Prosím o kontrolu logu

Zpráva

chenny · #1 Příspěvek od **chenny** » 20 pro 2013 16:30

Zdravím,prosím o kontrolu logu z přítelova notebooku,který je hodně zpomalený při startu i celkově.Předem díky.

Logfile of random's system information tool 1.08 (written by random/random)
Run by Janovský Lukáš at 2013-12-20 16:02:40
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 211 GB (31%) free of 693 GB
Total RAM: 3554 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:02:49, on 20.12.2013
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v11.0 (11.00.9600.16428)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\HP SimplePass\TouchControl.exe
C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe
C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe
C:\Program Files (x86)\Internet Download Manager\IDMan.exe
C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe
C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe
C:\Program Files (x86)\Google\Drive\googledrivesync.exe
C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\bin\szndesktop.exe
C:\Windows\SysWOW64\rundll32.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files\trend micro\Janovský Lukáš.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.bing.com?pc=HPNTDF
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/?clid=13415
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/p/?LinkId=255141
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://websearch.searchdwebs.info/?pid= ... Z&unqvl=22
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=C:\Windows\system32\userinit.exe
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll
O2 - BHO: Complitly - {0FB6A909-6086-458F-BD92-1F8EE10042A0} - C:\Users\Janovský Lukáš\AppData\Roaming\Complitly\Complitly.dll
O2 - BHO: AMD SteadyVideo BHO - {6C680BAE-655C-4E3D-8FC4-E6A520C3D928} - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: GreyGray - {ae60e6ed-49dd-4099-8b5e-386a4908d5d5} - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll (file missing)
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
O2 - BHO: HP Network Check Helper - {E76FD755-C1BA-4DCB-9F13-99BD91223ADE} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [HP Quick Launch] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [HPOSD] C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe
O4 - HKLM\..\Run: [HP CoolSense] C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe -byrunkey
O4 - HKLM\..\Run: [HPConnectionManager] C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe
O4 - HKLM\..\Run: [Nikon Message Center 2] C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe -s
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [AvastUI.exe] "C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Google Update] "C:\Users\Janovský Lukáš\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [MyPhoneExplorer] "C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe" autorun
O4 - HKCU\..\Run: [IDMan] C:\Program Files (x86)\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [AlcoholAutomount] "C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" -automount
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [tsiVideo] C:\Windows\SysWOW64\rundll32.exe C:\Users\JANOVS~1\AppData\Local\Temp\\tsiVi132.dll,startme
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Stáhnout s IDM - C:\Program Files (x86)\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: Stáhnout s IDM všechny odkazy - C:\Program Files (x86)\Internet Download Manager\IEGetAll.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-103 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll,-102 - {25510184-5A38-4A99-B273-DCA8EEF6CD08} - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\NCLauncherFromIE.exe
O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O18 - Filter: video/mp4 - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O18 - Filter: video/x-flv - {20C75730-7C25-476B-95DC-C65810F9E489} - C:\Program Files (x86)\amd\SteadyVideo\VideoMIMEFilter.dll
O20 - AppInit_DLLs:
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AllShare Framework DMS - Samsung - C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: AMD FUEL Service - Advanced Micro Devices, Inc. - C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: avast! Firewall - AVAST Software - C:\Program Files\AVAST Software\Avast\afwServ.exe
O23 - Service: Alcohol Virtual Drive Auto-mount Service (AxAutoMntSrv) - Alcohol Soft Development Team - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Easybits Services for Windows (ezSharedSvc) - EasyBits Software AS - C:\Windows\System32\ezSharedSvcHost.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: TrueSuiteService (FPLService) - HP - C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe
O23 - Service: GamesAppService - WildTangent, Inc. - C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HP Support Assistant Service - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe
O23 - Service: HP Auto (HPAuto) - Hewlett-Packard - C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe
O23 - Service: HP Connection Manager 4 Service (hpCMSrv) - Hewlett-Packard Development Company L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe
O23 - Service: HP Software Framework Service (hpqwmiex) - Hewlett-Packard Company - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: HPWMISVC - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: @%SystemRoot%\system32\ieetwcollectorres.dll,-1000 (IEEtwCollectorService) - Unknown owner - C:\Windows\system32\IEEtwCollector.exe (file missing)
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Samsung Link Service - Copyright 2013 SAMSUNG - C:\Program Files\Samsung\Samsung Link\Samsung Link.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files (x86)\Skype\Updater\Updater.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\stlang64.dll,-10122 (STacSV) - IDT, Inc. - C:\Program Files\IDT\WDM\STacSV64.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TeamViewer 9 (TeamViewer9) - TeamViewer GmbH - C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe
O23 - Service: TrueAPI Service component (TrueService) - AuthenTec, Inc. - C:\Program Files\Common Files\AuthenTec\TrueService.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16305 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
winlogon.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
"C:\Program Files\IDT\WDM\STacSV64.exe"
C:\Windows\system32\svchost.exe -k GPSvcGroup
atieclxx
C:\Windows\system32\Hpservice.exe
"C:\Windows\System32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-5a2068aa-20db-414f-aaae-9fc6fa7c64c8 -SystemEventPortName:HostProcess-b3e93de2-918b-41da-bb4c-fe3ef1efd935 -IoCancelEventPortName:HostProcess-a6c115d0-4546-410f-8204-d1bdec06cdd4 -NonStateChangingEventPortName:HostProcess-70b4a4ec-8af7-4681-a46d-12cd4996dc73 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:44a3ec5a-d543-4993-a316-8a0f39bb6380 -DeviceGroupId:
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
C:\Windows\system32\WLANExt.exe 22126640
\??\C:\Windows\system32\conhost.exe "201718767331348360-1292314477-1307565638275347687-109796144617918762741253576403
"C:\Program Files\AVAST Software\Avast\afwServ.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k WbioSvcGroup
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe"
"C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe"
\??\C:\Windows\system32\conhost.exe "93899838620675611449469449417096738051865943153180470586878556249-1572307867
"C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe" /launchService
C:\Windows\system32\svchost.exe -k apphost
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
C:\Windows\SysWOW64\ezSharedSvcHost.exe
C:\Windows\system32\svchost.exe -k ftpsvc
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe"
"C:\Program Files\Samsung\Samsung Link\Samsung Link.exe"
"C:\Program Files\Samsung\Samsung Link\Samsung Link.exe" "Samsung Link Service" __i4j_restart
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe"
C:\Windows\system32\svchost.exe -k iissvcs
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
"C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe"
WLIDSvcM.exe 3344
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe"
"C:\Program Files (x86)\Google\Update\1.3.22.3\GoogleCrashHandler64.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\wbem\wmiprvse.exe
"taskhost.exe"
"C:\Program Files (x86)\HP SimplePass\TouchControl.exe"
"C:\Program Files (x86)\TeamViewer\Version9\TeamViewer.exe"
"C:\Program Files (x86)\TeamViewer\Version9\tv_w32.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
"C:\Program Files (x86)\TeamViewer\Version9\tv_x64.exe" --action hooks --log C:\Program Files (x86)\TeamViewer\Version9\TeamViewer9_Logfile.log
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\HP SimplePass\IEWebSiteLogon.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Program Files\IDT\WDM\sttray64.exe"
"C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe"
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
"C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe" autorun
"C:\Program Files (x86)\Internet Download Manager\IDMan.exe" /onboot
"C:\PROGRAM FILES\SYNAPTICS\SYNTP\SYNTPHELPER.EXE"
"C:\Program Files (x86)\Internet Download Manager\IEMonitor.exe"
taskeng.exe {42D0506E-1282-458C-B818-098555E4F203}
"C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE"
"C:\Program Files (x86)\CyberLink\YouCam\YCMMirage.exe"
"C:\Program Files (x86)\Google\Drive\googledrivesync.exe" /autostart
szndesktop.exe default start
"C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\bin\listicka-x64.exe"
\??\C:\Windows\system32\conhost.exe "-314096745-1352145735728075377693346089-3201290697991602161279292552-101047834
"C:\Windows\SysWOW64\rundll32.exe" C:\Users\JANOVS~1\AppData\Local\Temp\\tsiVi132.dll,startme
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM" PriorityLow
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe"
"C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" -byrunkey
-Minimized
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe"
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"C:\Program Files\WIDCOMM\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe"
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
"C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe"
"C:\Users\Janovský Lukáš\Documents\RSITx64.exe"
"c:\program files\windows defender\MpCmdRun.exe" SpyNetService -RestrictPrivileges -AccessKey 3A886505-213D-5925-A4BD-0BBB5AF6C819 -Reinvoke

