ComboFix 15-01-22.02 - hokaj 22.01.2015  21:53:39.1.4 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.420.1029.18.8173.3144 [GMT 1:00]
Sputn z: c:\users\hokaj\Desktop\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((   Soubory vytvoen od 2014-12-22 do 2015-01-22  )))))))))))))))))))))))))))))))
.
.
2015-01-22 20:57 . 2015-01-22 20:57	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-01-21 21:50 . 2015-01-21 21:50	--------	d-----w-	c:\users\hokaj\AppData\Roaming\Assassin's Creed Unity
2015-01-21 20:42 . 2015-01-22 13:51	75888	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{24DF17E3-84E6-4C3B-B011-45244DFE2C95}\offreg.dll
2015-01-21 14:01 . 2014-12-15 03:13	11870360	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{24DF17E3-84E6-4C3B-B011-45244DFE2C95}\mpengine.dll
2015-01-20 19:11 . 2015-01-22 20:57	--------	d-----w-	c:\users\hokaj\AppData\Local\Temp
2015-01-20 17:41 . 2015-01-20 19:11	--------	d-----w-	C:\FRST
2015-01-19 14:25 . 2015-01-20 15:57	--------	d-----w-	c:\users\hokaj\AppData\Local\Ubisoft Game Launcher
2015-01-19 14:25 . 2015-01-19 14:25	--------	d-----w-	c:\program files (x86)\Ubisoft
2015-01-19 05:28 . 2015-01-19 05:35	--------	d-----w-	c:\users\hokaj\AppData\Local\GeometryWars3Dimensions
2015-01-19 05:21 . 2015-01-19 05:21	--------	d-----w-	c:\users\hokaj\AppData\Local\SKIDROW
2015-01-18 01:38 . 2015-01-18 01:38	--------	d-----w-	c:\users\hokaj\AppData\Roaming\Far Cry 4
2015-01-16 03:04 . 2013-04-09 23:34	1247744	----a-w-	c:\windows\SysWow64\DWrite.dll
2015-01-16 03:04 . 2013-04-02 22:51	1643520	----a-w-	c:\windows\system32\DWrite.dll
2015-01-15 16:13 . 2015-01-15 16:13	--------	d-----w-	c:\programdata\BlueSprig
2015-01-15 15:37 . 2014-05-12 19:11	60636160	----a-w-	c:\windows\system32\RCoRes64.dat
2015-01-15 15:10 . 2005-11-13 22:19	5632	----a-w-	c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\11\50\Intel32\DotNetInstaller.exe
2015-01-15 14:40 . 2015-01-15 14:40	--------	d-----w-	c:\programdata\EA Logs
2015-01-15 13:29 . 2014-12-12 05:35	5553592	----a-w-	c:\windows\system32\ntoskrnl.exe
2015-01-15 13:29 . 2014-12-12 05:11	3971512	----a-w-	c:\windows\SysWow64\ntkrnlpa.exe
2015-01-15 13:29 . 2014-12-12 05:11	3916728	----a-w-	c:\windows\SysWow64\ntoskrnl.exe
2015-01-15 13:29 . 2014-12-12 05:31	503808	----a-w-	c:\windows\system32\srcore.dll
2015-01-15 13:29 . 2014-12-12 05:31	50176	----a-w-	c:\windows\system32\srclient.dll
2015-01-15 13:29 . 2014-12-12 05:31	296960	----a-w-	c:\windows\system32\rstrui.exe
2015-01-15 13:29 . 2014-12-12 05:07	43008	----a-w-	c:\windows\SysWow64\srclient.dll
2015-01-15 12:40 . 2015-01-15 12:40	--------	d-----w-	c:\programdata\Lavasoft
2015-01-15 10:21 . 2015-01-15 10:21	--------	d-----w-	c:\program files (x86)\Quake Live
2015-01-15 09:30 . 2015-01-15 09:30	--------	d-----w-	C:\inetpub
