 19:59 . 2007-10-02 08:56 444776 ----a-w- c:\windows\SysWow64\d3dx10_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 1374232 ----a-w- c:\windows\SysWow64\D3DCompiler_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 5081608 ----a-w- c:\windows\system32\d3dx9_36.dll
2013-03-21 19:59 . 2007-10-12 14:14 3734536 ----a-w- c:\windows\SysWow64\d3dx9_36.dll
2013-03-21 19:59 . 2007-07-19 23:57 411496 ----a-w- c:\windows\system32\xactengine2_9.dll
2013-03-21 19:59 . 2007-07-19 23:57 267112 ----a-w- c:\windows\SysWow64\xactengine2_9.dll
2013-03-21 19:59 . 2007-07-19 17:14 508264 ----a-w- c:\windows\system32\d3dx10_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 444776 ----a-w- c:\windows\SysWow64\d3dx10_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 1985904 ----a-w- c:\windows\system32\D3DCompiler_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 1358192 ----a-w- c:\windows\SysWow64\D3DCompiler_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 5073256 ----a-w- c:\windows\system32\d3dx9_35.dll
2013-03-21 19:59 . 2007-07-19 17:14 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll
2013-03-19 14:11 . 2013-03-19 14:11 -------- d-----w- c:\users\hp_ntb\AppData\Local\Microsoft Corporation
2013-03-16 21:34 . 2013-03-16 21:34 -------- d-----w- c:\windows\cs
2013-03-16 21:32 . 2013-03-16 21:33 -------- d-----w- c:\program files (x86)\Windows Live
2013-03-16 21:31 . 2009-09-04 16:44 69464 ----a-w- c:\windows\SysWow64\XAPOFX1_3.dll
2013-03-16 21:31 . 2009-09-04 16:44 515416 ----a-w- c:\windows\SysWow64\XAudio2_5.dll
2013-03-16 21:31 . 2009-09-04 16:29 453456 ----a-w- c:\windows\SysWow64\d3dx10_42.dll
2013-03-16 21:31 . 2009-09-04 16:29 523088 ----a-w- c:\windows\system32\d3dx10_42.dll
2013-03-16 21:28 . 2013-03-23 11:03 -------- d-----w- c:\users\hp_ntb\AppData\Local\Windows Live
2013-03-16 21:28 . 2013-03-16 21:28 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2013-03-14 19:26 . 2013-03-14 19:26 16486616 ----a-w- c:\windows\SysWow64\FlashPlayerInstaller.exe
2013-03-13 12:35 . 2013-03-13 12:35 19968 ----a-w- c:\windows\system32\drivers\usb8023.sys
2013-03-12 15:00 . 2013-03-12 15:00 -------- d-----w- c:\users\Default\AppData\Roaming\IObit
2013-03-11 16:27 . 2013-03-11 16:27 -------- d-----w- c:\program files (x86)\Gameforge4D
2013-03-10 11:42 . 2013-03-10 20:18 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\DAEMON Tools Lite
2013-03-10 11:32 . 2013-03-10 11:37 761592 ----a-w- c:\windows\system32\drivers\sptd.sys
2013-03-10 11:32 . 2013-03-10 11:37 171392 ----a-w- c:\windows\system32\drivers\sptddrv1.sys
2013-03-09 08:09 . 2013-03-09 08:09 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Kalydo
2013-03-08 20:54 . 2013-03-08 20:55 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\GetRightToGo
2013-03-08 15:22 . 2013-03-08 20:48 -------- d-----w- c:\program files\Minecraft 1.4.5
2013-03-08 15:11 . 2013-03-24 15:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\.minecraft
2013-03-06 12:04 . 2013-03-06 12:04 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-03-05 12:24 . 2013-03-05 12:24 -------- d-----w- c:\users\hp_ntb\AppData\Local\Facebook
2013-03-03 15:55 . 2013-03-03 15:55 -------- d-----w- c:\users\hp_ntb\AppData\Local\Diagnostics
2013-03-03 08:13 . 2013-03-03 08:13 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\ARA
2013-03-02 21:16 . 2013-03-10 20:12 -------- d-----w- c:\program files (x86)\HD Tune Pro
2013-03-02 21:16 . 2013-03-02 21:16 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\HD Tune Pro
2013-03-02 19:06 . 2013-03-02 19:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\JAM Software
2013-03-02 19:06 . 2013-03-02 19:06 -------- d-----w- c:\program files (x86)\JAM Software
2013-03-02 17:31 . 2013-03-02 17:31 -------- d-----w- C:\Games
2013-03-01 21:09 . 2013-03-06 23:33 178624 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-01 21:09 . 2013-03-06 23:33 65336 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-01 20:49 . 2003-09-03 01:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2013-03-01 20:49 . 2003-09-03 01:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2013-03-01 20:49 . 2003-09-03 01:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2013-03-01 20:49 . 2003-09-03 01:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
2013-03-01 20:49 . 2013-03-01 20:49 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2013-03-01 20:49 . 2013-03-01 20:49 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2013-03-01 20:49 . 2003-09-03 01:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2013-02-27 13:54 . 2013-02-27 13:54 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\ProtectDISC