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\AmiUpdXp.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1669208800-3444714589-653517467-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1669208800-3444714589-653517467-1001UA.job
C:\Windows\tasks\HPCeeScheduleForGUMÍDEK$.job
C:\Windows\tasks\HPCeeScheduleForJanovský Lukáš.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC64.dll [2013-04-05 398144]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Janovský Lukáš\AppData\Roaming\Complitly\64\Complitly64.dll [2013-01-24 172104]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{318A227B-5E9F-45bd-8999-7F8F10CA4CF5}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-10 1567016]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files\AMD\SteadyVideo\SteadyVideo.dll [2011-06-08 81024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPluginx64.dll [2013-08-28 303416]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDM integration (IDMIEHlprObj Class) - C:\Program Files (x86)\Internet Download Manager\IDMIECC.dll [2013-04-05 363840]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\Janovský Lukáš\AppData\Roaming\Complitly\Complitly.dll [2013-01-24 144456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6C680BAE-655C-4E3D-8FC4-E6A520C3D928}]
SteadyVideoBHO Class - C:\Program Files (x86)\amd\SteadyVideo\SteadyVideo.dll [2011-06-08 69760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre7\bin\ssv.dll [2013-10-25 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8E5E2654-AD2D-48bf-AC2D-D17F00898D06}]
avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-10 606544]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2011-03-28 441216]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{ae60e6ed-49dd-4099-8b5e-386a4908d5d5}]
GreyGray - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll [2013-10-25 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E76FD755-C1BA-4DCB-9F13-99BD91223ADE}]
HP Network Check Helper - C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\Resources\HPNetworkCheck\HPNetworkCheckPlugin.dll [2013-08-28 286520]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{318A227B-5E9F-45bd-8999-7F8F10CA4CF5} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE64.dll [2013-12-10 1567016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA}
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll [2012-02-13 1307928]
{8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - avast! Online Security - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2013-12-10 606544]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2013-06-15 2899216]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray64.exe [2012-03-06 1425408]
"SetDefault"=C:\Program Files\Hewlett-Packard\HP LaunchBox\SetDefault.exe [2011-12-19 44880]
"Logitech Download Assistant"=C:\Windows\System32\LogiLDA.dll [2012-09-20 1832760]
"Samsung Link"=C:\Program Files\Samsung\Samsung Link\Samsung Link Tray Agent.exe [2013-11-05 597576]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"NCPluginUpdater"=C:\Program Files (x86)\Hewlett-Packard\HP Health Check\ActiveCheck\product_line\NCPluginUpdater.exe [2013-12-12 21720]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-21 1475584]
"Google Update"=C:\Users\Janovský Lukáš\AppData\Local\Google\Update\GoogleUpdate.exe [2012-11-16 116648]
"GoogleDriveSync"=C:\Program Files (x86)\Google\Drive\googledrivesync.exe [2013-12-06 20203904]
"MyPhoneExplorer"=C:\Program Files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe [2013-09-02 5127896]
"IDMan"=C:\Program Files (x86)\Internet Download Manager\IDMan.exe [2013-04-05 3573624]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2013-12-20 6563096]
"AlcoholAutomount"=C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
"cz.seznam.software.autoupdate"=C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\szninstall.exe [2013-05-16 1062472]
"cz.seznam.software.szndesktop"=C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe [2013-04-12 92664]
"tsiVideo"=C:\Windows\SysWOW64\rundll32.exe [2009-07-14 44544]
"Nexus"= []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-03-21 630912]
"HP Quick Launch"=C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe [2012-03-05 578944]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2013-04-04 958576]
"HPOSD"=C:\Program Files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe [2011-08-19 379960]
"HP CoolSense"=C:\Program Files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe [2012-11-05 1343904]
"HPConnectionManager"=C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe [2011-09-13 103992]
"Nikon Message Center 2"=C:\Program Files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe [2011-10-30 571392]
"seznam-listicka-distribuce"=C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe [2013-05-16 1062472]
""= []
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"AvastUI.exe"=C:\Program Files\AVAST Software\Avast\AvastUI.exe [2013-12-10 3568312]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"DisableLockWorkstation"=0
"DisableChangePassword"=0
"DisableTaskMgr"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"HideFastUserSwitching"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"EnableShellExecuteHooks"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 months======