2015-01-15 09:17 . 2015-01-15 09:17	--------	d--h--w-	c:\program files (x86)\Common Files\EAInstaller
2015-01-10 23:57 . 2015-01-15 14:30	--------	d-----w-	c:\users\hokaj\AppData\Local\Glyph
2015-01-10 23:57 . 2015-01-10 23:57	--------	d-----w-	c:\programdata\Glyph
2015-01-07 23:30 . 2015-01-07 23:30	--------	d-----w-	c:\program files (x86)\Common Files\Java
2015-01-07 23:30 . 2015-01-07 23:30	98216	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-01-07 23:30 . 2015-01-07 23:30	--------	d-----w-	c:\programdata\Oracle
2015-01-07 23:30 . 2015-01-07 23:30	--------	d-----w-	c:\program files (x86)\Java
2015-01-07 19:36 . 2015-01-07 19:37	--------	d-----w-	c:\users\hokaj\AppData\Local\Overwolf
2015-01-05 19:45 . 2015-01-17 14:08	--------	d-----w-	C:\Downloads
2015-01-04 21:36 . 2015-01-04 21:42	--------	d-----w-	c:\users\hokaj\AppData\Local\paint.net
2015-01-04 00:18 . 2015-01-04 00:18	--------	d-----w-	c:\program files\CCleaner
2015-01-03 23:06 . 2015-01-08 03:02	--------	d-----w-	c:\programdata\TrackMania
2015-01-03 14:47 . 2015-01-03 14:47	--------	d-----w-	c:\users\hokaj\AppData\Roaming\BANDISOFT
2015-01-01 17:06 . 2015-01-03 14:47	--------	d-----w-	c:\users\hokaj\AppData\Roaming\NVIDIA
2015-01-01 16:15 . 2015-01-01 16:15	--------	d-----w-	c:\users\hokaj\AppData\Local\id Software
2015-01-01 16:15 . 2015-01-01 16:15	--------	d-----w-	c:\users\hokaj\AppData\Local\Launcher
2014-12-26 02:21 . 2014-12-26 02:21	--------	d-----w-	c:\users\hokaj\AppData\Roaming\Steam
2014-12-24 20:32 . 2014-12-25 22:41	--------	d-----w-	c:\users\hokaj\AppData\Roaming\Origin
2014-12-24 20:32 . 2014-12-24 20:35	--------	d-----w-	c:\users\hokaj\AppData\Local\Origin
2014-12-24 20:14 . 2014-12-24 20:14	--------	d-----w-	c:\program files (x86)\AGEIA Technologies
2014-12-24 20:14 . 2014-12-13 00:47	620176	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2014-12-24 07:19 . 2015-01-22 16:33	129752	----a-w-	c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-12-24 07:19 . 2014-12-24 07:19	--------	d-----w-	c:\program files (x86)\Malwarebytes Anti-Malware
2014-12-24 07:19 . 2014-12-24 07:19	--------	d-----w-	c:\programdata\Malwarebytes
2014-12-24 07:19 . 2014-11-21 05:14	63704	----a-w-	c:\windows\system32\drivers\mwac.sys
2014-12-24 07:19 . 2014-11-21 05:14	93400	----a-w-	c:\windows\system32\drivers\mbamchameleon.sys
2014-12-24 07:19 . 2014-11-21 05:14	25816	----a-w-	c:\windows\system32\drivers\mbam.sys
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M vpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-01-22 20:42 . 2014-12-17 00:29	71344	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-01-22 20:42 . 2014-12-17 00:29	701616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-01-15 13:31 . 2014-12-17 02:29	113365784	----a-w-	c:\windows\system32\MRT.exe