2013-02-26 12:58 . 2013-03-17 20:40 -------- d-----w- c:\program files\Speccy
2013-02-26 06:55 . 2013-02-26 06:55 71680 ----a-w- c:\windows\system32\frapsv64.dll
2013-02-26 06:55 . 2013-02-26 06:55 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
2013-02-25 19:06 . 2013-02-25 19:06 -------- d-----w- c:\users\hp_ntb\AppData\Local\Downloaded Installations
2013-02-23 20:50 . 2012-05-08 17:34 32600 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2013-02-23 20:49 . 2010-11-26 17:02 17720 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2013-02-23 15:46 . 2013-03-01 21:07 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\DAEMON Tools Pro
2013-02-22 20:06 . 2013-02-22 20:06 -------- d-----w- c:\users\hp_ntb\AppData\Roaming\Hewlett-Packard
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-03-17 20:35 . 2013-02-10 09:19 6656 ----a-w- c:\windows\system32\lpcio.dll
2013-03-16 21:32 . 2010-06-24 10:33 19696 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2013-03-14 19:26 . 2013-02-11 20:36 73432 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-03-14 19:26 . 2013-02-11 20:36 693976 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-03-13 13:05 . 2013-02-10 09:56 72013344 ----a-w- c:\windows\system32\MRT.exe
2013-03-06 23:33 . 2013-02-22 19:22 377920 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 23:33 . 2013-02-22 19:22 70992 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-03-06 23:33 . 2013-02-22 19:22 68920 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 23:33 . 2013-02-22 19:22 1025808 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 23:33 . 2013-02-22 19:22 33400 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 23:33 . 2013-02-22 19:22 80816 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 23:32 . 2013-02-22 19:22 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 23:32 . 2013-02-11 20:15 287840 ----a-w- c:\windows\system32\aswBoot.exe
2013-03-06 12:04 . 2013-02-17 19:25 861088 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2013-03-06 12:04 . 2013-02-17 19:25 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-02-14 16:01 . 2013-02-14 16:01 21712 ----a-w- c:\windows\SysWow64\drivers\DrvAgent64.SYS
2013-02-12 05:45 . 2013-03-13 12:26 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2013-02-12 05:45 . 2013-03-13 12:26 308736 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2013-02-12 05:45 . 2013-03-13 12:26 111104 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2013-02-12 05:45 . 2013-03-13 12:26 350208 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2013-02-12 04:48 . 2013-03-13 12:26 474112 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-13 12:26 2176512 ----a-w- c:\windows\apppatch\AcGenral.dll
2013-02-11 19:38 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2013-02-11 19:38 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2013-01-17 00:28 . 2013-02-09 18:05 273840 ------w- c:\windows\system32\MpSigStub.exe
2013-01-15 17:49 . 2013-02-19 13:51 26432 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2013-01-05 05:53 . 2013-02-12 18:57 5553512 ----a-w- c:\windows\system32\ntoskrnl.exe
2013-01-05 05:00 . 2013-02-12 18:57 3967848 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00 . 2013-02-12 18:57 3913064 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46 . 2013-02-12 18:58 215040 ----a-w- c:\windows\system32\winsrv.dll
2013-01-04 04:51 . 2013-02-12 18:58 5120 ----a-w- c:\windows\SysWow64\wow32.dll
2013-01-04 04:43 . 2013-02-12 18:58 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2013-01-04 03:26 . 2013-02-12 18:57 3153408 ----a-w- c:\windows\system32\win32k.sys
2013-01-04 02:47 . 2013-02-12 18:58 25600 ----a-w- c:\windows\SysWow64\setup16.exe
2013-01-04 02:47 . 2013-02-12 18:58 7680 ----a-w- c:\windows\SysWow64\instnm.exe
2013-01-04 02:47 . 2013-02-12 18:58 2048 ----a-w- c:\windows\SysWow64\user.exe
2013-01-04 02:47 . 2013-02-12 18:58 14336 ----a-w- c:\windows\SysWow64\ntvdm64.dll
2013-01-03 06:00 . 2013-02-12 18:57 1913192 ----a-w- c:\windows\system32\drivers\tcpip.sys
2013-01-03 06:00 . 2013-02-12 18:57 288088 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{FD72061E-9FDE-484D-A58A-0BAB4151CAD8}]
2013-03-23 01:59 197920 ----a-w- c:\program files (x86)\Yontoo\YontooIEClient.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIconLaunch.exe" [2012-03-12 56088]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"4StoryPrePatch"="c:\program files (x86)\Gameforge4D\4Story_CZ\PrePatch.exe" [2013-02-19 327680]
"BlueStacks Agent"="c:\program files (x86)\BlueStacks\HD-Agent.exe" [2013-02-15 601976]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ RegistryDefragBootTime.exe\0autocheck autochk *
.
