ComboFix 13-05-01.03 - Macicek 01.05.2013  18:27:14.1.2 - x86 NETWORK
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.420.1029.18.2046.1292 [GMT 2:00]
Sputn z: c:\users\Macicek\Downloads\ComboFix.exe
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
 * Vytvoen nov Bod Obnoven
.
.
(((((((((((((((((((((((((((((((((((((((   Ostatn vmazy   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
C:\prefs.js
c:\program files\Topckit
c:\program files\Topckit\Topckit_2012.exe
c:\users\Macicek\AppData\Roaming\technic-launcher.jar
.
.
(((((((((((((((((((((((((   Soubory vytvoen od 2013-04-01 do 2013-05-01  )))))))))))))))))))))))))))))))
.
.
2013-05-01 15:06 . 2013-05-01 15:06	174	----a-w-	c:\windows\DeleteOnReboot.bat
2013-05-01 14:56 . 2013-05-01 14:56	--------	d-----w-	C:\_OTL
2013-05-01 13:53 . 2013-05-01 15:49	512	----a-w-	C:\PhysicalMBR.bin
2013-05-01 11:22 . 2013-03-06 22:33	368176	----a-w-	c:\windows\system32\drivers\aswSP.sys
2013-05-01 11:22 . 2013-03-06 22:33	29816	----a-w-	c:\windows\system32\drivers\aswFsBlk.sys
2013-05-01 11:22 . 2013-03-06 22:33	60656	----a-w-	c:\windows\system32\drivers\aswRdr2.sys
2013-05-01 11:22 . 2013-03-06 22:33	765736	----a-w-	c:\windows\system32\drivers\aswSnx.sys
2013-05-01 11:22 . 2013-03-06 22:33	62376	----a-w-	c:\windows\system32\drivers\aswTdi.sys
2013-05-01 11:22 . 2013-03-06 22:33	164736	----a-w-	c:\windows\system32\drivers\aswVmm.sys
2013-05-01 11:22 . 2013-03-06 22:33	49248	----a-w-	c:\windows\system32\drivers\aswRvrt.sys
2013-05-01 11:22 . 2013-03-06 22:33	66336	----a-w-	c:\windows\system32\drivers\aswMonFlt.sys
2013-05-01 11:22 . 2013-03-06 22:32	41664	----a-w-	c:\windows\avastSS.scr
2013-04-30 14:32 . 2013-04-30 14:33	--------	d-----w-	C:\Program Files (x86)
2013-04-30 14:26 . 2013-05-01 11:14	--------	d-----w-	c:\users\Macicek\048298C9A4D3490B9FF9AB023A9238F3.TMP
2013-04-30 13:01 . 2013-04-30 13:01	--------	d-----w-	c:\program files\Industriya
2013-04-30 13:01 . 2013-04-30 13:01	--------	d-----w-	c:\users\Macicek\AppData\Roaming\Industriya
2013-04-30 11:43 . 2013-04-10 03:08	6906960	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{D9278631-BB92-4DC9-8779-7AE8EA293594}\mpengine.dll
2013-04-27 10:11 . 2012-08-24 17:05	136560	----a-w-	c:\windows\system32\drivers\ksecpkg.sys
2013-04-27 10:11 . 2012-08-24 17:02	369856	----a-w-	c:\windows\system32\drivers\cng.sys
2013-04-27 10:11 . 2012-08-24 16:57	247808	----a-w-	c:\windows\system32\schannel.dll
2013-04-27 10:11 . 2012-08-24 16:56	1039360	----a-w-	c:\windows\system32\lsasrv.dll
2013-04-25 19:09 . 2013-04-12 13:45	1211752	----a-w-	c:\windows\system32\drivers\ntfs.sys
2013-04-23 11:47 . 2013-04-23 11:47	--------	d-----w-	c:\users\Macicek\AppData\Local\Fallout3
2013-04-22 20:08 . 2013-04-22 20:08	--------	d-----w-	c:\program files\Bethesda Softworks