2013-12-20 16:02:41 ----D---- C:\Program Files\trend micro
2013-12-20 16:02:40 ----D---- C:\rsit
2013-12-16 20:34:03 ----A---- C:\Windows\SYSWOW64\msvcr90.dll
2013-12-16 20:34:03 ----A---- C:\Windows\SYSWOW64\msvcp90.dll
2013-12-16 20:34:03 ----A---- C:\Windows\SYSWOW64\msvcm90.dll
2013-12-16 20:33:53 ----A---- C:\Windows\SYSWOW64\msxml4a.dll
2013-12-16 20:33:53 ----A---- C:\Windows\SYSWOW64\lgAxconfig.ini
2013-12-16 20:33:53 ----A---- C:\Windows\SYSWOW64\CommonDL.dll
2013-12-16 20:32:49 ----D---- C:\ProgramData\LGMOBILEAX
2013-12-16 20:30:24 ----A---- C:\Windows\system32\drivers\lgandnetmodem64.sys
2013-12-16 20:30:23 ----A---- C:\Windows\system32\drivers\lgandnetdiag64.sys
2013-12-15 15:55:10 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\LG Electronics
2013-12-15 14:00:40 ----D---- C:\Program Files (x86)\LG Electronics
2013-12-12 03:03:09 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2013-12-12 03:03:09 ----A---- C:\Windows\system32\wmploc.DLL
2013-12-12 03:03:08 ----A---- C:\Windows\SYSWOW64\wmp.dll
2013-12-12 03:03:06 ----A---- C:\Windows\system32\wmp.dll
2013-12-12 03:01:29 ----A---- C:\Windows\system32\ieetwcollectorres.dll
2013-12-12 03:01:28 ----A---- C:\Windows\SYSWOW64\ieui.dll
2013-12-12 03:01:28 ----A---- C:\Windows\system32\ieui.dll
2013-12-12 03:01:27 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2013-12-12 03:01:27 ----A---- C:\Windows\system32\jsproxy.dll
2013-12-12 03:01:27 ----A---- C:\Windows\system32\ieUnatt.exe
2013-12-12 03:01:27 ----A---- C:\Windows\system32\iesetup.dll
2013-12-12 03:01:27 ----A---- C:\Windows\system32\iernonce.dll
2013-12-12 03:01:27 ----A---- C:\Windows\system32\ie4uinit.exe
2013-12-12 03:01:26 ----A---- C:\Windows\system32\ieetwproxystub.dll
2013-12-12 03:01:26 ----A---- C:\Windows\system32\ieetwcollector.exe
2013-12-12 03:01:25 ----A---- C:\Windows\SYSWOW64\jscript9diag.dll
2013-12-12 03:01:25 ----A---- C:\Windows\system32\mshtml.dll
2013-12-12 03:01:24 ----A---- C:\Windows\SYSWOW64\ieapfltr.dll
2013-12-12 03:01:24 ----A---- C:\Windows\system32\jscript9diag.dll
2013-12-12 03:01:24 ----A---- C:\Windows\system32\ieapfltr.dll
2013-12-12 03:01:23 ----A---- C:\Windows\system32\iertutil.dll
2013-12-12 03:01:22 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2013-12-12 03:01:21 ----A---- C:\Windows\SYSWOW64\wininet.dll
2013-12-12 03:01:21 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2013-12-12 03:01:21 ----A---- C:\Windows\system32\wininet.dll
2013-12-12 03:01:20 ----A---- C:\Windows\system32\urlmon.dll
2013-12-12 03:01:19 ----A---- C:\Windows\system32\ieframe.dll
2013-12-12 03:01:18 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2013-12-12 03:01:16 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2013-12-12 03:01:15 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2013-12-12 03:01:15 ----A---- C:\Windows\system32\jscript9.dll
2013-12-12 00:48:51 ----A---- C:\Windows\SYSWOW64\msieftp.dll
2013-12-12 00:48:51 ----A---- C:\Windows\system32\msieftp.dll
2013-12-12 00:48:50 ----A---- C:\Windows\SYSWOW64\WMPhoto.dll
2013-12-12 00:48:50 ----A---- C:\Windows\system32\WMPhoto.dll
2013-12-12 00:48:50 ----A---- C:\Windows\system32\win32k.sys
2013-12-12 00:48:49 ----A---- C:\Windows\SYSWOW64\imagehlp.dll
2013-12-12 00:48:49 ----A---- C:\Windows\system32\imagehlp.dll
2013-12-12 00:48:45 ----A---- C:\Windows\SYSWOW64\tzres.dll
2013-12-12 00:48:45 ----A---- C:\Windows\system32\tzres.dll
2013-12-12 00:48:41 ----A---- C:\Windows\SYSWOW64\wscript.exe
2013-12-12 00:48:41 ----A---- C:\Windows\system32\scrrun.dll
2013-12-12 00:48:41 ----A---- C:\Windows\system32\drivers\portcls.sys
2013-12-12 00:48:41 ----A---- C:\Windows\system32\drivers\drmk.sys
2013-12-12 00:48:41 ----A---- C:\Windows\system32\cscript.exe
2013-12-12 00:48:40 ----A---- C:\Windows\SYSWOW64\scrrun.dll
2013-12-12 00:48:40 ----A---- C:\Windows\SYSWOW64\cscript.exe
2013-12-12 00:48:40 ----A---- C:\Windows\system32\wscript.exe
2013-12-10 14:12:01 ----A---- C:\Windows\system32\drivers\aswKbd.sys
2013-12-10 14:11:44 ----A---- C:\Windows\system32\drivers\aswNdisFlt.sys
2013-12-10 13:46:44 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\AVAST Software
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswVmm.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswSP.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswRvrt.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswRdr2.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2013-12-10 13:45:58 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2013-11-26 16:05:59 ----SD---- C:\Program Files (x86)\Winstep
2013-11-26 12:37:28 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\deluge
2013-11-25 16:55:43 ----D---- C:\Windows\Minidump
2013-11-21 11:34:33 ----D---- C:\ProgramData\vsosdk
2013-11-21 10:56:09 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\Vso
2013-11-21 10:56:09 ----A---- C:\Users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-21 10:56:09 ----A---- C:\Users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 10:55:49 ----D---- C:\ProgramData\VSO
2013-11-21 10:55:49 ----D---- C:\Program Files (x86)\VSO

======List of files/folders modified in the last 1 months======

2013-12-20 16:02:49 ----D---- C:\Windows\Prefetch
2013-12-20 16:02:43 ----D---- C:\Windows\Temp
2013-12-20 16:02:41 ----RD---- C:\Program Files
2013-12-20 15:47:08 ----D---- C:\Windows\system32\config
2013-12-20 15:45:51 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz
2013-12-20 15:20:18 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\DMCache
2013-12-20 15:10:16 ----SHD---- C:\System Volume Information
2013-12-20 10:40:56 ----D---- C:\Program Files\SUPERAntiSpyware
2013-12-19 19:40:33 ----D---- C:\Windows
2013-12-19 19:40:28 ----SHD---- C:\Config.Msi
2013-12-17 19:25:14 ----D---- C:\Windows\system32\Tasks
2013-12-17 13:02:19 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\TeamViewer
2013-12-17 13:02:11 ----D---- C:\Windows\System32
2013-12-17 13:02:03 ----RSD---- C:\Windows\Fonts
2013-12-17 13:01:44 ----D---- C:\Program Files (x86)\TeamViewer
2013-12-16 22:30:11 ----SHD---- C:\Windows\Installer
2013-12-16 20:37:47 ----D---- C:\Windows\system32\drivers
2013-12-16 20:37:22 ----D---- C:\Windows\inf
2013-12-16 20:34:03 ----D---- C:\Windows\SysWOW64
2013-12-16 20:32:49 ----HD---- C:\ProgramData
2013-12-16 20:31:05 ----D---- C:\Windows\system32\DriverStore
2013-12-16 20:31:05 ----D---- C:\Windows\system32\catroot
2013-12-16 20:30:19 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2013-12-16 13:01:59 ----A---- C:\Windows\system32\PerfStringBackup.INI
2013-12-16 12:57:52 ----D---- C:\Windows\system32\NDF
2013-12-16 10:47:52 ----D---- C:\Windows\system32\catroot2
2013-12-16 10:34:11 ----RD---- C:\Program Files (x86)
2013-12-16 10:15:39 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\uTorrent
2013-12-15 19:32:28 ----D---- C:\Users\Janovský Lukáš\AppData\Roaming\MyPhoneExplorer
2013-12-15 15:48:49 ----D---- C:\Windows\winsxs
2013-12-15 15:39:41 ----D---- C:\Program Files (x86)\Common Files
2013-12-15 15:38:44 ----D---- C:\Program Files (x86)\Motorola
2013-12-15 03:01:06 ----D---- C:\Windows\system32\MRT
2013-12-15 03:01:05 ----D---- C:\Windows\debug
2013-12-15 03:00:59 ----A---- C:\Windows\system32\MRT.exe
2013-12-14 14:00:04 ----D---- C:\Windows\Tasks
2013-12-14 13:59:32 ----A---- C:\Windows\system32\HP_ActiveX_Patch_NOT_DETECTED.txt
2013-12-12 19:23:17 ----D---- C:\Temp
2013-12-12 04:00:09 ----D---- C:\Windows\rescache
2013-12-12 03:20:01 ----D---- C:\Program Files\Windows Media Player
2013-12-12 03:20:01 ----D---- C:\Program Files (x86)\Windows Media Player
2013-12-12 03:20:00 ----D---- C:\Windows\SYSWOW64\cs-CZ
2013-12-12 03:20:00 ----D---- C:\Program Files\Internet Explorer
2013-12-12 03:20:00 ----D---- C:\Program Files (x86)\Internet Explorer
2013-12-12 03:19:59 ----D---- C:\Windows\system32\cs-CZ
2013-12-11 04:41:17 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2013-12-10 13:45:50 ----A---- C:\Windows\system32\aswBoot.exe
2013-12-10 13:43:32 ----D---- C:\ProgramData\AVAST Software
2013-12-10 13:31:00 ----D---- C:\Windows\Panther
2013-12-10 13:30:59 ----D---- C:\Windows\Logs
2013-12-10 13:27:08 ----D---- C:\Program Files\CCleaner
2013-11-23 19:01:23 ----D---- C:\Program Files (x86)\Mozilla Maintenance Service

