ComboFix 13-12-24.01 - EkZiT 24.12.2013  13:29:12.3.2 - x64
Microsoft Windows 7 Home Premium   6.1.7601.1.1250.420.1029.18.6142.3420 [GMT 1:00]
Sputn z: c:\users\EkZiT\Downloads\Desktop\ComboFix.exe
FW: COMODO Firewall *Enabled* {8F7746F7-FE68-E084-3B6C-7404A51E8FB3}
SP: COMODO Antivirus *Disabled/Outdated* {0C2D2636-923D-EE52-2A83-E643204A8275}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Ostatn vmazy   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Amazon.ico
c:\programdata\MercadoLivre.ico
c:\users\EkZiT\AppData\Local\MSGBOX.EXE
c:\users\EkZiT\AppData\Roaming\.#
c:\users\EkZiT\xobglu32.dll
c:\windows\SysWow64\frapsvid.dll
c:\windows\SysWow64\themeui.dll.tmp
c:\windows\SysWow64\uxtheme.dll.tmp
D:\install.exe
L:\EXPLORER.EXE
L:\reg.reg
.
.
(((((((((((((((((((((((((((((((((((((((   Ovladae/Sluby   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NEWDRIVER
-------\Service_NEWDRIVER
-------\Service_Run
.
.
(((((((((((((((((((((((((   Soubory vytvoen od 2013-11-24 do 2013-12-24  )))))))))))))))))))))))))))))))
.
.
2013-12-24 12:39 . 2013-12-24 12:43	--------	d-----w-	c:\users\EkZiT\AppData\Local\temp
2013-12-24 12:39 . 2013-12-24 12:39	--------	d-----w-	c:\users\repair\AppData\Local\temp
2013-12-24 12:39 . 2013-12-24 12:39	--------	d-----w-	c:\users\Public\AppData\Local\temp
2013-12-24 12:39 . 2013-12-24 12:39	--------	d-----w-	c:\users\Guest\AppData\Local\temp
2013-12-24 12:39 . 2013-12-24 12:39	--------	d-----w-	c:\users\DefaultAppPool\AppData\Local\temp
2013-12-24 12:39 . 2013-12-24 12:39	--------	d-----w-	c:\users\Default\AppData\Local\temp
2013-12-24 12:39 . 2013-12-24 12:39	--------	d-----w-	c:\users\AppData\AppData\Local\temp
2013-12-24 08:11 . 2013-12-04 03:28	10315576	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{28162E42-60A2-4FBD-BDA2-B5D90CB69EBE}\mpengine.dll
2013-12-23 22:12 . 2013-12-23 22:12	119808	----a-r-	c:\users\EkZiT\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2013-12-23 22:04 . 2013-12-23 22:04	--------	d-----w-	c:\program files (x86)\WinToFlash Suggestor
2013-12-23 07:48 . 2013-12-23 07:48	9728	----a-w-	c:\windows\system32\drivers\umpass.sys.bak
2013-12-23 07:44 . 2013-04-04 13:50	25928	----a-w-	c:\windows\system32\drivers\mbam.sys
2013-12-23 07:44 . 2013-12-23 07:44	--------	d-----w-	c:\program files (x86)\Malwarebytes' Anti-Malware
2013-12-23 07:32 . 2013-12-23 07:32	--------	d-----w-	C:\found.000
2013-12-23 07:10 . 2013-12-23 07:25	--------	d-----w-	C:\AdwCleaner
2013-12-23 07:01 . 2013-12-23 07:15	--------	d-----w-	C:\rsit
2013-12-23 07:01 . 2013-12-23 07:01	--------	d-----w-	c:\program files\trend micro
2013-12-23 06:53 . 2013-12-23 06:53	--------	d-----w-	C:\FRST
2013-12-23 05:34 . 2013-12-23 05:34	--------	d-----w-	c:\users\EkZiT\AppData\Roaming\Malwarebytes
2013-12-23 04:14 . 2013-12-23 04:14	--------	d-----w-	c:\programdata\HP
2013-12-23 04:08 . 2013-12-23 04:08	15856	----a-w-	c:\users\cc_20131223_050851.reg
2013-12-20 21:39 . 2013-12-05 08:42	39200	----a-w-	c:\windows\system32\drivers\nvvad64v.sys
2013-12-20 21:39 . 2013-12-05 08:42	32544	----a-w-	c:\windows\SysWow64\nvaudcap32v.dll
2013-12-14 23:51 . 2013-12-14 23:51	--------	d-----w-	c:\users\EkZiT\AppData\Roaming\Proxy Studios
2013-12-14 22:35 . 2013-12-14 22:35	--------	d-----w-	c:\users\EkZiT\AppData\Roaming\Gomo
2013-12-14 21:54 . 2013-12-14 21:54	--------	d-----w-	C:\Games
2013-12-12 13:39 . 2013-03-07 08:49	16256	----a-w-	c:\windows\system32\EuEpmGdi.dll
2013-12-12 13:39 . 2013-04-11 13:10	2498216	----a-w-	c:\windows\SysWow64\BootMan.exe
2013-12-12 13:39 . 2013-03-28 18:02	3376640	----a-w-	c:\windows\system32\BootMan.exe
2013-12-12 13:39 . 2013-03-07 08:49	9160	----a-w-	c:\windows\SysWow64\EuGdiDrv.sys
2013-12-12 13:39 . 2013-03-07 08:49	87112	----a-w-	c:\windows\SysWow64\setupempdrv03.exe