2013-04-22 20:06 . 2013-04-22 20:06	200836	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2013-04-22 20:06 . 2005-04-03 21:02	753664	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2013-04-22 20:06 . 2005-04-03 21:02	69714	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2013-04-22 20:06 . 2005-04-03 21:01	274432	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2013-04-22 20:06 . 2005-04-03 21:00	184320	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2013-04-22 20:06 . 2005-04-03 20:59	5632	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2013-04-22 20:06 . 2013-04-22 20:06	331908	----a-w-	c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2013-04-22 19:28 . 2013-05-01 15:03	--------	d-----w-	c:\users\Macicek\AppData\Roaming\Wise Disk Cleaner
2013-04-22 19:27 . 2013-04-22 19:27	--------	d-----w-	c:\program files\Wise
2013-04-22 11:13 . 2013-04-22 11:13	--------	d-----w-	c:\users\Macicek\AppData\Local\FalloutNV
2013-04-21 18:35 . 2013-04-21 18:35	--------	d-----w-	C:\found.000
2013-04-21 17:45 . 2013-04-21 17:45	--------	d-----w-	c:\program files\GUMC551.tmp
2013-04-21 17:45 . 2013-03-06 22:32	228600	----a-w-	c:\windows\system32\aswBoot.exe
2013-04-21 17:29 . 2013-04-21 17:29	--------	d-----w-	C:\a517e5f18a46ac442b5d7f833e5c
2013-04-21 17:28 . 2013-05-01 11:21	--------	d-----w-	c:\program files\AVAST Software
2013-04-21 17:27 . 2013-05-01 11:21	--------	d-----w-	c:\programdata\AVAST Software
2013-04-12 12:29 . 2013-04-13 17:15	249856	------w-	c:\windows\Setup1.exe
2013-04-12 12:29 . 2013-04-13 17:15	73216	----a-w-	c:\windows\ST6UNST.EXE
2013-04-10 18:40 . 2013-04-10 19:09	43520	----a-w-	c:\windows\system32\CmdLineExt03.dll
2013-04-10 15:10 . 2013-04-10 15:10	21840	----a-w-	c:\windows\system32\SIntfNT.dll
2013-04-10 15:10 . 2013-04-10 15:10	17212	----a-w-	c:\windows\system32\SIntf32.dll
2013-04-10 15:10 . 2013-04-10 15:10	12067	----a-w-	c:\windows\system32\SIntf16.dll
2013-04-10 11:08 . 2013-03-01 03:09	2347008	----a-w-	c:\windows\system32\win32k.sys
2013-04-10 11:08 . 2013-01-24 04:47	196328	----a-w-	c:\windows\system32\drivers\fvevol.sys
2013-04-10 11:08 . 2013-03-19 05:04	3913560	----a-w-	c:\windows\system32\ntoskrnl.exe
2013-04-10 11:08 . 2013-03-19 05:04	3968856	----a-w-	c:\windows\system32\ntkrnlpa.exe
2013-04-10 11:08 . 2013-03-19 04:48	38912	----a-w-	c:\windows\system32\csrsrv.dll
2013-04-10 11:08 . 2013-03-19 02:49	69632	----a-w-	c:\windows\system32\smss.exe
2013-04-04 12:00 . 2013-04-04 12:00	--------	d-----w-	c:\users\Macicek\AppData\Local\Activision
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M vpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-04-09 12:26 . 2013-02-05 14:39	139488	----a-w-	c:\windows\system32\drivers\PnkBstrK.sys
2013-04-09 12:26 . 2013-02-05 14:39	270776	----a-w-	c:\windows\system32\PnkBstrB.xtr
2013-04-09 12:26 . 2012-11-23 19:52	270776	----a-w-	c:\windows\system32\PnkBstrB.exe
2013-04-07 12:03 . 2012-11-23 19:52	270776	----a-w-	c:\windows\system32\PnkBstrB.ex0
2013-03-18 21:27 . 2013-03-18 21:27	745472	----a-w-	c:\windows\system32\MsSpellCheckingFacility.exe
2013-03-18 21:27 . 2013-03-18 21:27	73728	----a-w-	c:\windows\system32\SetIEInstalledDate.exe