R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2013-03-10 761592]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 MMCSS;Služba Plánovač multimédií;c:\windows\system32\svchost.exe [2009-07-14 27136]
R2 sppsvc;Ochrana softwaru;c:\windows\system32\sppsvc.exe [2010-11-20 3524608]
R3 1394ohci;Hostitelský řadič pro rozhraní OHCI standardu 1394;c:\windows\system32\drivers\1394ohci.sys [2010-11-20 229888]
R3 AcpiPmi;Ovladač měřiče napájení standardu ACPI;c:\windows\system32\drivers\acpipmi.sys [2010-11-20 12800]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-03-14 253656]
R3 adp94xx;adp94xx;c:\windows\system32\DRIVERS\adp94xx.sys [2009-07-14 491088]
R3 adpahci;adpahci;c:\windows\system32\DRIVERS\adpahci.sys [2009-07-14 339536]
R3 amdsata;amdsata;c:\windows\system32\drivers\amdsata.sys [2011-03-11 107904]
R3 amdsbs;amdsbs;c:\windows\system32\DRIVERS\amdsbs.sys [2009-07-14 194128]
R3 AppID;Ovladač AppID;c:\windows\system32\drivers\appid.sys [2010-11-20 61440]
R3 AppIDSvc;Identita aplikace;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 Appinfo;Informace o aplikaci;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 arcsas;arcsas;c:\windows\system32\DRIVERS\arcsas.sys [2009-07-14 97856]
R3 b06bdrv;Broadcom NetXtreme II VBD;c:\windows\system32\DRIVERS\bxvbda.sys [2009-06-10 468480]
R3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\b57nd60a.sys [2009-06-10 270848]
R3 BDESVC;Služba BitLocker Drive Encryption;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;c:\windows\system32\DRIVERS\BrFiltLo.sys [2009-06-10 18432]
R3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;c:\windows\system32\DRIVERS\BrFiltUp.sys [2009-06-10 8704]
R3 Brserid;Brother MFC Serial Port Interface Driver (WDM);c:\windows\System32\Drivers\Brserid.sys [2009-07-14 286720]
R3 BrSerWdm;Brother WDM Serial driver;c:\windows\System32\Drivers\BrSerWdm.sys [2009-06-10 47104]
R3 BrUsbMdm;Brother MFC USB Fax Only Modem;c:\windows\System32\Drivers\BrUsbMdm.sys [2009-06-10 14976]
R3 BrUsbSer;Brother MFC USB Serial WDM Driver;c:\windows\System32\Drivers\BrUsbSer.sys [2009-06-10 14720]
R3 BTHPORT;Ovladač portu Bluetooth;c:\windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
R3 circlass;Consumer IR Devices;c:\windows\system32\DRIVERS\circlass.sys [2009-07-14 45568]
R3 CpqDfw;Compaq Dfw;c:\windows\system32\drivers\CpqDfw.sys [x]
R3 cyhid;Cypress Input Device;c:\windows\system32\DRIVERS\cyhid.sys [2012-01-18 124928]
R3 cykbfltrService;Cypress Keyboard Filter Driver;c:\windows\system32\DRIVERS\cykbfltr.sys [2012-01-18 14336]
R3 cymfltrService;Cypress Trackpad Filter Driver;c:\windows\system32\DRIVERS\cymfltr.sys [2012-01-18 84480]
R3 defragsvc;Defragmentace disku;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 DrvAgent64;DrvAgent64;c:\windows\SysWOW64\Drivers\DrvAgent64.SYS [2013-02-14 21712]
R3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;c:\windows\system32\DRIVERS\evbda.sys [2009-06-10 3286016]
R3 EFS;Systém souborů EFS (Encrypting File System);c:\windows\System32\lsass.exe [2011-11-17 31232]
R3 ehRecvr;Služba přijímače aplikace Windows Media Center;c:\windows\ehome\ehRecvr.exe [2010-11-20 696832]
R3 ehSched;Služba plánování aplikace Windows Media Center;c:\windows\ehome\ehsched.exe [2009-07-14 127488]
R3 elxstor;elxstor;c:\windows\system32\DRIVERS\elxstor.sys [2009-07-14 530496]
R3 ErrDev;Ovladače chybového zařízení hardwaru Microsoft;c:\windows\system32\drivers\errdev.sys [2009-07-13 9728]
R3 Fax;Fax;c:\windows\system32\fxssvc.exe [2010-11-20 689152]
R3 Filetrace;Filetrace;c:\windows\system32\drivers\filetrace.sys [2009-07-13 34304]
R3 FsDepends;File System Dependency Minifilter;c:\windows\system32\drivers\FsDepends.sys [2009-07-14 55376]
R3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms;c:\windows\system32\DRIVERS\gagp30kx.sys [2009-07-14 65088]
R3 hcw85cir;Hauppauge Consumer Infrared Receiver;c:\windows\system32\drivers\hcw85cir.sys [2009-06-10 31232]
R3 HidBth;Microsoft Bluetooth HID Miniport;c:\windows\system32\DRIVERS\hidbth.sys [2009-07-14 100864]