2015-01-06 03:36 . 2010-11-21 03:27	298120	------w-	c:\windows\system32\MpSigStub.exe
2014-12-21 18:51 . 2014-12-20 19:57	18960	----a-w-	c:\windows\system32\drivers\LNonPnP.sys
2014-12-18 00:40 . 2014-06-01 04:18	283064	----a-w-	c:\windows\system32\drivers\dtsoftbus01.sys
2014-12-17 04:09 . 2014-12-17 04:09	194048	----a-w-	c:\windows\SysWow64\elshyph.dll
2014-12-17 04:09 . 2014-12-17 04:09	942592	----a-w-	c:\windows\system32\jsIntl.dll
2014-12-17 04:09 . 2014-12-17 04:09	90112	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2014-12-17 04:09 . 2014-12-17 04:09	86016	----a-w-	c:\windows\SysWow64\iesysprep.dll
2014-12-17 04:09 . 2014-12-17 04:09	86016	----a-w-	c:\windows\system32\RegisterIEPKEYs.exe
2014-12-17 04:09 . 2014-12-17 04:09	814080	----a-w-	c:\windows\system32\jscript9diag.dll
2014-12-17 04:09 . 2014-12-17 04:09	77824	----a-w-	c:\windows\system32\JavaScriptCollectionAgent.dll
2014-12-17 04:09 . 2014-12-17 04:09	77312	----a-w-	c:\windows\system32\tdc.ocx
2014-12-17 04:09 . 2014-12-17 04:09	74240	----a-w-	c:\windows\SysWow64\SetIEInstalledDate.exe
2014-12-17 04:09 . 2014-12-17 04:09	71680	----a-w-	c:\windows\SysWow64\RegisterIEPKEYs.exe
2014-12-17 04:09 . 2014-12-17 04:09	645120	----a-w-	c:\windows\SysWow64\jsIntl.dll
2014-12-17 04:09 . 2014-12-17 04:09	64000	----a-w-	c:\windows\SysWow64\MshtmlDac.dll
2014-12-17 04:09 . 2014-12-17 04:09	633856	----a-w-	c:\windows\system32\ieui.dll
2014-12-17 04:09 . 2014-12-17 04:09	62464	----a-w-	c:\windows\SysWow64\tdc.ocx
2014-12-17 04:09 . 2014-12-17 04:09	62464	----a-w-	c:\windows\SysWow64\iesetup.dll
2014-12-17 04:09 . 2014-12-17 04:09	620032	----a-w-	c:\windows\SysWow64\jscript9diag.dll
2014-12-17 04:09 . 2014-12-17 04:09	60416	----a-w-	c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2014-12-17 04:09 . 2014-12-17 04:09	6039552	----a-w-	c:\windows\system32\jscript9.dll
2014-12-17 04:09 . 2014-12-17 04:09	54784	----a-w-	c:\windows\system32\jsproxy.dll
2014-12-17 04:09 . 2014-12-17 04:09	52224	----a-w-	c:\windows\system32\msfeedsbs.dll
2014-12-17 04:09 . 2014-12-17 04:09	501248	----a-w-	c:\windows\SysWow64\vbscript.dll
2014-12-17 04:09 . 2014-12-17 04:09	48640	----a-w-	c:\windows\SysWow64\mshtmler.dll
2014-12-17 04:09 . 2014-12-17 04:09	48640	----a-w-	c:\windows\system32\mshtmler.dll
2014-12-17 04:09 . 2014-12-17 04:09	47616	----a-w-	c:\windows\SysWow64\ieetwproxystub.dll
2014-12-17 04:09 . 2014-12-17 04:09	4299264	----a-w-	c:\windows\SysWow64\jscript9.dll
2014-12-17 04:09 . 2014-12-17 04:09	36352	----a-w-	c:\windows\SysWow64\imgutil.dll
2014-12-17 04:09 . 2014-12-17 04:09	337408	----a-w-	c:\windows\SysWow64\html.iec
2014-12-17 04:09 . 2014-12-17 04:09	2885120	----a-w-	c:\windows\system32\iertutil.dll
2014-12-17 04:09 . 2014-12-17 04:09	2724864	----a-w-	c:\windows\SysWow64\mshtml.tlb