2013-03-18 21:27 . 2013-03-18 21:27	719360	----a-w-	c:\windows\system32\mshtmlmedia.dll
2013-03-18 21:27 . 2013-03-18 21:27	61952	----a-w-	c:\windows\system32\tdc.ocx
2013-03-18 21:27 . 2013-03-18 21:27	523264	----a-w-	c:\windows\system32\vbscript.dll
2013-03-18 21:27 . 2013-03-18 21:27	48640	----a-w-	c:\windows\system32\mshtmler.dll
2013-03-18 21:27 . 2013-03-18 21:27	38400	----a-w-	c:\windows\system32\imgutil.dll
2013-03-18 21:27 . 2013-03-18 21:27	361984	----a-w-	c:\windows\system32\html.iec
2013-03-18 21:27 . 2013-03-18 21:27	23040	----a-w-	c:\windows\system32\licmgr10.dll
2013-03-18 21:27 . 2013-03-18 21:27	185344	----a-w-	c:\windows\system32\elshyph.dll
2013-03-18 21:27 . 2013-03-18 21:27	158720	----a-w-	c:\windows\system32\msls31.dll
2013-03-18 21:27 . 2013-03-18 21:27	150528	----a-w-	c:\windows\system32\iexpress.exe
2013-03-18 21:27 . 2013-03-18 21:27	1441280	----a-w-	c:\windows\system32\inetcpl.cpl
2013-03-18 21:27 . 2013-03-18 21:27	138752	----a-w-	c:\windows\system32\wextract.exe
2013-03-18 21:27 . 2013-03-18 21:27	137216	----a-w-	c:\windows\system32\ieUnatt.exe
2013-03-18 21:27 . 2013-03-18 21:27	12800	----a-w-	c:\windows\system32\mshta.exe
2013-03-18 21:27 . 2013-03-18 21:27	110592	----a-w-	c:\windows\system32\IEAdvpack.dll
2013-03-13 14:15 . 2012-09-17 14:01	73432	----a-w-	c:\windows\system32\FlashPlayerCPLApp.cpl
2013-03-13 14:15 . 2012-09-17 14:01	693976	----a-w-	c:\windows\system32\FlashPlayerApp.exe
2013-03-11 23:10 . 2012-09-17 14:07	237088	------w-	c:\windows\system32\MpSigStub.exe
2013-02-25 22:22 . 2013-02-25 22:22	1985824	----a-w-	c:\windows\system32\nvcuvenc.dll
2013-02-25 22:22 . 2012-10-10 19:14	1017120	----a-w-	c:\windows\system32\nvdispco32.dll
2013-02-25 22:22 . 2013-02-25 22:22	6262608	----a-w-	c:\windows\system32\nvopencl.dll
2013-02-25 22:22 . 2013-02-25 22:22	2505144	----a-w-	c:\windows\system32\nvapi.dll
2013-02-25 22:22 . 2013-02-25 22:22	12641992	----a-w-	c:\windows\system32\nvwgf2um.dll
2013-02-25 22:22 . 2012-10-10 19:14	892704	----a-w-	c:\windows\system32\nvdispgenco32.dll
2013-02-25 22:22 . 2013-02-25 22:22	15129960	----a-w-	c:\windows\system32\nvd3dum.dll
2013-02-25 22:22 . 2013-02-25 22:22	7932256	----a-w-	c:\windows\system32\nvcuda.dll
2013-02-25 22:22 . 2013-02-25 22:22	17560352	----a-w-	c:\windows\system32\nvcompiler.dll
2013-02-25 22:22 . 2013-02-25 22:22	20449056	----a-w-	c:\windows\system32\nvoglv32.dll
2013-02-25 22:22 . 2013-02-25 22:22	8939296	----a-w-	c:\windows\system32\drivers\nvlddmkm.sys
2013-02-25 22:22 . 2013-02-25 22:22	2720544	----a-w-	c:\windows\system32\nvcuvid.dll
2013-02-12 04:48 . 2013-03-14 12:47	474112	----a-w-	c:\windows\apppatch\AcSpecfc.dll
2013-02-12 04:48 . 2013-03-14 12:47	2176512	----a-w-	c:\windows\apppatch\AcGenral.dll
2013-02-12 03:32 . 2013-03-21 13:08	15872	----a-w-	c:\windows\system32\drivers\usb8023.sys
2013-02-05 14:39 . 2012-11-23 19:52	76888	----a-w-	c:\windows\system32\PnkBstrA.exe
.
.