R3 HidIr;Microsoft Infrared HID Driver;c:\windows\system32\DRIVERS\hidir.sys [2009-07-14 46592]
R3 hpqwmiex;HP Software Framework Service; [x]
R3 HpSAMD;HpSAMD;c:\windows\system32\drivers\HpSAMD.sys [2010-11-20 78720]
R3 iaStorV;Řadič Intel diskového pole RAID – Windows 7;c:\windows\system32\drivers\iaStorV.sys [2011-03-11 410496]
R3 IPBusEnum;Rozpoznávací modul sběrnice PnP-X IP;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 IPMIDRV;IPMIDRV;c:\windows\system32\drivers\IPMIDrv.sys [2010-11-20 78848]
R3 iScsiPrt;Ovladač iScsiPort;c:\windows\system32\drivers\msiscsi.sys [2010-11-20 273792]
R3 KtmRm;Služba KTMRM pro koordinátor DTC;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 lltdsvc;Mapovač zjišťování topologie linkové vrstvy;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 LSI_FC;LSI_FC;c:\windows\system32\DRIVERS\lsi_fc.sys [2009-07-14 114752]
R3 LSI_SAS;LSI_SAS;c:\windows\system32\DRIVERS\lsi_sas.sys [2009-07-14 106560]
R3 LSI_SAS2;LSI_SAS2;c:\windows\system32\DRIVERS\lsi_sas2.sys [2009-07-14 65600]
R3 LSI_SCSI;LSI_SCSI;c:\windows\system32\DRIVERS\lsi_scsi.sys [2009-07-14 115776]
R3 Mcx2Svc;Služba zařízení Media Center Extender;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 megasas;megasas;c:\windows\system32\DRIVERS\megasas.sys [2009-07-14 35392]
R3 MegaSR;MegaSR;c:\windows\system32\DRIVERS\MegaSR.sys [2009-07-14 284736]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files (x86)\Microsoft Office\Office14\GROOVE.EXE [2012-09-20 30785672]
R3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-03-08 115608]
R3 mpio;Ovladač sběrnice Microsoft Multi-Path;c:\windows\system32\drivers\mpio.sys [2010-11-20 155008]
R3 msdsm;Specifický modul zařízení Microsoft Multi-Path;c:\windows\system32\drivers\msdsm.sys [2010-11-20 140672]
R3 mshidkmdf;Pass-through HID to KMDF Filter Driver;c:\windows\System32\drivers\mshidkmdf.sys [2009-07-14 8192]
R3 MsRPC;MsRPC; [x]
R3 MTConfig;Microsoft Input Configuration Driver;c:\windows\system32\DRIVERS\MTConfig.sys [2009-07-14 15360]
R3 NdisCap;NDIS Capture LightWeight Filter;c:\windows\system32\DRIVERS\ndiscap.sys [2009-07-14 35328]
R3 nfrd960;nfrd960;c:\windows\system32\DRIVERS\nfrd960.sys [2009-07-14 51264]
R3 nvstor;nvstor;c:\windows\system32\drivers\nvstor.sys [2011-03-11 166272]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PerfHost;Hostitel knihoven DLL čítačů výkonu;c:\windows\SysWow64\perfhost.exe [2009-07-14 20992]
R3 pla;Výstrahy a protokolování výkonu;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 PNRPAutoReg;Služba publikování názvu počítače pomocí protokolu PNRP;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 ql2300;ql2300;c:\windows\system32\DRIVERS\ql2300.sys [2009-07-14 1524816]
R3 ql40xx;ql40xx;c:\windows\system32\DRIVERS\ql40xx.sys [2009-07-14 128592]
R3 QWAVE;Sada qWave (Quality Windows Audio Video Experience);c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 QWAVEdrv;Ovladač QWAVE;c:\windows\system32\drivers\qwavedrv.sys [2009-07-14 46592]
R3 rdpbus;Remote Desktop Device Redirector Bus Driver;c:\windows\system32\DRIVERS\rdpbus.sys [2009-07-14 24064]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 sbp2port;Ovladač sběrnice pro přenos dat zařízení podporujícího protokol SBP-2;c:\windows\system32\drivers\sbp2port.sys [2010-11-20 103808]
R3 scfilter;Ovladač filtru čipových karet třídy PnP;c:\windows\system32\DRIVERS\scfilter.sys [2010-11-20 29696]
R3 SCPolicySvc;Zásady odebrání čipové karty;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 SDRSVC;Windows Zálohování;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 SensrSvc;Adaptivní jas;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 sermouse;Serial Mouse Driver;c:\windows\system32\DRIVERS\sermouse.sys [2009-07-14 26624]
R3 SessionEnv;Konfigurace vzdálené plochy;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 sffdisk;Ovladač třídy úložiště SFF;c:\windows\system32\drivers\sffdisk.sys [2009-07-14 14336]
