ComboFix 14-09-29.02 - dvorak 29.09.2014  11:22:04.2.4 - x86
Microsoft Windows 7 Professional   6.1.7601.1.1250.420.1029.18.2870.1366 [GMT 2:00]
Sputn z: c:\users\dvorak\Desktop\ComboFix.exe
AV: AVG Anti-Virus Business Edition 2011 *Disabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
FW: AVG Firewall *Disabled* {621CC794-9486-F902-D092-0484E8EA828B}
SP: AVG Anti-Virus Business Edition 2011 *Disabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Ostatn vmazy   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-- Pedchoz sputn --
.
Nakaen kopie c:\windows\system32\imm32.dll byla nalezena a vylena. 
Obnovena kopie z - c:\windows\winsxs\x86_microsoft-windows-imm32_31bf3856ad364e35_6.1.7601.17514_none_5e5d8801d8ad160d\imm32.dll 
.
--------
.
.
(((((((((((((((((((((((((((((((((((((((   Ovladae/Sluby   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NEWDRIVER
-------\Service_NEWDRIVER
.
.
(((((((((((((((((((((((((   Soubory vytvoen od 2014-08-28 do 2014-09-29  )))))))))))))))))))))))))))))))
.
.
2014-09-29 09:32 . 2014-09-29 09:32	--------	d-----w-	c:\users\Default\AppData\Local\temp
2014-09-29 09:32 . 2014-09-29 09:32	--------	d-----w-	c:\users\hippo\AppData\Local\temp
2014-09-29 08:58 . 2014-09-29 08:58	--------	d-----w-	c:\program files\pdfforge Toolbar
2014-09-29 08:58 . 2014-09-29 08:58	--------	d-----w-	c:\program files\Common Files\Spigot
2014-09-29 08:58 . 2014-09-29 08:58	--------	d-----w-	c:\program files\Application Updater
2014-09-17 12:44 . 2014-09-29 08:52	--------	d-----w-	c:\program files\Spybot - Search & Destroy 2
2014-09-17 07:12 . 2014-09-17 07:12	--------	d-----w-	c:\programdata\Avanquest Software
2014-09-11 05:52 . 2014-07-07 01:40	1059840	----a-w-	c:\windows\system32\lsasrv.dll
2014-09-11 05:52 . 2014-07-07 01:40	550912	----a-w-	c:\windows\system32\kerberos.dll
2014-09-11 05:52 . 2014-06-24 02:59	1987584	----a-w-	c:\windows\system32\d3d10warp.dll
2014-09-11 05:52 . 2014-08-01 11:35	793600	----a-w-	c:\windows\system32\TSWorkspace.dll
2014-09-11 05:52 . 2014-09-05 01:52	445952	----a-w-	c:\windows\system32\aepdu.dll
2014-09-11 05:52 . 2014-09-05 01:47	302592	----a-w-	c:\windows\system32\aeinv.dll
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M vpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-09-24 08:08 . 2013-06-19 08:06	701104	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2014-09-24 08:08 . 2011-07-21 12:38	71344	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2014-08-23 01:46 . 2014-08-28 05:07	305152	----a-w-	c:\windows\system32\gdi32.dll
2014-08-23 00:42 . 2014-08-28 05:07	2352640	----a-w-	c:\windows\system32\win32k.sys
2014-07-25 00:35 . 2014-07-25 00:35	875688	----a-w-	c:\windows\system32\msvcr120_clr0400.dll
2014-07-14 01:42 . 2014-08-14 06:00	654336	----a-w-	c:\windows\system32\rpcrt4.dll
2014-07-09 01:29 . 2014-08-14 05:59	6144	----a-w-	c:\windows\system32\KBDYAK.DLL
2014-07-09 01:29 . 2014-08-14 05:59	6144	----a-w-	c:\windows\system32\KBDBASH.DLL
2013-08-09 05:34 . 2013-08-09 05:34	51992	----a-w-	c:\program files\WADesktop.Updater.exe
2013-07-29 05:26 . 2013-07-29 05:26	50968	----a-w-	c:\program files\WCDesktop.Updater.exe
2008-08-16 15:42 . 2014-09-25 06:31	13112	----a-w-	c:\program files\mozilla firefox\plugins\cgpcfg.dll
2008-08-16 15:42 . 2014-09-25 06:31	70456	----a-w-	c:\program files\mozilla firefox\plugins\CgpCore.dll
2008-08-16 16:42 . 2014-09-25 06:31	91448	----a-w-	c:\program files\mozilla firefox\plugins\confmgr.dll