2013-12-12 13:39 . 2013-03-07 08:49	13896	----a-w-	c:\windows\SysWow64\epmntdrv.sys
2013-12-12 13:39 . 2013-03-07 08:49	9800	----a-w-	c:\windows\system32\EuGdiDrv.sys
2013-12-12 13:39 . 2013-03-07 08:49	17480	----a-w-	c:\windows\system32\epmntdrv.sys
2013-12-12 13:39 . 2013-03-07 08:49	100936	----a-w-	c:\windows\system32\setupempdrvx64.exe
2013-12-12 13:39 . 2013-03-07 08:49	19840	----a-w-	c:\windows\SysWow64\EuEpmGdi.dll
2013-12-12 13:39 . 2013-12-12 13:39	--------	d-----w-	c:\program files (x86)\EaseUS
2013-12-02 17:08 . 2013-12-08 13:55	--------	d-----w-	C:\____new
2013-11-29 18:46 . 2013-11-29 18:46	--------	d-----w-	C:\debug
2013-11-29 18:45 . 2013-12-23 06:24	--------	d-----w-	c:\program files (x86)\Windows Doctor
2013-11-29 13:56 . 2013-11-29 13:56	63488	----a-w-	c:\users\EkZiT\xobglu16.dll
2013-11-29 00:21 . 2013-11-29 00:21	128796	----a-w-	c:\users\cc_20131129_012109.reg
2013-11-27 01:38 . 2013-11-27 01:40	3140	--sha-w-	c:\windows\SysWow64\KGyGaAvL.sys
2013-11-27 01:38 . 2013-11-27 01:38	8	--sh--r-	c:\windows\SysWow64\2912DA9DF7.sys
2013-11-27 01:38 . 2013-11-27 01:38	--------	d-----w-	c:\users\EkZiT\AppData\Roaming\Corel
2013-11-27 01:36 . 2013-11-27 01:36	65536	----a-r-	c:\users\EkZiT\AppData\Roaming\Microsoft\Installer\{F428D0FB-765D-40EB-BDD8-A1E7F5C597FA}\Shortcut0.C3A146F5_4B48_11D5_A819_00B0D0428C0C.exe
2013-11-27 01:35 . 2013-11-27 01:35	--------	d-----w-	c:\program files (x86)\Common Files\Protexis
2013-11-27 01:34 . 2013-11-27 01:34	--------	d-----w-	c:\programdata\Corel
2013-11-27 01:34 . 2013-11-27 01:34	--------	d-----w-	c:\program files (x86)\Corel
2013-11-27 01:34 . 2013-11-27 01:34	--------	d-----w-	c:\program files (x86)\Common Files\Corel
2013-11-27 01:18 . 2013-11-27 01:18	--------	d-----w-	c:\users\EkZiT\AppData\Roaming\Autodesk
2013-11-27 01:18 . 2013-11-27 01:18	--------	d-----w-	c:\programdata\Alias
2013-11-26 23:32 . 2013-11-26 23:45	--------	d-----w-	c:\program files (x86)\Need For Speed Rivals
2013-11-26 20:01 . 2013-11-26 20:01	--------	d-----w-	c:\users\EkZiT\AppData\Roaming\dekovir
.
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M vpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-24 01:24 . 2011-12-11 07:43	290184	----a-w-	c:\windows\SysWow64\PnkBstrB.exe
2013-12-24 01:24 . 2011-10-07 21:11	290184	----a-w-	c:\windows\SysWow64\PnkBstrB.xtr
2013-12-24 01:23 . 2011-12-11 07:43	280904	----a-w-	c:\windows\SysWow64\PnkBstrB.ex0
2013-12-20 21:29 . 2011-12-11 07:43	76888	----a-w-	c:\windows\SysWow64\PnkBstrA.exe
2013-12-16 02:00 . 2010-06-03 14:00	90708896	----a-w-	c:\windows\system32\MRT.exe
2013-12-10 23:18 . 2012-11-18 20:31	692616	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-10 23:18 . 2011-08-06 05:26	71048	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-10 02:13 . 2013-11-20 16:46	982232	----a-w-	c:\windows\SysWow64\nvspcap.dll
2013-12-10 02:13 . 2013-11-20 16:46	1100248	----a-w-	c:\windows\system32\nvspcap64.dll
2013-12-05 08:42 . 2013-10-02 00:03	35104	----a-w-	c:\windows\system32\nvaudcap64v.dll
2013-11-20 11:36 . 2013-11-20 11:36	27760	----a-w-	c:\windows\system32\drivers\ggsemc.sys
2013-11-20 11:36 . 2013-11-20 11:36	1721576	----a-w-	c:\windows\system32\WdfCoInstaller01009.dll
2013-11-20 11:36 . 2013-11-20 11:36	14448	----a-w-	c:\windows\system32\drivers\ggflt.sys
2013-11-19 02:33 . 2010-05-24 17:48	267936	------w-	c:\windows\system32\MpSigStub.exe
2013-11-14 11:56 . 2013-10-02 01:49	18293608	----a-w-	c:\windows\system32\nvwgf2umx.dll
2013-11-14 11:56 . 2013-11-20 16:51	15862272	----a-w-	c:\windows\SysWow64\nvwgf2um.dll
2013-11-14 11:56 . 2013-11-20 16:51	1242400	----a-w-	c:\windows\SysWow64\nvumdshim.dll
2013-11-14 11:56 . 2012-03-14 19:27	1436528	----a-w-	c:\windows\system32\nvumdshimx.dll