R3 sffp_mmc;Ovladač protokolu úložiště SFF pro konzolu MMC;c:\windows\system32\drivers\sffp_mmc.sys [2009-07-14 13824]
R3 sffp_sd;Ovladač protokolu úložiště SFF pro paměť sběrnici SDBus;c:\windows\system32\drivers\sffp_sd.sys [2010-11-20 14336]
R3 SiSRaid2;SiSRaid2;c:\windows\system32\DRIVERS\SiSRaid2.sys [2009-07-14 43584]
R3 SiSRaid4;SiSRaid4;c:\windows\system32\DRIVERS\sisraid4.sys [2009-07-14 80464]
R3 Smb;Protokol TCP/IP a TCP/IPv6 orientovaný na zprávy (relace SMB);c:\windows\system32\DRIVERS\smb.sys [2009-07-14 93184]
R3 sppuinotify;Služba Oznámení platformy SPP;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 stexstor;stexstor;c:\windows\system32\DRIVERS\stexstor.sys [2009-07-14 24656]
R3 TabletInputService;Služba Vstupní panel počítače Tablet PC;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 TBS;Služba TPM Base Services;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 TCPIP6;Microsoft IPv6 Protocol Driver;c:\windows\system32\DRIVERS\tcpip.sys [2013-01-03 1913192]
R3 THREADORDER;Server pro řazení podprocesů;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 TrustedInstaller;Instalační služba modulů systému Windows;c:\windows\servicing\TrustedInstaller.exe [2010-11-20 194048]
R3 tssecsrv;Remote Desktop Services Security Filter Driver;c:\windows\system32\DRIVERS\tssecsrv.sys [2010-11-20 39424]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 uagp35;Microsoft AGPv3.5 Filter;c:\windows\system32\DRIVERS\uagp35.sys [2009-07-14 64080]
R3 UI0Detect;Zjišťování interaktivních služeb;c:\windows\system32\UI0Detect.exe [2009-07-14 40960]
R3 uliagpkx;Filtr sběrnice Uli AGP;c:\windows\system32\drivers\uliagpkx.sys [2009-07-14 64592]
R3 UmPass;Microsoft UMPass Driver;c:\windows\system32\DRIVERS\umpass.sys [2009-07-14 9728]
R3 usbcir;Infračervený přijímač eHome (USBCIR);c:\windows\system32\drivers\usbcir.sys [2009-07-14 100352]
R3 VaultSvc;Správce pověření;c:\windows\system32\lsass.exe [2011-11-17 31232]
R3 vhdmp;vhdmp;c:\windows\system32\drivers\vhdmp.sys [2010-11-20 215936]
R3 vsmraid;vsmraid;c:\windows\system32\DRIVERS\vsmraid.sys [2009-07-14 161872]
R3 WacomPen;Wacom Serial Pen HID Driver;c:\windows\system32\DRIVERS\wacompen.sys [2009-07-14 27776]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2013-02-11 1255736]
R3 wbengine;Služba jádra pro zálohování dat na úrovni bloků;c:\windows\system32\wbengine.exe [2010-11-20 1504256]
R3 WbioSrvc;Biometrická služba systému Windows;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 wcncsvc;Technologie Windows Connect Now – Registrátor konfigurací;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 WcsPlugInService;Systém barev systému Windows;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 WdiSystemHost;Hostitel diagnostického systému;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 Wecsvc;Sběr událostí systému Windows;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 wercplsupport;Podpora ovládacího panelu Oznámení a řešení problémů;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 WerSvc;Služba Zasílání zpráv o chybách systému Windows;c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 WIMMount;WIMMount;c:\windows\system32\drivers\wimmount.sys [2009-07-14 22096]
R3 WinRM;Vzdálená správa systému Windows (WS-Management);c:\windows\System32\svchost.exe [2009-07-14 27136]
R3 WinUsb;WinUsb;c:\windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
R3 WPCSvc;Parental Controls;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 WPDBusEnum;Služba Výčet přenosných zařízení;c:\windows\system32\svchost.exe [2009-07-14 27136]
R3 WwanSvc;Automatická konfigurace sítě WWAN;c:\windows\system32\svchost.exe [2009-07-14 27136]
R4 CertPropSvc;Šíření certifikátů;c:\windows\system32\svchost.exe [2009-07-14 27136]
R4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;c:\windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-06-10 89920]
R4 MSiSCSI;Služba iniciátoru iSCSI společnosti Microsoft;c:\windows\system32\svchost.exe [2009-07-14 27136]