2008-08-16 16:42 . 2014-09-25 06:31	20800	----a-w-	c:\program files\mozilla firefox\plugins\ctxlogging.dll
2008-08-16 15:43 . 2014-09-25 06:31	206136	----a-w-	c:\program files\mozilla firefox\plugins\ctxmui.dll
2008-08-16 15:42 . 2014-09-25 06:31	31032	----a-w-	c:\program files\mozilla firefox\plugins\icafile.dll
2008-08-16 15:42 . 2014-09-25 06:31	40248	----a-w-	c:\program files\mozilla firefox\plugins\icalogon.dll
2008-05-21 06:41 . 2014-09-25 06:31	479232	----a-w-	c:\program files\mozilla firefox\plugins\msvcm80.dll
2008-05-21 06:41 . 2014-09-25 06:31	548864	----a-w-	c:\program files\mozilla firefox\plugins\msvcp80.dll
2008-05-21 06:41 . 2014-09-25 06:31	626688	----a-w-	c:\program files\mozilla firefox\plugins\msvcr80.dll
2008-06-05 11:58 . 2014-09-25 06:31	648504	----a-w-	c:\program files\mozilla firefox\plugins\sslsdk_b.dll
2008-08-16 15:42 . 2014-09-25 06:31	23864	----a-w-	c:\program files\mozilla firefox\plugins\TcpPServ.dll
.
.
((((((((((((((((((((((((((((((((((   Spoutc body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznmka* przdn zznamy a legitimn vchoz daje nejsou zobrazeny. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{11BF46C6-B3DE-48BD-BF70-3AD85CAB80B5}]
2014-04-03 03:10	1585112	----a-w-	c:\progra~1\SITERA~1\SiteRank.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"ContourCameraFinder"="c:\program files\ContourStoryteller\ContourAutoplay.exe" [2011-09-21 100088]
"Sony PC Companion"="c:\program files\Sony\Sony PC Companion\PCCompanion.exe" [2014-07-30 467680]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2014-02-10 20924576]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunPUTasktray"="c:\program files\Hewlett-Packard\HP Printer Utility\HPPU.exe --regkeypath=Software\Hewlett-Packard\HP Printer Utility\HPPURun --valuename=InstallTTM" [X]
"AVG_TRAY"="c:\program files\AVG\AVG10\avgtray.exe" [2012-08-01 2345592]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-01-05 8419872]
"PUStarter"="c:\program files\Common Files\Hewlett-Packard\HP Printer Utility DCS\Appinterfaces\HPPUDS.exe" [2009-02-06 73728]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2010-08-25 136216]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2010-08-25 171032]
"Persistence"="c:\windows\system32\igfxpers.exe" [2010-08-25 170520]
"Free PDF Print Dispatcher"="c:\program files\pdfconverter.com\FreePDF Creator\itFPCPrnDisp.exe" [2010-01-15 25600]
"ContourCameraFinder"="c:\program files\ContourStoryteller\ContourAutoplay.exe" [2011-09-21 100088]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-07-05 421888]
"RIMBBLaunchAgent.exe"="c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-09-01 90448]
"SiteRanker"="c:\program files\SiteRanker\SiteRankTray.exe" [2014-08-05 1084888]
"SweetIM"="c:\program files\SweetIM\Messenger\SweetIM.exe" [2012-10-04 115032]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-08-21 959176]
"vspdfprsrv.exe"="c:\program files\Avanquest\Expert PDF 8 Professional\vspdfprsrv.exe" [2012-04-23 6078464]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Live! Central 3"="c:\program files\Creative\Creative Live! Cam\Live! Central 3\CTLVCentral3.exe" [2013-08-15 461312]
"V0770Mon.exe"="c:\windows\V0770Mon.exe" [2012-06-01 32884]
"Launch Backup Service Once"="c:\program files\Lenovo\Rescue and Recovery\rrstrigger.exe" [2009-08-28 21304]
"SearchSettings"="c:\program files\Common Files\Spigot\Search Settings\SearchSettings.exe" [2014-09-23 1610048]
.