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 amd_sata;amd_sata; C:\Windows\system32\drivers\amd_sata.sys [2011-12-13 82048]
R0 amd_xata;amd_xata; C:\Windows\system32\drivers\amd_xata.sys [2011-12-13 42624]
R0 amdkmpfd;AMD PCI Root Bus Lower Filter; C:\Windows\system32\drivers\amdkmpfd.sys [2012-02-02 31872]
R0 aswRvrt;avast! Revert; C:\Windows\system32\drivers\aswRvrt.sys [2013-12-10 65776]
R0 aswVmm;avast! VM Monitor; C:\Windows\system32\drivers\aswVmm.sys [2013-12-10 205320]
R0 hpdskflt;HP Filter; C:\Windows\system32\drivers\hpdskflt.sys [2012-09-24 31040]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2013-05-29 564824]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\NISx64\1305000.091\SYMDS64.SYS [2011-08-15 451192]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\NISx64\1305000.091\SYMEFA64.SYS [2011-11-23 1092728]
R1 aswKbd;aswKbd; \??\C:\Windows\system32\drivers\aswKbd.sys [2013-12-10 28184]
R1 aswNdisFlt;Avast! Firewall Driver; C:\Windows\system32\DRIVERS\aswNdisFlt.sys [2013-12-10 447888]
R1 aswRdr;aswRdr; \??\C:\Windows\system32\drivers\aswRdr2.sys [2013-12-10 92544]
R1 aswSnx;aswSnx; \??\C:\Windows\system32\drivers\aswSnx.sys [2013-12-10 1032416]
R1 aswSP;aswSP; \??\C:\Windows\system32\drivers\aswSP.sys [2013-12-10 409832]
R1 aswTdi;aswTdi; \??\C:\Windows\system32\drivers\aswTdi.sys [2013-12-10 65264]
R1 ccSet_NIS;Norton Internet Security Settings Manager; C:\Windows\system32\drivers\NISx64\1305000.091\ccSetx64.sys [2011-11-04 167048]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys [2011-11-23 488568]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\NISx64\1305000.091\SRTSPX64.SYS [2011-11-23 37496]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\NISx64\1305000.091\Ironx64.SYS [2011-11-16 190072]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\NISx64\1305000.091\SYMNETS.SYS [2011-11-16 405624]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 APXACC;AppEx Networks Accelerator LWF; C:\Windows\system32\DRIVERS\appexDrv.sys [2012-02-05 189760]
R2 aswFsBlk;aswFsBlk; \??\C:\Windows\system32\drivers\aswFsBlk.sys [2013-12-10 38984]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2013-12-10 84328]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2013-04-05 166576]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2010-11-21 146432]
R3 Accelerometer;HP Mobile Data Protection Sensor; C:\Windows\system32\DRIVERS\Accelerometer.sys [2012-09-24 43840]
R3 amdhub30;AMD USB 3.0 Hub Driver; C:\Windows\system32\drivers\amdhub30.sys [2011-10-26 102528]
R3 amdiox64;AMD IO Driver; C:\Windows\system32\drivers\amdiox64.sys [2010-02-18 46136]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-03-22 10826240]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-03-22 328704]
R3 amdxhc;AMD USB 3.0 Host Controller Driver; C:\Windows\system32\drivers\amdxhc.sys [2011-10-26 219776]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW76.sys [2011-12-06 95248]
R3 bcbtums;Bluetooth RAM Firmware Download USB Filter; C:\Windows\system32\drivers\bcbtums.sys [2012-02-02 134696]
R3 BCM43XX;Ovladač síťového adaptéru Broadcom 802.11; C:\Windows\system32\DRIVERS\bcmwl664.sys [2013-06-09 4747840]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2012-05-16 80384]
R3 btwampfl;btwampfl Bluetooth filter driver; \??\C:\Windows\system32\drivers\btwampfl.sys [2012-02-02 615976]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2012-02-02 184360]
R3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2012-02-02 211496]
R3 BTWDPAN;Bluetooth Personal Area Network; C:\Windows\system32\DRIVERS\btwdpan.sys [2012-02-02 89640]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2012-02-02 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\drivers\btwrchid.sys [2012-02-02 21544]
R3 clwvd;CyberLink WebCam Virtual Driver; C:\Windows\system32\DRIVERS\clwvd.sys [2012-08-03 40432]
R3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service; C:\Windows\system32\DRIVERS\InputFilter_FlexDef2b.sys [2010-06-19 17920]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RSBASTOR;Realtek PCIE CardReader Driver - BA; C:\Windows\system32\DRIVERS\RtsBaStor.sys [2012-03-08 293480]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2012-03-10 685160]
R3 STHDA;@%SystemRoot%\system32\stlang64.dll,-10322; C:\Windows\system32\DRIVERS\stwrt64.sys [2012-03-06 536064]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2012-06-26 175736]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2013-06-15 428304]
R3 teamviewervpn;TeamViewer VPN Adapter; C:\Windows\system32\DRIVERS\teamviewervpn.sys [2012-09-12 35112]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2012-01-14 56448]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys [2011-11-28 1157240]
S3 AndNetDiag;LGE AndroidNet USB Serial Port; C:\Windows\system32\DRIVERS\lgandnetdiag64.sys [2013-04-18 29184]
S3 ANDNetModem;LGE AndroidNet USB Modem; C:\Windows\system32\DRIVERS\lgandnetmodem64.sys [2013-06-28 36352]
S3 BTCFilterService;USB Networking Driver Filter Service; C:\Windows\system32\DRIVERS\motfilt.sys []
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 iaStor;iaStor; C:\Windows\system32\drivers\iaStor.sys [2012-02-02 568600]
S3 motandroidusb;Mot ADB Interface Driver; C:\Windows\System32\Drivers\motoandroid.sys []
S3 motccgp;Motorola USB Composite Device Driver; C:\Windows\system32\DRIVERS\motccgp.sys []
S3 motccgpfl;MotCcgpFlService; C:\Windows\system32\DRIVERS\motccgpfl.sys []
S3 MotDev;Motorola Inc. USB Device; C:\Windows\system32\DRIVERS\motodrv.sys []
S3 motmodem;Motorola USB CDC ACM Driver; C:\Windows\system32\DRIVERS\motmodem.sys []
S3 MotoSwitchService;MotoSwitch Service; C:\Windows\system32\DRIVERS\motswch.sys []
S3 Motousbnet;Motorola USB Networking Driver Service; C:\Windows\system32\DRIVERS\Motousbnet.sys []
S3 motusbdevice;Motorola USB Dev Driver; C:\Windows\system32\DRIVERS\motusbdevice.sys []
S3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\VirusDefs\20121106.032\ENG64.SYS [2012-11-07 126112]
S3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\VirusDefs\20121106.032\EX64.SYS [2012-11-07 2084000]
S3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\Windows\system32\DRIVERS\nvm62x64.sys [2009-06-10 408960]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2012-08-23 19456]
S3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2010-11-21 109056]
S3 SmbDrv;SmbDrv; C:\Windows\system32\drivers\Smb_driver.sys [2012-03-02 21264]
S3 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\NISx64\1305000.091\SRTSP64.SYS [2011-11-23 738936]
S3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL6.SYS [2009-06-10 292864]
S3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV6.SYS [2009-06-10 1485312]
S3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT6.SYS [2009-06-10 740864]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2012-08-23 30208]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2013-02-12 19968]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2011-07-19 146816]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-05-09 65640]
R2 AllShare Framework DMS;AllShare Framework DMS; C:\Program Files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe [2013-10-11 404360]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-03-22 235520]
R2 AMD FUEL Service;AMD FUEL Service; C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-03-21 361984]
R2 AppHostSvc;@%windir%\system32\inetsrv\iisres.dll,-30011; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2013-12-10 50344]
R2 avast! Firewall;avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [2013-12-10 116776]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2012-02-01 945440]
R2 ezSharedSvc;Easybits Services for Windows; C:\Windows\syswow64\ezSharedSvcHost.exe [2010-04-23 514232]
R2 FPLService;TrueSuiteService; C:\Program Files (x86)\HP SimplePass\TrueSuiteService.exe [2013-06-07 1641768]
R2 ftpsvc;@%windir%\system32\inetsrv\ftpres.dll,-30001; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 HP Support Assistant Service;HP Support Assistant Service; C:\Program Files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [2012-09-27 86528]
R2 HPAuto;HP Auto; C:\Program Files\Hewlett-Packard\HP Auto\HPAuto.exe [2011-02-16 682040]
R2 hpsrv;HP Service; C:\Windows\system32\Hpservice.exe [2012-09-24 31040]
R2 HPWMISVC;HPWMISVC; C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [2012-03-05 35200]
R2 Samsung Link Service;Samsung Link Service; C:\Program Files\Samsung\Samsung Link\Samsung Link.exe [2013-11-05 605768]
R2 STacSV;@%SystemRoot%\system32\stlang64.dll,-10122; C:\Program Files\IDT\WDM\STacSV64.exe [2012-03-06 314880]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 TeamViewer9;TeamViewer 9; C:\Program Files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [2013-12-17 5341536]
R3 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [2012-02-13 240408]
R3 hpCMSrv;HP Connection Manager 4 Service; C:\Program Files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [2011-09-13 1098296]
R3 hpqwmiex;HP Software Framework Service; C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe [2012-09-06 1001376]
S2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2012-01-05 75624]
S2 BBSvc;BingBar Service; C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [2012-02-13 193816]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 136176]
S2 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-07-13 160944]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-12-11 257416]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 GamesAppService;GamesAppService; C:\Program Files (x86)\WildTangent Games\App\GamesAppService.exe [2010-10-12 206072]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 136176]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-05-09 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 IEEtwCollectorService;@%SystemRoot%\system32\ieetwcollectorres.dll,-1000; C:\Windows\system32\IEEtwCollector.exe [2013-11-26 111616]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-11-16 119408]
S3 TrueService;TrueAPI Service component; C:\Program Files\Common Files\AuthenTec\TrueService.exe [2013-01-07 401856]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#2 Příspěvek od **Roli** » 20 pro 2013 18:59