R4 NetMsmqActivator;Adaptér naslouchání Net.Msmq;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R4 NetPipeActivator;Adaptér naslouchání Net.Pipe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R4 NetTcpActivator;Adaptér naslouchání Net.Tcp;c:\windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
R4 SNMPTRAP;Zachytávání pro službu SNMP;c:\windows\System32\snmptrap.exe [2009-07-14 14336]
S0 amdxata;amdxata;c:\windows\system32\drivers\amdxata.sys [2011-03-11 27008]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S0 CLFS;Systém souborů CLFS;c:\windows\System32\CLFS.sys [2009-07-14 367696]
S0 CNG;CNG;c:\windows\System32\Drivers\cng.sys [2012-08-24 458712]
S0 FileInfo;File Information FS MiniFilter;c:\windows\system32\drivers\fileinfo.sys [2009-07-14 70224]
S0 fvevol;Ovladač filtru nástroje Bitlocker Drive Encryption;c:\windows\System32\DRIVERS\fvevol.sys [2010-11-20 223248]
S0 hwpolicy;Hardware Policy Driver;c:\windows\System32\drivers\hwpolicy.sys [2010-11-20 14720]
S0 iaStorA;iaStorA;c:\windows\system32\DRIVERS\iaStorA.sys [2012-03-12 627992]
S0 iaStorF;iaStorF;c:\windows\system32\DRIVERS\iaStorF.sys [2012-03-12 24344]
S0 KSecPkg;KSecPkg;c:\windows\System32\Drivers\ksecpkg.sys [2012-08-24 154480]
S0 msahci;msahci;c:\windows\system32\drivers\msahci.sys [2010-11-20 31104]
S0 msisadrv;msisadrv;c:\windows\system32\drivers\msisadrv.sys [2009-07-14 15424]
S0 pcw;Performance Counters for Windows Driver;c:\windows\System32\drivers\pcw.sys [2009-07-14 50768]
S0 rdyboost;ReadyBoost;c:\windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
S0 spldr;Security Processor Loader Driver; [x]
S0 vdrvroot;Ovladač rozpoznávacího modulu virtuální jednotky společnosti Microsoft;c:\windows\system32\drivers\vdrvroot.sys [2009-07-14 36432]
S0 volmgr;Ovladač správce svazků;c:\windows\system32\drivers\volmgr.sys [2010-11-20 71552]
S0 volmgrx;Správce dynamických svazků;c:\windows\System32\drivers\volmgrx.sys [2010-11-20 363392]
S0 Wd;Microsoft Watchdog Timer Driver;c:\windows\system32\DRIVERS\wd.sys [2009-07-14 21056]
S0 Wdf01000;Služba Architektura ovladačů v režimu jádra;c:\windows\system32\drivers\Wdf01000.sys [2012-07-26 785512]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 blbdrive;blbdrive;c:\windows\system32\DRIVERS\blbdrive.sys [2009-07-13 45056]
S1 DfsC;DFS Namespace Client Driver;c:\windows\system32\Drivers\dfsc.sys [2010-11-20 102400]
S1 discache;System Attribute Cache;c:\windows\system32\drivers\discache.sys [2009-07-13 40448]
S1 nsiproxy;NSI proxy service driver.;c:\windows\system32\drivers\nsiproxy.sys [2009-07-13 24576]
S1 RDPENCDD;RDP Encoder Mirror Driver;c:\windows\system32\drivers\rdpencdd.sys [2009-07-14 7680]
S1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;c:\windows\system32\drivers\rdprefmp.sys [2009-07-14 8192]
S1 tdx;Ovladač pro podporu zastaralého rozhraní TDI NetIO;c:\windows\system32\DRIVERS\tdx.sys [2010-11-20 119296]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S1 Wanarpv6;Ovladač pro vzdálený přístup IPv6 ARP;c:\windows\system32\DRIVERS\wanarp.sys [2010-11-20 88576]
S1 WfpLwf;WFP Lightweight Filter;c:\windows\system32\DRIVERS\wfplwf.sys [2009-07-14 12800]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-12-18 65192]
S2 AdvancedSystemCareService6;Advanced SystemCare Service 6;c:\program files (x86)\IObit\Advanced SystemCare 6\ASCService.exe [2013-01-15 465216]
S2 AERTFilters;Andrea RT Filters Service;c:\program files\Realtek\Audio\HDA\AERTSr64.exe [2009-11-17 98208]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2013-03-06 80816]
S2 AudioEndpointBuilder;Koncové vytváření služby Windows Audio;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 BFE;Služba BFE (Base Filtering Engine);c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [2013-02-15 71032]
S2 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [2013-02-15 384888]
S2 cpuz133;cpuz133;c:\windows\system32\drivers\cpuz133_x64.sys [2010-05-11 20968]