2013-11-14 11:56 . 2013-11-20 16:51	9619872	----a-w-	c:\windows\SysWow64\nvopencl.dll
2013-11-14 11:56 . 2013-11-20 16:51	11514624	----a-w-	c:\windows\system32\nvopencl.dll
2013-11-14 11:56 . 2013-10-02 01:49	30361888	----a-w-	c:\windows\system32\nvoglv64.dll
2013-11-14 11:56 . 2013-11-20 16:51	317472	----a-w-	c:\windows\system32\nvoglshim64.dll
2013-11-14 11:56 . 2013-11-20 16:51	22951200	----a-w-	c:\windows\SysWow64\nvoglv32.dll
2013-11-14 11:56 . 2013-11-20 16:51	266984	----a-w-	c:\windows\SysWow64\nvoglshim32.dll
2013-11-14 11:56 . 2013-11-20 16:51	12613408	----a-w-	c:\windows\system32\drivers\nvlddmkm.sys
2013-11-14 11:56 . 2013-11-20 16:51	707360	----a-w-	c:\windows\system32\NvFBC64.dll
2013-11-14 11:56 . 2013-11-20 16:51	657184	----a-w-	c:\windows\system32\NvIFR64.dll
2013-11-14 11:56 . 2013-11-20 16:51	609568	----a-w-	c:\windows\SysWow64\NvFBC.dll
2013-11-14 11:56 . 2013-11-20 16:51	562464	----a-w-	c:\windows\SysWow64\NvIFR.dll
2013-11-14 11:56 . 2013-11-20 16:51	168616	----a-w-	c:\windows\system32\nvinitx.dll
2013-11-14 11:56 . 2013-11-20 16:51	1511712	----a-w-	c:\windows\system32\nvdispgenco6433182.dll
2013-11-14 11:56 . 2013-11-20 16:51	141336	----a-w-	c:\windows\SysWow64\nvinit.dll
2013-11-14 11:56 . 2013-11-20 16:51	1884448	----a-w-	c:\windows\system32\nvdispco6433182.dll
2013-11-14 11:56 . 2013-11-20 16:51	18208624	----a-w-	c:\windows\system32\nvd3dumx.dll
2013-11-14 11:56 . 2013-10-02 01:49	15218504	----a-w-	c:\windows\SysWow64\nvd3dum.dll
2013-11-14 11:56 . 2013-11-20 16:51	3132704	----a-w-	c:\windows\system32\nvcuvid.dll
2013-11-14 11:56 . 2013-11-20 16:51	2947872	----a-w-	c:\windows\SysWow64\nvcuvid.dll
2013-11-14 11:56 . 2013-11-20 16:51	9691888	----a-w-	c:\windows\SysWow64\nvcuda.dll
2013-11-14 11:56 . 2013-11-20 16:51	3125024	----a-w-	c:\windows\system32\nvcuvenc.dll
2013-11-14 11:56 . 2013-11-20 16:51	2747680	----a-w-	c:\windows\SysWow64\nvcuvenc.dll
2013-11-14 11:56 . 2013-11-20 16:51	11600432	----a-w-	c:\windows\system32\nvcuda.dll
2013-11-14 11:56 . 2013-11-20 16:51	25257248	----a-w-	c:\windows\system32\nvcompiler.dll
2013-11-14 11:56 . 2013-11-20 16:51	17560352	----a-w-	c:\windows\SysWow64\nvcompiler.dll
2013-11-14 11:56 . 2013-10-02 01:49	3069608	----a-w-	c:\windows\system32\nvapi64.dll
2013-11-14 11:56 . 2013-10-02 01:49	2697248	----a-w-	c:\windows\SysWow64\nvapi.dll
2013-11-14 11:38 . 2013-07-08 19:59	709144	----a-w-	c:\windows\system32\drivers\cmdguard.sys
2013-11-14 11:38 . 2013-06-18 14:15	43216	----a-w-	c:\windows\system32\cmdcsr.dll
2013-11-11 15:02 . 2012-03-12 19:21	6674208	----a-w-	c:\windows\system32\nvcpl.dll
2013-11-11 15:02 . 2012-03-12 19:21	3490080	----a-w-	c:\windows\system32\nvsvc64.dll
2013-11-11 15:01 . 2012-03-12 19:21	922912	----a-w-	c:\windows\system32\nvvsvc.exe
2013-11-11 15:01 . 2012-03-12 19:21	63776	----a-w-	c:\windows\system32\nvshext.dll
2013-11-11 15:01 . 2012-03-12 19:21	2559776	----a-w-	c:\windows\system32\nvsvcr.dll
2013-11-11 15:01 . 2012-03-12 19:21	219424	----a-w-	c:\windows\system32\nvmctray.dll
2013-11-11 15:01 . 2012-03-14 19:28	3467927	----a-w-	c:\windows\system32\nvcoproc.bin
2013-11-11 07:59 . 2013-11-11 07:59	590112	----a-w-	c:\windows\SysWow64\nvStreaming.exe
2013-10-23 10:30 . 2013-11-08 16:15	1511712	----a-w-	c:\windows\system32\nvdispgenco6433165.dll
2013-10-23 10:30 . 2013-11-08 16:15	1884448	----a-w-	c:\windows\system32\nvdispco6433165.dll
2013-10-12 02:30 . 2013-11-14 01:28	830464	----a-w-	c:\windows\system32\nshwfp.dll
2013-10-12 02:29 . 2013-11-14 01:28	859648	----a-w-	c:\windows\system32\IKEEXT.DLL
2013-10-12 02:29 . 2013-11-14 01:28	324096	----a-w-	c:\windows\system32\FWPUCLNT.DLL
2013-10-12 02:03 . 2013-11-14 01:28	656896	----a-w-	c:\windows\SysWow64\nshwfp.dll
2013-10-12 02:01 . 2013-11-14 01:28	216576	----a-w-	c:\windows\SysWow64\FWPUCLNT.DLL