c:\users\hippo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Vezy obrazovky a sputn aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-6-25 228552]
.
c:\users\dvorak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Vezy obrazovky a sputn aplikace OneNote 2010.lnk - c:\program files\Microsoft Office\Office14\ONENOTEM.EXE /tsr [2013-6-25 228552]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
CIT Reader 4.lnk - c:\program files\CIT.cz\CIT Reader 4\Start.exe [2014-2-21 49152]
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-1-15 255536]
STK03N PNP Monitor.lnk - c:\windows\STK03N\STK03NM.exe [2011-11-3 163840]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"SpecifyDefaultButtons"= 1 (0x1)
"Btn_Search"= 2 (0x2)
"Btn_Media"= 2 (0x2)
"Btn_Favorites"= 2 (0x2)
"Btn_Home"= 2 (0x2)
"Btn_History"= 2 (0x2)
"Btn_Print"= 2 (0x2)
"Btn_MailNews"= 2 (0x2)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart\0\0sdnclean.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 DCamUSBSTK03N;Standard_Camera;c:\windows\system32\DRIVERS\STK03NW2.sys [2009-12-18 108544]
R3 FACAP;facap, FastAccess Video Capture;c:\windows\system32\DRIVERS\facap.sys [2008-09-24 232832]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2012-01-19 13224]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-08-18 108032]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 s0016bus;Sony Ericsson Device 0016 driver (WDM);c:\windows\system32\DRIVERS\s0016bus.sys [2008-05-16 89256]
R3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s0016mdfl.sys [2008-05-16 15016]
R3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s0016mdm.sys [2008-05-16 120744]
R3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s0016mgmt.sys [2008-05-16 114216]
R3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);c:\windows\system32\DRIVERS\s0016nd5.sys [2008-05-16 25512]
R3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s0016obex.sys [2008-05-16 110632]
R3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);c:\windows\system32\DRIVERS\s0016unic.sys [2008-05-16 115752]
R3 Sony PC Companion;Sony PC Companion;c:\program files\Sony\Sony PC Companion\PCCService.exe [2013-02-04 155824]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 WatAdminSvc;Sluba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2011-03-09 1343400]
S0 AVGIDSEH;AVGIDSEH;c:\windows\system32\DRIVERS\AVGIDSEH.Sys [2011-02-22 22992]
S0 Avgrkx86;AVG Anti-Rootkit Driver;c:\windows\system32\DRIVERS\avgrkx86.sys [2011-03-16 32592]
S1 Avgfwfd;AVG network filter service;c:\windows\system32\DRIVERS\avgfwd6x.sys [2010-07-12 54112]
S1 Avgldx86;AVG AVI Loader Driver;c:\windows\system32\DRIVERS\avgldx86.sys [2012-11-12 255968]
S1 Avgtdix;AVG TDI Driver;c:\windows\system32\DRIVERS\avgtdix.sys [2011-04-04 297168]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiif32.sys [2008-05-12 13480]
S2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [2011-03-14 84520]
S2 Application Updater;Application Updater;c:\program files\Application Updater\ApplicationUpdater.exe [2014-09-23 990584]
S2 avgfws;AVG Firewall;c:\program files\AVG\AVG10\avgfws.exe [2011-03-09 2708024]
S2 AVGIDSAgent;AVGIDSAgent;c:\program files\AVG\AVG10\Identity Protection\Agent\Bin\AVGIDSAgent.exe [2012-01-31 7391072]
S2 avgwd;AVG WatchDog;c:\program files\AVG\AVG10\avgwdsvc.exe [2011-02-08 269520]