((((((((((((((((((((((((((((((((((   Spoutc body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznmka* przdn zznamy a legitimn vchoz daje nejsou zobrazeny. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32	121968	----a-w-	c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2012-09-17 399736]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"Akamai NetSession Interface"="c:\users\Macicek\AppData\Local\Akamai\netsession_win.exe" [2013-01-26 4480768]
"ISUSPM Startup"="c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\ISUSPM.exe" [2004-06-16 221184]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2013-01-08 18705664]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2012-07-03 252848]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2004-06-16 81920]
"CorelDRAW Graphics Suite 11b"="d:\corel\Corel Graphics 12\Languages\CZ\Programs\Registration.exe" [2004-06-22 729088]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-12-03 946352]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2010-03-25 2516296]
"CanonSolutionMenuEx"="c:\program files\Canon\Solution Menu EX\CNSEMAIN.EXE" [2010-04-02 1185112]
"LogMeIn Hamachi Ui"="c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe" [2012-12-10 2254768]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
McAfee Security Scan Plus.lnk - c:\program files\McAfee Security Scan\3.0.318\SSScheduler.exe [2013-2-5 272248]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
R1 aswSnx;aswSnx; [x]
R1 aswSP;aswSP; [x]
R2 aswFsBlk;aswFsBlk; [x]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [x]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files\McAfee Security Scan\3.0.318\McCHSvc.exe [x]
R3 npggsvc;nProtect GameGuard Service;c:\windows\system32\GameMon.des [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 vtany;vtany;c:\windows\vtany.sys [x]
R3 WatAdminSvc;Sluba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 xhunter1;xhunter1;c:\windows\xhunter1.sys [x]
S0 aswRvrt;aswRvrt; [x]
S0 aswVmm;aswVmm; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation	REG_MULTI_SZ   	SSDPSRV upnphost SCardSvr TBS fdrespub AppIDSvc QWAVE wcncsvc Mcx2Svc SensrSvc
GPSvcGroup	REG_MULTI_SZ   	GPSvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost  - LocalService
FontCache
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-04-12 11:59	1642448	----a-w-	c:\program files\Google\Chrome\Application\26.0.1410.64\Installer\chrmstp.exe
.
Obsah adrese 'Naplnovan lohy'
.
2013-05-01 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-09-17 14:16]
.
2013-05-01 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2013-05-01 22:32]
.
2013-05-01 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-06 13:49]
.
2013-04-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-02-06 13:49]
.
2012-09-17 c:\windows\Tasks\SpeedyPC Pro.job
- c:\program files\SpeedyPC Software\SpeedyPC\SpeedyPC.exe [2012-01-30 22:17]
.
2013-04-29 c:\windows\Tasks\SpeedyPC Registration3.job
- c:\program files\Common Files\SpeedyPC Software\UUS3\UUS3.dll [2012-01-30 22:17]
.
2012-09-17 c:\windows\Tasks\SpeedyPC Update Version3.job
- c:\program files\Common Files\SpeedyPC Software\UUS3\SpeedyPC_Update3.exe [2012-01-30 22:17]
.
.
------- Doplkov sken -------
.
uStart Page = hxxp://searchou.com/?id=d88ba14d0000000000001c6f65c9fe2b
uInternet Settings,ProxyOverride = <local>
TCP: DhcpNameServer = 192.168.1.254
.
- - - - NEPLATN POLOKY ODSTRANN Z REGISTRU - - - -
.
HKCU-Run-RGSC - c:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe
HKCU-Run-AdobeBridge - (no file)
HKLM-Run-4StoryPrePatch - d:\4story_cz\PrePatch.exe
AddRemove-MagniPic - c:\progra~2\INSTAL~2\MagniPic\Setup.exe
AddRemove-SP_b0285714 - c:\program files\WebSearch\uninstall.exe
AddRemove-SP_d8283021 - c:\program files\MagniPic\uninstall.exe
AddRemove-{49444BC5-E435-8CB5-36D0-607B7446CA9A} - c:\progra~2\INSTAL~2\{6B81D~1\Setup.exe
AddRemove-{8C99D616-3033-42AA-A041-7811577AF4E0} - c:\progra~2\INSTAL~2\{8C99D~1\Setup.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
--------------------- ZAMKNUT KLE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3782125742-1216011670-499472596-1000\Software\SecuROM\License information*]
"datasecu"=hex:28,ec,2f,4a,00,97,e4,7f,c6,34,1e,85,68,4c,88,46,c2,b0,4d,a4,f6,
   90,09,ce,b3,a5,92,3d,0d,87,b2,fc,0e,16,b3,bf,52,7f,68,39,5c,3f,c5,90,01,72,\
"rkeysecu"=hex:ae,72,2f,50,94,c2,76,12,c0,24,e5,49,d5,f8,6b,f3
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkov as: 2013-05-01  18:32:27
ComboFix-quarantined-files.txt  2013-05-01 16:32
.
Ped sputnm: Volnch bajt: 391248551936
Po sputn: Volnch bajt: 391157051392
.
- - End Of File - - 15D2D9DCB53A6DF59661EBA75E14A604