2013-10-08 06:50 . 2013-11-21 15:26	96168	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-05 20:25 . 2013-11-14 01:28	1474048	----a-w-	c:\windows\system32\crypt32.dll
2013-10-05 19:57 . 2013-11-14 01:28	1168384	----a-w-	c:\windows\SysWow64\crypt32.dll
2013-10-04 02:28 . 2013-11-14 01:28	190464	----a-w-	c:\windows\system32\SmartcardCredentialProvider.dll
2013-10-04 02:25 . 2013-11-14 01:28	197120	----a-w-	c:\windows\system32\credui.dll
2013-10-04 02:24 . 2013-11-14 01:28	1930752	----a-w-	c:\windows\system32\authui.dll
2013-10-04 01:58 . 2013-11-14 01:28	152576	----a-w-	c:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56 . 2013-11-14 01:28	168960	----a-w-	c:\windows\SysWow64\credui.dll
2013-10-04 01:56 . 2013-11-14 01:28	1796096	----a-w-	c:\windows\SysWow64\authui.dll
2013-10-03 02:23 . 2013-11-14 01:28	404480	----a-w-	c:\windows\system32\gdi32.dll
2013-10-03 02:00 . 2013-11-14 01:28	311808	----a-w-	c:\windows\SysWow64\gdi32.dll
2013-10-03 01:04 . 2012-01-28 14:54	188128	----a-w-	c:\programdata\Microsoft\VCSExpress\10.0\1033\ResourceCache.dll
2013-09-28 01:09 . 2013-11-14 01:28	497152	----a-w-	c:\windows\system32\drivers\afd.sys
2013-09-27 08:57 . 2013-10-02 01:49	1884448	----a-w-	c:\windows\system32\nvdispco6433140.dll
2013-09-27 08:57 . 2013-10-02 01:49	1511712	----a-w-	c:\windows\system32\nvdispgenco6433140.dll
2010-01-26 09:11 . 2013-02-16 17:02	444283	----a-w-	c:\program files\Common Files\WinPcapNmap.exe
2009-12-06 09:18	26624	--sh--w-	c:\windows\bfcs2.dll
.
.
((((((((((((((((((((((((((((((((((   Spoutc body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznmka* przdn zznamy a legitimn vchoz daje nejsou zobrazeny. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{FC36B0BD-27F0-4cdd-8AB1-50651EFC3EFD}]
2012-05-25 15:38	281424	----a-w-	c:\program files (x86)\WinToFlash Suggestor\WinToFlashSuggestor.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"="c:\program files (x86)\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"3212083974"= 504b0304c239b7f8068374bfb511000000400000e269f63d73594f6202c9694280cc96a28bbd63516fe3c2d5f7a2ff87ac3a990c3ec3b2ed7b07716237a0dfb1dfb651f67e31cb2e7649f98d5e55e9b25b1a579794989b176c357bdcc11226bd6ecb7de8a63ea2165f6b31ead6b0a2a96a6e9d04b9b39f194ef52d48b088d4b6597f685a70ff6912914f86d8235681747da26cfd83223d3d248872c51095484634ebf976e4595f734bd35caf42b38dcf9e878af0be0a5e84b22940f721e8bbcdcbaa3e53607359252db16c0d6c38a142261bb4896d12a48c006cc3c21fdf717c155b2af0375d2545ee286c2aecb2955206ef25c82dc686f7eb83bb3072e94e1e59254b11a2e3628e1d98e177375b54e682a1c77f986e1907ffcb784accacb124189751d7ebbafc91d3a127f134a85e27f8c201d9082f621f5fffac09d2aab94a62f90bd74d6c96a8db6d42e4e98316449d202a4e24857673e2a50b7dfd9d5af72a21a19a922acc9675ba933a1c6ad4e0a11470fbb82eed7a79c5ca2dbb0bec5b2b43baa37373d3ef494726d7cf4a4aa8a3d6a5c206ced49148c0100bfa96b707be91b855151d8da8e0723dd1303325011b3951c9df7b10e9b153bced98376c4d7517f2e0e23a986914b2b0f978454441c47b5797d924ce9cd186d74d308099ee52f226e92de6b50e4a0691f75cfa9ce733494b8cafaeb4be4c65f6c9dffa34a3c2ed9d14f5844164be79b7a90495290350177b03aefa777ff519b624e3c75c219260ac447bba9a6db56f34b340a5f75837fab3c33831a3bc39c2914aeb87a39545bd7ed52450eb7e94d5380e2babce3f8ee6e3cdc9d4ed54d9889d9dbd0dc879caa2b121048a308a7f873252dad24ea8f8911ea0a3b202de930a9fc882cf1349ffe229016b2ebfd7821b8986d31deccbc296ba54fd6d864c915f1d77ac0734d96fe0ba43a669fab128026c7f90e9e1e0a7047f5a2378e4de0966eb6c217b3483194b2b21a3fa8a1cbef1d66a3fc8a5c863bcea6157981a11449bae3357f3287501cb9c24e0afb156f5ddfd6855cd8b7b43feabd9412c1c208b5de2330c469a59de5b490cc06bfd5a4900cb121eb967bc7185a9f00112a5b1e8d8028ca02b0f2b194af03cc1e172b70c9b88643e3c064b5406cf184ad9eba26736ef6feb30dac8ba400933a32a3c03230bd732fcbe16c4b3bdcc0b501616ce956d968b8da68b4a9a64238601e81e78095961580431361a4dd9fe963d