S2 BBSvc;Bing Bar Update Service;c:\program files\Microsoft\BingBar\BBSvc.EXE [2011-10-21 196176]
S2 BBUpdate;BBUpdate;c:\program files\Microsoft\BingBar\SeaPort.EXE [2011-10-13 249648]
S2 IBUpdaterService;IBUpdaterService;c:\windows\system32\dmwu.exe [2013-05-16 1016112]
S2 NAUpdate;Nero Update;c:\program files\Nero\Update\NASvc.exe [2010-05-04 503080]
S2 OMSI download service;Sony Ericsson OMSI download service;c:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-04-30 90112]
S2 TeamViewer9;TeamViewer 9;c:\program files\TeamViewer\Version9\TeamViewer_Service.exe [2014-09-12 4799760]
S2 ThinVNCService;ThinVNC Service;c:\program files\ThinVNC\ThinVnc.exe  -svc [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-12-08 2320920]
S2 WebCake Desktop Updater;WebCake Desktop Updater;c:\program files\WADesktop.Updater.exe [2013-08-09 51992]
S2 Zabbix Agent;Zabbix Agent;c:\program files\Zabbix Agent\zabbix_agentd.exe [2010-08-16 236032]
S3 AVGIDSDriver;AVGIDSDriver;c:\windows\system32\DRIVERS\AVGIDSDriver.Sys [2011-05-27 134480]
S3 AVGIDSFilter;AVGIDSFilter;c:\windows\system32\DRIVERS\AVGIDSFilter.Sys [2011-02-10 24144]
S3 AVGIDSShim;AVGIDSShim;c:\windows\system32\DRIVERS\AVGIDSShim.Sys [2011-02-10 21968]
S3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys [2011-09-05 151936]
S3 dfmirage;dfmirage;c:\windows\system32\DRIVERS\dfmirage.sys [2010-10-28 34128]
S3 MonitorFunction;Driver for Monitor;c:\windows\system32\DRIVERS\TVMonitor.sys [2013-10-17 13304]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-03-04 277536]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [2012-07-02 25088]
S3 V0770Vid;Live! Cam Sync HD VF0770 Driver;c:\windows\system32\DRIVERS\V0770Vid.sys [2012-06-01 325376]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12	REG_MULTI_SZ   	Pml Driver HPZ12 Net Driver HPZ12
.
Obsah adrese 'Naplnovan lohy'
.
2014-09-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-06-19 08:08]
.
2014-09-24 c:\windows\Tasks\DLL-files.com Fixer_MONTHLY.job
- c:\program files\Dll-Files.com Fixer\DLLFixer.exe [2012-08-23 14:12]
.
2013-12-07 c:\windows\Tasks\DLL-files.com Fixer_UPDATES.job
- c:\program files\Dll-Files.com Fixer\DLLFixer.exe [2012-08-23 14:12]
.
2014-09-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-18 10:59]
.
2014-09-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-18 10:59]
.
2014-09-26 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-425262510-957346332-2692360-1007Core.job
- c:\users\dvorak\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-03 10:59]
.
2014-09-29 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-425262510-957346332-2692360-1007UA.job
- c:\users\dvorak\AppData\Local\Google\Update\GoogleUpdate.exe [2012-05-03 10:59]
.
.
------- Doplkov sken -------
.
uStart Page = hxxp://www.centrum.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
Trusted Zone: hp.com
TCP: DhcpNameServer = 192.168.50.1
Handler: rebinfo - {AF808758-C780-404C-A4EE-4526323FD9B6} - c:\progra~1\REBATE~1\RebateI.dll
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} - hxxps://www.mojedatovaschranka.cz/static/pages/isds/cab/filleractivex.cab?3,16,13,0
FF - ProfilePath - c:\users\dvorak\AppData\Roaming\Mozilla\Firefox\Profiles\oksxfw84.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo!