Zdravím, tohle fixni v HJT :

O2 - BHO: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: GreyGray - {ae60e6ed-49dd-4099-8b5e-386a4908d5d5} - C:\Program Files (x86)\GreyGray\GreyGrayBHO.dll (file missing)
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll
O3 - Toolbar: (no name) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - (no file)
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\7.1.362.0\BingExt.dll" (file missing)
O3 - Toolbar: avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [seznam-listicka-distribuce] "C:\Program Files (x86)\Seznam.cz\distribution\szninstall.exe" -s -d listicka 1 szn-software-listicka cz.seznam.software.autoupdate
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Janovský Lukáš\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [cz.seznam.software.autoupdate] "C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\szninstall.exe" -c
O4 - HKCU\..\Run: [cz.seznam.software.szndesktop] "C:\Users\Janovský Lukáš\AppData\Roaming\Seznam.cz\bin\wszndesktop.exe" -q
O4 - HKCU\..\Run: [tsiVideo] C:\Windows\SysWOW64\rundll32.exe C:\Users\JANOVS~1\AppData\Local\Temp\\tsiVi132.dll,startme

HJT najdeš zde :

C:\Program Files\trend micro\Janovský Lukáš.exe

Fix znamená že spustíš HJT Obrázek

jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.

Přes Start >> Všechny programy >> Příslušenství >> Spustit >> napiš - services.msc >> Enter. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

Google Updater Service (gusvc)

Skype Updater

dvojklikem se otevře karta kde nejprve službu zastav tlačítkem Zastavit u položky Typ spouštění vyber Zakázáno a klik na OK.

V Plánovači úloh zakaž Google Update bude to tam několikrát.

Smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

chenny · #3 Příspěvek od **chenny** » 20 pro 2013 19:36

Všechno hotovo,tady je log z AdwCleaner.

# AdwCleaner v3.015 - Report created 20/12/2013 at 19:21:58
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Janovský Lukáš - GUMÍDEK
# Running from : C:\Users\Janovský Lukáš\Desktop\adwcleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Found : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Found : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\user.js
File Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\bprotector_extensions.sqlite
File Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\searchplugins\ask-search.xml
File Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\user.js
File Found : C:\Windows\System32\Tasks\AmiUpdXp
File Found : C:\Windows\Tasks\AmiUpdXp.job
Folder Found : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Folder Found : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\feadfpepenafnliljklpjlciolfbgbaa
Folder Found : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\Extensions\{33e0daa6-3af3-d8b5-6752-10e949c61516}
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\Extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\Extensions\info@djzig.com
Folder Found : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\Extensions\info@djzig.com
Folder Found C:\Program Files (x86)\Complitly
Folder Found C:\Program Files (x86)\optimizer pro
Folder Found C:\Program Files (x86)\Red Sky
Folder Found C:\ProgramData\apn
Folder Found C:\ProgramData\Ask
Folder Found C:\ProgramData\Babylon
Folder Found C:\ProgramData\boost_interprocess
Folder Found C:\ProgramData\ParetoLogic
Folder Found C:\ProgramData\safe save
Folder Found C:\ProgramData\SearchNewTab
Folder Found C:\ProgramData\SoftSafe
Folder Found C:\ProgramData\StarApp
Folder Found C:\ProgramData\Tarma Installer
Folder Found C:\Users\Janovský Lukáš\AppData\Local\DownTango
Folder Found C:\Users\Janovský Lukáš\AppData\Local\PackageAware
Folder Found C:\Users\Janovský Lukáš\AppData\Local\SwvUpdater
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\Babylon
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\Complitly
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\DriverCure
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\EZDownloader
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\goforfiles
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\ParetoLogic
Folder Found C:\Users\Janovský Lukáš\AppData\Roaming\yourfiledownloader