3ceba5c21bba416c1cc9d94bb842c25b2fd12c8bf42c35948272965a3fecf6e9b92d32d7e84a402a0b6214a412a23427e4852ce607fd9f7ff8559bbb96a9ae577df0c19d108587d372470be0d3e27ed61feb442c2d65e55bac81c2786cf6b837eebc1b5af35634b29fd5d96347b5f9c747c8a9a83e7cb3c188d9042f08fbd4edeebd65de7c04b275b7fd74067a0ae3033752aa55a45a05355811416ea4a5101511e99305b700bd44742cbd6a9272b5cf4001505c4057866b57e4de5ef0ee9f88b41986a80119c962594972011fc0c39b4a74b74747f5116d896a0ebcbb4387685672899af54b80ae07008971ea1c997a898e33aab769e4e52fbbec97ebf199ce76454badbd4eab272f1d1caabb3b49b3aafc1e67d09ee8feb0580e414eb45f3f0c25fe88872312fec2341e7a6100b2e04ed25fce13a146098dce98446b2f3875ecb269a886795698619d337da612f19bf8d4fe3028e79a26548128d1595af0bf98ff320dc73d873f05ebd07c87cae28df067c00de3e53cc77e801e1304192ca7bf78ab28db40564328a108f9f0ddd8e1b0baeccf16bf1deb3cc5c4b5f5140f6b8a256e9128c203418aa3d93e3f08078977667dc02d830bb6869de92f29a65ac6d2689d0a5a90887a8643119dc9a68b5b00bd59d45da9d7ed5dae6ee6da6119243f77f51b263200f90abbb61cce9a951781ea2012a2c8d7200906439b08e7e76cf9c9536b2e6b560afd7cbaa5044791ee17ded45adfd9d359dac0a9f4ed15bf2cb2ea9b12b7cb11b597cf2e6e750a6c636fe2c4b144f6ff43ccffddae787be160b0a8b4282b35a6aeece165814e95ce7adbe416ef4e51860cb4f5d50af2a86aa4ee602a30aa54850e0cb4a38dc3a1c711b5d03b6a53ee102ac68e553d11e5fb3d0a8e0ef34266263ca4a3e0b76c55a92f75f921cd61a5363e5db7737874d57c653d63457260b67b1df330827b2921c29fda0045bbe7404e40985039f7db153f52b2c941a56e922dcfb60b89dbee327ed6f5c1e438270f766a6ed1730fc581a4aebcfe3b7726b27d6b092cf5a0b6954196cb4cc2788b8722338ee189d9e22692595f0d5b333b0f715cb8d94a08afb631dbb1be79a773e8f1a4eaf7220c24222dda431b91d9175dfa0c6ae81e8c4c879d64446cf56faefe1487ca6739a776aee42ef8be40a612f95cde3b1feeac1e1e41a24c92ed8b0152e247239e5a8bc903679ca8c7b94659ad5b1d10551f460d924fb60882fc90508c3723420f86f4cf100387e808133cc429883c0e3ace91651c075cd19d106e0b437b0363048ca1feaaf929b87aed90afde281edca0fa0cc7b5a7f03807fa5ac41b1ed73130eac1117c631c1818142f24d420f6776cb53d4d0326b9fc3008c3ca03fc649d87d37fa617b74f2865c75298bed54b7d8dc676e2210374d8bf194ae2feda62b4798933c764ccddf845330721fc21e68c0695ca73285103e22ae68da440326dfef9a80d17d0a7c3f920e7b0aa806ee9b7549ed9878b6cfb505ac69e8e8d3cfa718675764cfb03861d32afaae1d918be87f6a9ac0d815c57ad3e167d642f5fcddc25d4ba3ac3e67c26a4deaa17797b3c0654f271eaaa442a71cbe19372adcbde3df8b3fe491e5a76a79d1291a0de317ffbf927f42782fa48270f2c969563b183a4b0112f3497dd3c2a423ec83498bdbaac928910a9fb7fe5788e454c027a28f4a91af2bf09e261f85b0eee4f7929e63c4062496cb09534bb6d03ff69ed2915d0ea215b4fb3d1044e86eb87dfb4898bcbd50e5c4ddfbdb83b9410e1adf91446c43c959e0e341d67a5a7ef8712586de3b8b9c5b6f80f42f235bf68900ebfe6304bb0d9f67408b76201ec26180b4bd76500de4f0df86df4a063aececca69ddf8a162b67a4b9800fa7570d5b551ac2703adc0ffced00650a96cd81ec4187b90c6b2140ce99c1937c40587ea72899897e628115bcab73b3d9f425860b109a67347b8a121f65d0968d56a3dde6b8171cea61b08ae568b9d03c398977ce86f75055230ef370cabf67c9cf97c3223719555403f3e0bd2af0e1e8742decb05fadb0227f15d40ee2d6dc5a49fe1e6bc9e6cedde74294c3bb6fd5c5fedfad672df1dffd219bd8bc1ec39158eab507998755f553441d01cd26a5501f6fb2db4f3597510f85b93a542514c8013eedbbfc913dcce8b20a5759665bdfd9919eb22a89163d8656386d857c5bfc7c241c1d726cd94ab0f92d5b0fefcf1d4abdd26fbc6c17a4ccacf2d31e5e713059de93c59d3b8d3e8d03b5d663f9dfadb03e093cb84fcf500a1f0e2e5ba1c9d81db12cc799c6539af0cc35682d95cb789c745a452bd8b38e6cf08e0579da1ab43ad0858d0305f961b15a79c1090f4867040ea2bd36cf6512aab44ce5a1098efe039134f23bf057777fef3e68e45827b0487924cad4e5f0b1c3b4f5a0e3853b39640eb0782d78888fe92c3b68624e84ff6a5eded87be62d34ce858f34e5fffbba75f014df0f648988b51a72de1ff54d5c7a4b8ecb10c5e9ef51de98c01ef8c406f9824a0c15a29e16b5a53e3643b0065a4263ecae50d2cb976d3d2ea6255a65f1c6cc86167f1784a27b832037db4ce1e262475334f3b2430f86c7a24456eea82ab678aba91bb4c0cc82c877b80b6d3574007257272c3e126c17a8b36aa8aa9