2014-12-17 04:09 . 2014-12-17 04:09	247808	----a-w-	c:\windows\system32\msls31.dll
2014-12-17 04:09 . 2014-12-17 04:09	24576	----a-w-	c:\windows\SysWow64\licmgr10.dll
2014-12-17 04:09 . 2014-12-17 04:09	2358272	----a-w-	c:\windows\system32\wininet.dll
2014-12-17 04:09 . 2014-12-17 04:09	235008	----a-w-	c:\windows\system32\elshyph.dll
2014-12-17 04:09 . 2014-12-17 04:09	2052096	----a-w-	c:\windows\SysWow64\inetcpl.cpl
2014-12-17 04:09 . 2014-12-17 04:09	199680	----a-w-	c:\windows\system32\msrating.dll
2014-12-17 04:09 . 2014-12-17 04:09	1888256	----a-w-	c:\windows\SysWow64\wininet.dll
2014-12-17 04:09 . 2014-12-17 04:09	182272	----a-w-	c:\windows\SysWow64\msls31.dll
2014-12-17 04:09 . 2014-12-17 04:09	1548288	----a-w-	c:\windows\system32\urlmon.dll
2014-12-17 04:09 . 2014-12-17 04:09	151552	----a-w-	c:\windows\SysWow64\iexpress.exe
2014-12-17 04:09 . 2014-12-17 04:09	14412800	----a-w-	c:\windows\system32\ieframe.dll
2014-12-17 04:09 . 2014-12-17 04:09	139264	----a-w-	c:\windows\SysWow64\wextract.exe
2014-12-17 04:09 . 2014-12-17 04:09	13312	----a-w-	c:\windows\SysWow64\mshta.exe
2014-12-17 04:09 . 2014-12-17 04:09	13312	----a-w-	c:\windows\system32\msfeedssync.exe
2014-12-17 04:09 . 2014-12-17 04:09	131072	----a-w-	c:\windows\system32\IEAdvpack.dll
2014-12-17 04:09 . 2014-12-17 04:09	1155072	----a-w-	c:\windows\SysWow64\mshtmlmedia.dll
2014-12-17 04:09 . 2014-12-17 04:09	111616	----a-w-	c:\windows\SysWow64\IEAdvpack.dll
2014-12-17 04:09 . 2014-12-17 04:09	105984	----a-w-	c:\windows\system32\iesysprep.dll
2014-12-17 04:09 . 2014-12-17 04:09	92160	----a-w-	c:\windows\system32\mshtmled.dll
2014-12-17 04:09 . 2014-12-17 04:09	88064	----a-w-	c:\windows\system32\MshtmlDac.dll
2014-12-17 04:09 . 2014-12-17 04:09	81408	----a-w-	c:\windows\system32\icardie.dll
2014-12-17 04:09 . 2014-12-17 04:09	800768	----a-w-	c:\windows\system32\msfeeds.dll
2014-12-17 04:09 . 2014-12-17 04:09	800768	----a-w-	c:\windows\system32\ieapfltr.dll
2014-12-17 04:09 . 2014-12-17 04:09	774144	----a-w-	c:\windows\system32\jscript.dll
2014-12-17 04:09 . 2014-12-17 04:09	718848	----a-w-	c:\windows\system32\ie4uinit.exe
2014-12-17 04:09 . 2014-12-17 04:09	66560	----a-w-	c:\windows\system32\iesetup.dll
2014-12-17 04:09 . 2014-12-17 04:09	62464	----a-w-	c:\windows\system32\pngfilt.dll
2014-12-17 04:09 . 2014-12-17 04:09	616104	----a-w-	c:\windows\system32\ieapfltr.dat
2014-12-17 04:09 . 2014-12-17 04:09	580096	----a-w-	c:\windows\system32\vbscript.dll
2014-12-17 04:09 . 2014-12-17 04:09	490496	----a-w-	c:\windows\system32\dxtmsft.dll
2014-12-17 04:09 . 2014-12-17 04:09	48640	----a-w-	c:\windows\system32\ieetwproxystub.dll
2014-12-17 04:09 . 2014-12-17 04:09	48128	----a-w-	c:\windows\system32\imgutil.dll
2014-12-17 04:09 . 2014-12-17 04:09	413696	----a-w-	c:\windows\system32\html.iec