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKCU\Software\1ClickDownload
Key Found : HKCU\Software\AppDataLow\Software\SmartBar
Key Found : HKCU\Software\AppDataLow\SProtector
Key Found : HKCU\Software\BI
Key Found : HKCU\Software\Complitly
Key Found : HKCU\Software\Conduit
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKCU\Software\ParetoLogic
Key Found : HKCU\Software\Softonic
Key Found : [x64] HKCU\Software\1ClickDownload
Key Found : [x64] HKCU\Software\BI
Key Found : [x64] HKCU\Software\Complitly
Key Found : [x64] HKCU\Software\Conduit
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : [x64] HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Found : [x64] HKCU\Software\ParetoLogic
Key Found : [x64] HKCU\Software\Softonic
Key Found : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Found : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Found : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Key Found : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Found : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Found : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Found : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Key Found : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Found : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Found : HKLM\Software\Conduit
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Key Found : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_black-seven-folder-icon-pack_RASAPI32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_black-seven-folder-icon-pack_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Key Found : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Found : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller
Key Found : HKLM\Software\ParetoLogic
Key Found : HKLM\Software\SimplyGen
Key Found : HKLM\Software\SProtector
Key Found : HKLM\Software\YourFileDownloader
Key Found : [x64] HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Found : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Found : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

Setting Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page] - hxxp://websearch.searchdwebs.info/?pid=946&r=2013/06/24&hid=4180132474&lg=EN&cc=CZ&unqvl=22

-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\prefs.js ]

[ File : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\prefs.js ]

Line Found : user_pref("aol_toolbar.default.homepage.check", false);
Line Found : user_pref("aol_toolbar.default.search.check", false);
Line Found : user_pref("browser.search.defaulturl", "hxxp://websearch.searchdwebs.info/?pid=946&r=2013/06/24&hid=4180132474&lg=EN&cc=CZ&unqvl=22&l=1&q=");
Line Found : user_pref("browser.search.order.1,S", "WebSearch");
Line Found : user_pref("browser.search.selectedEngine,S", "WebSearch");
Line Found : user_pref("extensions.51c87216a1601.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,search.gboxapp.com'.indexOf(window.self.location.hostname)>-1) return;}c[...]
Line Found : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Found : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Found : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Found : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Found : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Found : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Found : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Found : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Found : icon_url
Found : search_url
Found : keyword

*************************

AdwCleaner[R0].txt - [11548 octets] - [20/12/2013 19:21:58]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [11609 octets] ##########

#4 Příspěvek od **Roli** » 21 pro 2013 23:06

Znovu spusť AdwCleaner ale tentokrát klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zase zkopíruj Report.

Pak použij Mbam z mého podpisu a také mi sem z něj dej log, předem nic nemazat !

chenny · #5 Příspěvek od **chenny** » 22 pro 2013 10:23

# AdwCleaner v3.015 - Report created 21/12/2013 at 23:21:03
# Updated 10/12/2013 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Janovský Lukáš - GUMÍDEK
# Running from : C:\Users\Janovský Lukáš\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\apn
Folder Deleted : C:\ProgramData\Ask
Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\boost_interprocess
Folder Deleted : C:\ProgramData\ParetoLogic
Folder Deleted : C:\ProgramData\SoftSafe
Folder Deleted : C:\ProgramData\StarApp
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\ProgramData\safe save
Folder Deleted : C:\ProgramData\SearchNewTab
Folder Deleted : C:\Program Files (x86)\Complitly
Folder Deleted : C:\Program Files (x86)\optimizer pro
Folder Deleted : C:\Program Files (x86)\Red Sky
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Local\DownTango
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Local\PackageAware
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Local\SwvUpdater
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Complitly
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\DriverCure
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\EZDownloader
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\goforfiles
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\ParetoLogic
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\yourfiledownloader
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\Extensions\{33E0DAA6-3AF3-D8B5-6752-10E949C61516}
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\Extensions\info@djzig.com
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\Extensions\{77d2ed30-4cd2-11e0-b8af-0800200c9a66}
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\dlfienamagdnkekbbbocojppncdambda
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Folder Deleted : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Extensions\feadfpepenafnliljklpjlciolfbgbaa
File Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\bprotector_extensions.sqlite
File Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\searchplugins\ask-search.xml
File Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\user.js
File Deleted : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\user.js
File Deleted : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\bProtector Web Data
File Deleted : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\bprotectorpreferences
File Deleted : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_eooncjejnppfjjklapaamhcdmjbilmde_0.localstorage
File Deleted : C:\Windows\Tasks\AmiUpdXp.job
File Deleted : C:\Windows\System32\Tasks\AmiUpdXp

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\dlfienamagdnkekbbbocojppncdambda
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\jcdgjdiieiljkfkdcloehkohchhpekkn
Key Deleted : HKLM\SOFTWARE\Classes\AppID\Complitly.DLL
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO
Key Deleted : HKLM\SOFTWARE\Classes\SuggestMeYes.SuggestMeYesBHO.1
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd
Key Deleted : HKLM\SOFTWARE\Classes\Updater.AmiUpd.1
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\apnstub_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BingBar_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\BundleSweetIMSetup_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetim_rasmancs
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\sweetpacksupdatemanager_rasapi32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SweetPacksUpdateManager_RASMANCS
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_black-seven-folder-icon-pack_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\SoftonicDownloader_for_black-seven-folder-icon-pack_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{0A18A436-2A7A-49F3-A488-30538A2F6323}
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{442F13BC-2031-42D5-9520-437F65271153}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{007EFBDF-8A5D-4930-97CC-A4B437CBA777}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{1AA60054-57D9-4F99-9A55-D0FBFBE7ECD3}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{67BD9EEB-AA06-4329-A940-D250019300C9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{01BCB858-2F62-4F06-A8F4-48F927C15333}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{A0EE0278-2986-4E5A-884E-A3BF0357E476}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{E2343056-CC08-46AC-B898-BFC7ACF4E755}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{BB74DE59-BC4C-4172-9AC4-73315F71CFFE}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{31E3BC75-2A09-4CFF-9C92-8D0ED8D1DC0F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{9EDC0C90-2B5B-4512-953E-35767BAD5C67}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C66F0B7A-BD67-4982-AF71-C6CA6E7F016F}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\Interface\{C9AE652B-8C99-4AC2-B556-8B501182874E}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{2FA28606-DE77-4029-AF96-B231E3B8F827}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{D43B3890-80C7-4010-A95D-1E77B5924DC3}
Key Deleted : HKCU\Software\1ClickDownload
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\Complitly
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\ParetoLogic
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKCU\Software\AppDataLow\SProtector
Key Deleted : HKCU\Software\AppDataLow\Software\SmartBar
Key Deleted : HKLM\Software\Conduit
Key Deleted : HKLM\Software\ParetoLogic
Key Deleted : HKLM\Software\SimplyGen
Key Deleted : HKLM\Software\SProtector
Key Deleted : HKLM\Software\YourFileDownloader
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{4FFBB818-B13C-11E0-931D-B2664824019B}_is1
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{99C91FC5-DB5B-4AA0-BB70-5D89C5A4DF96}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

Setting Restored : HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\gch8vbee.default\prefs.js ]

[ File : C:\Users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\prefs.js ]