431ff01bf658f82d8153eddea6804cdc564a3f5e9967b08feeb823d3db9356a4acdd80e883ca58a1c661d01d145f80a3ab67e8036c0bae1bb7bc43204eb0cf38214bc74a9aef036a31d5a9c552d93a25c0e84057bce5437b1634680d04a77472d631432d2baa7a3acd64220efcf9e7848f8fd9801bef7561a470a1822032160eb59edc0f977882dce4fb2872d89d27ff076dba74a9672f86909956579c28853fa8de7002cc8458d09256d42a39f1a4bdb6b56d36d51488e7368686e54c1bbbfff48884e0d536be362e59bd7f18329a4b82aed396e4f92865f594d0da38f7cace7a4603af60c1a53bdfd19476094aac6e4a8f31fc1257d48d03bb0ef515d8460b9441532c8b5043d0531d5881adb6d997bb184fd8caf4d8e6c759c3f7143b9e32bc7a0ec6234b68adf4111ca1d136721438e5e6d7125d480ce982d84aea7703b4010cd27867d6ddc5e0c970385196f020e48eddb24c56972f9e61e6cc29c1712551583828f899534aacfffc66f99999ea2ba2731d52a7fd2fa262a22b075da52a5aa58f5b41aa9cdc9181406717f3f75e7c475090121966838125236e4dc6291ae3874968e8208b983aadb03ca60acd935e6da1b829407f70a77340e4439f22fdc2fc4218de0f25d2f886c0aaeb693c2b23db0eab9953bf806c2173e0bc9d0d7ef0e763775bc1432ff48d6035b1214294c81b71cd98c42831014090cd99cb74929ae853f88132e559104d4fea98ad40f17da4100a909a6981bad9efb240a79520927aa12232a56f4d8893bff92bfc2bd42cf3dc09bdc484dfdba3a10c609186104ce33e3024f44000be34814ff5dc9872d44b4157fb3a6655b985f6cc5ef4586f2abfee12dcbdb90181b396f95fe3213f094d1f3dd3d7fed800f4ed21290f613b62048e0fc1f1328d9f87a5653b489d36f727be9d755523def0472f1c1d5ac90ee665379ff39d06e863c244890f5333a0b89b92022c1a8198029fe5f8c203b3dd211d4398958ee190108dd50b7850e20d8abe2b927d53d28f3b8ca26be81bc6b83c0e2b3b1dda28066c63860cea89df82708ef21d4d36b84663e87b4385a3e37bd3ff1eb2bf64184c44723490669af4da092d45ba21a569a352e513d9a9b43e9cd4b812055822626efc55f950009232b8b3bb2d63d44a8b0bd9bd4e84c5a724496a2326f63c97dbcb235366ec0cf6096b5f4988d073c34bd3a084130cea8d6ee22e542b411c1e18599667b3fd6dde0669ad82c85a1c10ca5862213cb1bb277e6c4f6564f20a9bcea1b48170504c47235d78ed0a0441987c8c17d90d7b56cf487c46733ba4a6848fec42b97ce4048f3c6d9c493322f052ef93f02f142b3940a10921bd15c911e7a97aa4a20dc383c62cd288d252ba937b3f60761e6653568a01241bb573664de04811cf3f59b4c2d7e8a6c55da16f468383456aa751697697397c2a5e5abfa0f1099d80447d49da509aa1347f3943ee9baa1fdad2a0e69410b34253ad4991282d0e952260f52ab9f02a3d00b37098cf60354424f862066e45e92ac475c99a00e7380766e589abf66271619142795cf7a7fbd138a6cc5bd7e135122341d1f06eb5b436c59be0adedc71bc03d7c63c16751ad56c69e36decfe9e8214c719fcdf2e9fe2dc971f03c1c2ad6b6d368fe8b11d0389650c73d1c7e73708145fa05992a150e6a909656ea786e244bdf1cd71f4b0fd05b1335d703182ffa9d96c99108297b1fe327a83bf4f69d2a9c3d1eb73a9dd8cee2b3220904ac31011fd6407a5ba427facb46227fdedb13d1ca6443ded3dc3b6cf06a59dc9b9226fbf357334abf58412605fd206e7b6125fa19e5d68f75783fa08205b05c0a12d1830068317f6105958c4eb37bcb1beae6a401c267641aa58274a410d76b4d2a03e418020869b6886bb81964761b3fcd8ea68050ad6cff99649cde8fa53f04b0c96e271c0b092e24d81ea2d723775799e713ea9da6967ef57aaafe1c6732f2f047556027f021c65fc20c1c3bcb392acf8ff7a9e14d9728a5aaacd255fc3866b041e9c96dcf592083d78c9e405ddd7991d2e2536d2eb1ba0f0ece3dfb6a34c2665cfac2d1850fd478f617fdd4e9dd4492c553bd375cfd33f4744d642006f3a5216a1ff7d73643ed751caecdfdcb56247aa2f66fbcb8315daaa86006a99e0350a72d5d5260d6bb77ac53cdd7abacb859586c279b7facdf076c922ac27f3e907fb3b4ec977ca634a28df064162165222dcce674dab60a4e9d48e7fcea267abb1f8e0a2012aa6db532a4ce74fbaf583e2c292fa1b56be585d14ee073cdafe3fc0c19050e698ec41b9d27f5db41a779208118a5d3f8f74333b2ad2fe3cee273bbfea485ead817effedf1260c1a125070589b6f0f31984ed498cbd273e84a718f54c82cbc2747e678f8437dde23c9ea3c877823034b7c70731c2d01cc09d11d3364e7945b6480b9b416acb54cd1194b46c6d2e147619ac1c1fa915af80a5098647247ebcf0449634f69c96afc740bce61993228183d98d0f85406d8ffd934
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuMyGames"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	\0
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\fsproflt2]
@="Service"
.