2014-12-17 04:09 . 2014-12-17 04:09	4096	----a-w-	c:\windows\system32\ieetwcollectorres.dll
2014-12-17 04:09 . 2014-12-17 04:09	389296	----a-w-	c:\windows\system32\iedkcs32.dll
2014-12-17 04:09 . 2014-12-17 04:09	34304	----a-w-	c:\windows\system32\iernonce.dll
2014-12-17 04:09 . 2014-12-17 04:09	316928	----a-w-	c:\windows\system32\dxtrans.dll
2014-12-17 04:09 . 2014-12-17 04:09	30208	----a-w-	c:\windows\system32\licmgr10.dll
2014-12-17 04:09 . 2014-12-17 04:09	2724864	----a-w-	c:\windows\system32\mshtml.tlb
2014-12-17 04:09 . 2014-12-17 04:09	25059840	----a-w-	c:\windows\system32\mshtml.dll
2014-12-17 04:09 . 2014-12-17 04:09	243200	----a-w-	c:\windows\system32\webcheck.dll
2014-12-17 04:09 . 2014-12-17 04:09	235520	----a-w-	c:\windows\system32\url.dll
2014-12-17 04:09 . 2014-12-17 04:09	2125312	----a-w-	c:\windows\system32\inetcpl.cpl
2014-12-17 04:09 . 2014-12-17 04:09	167424	----a-w-	c:\windows\system32\iexpress.exe
2014-12-17 04:09 . 2014-12-17 04:09	147968	----a-w-	c:\windows\system32\occache.dll
2014-12-17 04:09 . 2014-12-17 04:09	143872	----a-w-	c:\windows\system32\wextract.exe
2014-12-17 04:09 . 2014-12-17 04:09	13824	----a-w-	c:\windows\system32\mshta.exe
2014-12-17 04:09 . 2014-12-17 04:09	1359360	----a-w-	c:\windows\system32\mshtmlmedia.dll
2014-12-17 04:09 . 2014-12-17 04:09	135680	----a-w-	c:\windows\system32\iepeers.dll
2014-12-17 04:09 . 2014-12-17 04:09	114688	----a-w-	c:\windows\system32\ieetwcollector.exe
2014-12-17 04:09 . 2014-12-17 04:09	101376	----a-w-	c:\windows\system32\inseng.dll
2014-12-16 23:50 . 2010-06-24 19:33	23256	----a-w-	c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2014-12-13 10:08 . 2014-12-16 23:44	74056	----a-w-	c:\windows\system32\OpenCL.dll
2014-12-13 10:08 . 2014-12-16 23:44	60560	----a-w-	c:\windows\SysWow64\OpenCL.dll
2014-12-13 10:08 . 2014-12-16 23:39	994384	----a-w-	c:\windows\system32\nvumdshimx.dll
2014-12-13 10:08 . 2014-12-16 23:39	18594432	----a-w-	c:\windows\system32\nvwgf2umx.dll
2014-12-13 10:08 . 2014-12-16 23:39	3293136	----a-w-	c:\windows\system32\nvapi64.dll
2014-12-13 10:08 . 2014-12-16 23:39	14128496	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2014-12-13 08:03 . 2014-12-16 23:44	6859408	----a-w-	c:\windows\system32\nvcpl.dll
2014-12-13 08:03 . 2014-12-16 23:44	3513488	----a-w-	c:\windows\system32\nvsvc64.dll
2014-12-13 08:03 . 2014-12-16 23:44	935240	----a-w-	c:\windows\system32\nvvsvc.exe
2014-12-13 08:03 . 2014-12-16 23:44	62608	----a-w-	c:\windows\system32\nvshext.dll
2014-12-13 08:03 . 2014-12-16 23:44	386368	----a-w-	c:\windows\system32\nvmctray.dll
2014-12-13 08:03 . 2014-12-16 23:44	2558608	----a-w-	c:\windows\system32\nvsvcr.dll
2014-12-13 05:09 . 2014-12-18 17:44	144384	----a-w-	c:\windows\system32\ieUnatt.exe
.