Line Deleted : user_pref("aol_toolbar.default.homepage.check", false);
Line Deleted : user_pref("aol_toolbar.default.search.check", false);
Line Deleted : user_pref("browser.search.defaulturl", "hxxp://websearch.searchdwebs.info/?pid=946&r=2013/06/24&hid=4180132474&lg=EN&cc=CZ&unqvl=22&l=1&q=");
Line Deleted : user_pref("browser.search.order.1,S", "WebSearch");
Line Deleted : user_pref("browser.search.selectedEngine,S", "WebSearch");
Line Deleted : user_pref("extensions.51c87216a1601.scode", "(function(){try{if('aol.com,mail.google.com,premiumreports.info,search.babylon.com,search.gboxapp.com'.indexOf(window.self.location.hostname)>-1) return;}c[...]
Line Deleted : user_pref("extensions.BabylonToolbar.prtkDS", 0);
Line Deleted : user_pref("extensions.BabylonToolbar.prtkHmpg", 0);
Line Deleted : user_pref("sweetim.toolbar.previous.browser.search.selectedEngine", "");
Line Deleted : user_pref("sweetim.toolbar.previous.browser.startup.homepage", "");
Line Deleted : user_pref("sweetim.toolbar.previous.keyword.URL", "");
Line Deleted : user_pref("sweetim.toolbar.scripts.1.domain-blacklist", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_DS", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.UserRejectedGuard_HP", "");
Line Deleted : user_pref("sweetim.toolbar.searchguard.enable", "");

-\\ Google Chrome v31.0.1650.63

[ File : C:\Users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\preferences ]

Deleted : icon_url
Deleted : search_url
Deleted : keyword

*************************

AdwCleaner[R0].txt - [11758 octets] - [20/12/2013 19:21:58]
AdwCleaner[R1].txt - [11819 octets] - [21/12/2013 23:19:30]
AdwCleaner[S0].txt - [10712 octets] - [21/12/2013 23:21:03]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [10773 octets] ##########

chenny · #6 Příspěvek od **chenny** » 22 pro 2013 10:26

A ještě log z Mbam.

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
http://www.malwarebytes.org

Verze: v2013.12.21.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Janovský Lukáš :: GUMÍDEK [administrátor]

Ochrana: Povolena

21.12.2013 23:52:56
MBAM-log-2013-12-22 (00-07-20).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 242956
Uplynulý čas: 7 minut, 49 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5} (PUP.Optional.GreyGray.A) -> Nebyla provedena žádná instrukce.
HKCU\Software\WinCodec (Trojan.Agent) -> Nebyla provedena žádná instrukce.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Nebyla provedena žádná instrukce.

Nalezené hodnoty v registru: 1
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {D3E6F30B-3C7E-11E2-9BC0-C01885CF79C0} -> Nebyla provedena žádná instrukce.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Users\Janovský Lukáš\AppData\Local\Application Data\Bundled software uninstaller\bi_client (1).exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.
C:\Users\Janovský Lukáš\AppData\Local\Application Data\Bundled software uninstaller\bi_client.exe (PUP.Optional.Somoto.A) -> Nebyla provedena žádná instrukce.

(konec)

#7 Příspěvek od **Roli** » 22 pro 2013 15:49

Vše co Mbam našel nech smazat, pak mi sem dej zase log a písni jaký je stav PC..

chenny · #8 Příspěvek od **chenny** » 22 pro 2013 16:48

Vše smazáno.... Stav PC se jen nepatrně zlepšil,stále je vypínání a naběhnutí dost pomalé.

Malwarebytes Anti-Malware (Zkušební verze Malwarebytes Anti-Malware.) 1.75.0.1300
www.malwarebytes.org

Verze: v2013.12.21.07

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 11.0.9600.16476
Janovský Lukáš :: GUMÍDEK [administrátor]

Ochrana: Povolena

22.12.2013 15:55:53
mbam-log-2013-12-22 (15-55-53).txt

Typ: Rychlá kontrola
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 242569
Uplynulý čas: 7 minut, 42 sekund

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 3
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{AE60E6ED-49DD-4099-8B5E-386A4908D5D5} (PUP.Optional.GreyGray.A) -> Přesun do karantény a smazání se zdařilo.
HKCU\Software\WinCodec (Trojan.Agent) -> Přesun do karantény a smazání se zdařilo.
HKLM\SOFTWARE\SWEETIM (PUP.Optional.SweetIM.A) -> Přesun do karantény a smazání se zdařilo.

Nalezené hodnoty v registru: 1
HKLM\Software\SweetIM|simapp_id (PUP.Optional.SweetIM.A) -> Data: {D3E6F30B-3C7E-11E2-9BC0-C01885CF79C0} -> Přesun do karantény a smazání se zdařilo.

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 2
C:\Users\Janovský Lukáš\AppData\Local\Application Data\Bundled software uninstaller\bi_client (1).exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.
C:\Users\Janovský Lukáš\AppData\Local\Application Data\Bundled software uninstaller\bi_client.exe (PUP.Optional.Somoto.A) -> Přesun do karantény a smazání se zdařilo.

(konec)

#9 Příspěvek od **Roli** » 24 pro 2013 11:33

chenny píše:Vše smazáno.... Stav PC se jen nepatrně zlepšil,stále je vypínání a naběhnutí dost pomalé.