S2 DPS;Služba DPS (Diagnostic Policy Service);c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 FDResPub;Publikování prostředků rozpoznávání funkcí;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 FontCache;Mezipaměť písem Windows;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 gpsvc;Klient zásad skupiny;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2011-09-09 86072]
S2 IAStorDataMgrSvc;Úložná technologie Intel® Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2012-03-12 7168]
S2 IKEEXT;Služba IKE and AuthIP IPsec Keying Modules;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;c:\windows\system32\DRIVERS\lltdio.sys [2009-07-14 60928]
S2 LMS;Intel(R) Management and Security Application Local Management Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-03-18 268824]
S2 luafv;Virtualizace souborů nástroje Řízení uživatelských účtů;c:\windows\system32\drivers\luafv.sys [2009-07-13 113152]
S2 MpsSvc;Brána Windows Firewall;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 NlaSvc;Sledování umístění v síti (NLA);c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 nsi;Služba rozhraní síťového úložiště;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 PcaSvc;Program Compatibility Assistant Service;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 PEAUTH;PEAUTH;c:\windows\system32\drivers\peauth.sys [2009-07-14 651264]
S2 Power;Napájení;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 ProfSvc;Služba Profil uživatele;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 RpcEptMapper;Mapovač koncových bodů protokolu RPC;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 rspndr;Link-Layer Topology Discovery Responder;c:\windows\system32\DRIVERS\rspndr.sys [2009-07-14 76800]
S2 RtVOsdService;RtVOsdService Installer;c:\program files\Realtek\RtVOsd\RtVOsdService.exe [2010-06-24 315392]
S2 SrvUpdater;Software Updater;c:\program files (x86)\SoftwareUpdater\UpdaterService.exe [2013-02-18 31744]
S2 SysMain;Superfetch;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 tcpipreg;TCP/IP Registry Compatibility;c:\windows\system32\drivers\tcpipreg.sys [2012-10-03 45568]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-03-18 2320920]
S2 UxSms;Správce relací správce oken plochy;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 WinDefend;Windows Defender;c:\windows\System32\svchost.exe [2009-07-14 27136]
S2 Wlansvc;Automatická konfigurace sítě WLAN;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 wlidsvc;Windows Live ID Sign-in Assistant;c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S2 WSearch;Windows Search;c:\windows\system32\SearchIndexer.exe [2011-05-04 591872]
S2 Yontoo Desktop Updater;Yontoo Desktop Updater;c:\program files (x86)\Yontoo\Y2Desktop.Updater.exe [2013-03-23 23552]
S3 bowser;Ovladač podpory prohlížeče;c:\windows\system32\DRIVERS\bowser.sys [2011-02-23 90624]
S3 BthEnum;Ovladač pro Bluetooth Request Block;c:\windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Zařízení Bluetooth (síť PAN);c:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 bthserv;Služba pro podporu technologie Bluetooth;c:\windows\system32\svchost.exe [2009-07-14 27136]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth;c:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [2011-04-14 31216]
S3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice;c:\windows\system32\drivers\CompositeBus.sys [2010-11-20 38912]
S3 DXGKrnl;LDDM Graphics Subsystem;c:\windows\System32\drivers\dxgkrnl.sys [2010-11-20 982912]
S3 fdPHost;Hostitel poskytovatele rozpoznávání funkce;c:\windows\system32\svchost.exe [2009-07-14 27136]
S3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio;c:\windows\system32\drivers\HdAudio.sys [2010-11-20 350208]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2009-09-17 56344]
S3 HomeGroupListener;Naslouchací proces domácí skupiny;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 HomeGroupProvider;Zprostředkovatel domácích skupin;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 igfx;igfx;c:\windows\system32\DRIVERS\igdkmd64.sys [2010-07-28 10610400]
S3 KeyIso;Izolace klíče CNG;c:\windows\system32\lsass.exe [2011-11-17 31232]