FF - prefs.js: browser.startup.homepage - www.centrum.cz
FF - prefs.js: keyword.URL - hxxps://search.yahoo.com/search?fr=greentree_ff1&ei=utf-8&ilc=12&type=971163&p=
FF - prefs.js: network.proxy.type - 0
FF - user.js: extensions.BabylonToolbar_i.id - 9c9923c60000000000001078d2728dd6
FF - user.js: extensions.BabylonToolbar_i.hardId - 9c9923c60000000000001078d2728dd6
FF - user.js: extensions.BabylonToolbar_i.instlDay - 15358
FF - user.js: extensions.BabylonToolbar_i.vrsn - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsni - 1.5.3.17
FF - user.js: extensions.BabylonToolbar_i.vrsnTs - 1.5.3.178:46
FF - user.js: extensions.BabylonToolbar_i.prtnrId - babylon
FF - user.js: extensions.BabylonToolbar_i.prdct - BabylonToolbar
FF - user.js: extensions.BabylonToolbar_i.aflt - babsst
FF - user.js: extensions.BabylonToolbar_i.smplGrp - none
FF - user.js: extensions.BabylonToolbar_i.tlbrId - base
FF - user.js: extensions.BabylonToolbar_i.newTab - false
FF - user.js: extensions.BabylonToolbar_i.babTrack - affID=108298
FF - user.js: extensions.BabylonToolbar_i.babExt - 
FF - user.js: extensions.BabylonToolbar_i.srcExt - ss
FF - user.js: extensions.BabylonToolbar_i.instlRef - sst
.
.
------- Asociace soubor -------
.
.scr=
.
- - - - NEPLATN POLOKY ODSTRANN Z REGISTRU - - - -
.
URLSearchHooks-{B922D405-6D13-4A2B-AE89-08A030DA4402} - (no file)
Toolbar-Locked - (no file)
HKCU-Run-Examiner - c:\hpdae\bin\examiner.exe
HKLM-Run-nvch - rchnewver.dll
c:\users\dvorak\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Yammer.lnk - c:\program files\Yammer\Yammer.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\Citrix XenApp.lnk - c:\windows\Installer\{388C130B-0079-46B4-A0D5-DC2DD7A89A7B}\pnaico.exe.20FBBF0A_A7E5_4BDE_9798_9811C3D135AC.exe
AddRemove-Autodesk DWF Viewer - c:\progra~1\Autodesk\AUTODE~1\Setup.exe
AddRemove-FileAssociationManager - c:\program files\FileAssociationManager\uninstall-fam.exe
AddRemove-Monty 2.0 - c:\program files\EG Brno
AddRemove-Researcher - c:\program files\Smart Compute\Researcher\uninstaller.exe
.
.
.
--------------------- ZAMKNUT KLE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jin sputen procesy ------------------------
.
c:\progra~1\AVG\AVG10\avgchsvx.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\program files\ThinVNC\ThinVnc.exe
c:\program files\AVG\AVG10\avgnsx.exe
c:\program files\AVG\AVG10\avgemcx.exe
c:\windows\system32\conhost.exe
c:\program files\AVG\AVG10\avgcsrvx.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\System32\WUDFHost.exe
c:\windows\system32\taskhost.exe
c:\program files\TeamViewer\Version9\TeamViewer.exe
c:\program files\TeamViewer\Version9\tv_w32.exe
c:\windows\system32\conhost.exe
c:\program files\Hewlett-Packard\HP Printer Utility\HPPU.exe
c:\program files\CIT.cz\CIT Reader 4\CITSpeechApp.exe
c:\program files\Lenovo\Rescue and Recovery\rrservice.exe
c:\program files\Microsoft Office\Office14\ONENOTEM.EXE
c:\windows\system32\msiexec.exe
c:\windows\system32\sppsvc.exe
c:\program files\Lenovo\System Update\SUService.exe
c:\program files\Common Files\Lenovo\tvt_reg_monitor_svc.exe
c:\program files\Common Files\Java\Java Update\jucheck.exe
c:\program files\Common Files\Hewlett-Packard\HP Printer Utility DCS\AppInterfaces\HPPUDH.exe
c:\progra~1\AVG\AVG10\avgrsx.exe
c:\program files\AVG\AVG10\avgcsrvx.exe
.
**************************************************************************
.
Celkov as: 2014-09-29  12:06:22 - pota byl restartovn
ComboFix-quarantined-files.txt  2014-09-29 10:06
.
Ped sputnm: Volnch bajt: 156757553152
Po sputn: Volnch bajt: 157739356160
.
- - End Of File - - 283D0807DB2F4AD80AE7911D2C4876E2
1A2757438A47C64E8D04630A8E2CC826