R0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys;c:\windows\SYSNATIVE\drivers\TfFsMon.sys [x]
R0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys;c:\windows\SYSNATIVE\drivers\TfSysMon.sys [x]
R0 vmci;VMware VMCI Bus Driver;c:\windows\system32\DRIVERS\vmci.sys;c:\windows\SYSNATIVE\DRIVERS\vmci.sys [x]
R1 ntiomin;ntiomin; [x]
R1 vdrv1000;vdrv1000;c:\windows\system32\DRIVERS\vdrv1000.sys;c:\windows\SYSNATIVE\DRIVERS\vdrv1000.sys [x]
R1 WinFPdrv;WinFPdrv;SysWOW64\WinFPdrv.sys;SysWOW64\WinFPdrv.sys [x]
R2 AODDriver4.01;AODDriver4.01;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
R3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
R3 atillk64;atillk64;c:\program files (x86)\AMD\System Monitor\atillk64.sys;c:\program files (x86)\AMD\System Monitor\atillk64.sys [x]
R3 BazisVirtualCDBus;WinCDEmu Virtual Bus Driver;c:\windows\system32\DRIVERS\BazisVirtualCDBus.sys;c:\windows\SYSNATIVE\DRIVERS\BazisVirtualCDBus.sys [x]
R3 cmdvirth;COMODO Virtual Service Manager;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe;c:\program files\COMODO\COMODO Internet Security\cmdvirth.exe [x]
R3 cpuz130;cpuz130;c:\users\EkZiT\AppData\Local\Temp\cpuz130\cpuz_x64.sys;c:\users\EkZiT\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [x]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe;c:\program files (x86)\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [x]
R3 EagleX64;EagleX64;c:\windows\system32\drivers\EagleX64.sys;c:\windows\SYSNATIVE\drivers\EagleX64.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys;c:\windows\SYSNATIVE\epmntdrv.sys [x]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys;c:\windows\SYSNATIVE\EuGdiDrv.sys [x]
R3 FLASHSYS;FLASHSYS;c:\program files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys;c:\program files (x86)\MSI\Live Update 4\LU4\FLASHSYS64.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys;c:\windows\SYSNATIVE\DRIVERS\ggflt.sys [x]
R3 HDJCtrl;Hercules DJ Control MP3 Service;c:\windows\system32\Drivers\HDJCtrl.sys;c:\windows\SYSNATIVE\Drivers\HDJCtrl.sys [x]
R3 HDJMidi;Hercules DJ Control MP3 MIDI;c:\windows\system32\DRIVERS\HDJMidi.sys;c:\windows\SYSNATIVE\DRIVERS\HDJMidi.sys [x]
R3 HH10Help.sys;HH10Help.sys;c:\windows\system32\drivers\HH10Help.sys;c:\windows\SYSNATIVE\drivers\HH10Help.sys [x]
R3 JakNDisMP;JakNDisMP;c:\windows\system32\DRIVERS\JakNDis.sys;c:\windows\SYSNATIVE\DRIVERS\JakNDis.sys [x]
R3 LGVirHid;Logitech Gamepanel Virtual HID Device Driver;c:\windows\system32\drivers\LGVirHid.sys;c:\windows\SYSNATIVE\drivers\LGVirHid.sys [x]
R3 MSI_MSIBIOS_010507;MSI_MSIBIOS_010507;c:\program files (x86)\MSI\Live Update 5\msibios64_100507.sys;c:\program files (x86)\MSI\Live Update 5\msibios64_100507.sys [x]
R3 MSICDSetup;MSICDSetup;e:\cdriver64.sys;e:\CDriver64.sys [x]
R3 NTIOLib_1_0_4;NTIOLib_1_0_4;c:\program files (x86)\MSI\Live Update 4\LU4\NTIOLib_X64.sys;c:\program files (x86)\MSI\Live Update 4\LU4\NTIOLib_X64.sys [x]
R3 pctNDIS;PC Tools Driver;c:\windows\system32\DRIVERS\pctNdis64.sys;c:\windows\SYSNATIVE\DRIVERS\pctNdis64.sys [x]
R3 pwdrvio;pwdrvio;c:\windows\system32\pwdrvio.sys;c:\windows\SYSNATIVE\pwdrvio.sys [x]
R3 pwdspio;pwdspio;c:\windows\system32\pwdspio.sys;c:\windows\SYSNATIVE\pwdspio.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SaiK0CEA;SaiK0CEA;c:\windows\system32\DRIVERS\SaiK0CEA.sys;c:\windows\SYSNATIVE\DRIVERS\SaiK0CEA.sys [x]
R3 SaiU0CEA;SaiU0CEA;c:\windows\system32\DRIVERS\SaiU0CEA.sys;c:\windows\SYSNATIVE\DRIVERS\SaiU0CEA.sys [x]
R3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys;c:\windows\SYSNATIVE\drivers\TfNetMon.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Sluba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [x]
S0 FSProFilter2;FSPro File Filter 2;c:\windows\System32\Drivers\FSPFltd2.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd2.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys;c:\windows\SYSNATIVE\DRIVERS\cmdhlp.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AODDriver4.2.0;AODDriver4.2.0;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys;c:\program files (x86)\AMD\OverDrive\amd64\AODDriver2.sys [x]
S2 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
S2 fsproflt2;FSPro Filter Service 2;c:\windows\SysWOW64\fsproflt2.exe;c:\windows\SysWOW64\fsproflt2.exe [x]
S2 NvNetworkService;NVIDIA Network Service;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe;c:\program files (x86)\NVIDIA Corporation\NetService\NvNetworkService.exe [x]
S2 NvStreamSvc;NVIDIA Streamer Service;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe;c:\program files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe [x]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [x]
S3 LGBusEnum;Logitech GamePanel Virtual Bus Enumerator Driver;c:\windows\system32\drivers\LGBusEnum.sys;c:\windows\SYSNATIVE\drivers\LGBusEnum.sys [x]
S3 LGSHidFilt;Logitech Gaming KMDF HID Filter Driver;c:\windows\system32\DRIVERS\LGSHidFilt.Sys;c:\windows\SYSNATIVE\DRIVERS\LGSHidFilt.Sys [x]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3hub.sys [x]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 nvvad_WaveExtensible;NVIDIA Virtual Audio Device (Wave Extensible) (WDM);c:\windows\system32\drivers\nvvad64v.sys;c:\windows\SYSNATIVE\drivers\nvvad64v.sys [x]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys;c:\windows\SYSNATIVE\drivers\viahduaa.sys [x]
S3 VMfilt;VMfilt;c:\windows\system32\drivers\VMfilt64.sys;c:\windows\SYSNATIVE\drivers\VMfilt64.sys [x]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys;c:\windows\SYSNATIVE\DRIVERS\yk62x64.sys [x]
.