S3 monitor;Služba ovladače funkce třídy monitorů Microsoft;c:\windows\system32\DRIVERS\monitor.sys [2009-07-13 30208]
S3 mpsdrv;Ovladač ověření brány Windows Firewall;c:\windows\system32\drivers\mpsdrv.sys [2009-07-14 77312]
S3 mrxsmb10;Mini-přesměrovač SMB 1.x;c:\windows\system32\DRIVERS\mrxsmb10.sys [2011-07-09 288768]
S3 mrxsmb20;Mini-přesměrovač SMB 2.0;c:\windows\system32\DRIVERS\mrxsmb20.sys [2011-04-27 128000]
S3 NativeWifiP;NativeWiFi Filter;c:\windows\system32\DRIVERS\nwifi.sys [2009-07-14 318976]
S3 netprofm;Služba seznamu sítí;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 netr28x;Ralink 802.11n Extensible Wireless Driver;c:\windows\system32\DRIVERS\netr28x.sys [2012-12-06 2350176]
S3 p2pimsvc;Správce identit sítě rovnocenných počítačů;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 p2psvc;Seskupování v sítích peer-to-peer;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 PNRPsvc;Protokol PNRP (Peer Name Resolution Protocol);c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 RasAgileVpn;WAN Miniport (IKEv2);c:\windows\system32\DRIVERS\AgileVpn.sys [2009-07-14 60416]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI);c:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 srv2;Ovladač pro server SMB 2.xxx;c:\windows\system32\DRIVERS\srv2.sys [2011-04-29 410112]
S3 srvnet;srvnet;c:\windows\system32\DRIVERS\srvnet.sys [2011-04-29 168448]
S3 SynTP;Synaptics TouchPad Driver;c:\windows\system32\DRIVERS\SynTP.sys [2011-10-14 396848]
S3 tunnel;Microsoft Tunnel Miniport Adapter Driver;c:\windows\system32\DRIVERS\tunnel.sys [2010-11-20 125440]
S3 umbus;Ovladač sběrnice UMBus Enumerator;c:\windows\system32\drivers\umbus.sys [2010-11-20 48640]
S3 usbvideo;Zobrazovací zařízení USB (WDM);c:\windows\system32\Drivers\usbvideo.sys [2010-11-20 184960]
S3 vwifibus;Ovladač sběrnice Virtual WiFi;c:\windows\system32\DRIVERS\vwifibus.sys [2009-07-14 24576]
S3 WdiServiceHost;Hostitel diagnostické služby;c:\windows\System32\svchost.exe [2009-07-14 27136]
S3 WmiAcpi;Microsoft Windows Management Interface for ACPI;c:\windows\system32\drivers\wmiacpi.sys [2009-07-13 14336]
S4 iphlpsvc;Pomocná služba protokolu IP;c:\windows\System32\svchost.exe [2009-07-14 27136]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2013-03-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-11 19:26]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 23:32 133840 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-07-28 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-07-28 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-07-28 415256]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2012-06-12 6548112]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - LocalService
FontCache
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.seznam.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\
FF - prefs.js: browser.search.defaulturl -
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=utf-8&q=
FF - ExtSQL: 2013-02-12 08:35; {ab91efd4-6975-4081-8552-1b3922ed79e2}; c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\extensions\{ab91efd4-6975-4081-8552-1b3922ed79e2}
FF - ExtSQL: 2013-02-22 20:26; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-03-23 21:17; plugin@yontoo.com; c:\users\hp_ntb\AppData\Roaming\Mozilla\Firefox\Profiles\oernw7w5.default\extensions\plugin@yontoo.com
FF - user.js: extentions.y2layers.installId - 01d9c6cb-ce29-44a8-9182-39ebaad5e5fc
FF - user.js: extentions.y2layers.defaultEnableAppsList - twittube,buzzdock,YontooNewOffers
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-SMAC 2.0 - c:\progra~2\KLC\SMAC\UNWISE.EXE
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_180_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2013-03-24 20:57:47
ComboFix-quarantined-files.txt 2013-03-24 19:57
ComboFix2.txt 2013-03-24 13:29
ComboFix3.txt 2013-03-23 19:19
ComboFix4.txt 2013-03-23 13:27
.
Před spuštěním: Volných bajtů: 33 319 309 312
Po spuštění: Volných bajtů: 33 264 148 480
.
- - End Of File - - AAA0DED4AF1F1E2EC36721D8101F7531