.
((((((((((((((((((((((((((((((((((   Spoutc body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznmka* przdn zznamy a legitimn vchoz daje nejsou zobrazeny. 
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="d:\programy\DAEMON Tools Lite\DTLite.exe" [2014-03-04 3696912]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;d:\programy\BitComet\tools\BitCometService.exe;d:\programy\BitComet\tools\BitCometService.exe [x]
R3 cpuz134;cpuz134;c:\users\hokaj\AppData\Local\Temp\cpuz134\cpuz134_x64.sys;c:\users\hokaj\AppData\Local\Temp\cpuz134\cpuz134_x64.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des;c:\windows\SYSNATIVE\GameMon.des [x]
R3 Origin Client Service;Origin Client Service;d:\hry\Origin\OriginClientService.exe;d:\hry\Origin\OriginClientService.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan60.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 VLAN;Realtek Virtual Miniport Driver for VLAN (NDIS 6.2);c:\windows\system32\DRIVERS\RtVLAN60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVLAN60.sys [x]
R3 WatAdminSvc;Sluba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 asComSvc;ASUS Com Service;c:\program files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe;c:\program files (x86)\ASUS\AXSP\1.00.13\atkexComSvc.exe [x]
S2 asHmComSvc;ASUS HM Com Service;c:\program files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe;c:\program files (x86)\ASUS\AAHM\1.00.13\aaHMSvc.exe [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.11\AsSysCtrlService.exe [x]
S2 Device Handle Service;Device Handle Service;c:\windows\SysWOW64\AsHookDevice.exe;c:\windows\SysWOW64\AsHookDevice.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 RzKLService;RzKLService;d:\programy\Razer Cortex\RzKLService.exe;d:\programy\Razer Cortex\RzKLService.exe [x]
S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
Hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
iissvcs	REG_MULTI_SZ   	w3svc was
apphost	REG_MULTI_SZ   	apphostsvc
.
Obsah adrese 'Naplnovan lohy'
.
2015-01-22 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2014-12-17 20:42]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2014-10-14 12697368]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2014-05-14 7575768]
.
------- Doplkov sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.com
uDefault_Search_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.google.com
IE: Sthnout odkaz s pouitm BitCometu - d:\programy\BitComet\BitComet.exe/AddLink.htm
IE: Sthnout vechny odkazy s pouitm BitCometu - d:\programy\BitComet\BitComet.exe/AddAllLink.htm
TCP: Interfaces\{4B3DC229-55F7-414A-A788-ED9A686DC2DC}: NameServer = 62.129.50.20,85.135.32.100
FF - ProfilePath - c:\users\hokaj\AppData\Roaming\Mozilla\Firefox\Profiles\ixvqc3mx.default\
FF - prefs.js: browser.startup.homepage - hxxps://seznam.cz/
.
- - - - NEPLATN POLOKY ODSTRANN Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
Toolbar-Locked - (no file)
AddRemove-Far Cry 4_is1 - d:\hry\Far Cry 4\unins000.exe
AddRemove-RmFyQ3J5NA==_is1 - d:\hry\Far Cry 4\Far Cry 4\Far Cry 4\unins000.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZAMKNUT KLE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_16_0_0_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_16_0_0_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.16"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_16_0_0_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkov as: 2015-01-22  21:58:19
ComboFix-quarantined-files.txt  2015-01-22 20:58
.
Ped sputnm: Volnch bajt: 276183515136
Po sputn: Volnch bajt: 276147257344
.
- - End Of File - - B25668ED1289C4B199DEBF60EF881752
4976D4A7A40B83FC7F06EE4BDD84EB9B