.
--- Ostatn sluby/ovladae v pamti ---
.
*Deregistered* - cmderd
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs	REG_MULTI_SZ   	w3svc was
apphost	REG_MULTI_SZ   	apphostsvc
hpdevmgmt	REG_MULTI_SZ   	hpqcxs08 hpqddsvc
.
Obsah adrese 'Naplnovan lohy'
.
2013-12-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-18 23:18]
.
2013-12-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-28354313-2184747063-3306077547-1000Core.job
- c:\users\EkZiT\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-26 04:36]
.
2013-12-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-28354313-2184747063-3306077547-1000UA.job
- c:\users\EkZiT\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-26 04:36]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RunDLLEntry"="c:\windows\system32\AmbRunE.dll" [2009-02-26 17920]
"Launch LCore"="c:\program files\Logitech Gaming Software\LCore.exe" [2012-11-29 7406392]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cistray.exe" [2013-11-11 1612504]
"Nvtmru"="c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\nvtmru.exe" [2013-11-08 1028384]
"NvBackend"="c:\program files (x86)\NVIDIA Corporation\Update Core\NvBackend.exe" [2013-12-10 2279712]
"ShadowPlay"="c:\windows\system32\nvspcap64.dll" [2013-12-10 1100248]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
.
------- Doplkov sken -------
.
uStart Page = hxxp://us.yahoo.com?fr=fp-comodo
mStart Page = hxxp://www.google.com
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~3\Office12\EXCEL.EXE/3000
IE: Sthnout s Mipony
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
TCP: DhcpNameServer = 192.168.235.1
TCP: Interfaces\{CEEBD37D-F1B9-4569-9EFC-16CAC7FB1836}: NameServer = 156.154.70.25,156.154.71.25
FF - ProfilePath - c:\users\EkZiT\AppData\Roaming\Mozilla\Firefox\Profiles\8124rlsi.default\
FF - prefs.js: browser.startup.homepage - hxxp://us.yahoo.com?fr=fp-comodo
FF - prefs.js: keyword.URL - hxxp://us.search.yahoo.com/search?fr=ytff-comodo&p=
FF - ExtSQL: !HIDDEN! 2012-06-01 21:08; smartwebprinting@hp.com; c:\program files (x86)\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
.
- - - - NEPLATN POLOKY ODSTRANN Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-TurboV EVO - c:\program files\ASUS\TurboV EVO\TurboV_EVO.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-ESN Sonar-0.70.4 - c:\program files (x86)\Battlelog Web Plugins\Sonar\esnsonar_uninstall.exe
AddRemove-metaCrawler - c:\program files (x86)\metaCrawler\1.8.19.0\uninstall.exe
AddRemove-Wubi - f:\ubuntu\uninstall-wubi.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\vdrv1000]
"ImagePath"="system32\DRIVERS\vdrv1000.sys"
.
--------------------- ZAMKNUT KLE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-28354313-2184747063-3306077547-1000\Software\SecuROM\License information*]
"datasecu"=hex:9c,3c,f2,54,0f,6f,45,8f,b6,3b,6f,b5,54,eb,35,0a,ca,30,30,52,bd,
   20,58,e6,a9,c7,e3,e9,7b,c0,8c,38,7d,05,3e,1e,15,ab,7c,b9,ab,5e,81,a1,c4,78,\
"rkeysecu"=hex:d3,88,b8,2d,f0,b1,02,40,24,0c,4c,94,d3,3f,33,a2
.
------------------------ Jin sputen procesy ------------------------
.
c:\program files (x86)\Creative\Shared Files\CTAudSvc.exe
c:\program files\Hide Folders 2012\hf.exe
c:\program files (x86)\ASUS\TurboV EVO\TurboVHELP.exe
c:\windows\DAODx.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\PnkBstrB.exe
c:\program files (x86)\Common Files\Protexis\License Service\PSIService.exe
.
**************************************************************************
.
Celkov as: 2013-12-24  13:50:25 - pota byl restartovn
ComboFix-quarantined-files.txt  2013-12-24 12:50
.
Ped sputnm: 4928143360
Po sputn: 4561723392
.
- - End Of File - - 0ED9002D80C41A445956264B1977FD51
413FC2A0C716421B3158746D63736515