Tak pokračujem

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

chenny · #10 Příspěvek od **chenny** » 24 pro 2013 13:30

Tady je log...jinak už je to mnohem lepší

ComboFix 13-12-24.01 - Janovský Lukáš 24.12.2013 12:14:01.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3554.1433 [GMT 1:00]
Spuštěný z: c:\users\Janovskř LukßÜ\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Internet Security *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Internet Security *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\_ctypes.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\_elementtree.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\_hashlib.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\_multiprocessing.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\_socket.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\_ssl.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\pyexpat.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\pysqlite2._sqlite.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\python27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\pythoncom27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\PyWinTypes27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\select.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\unicodedata.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32api.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32com.shell.shell.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32crypt.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32event.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32file.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32inet.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32pdh.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32pipe.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32process.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32profile.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32security.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\win32ts.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\windows._lib_cacheinvalidation.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._controls_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._core_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._gdi_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._html2.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._misc_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._windows_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wx._wizard.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wxbase294u_net_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wxbase294u_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wxmsw294u_adv_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wxmsw294u_core_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wxmsw294u_html_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI13562\wxmsw294u_webview_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dijphgpgadhlhbbcpagaldikdfnkonkk_0.localstorage-journal
c:\users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Local Storage\chrome-extension_dijphgpgadhlhbbcpagaldikdfnkonkk_0.localstorage
c:\users\Janovský Lukáš\AppData\Local\Google\Chrome\User Data\Default\Preferences
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\_ctypes.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\_elementtree.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\_hashlib.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\_multiprocessing.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\_socket.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\_ssl.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\pyexpat.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\pysqlite2._sqlite.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\python27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\pythoncom27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\PyWinTypes27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\select.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\unicodedata.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32api.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32com.shell.shell.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32crypt.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32event.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32file.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32inet.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32pdh.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32pipe.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32process.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32profile.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32security.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\win32ts.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\windows._lib_cacheinvalidation.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._controls_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._core_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._gdi_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._html2.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._misc_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._windows_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wx._wizard.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wxbase294u_net_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wxbase294u_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wxmsw294u_adv_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wxmsw294u_core_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wxmsw294u_html_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI13562\wxmsw294u_webview_vc90.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\libcurl.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\libeay32.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\libidn-11.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\librtmp.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\libssh2.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\libusb-1.0.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\SearchIndexer.exe
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\ssleay32.dll
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\svchost.exe
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\updater.exe
c:\users\Janovský Lukáš\AppData\Roaming\Microsoft\SystemCertificates\My\Updater\zlib1.dll
c:\windows\PFRO.log
c:\windows\TEMP\sqlite-3.7.2-sqlitejdbc.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-24 do 2013-12-24 )))))))))))))))))))))))))))))))
.
.
2013-12-23 19:57 . 2013-12-23 21:06 75888 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{805A4C75-BB82-4639-BCCD-64059DE2A515}\offreg.dll
2013-12-23 19:40 . 2013-12-23 19:40 -------- d-----w- c:\users\Janovský Lukáš\.objectdb
2013-12-21 22:47 . 2013-12-21 22:47 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\Malwarebytes
2013-12-21 22:46 . 2013-12-21 22:46 -------- d-----w- c:\programdata\Malwarebytes
2013-12-21 22:46 . 2013-12-21 22:46 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-12-21 22:46 . 2013-04-04 13:50 25928 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-12-20 19:52 . 2013-12-20 19:52 -------- d-----w- c:\program files (x86)\WebexpEnhancedV1
2013-12-20 18:21 . 2013-12-21 22:21 -------- d-----w- C:\AdwCleaner
2013-12-20 15:02 . 2013-12-20 18:09 -------- d-----w- c:\program files\trend micro
2013-12-20 15:02 . 2013-12-20 15:02 -------- d-----w- C:\rsit
2013-12-20 14:10 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{805A4C75-BB82-4639-BCCD-64059DE2A515}\mpengine.dll
2013-12-16 19:34 . 2011-05-06 18:37 655872 ----a-w- c:\windows\SysWow64\msvcr90.dll
2013-12-16 19:34 . 2011-05-06 18:37 568832 ----a-w- c:\windows\SysWow64\msvcp90.dll
2013-12-16 19:34 . 2011-05-06 18:37 224768 ----a-w- c:\windows\SysWow64\msvcm90.dll
2013-12-16 19:33 . 2006-04-30 13:33 53248 ----a-w- c:\windows\SysWow64\CommonDL.dll
2013-12-16 19:33 . 2005-09-30 06:39 44544 ----a-w- c:\windows\SysWow64\msxml4a.dll
2013-12-16 19:32 . 2013-12-16 19:34 -------- d-----w- c:\programdata\LGMOBILEAX
2013-12-16 19:30 . 2013-06-28 10:45 36352 ----a-w- c:\windows\system32\drivers\lgandnetmodem64.sys
2013-12-16 19:30 . 2013-04-18 15:14 29184 ----a-w- c:\windows\system32\drivers\lgandnetdiag64.sys
2013-12-16 12:06 . 2013-12-16 12:06 -------- d-----w- c:\users\Janovský Lukáš\adata
2013-12-15 14:55 . 2013-12-15 14:55 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\LG Electronics
2013-12-15 13:03 . 2013-12-15 14:50 -------- d-----w- c:\users\Janovský Lukáš\AppData\Local\LG Electronics
2013-12-15 13:00 . 2013-12-16 19:30 -------- d-----w- c:\program files (x86)\LG Electronics
2013-12-15 09:43 . 2013-11-28 00:24 175480 ----a-w- c:\windows\system32\drivers\idmwfp.sys
2013-12-12 02:03 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2013-12-12 02:03 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2013-12-12 02:03 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2013-12-12 02:03 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2013-12-12 02:03 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2013-12-11 23:48 . 2013-10-30 02:32 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-12-10 13:12 . 2013-12-10 13:11 28184 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-12-10 13:11 . 2013-12-10 13:11 447888 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2013-12-10 12:46 . 2013-12-10 12:46 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\AVAST Software
2013-12-10 12:45 . 2013-12-10 12:45 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-12-10 12:45 . 2013-12-10 12:45 84328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-12-10 12:45 . 2013-12-10 12:45 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-12-10 12:45 . 2013-12-10 12:45 65264 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-12-10 12:45 . 2013-12-10 12:45 409832 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-12-10 12:45 . 2013-12-10 12:45 38984 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-12-10 12:45 . 2013-12-10 12:45 205320 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-12-10 12:45 . 2013-12-10 12:45 1032416 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-12-10 12:45 . 2013-12-10 12:45 43152 ----a-w- c:\windows\avastSS.scr
2013-11-26 15:06 . 2008-02-05 14:36 798208 ----a-w- c:\windows\SysWow64\NextControls.ocx
2013-11-26 15:05 . 2013-11-26 15:06 -------- d-s---w- c:\program files (x86)\Winstep
2013-11-26 11:37 . 2013-11-26 11:37 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\deluge
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-15 02:00 . 2012-11-13 08:38 90708896 ----a-w- c:\windows\system32\MRT.exe
2013-12-11 03:41 . 2012-05-16 12:04 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-11 03:41 . 2012-05-16 12:04 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-10 12:45 . 2012-11-16 09:40 334648 ----a-w- c:\windows\system32\aswBoot.exe
2013-11-21 09:56 . 2013-11-21 09:56 99384 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 09:56 . 2013-11-21 09:56 99384 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 09:56 . 2013-11-21 09:56 82816 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-21 09:56 . 2013-11-21 09:56 82816 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-19 02:33 . 2010-11-21 03:27 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-11-13 02:02 . 2013-11-13 02:02 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-13 02:02 . 2013-11-13 02:02 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-13 02:02 . 2013-11-13 02:02 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-13 02:02 . 2013-11-13 02:02 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-13 02:02 . 2013-11-13 02:02 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-13 02:02 . 2013-11-13 02:02 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-13 02:02 . 2013-11-13 02:02 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-13 02:02 . 2013-11-13 02:02 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-13 02:02 . 2013-11-13 02:02 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-13 02:02 . 2013-11-13 02:02 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-11-13 02:02 . 2013-11-13 02:02 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-13 02:02 . 2013-11-13 02:02 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-13 02:02 . 2013-11-13 02:02 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-13 02:02 . 2013-11-13 02:02 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-13 02:02 . 2013-11-13 02:02 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-11-13 02:02 . 2013-11-13 02:02 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-13 02:02 . 2013-11-13 02:02 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-13 02:02 . 2013-11-13 02:02 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-11-13 02:02 . 2013-11-13 02:02 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-13 02:02 . 2013-11-13 02:02 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-13 02:02 . 2013-11-13 02:02 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-13 02:02 . 2013-11-13 02:02 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-11-13 02:02 . 2013-11-13 02:02 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-13 02:02 . 2013-11-13 02:02 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-13 02:02 . 2013-11-13 02:02 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-13 02:02 . 2013-11-13 02:02 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-13 02:02 . 2013-11-13 02:02 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-13 02:02 . 2013-11-13 02:02 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-13 02:02 . 2013-11-13 02:02 195584 ----a-w- c:\windows\system32\msrating.dll
2013-11-13 02:02 . 2013-11-13 02:02 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-13 02:02 . 2013-11-13 02:02 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-13 02:02 . 2013-11-13 02:02 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-13 02:02 . 2013-11-13 02:02 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-13 02:02 . 2013-11-13 02:02 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-13 02:02 . 2013-11-13 02:02 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-13 02:02 . 2013-11-13 02:02 413696 ----a-w- c:\windows\system32\html.iec
2013-11-13 02:02 . 2013-11-13 02:02 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-13 02:02 . 2013-11-13 02:02 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-13 02:02 . 2013-11-13 02:02 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-13 02:02 . 2013-11-13 02:02 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-13 02:02 . 2013-11-13 02:02 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-13 02:02 . 2013-11-13 02:02 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-11-13 02:02 . 2013-11-13 02:02 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-13 02:02 . 2013-11-13 02:02 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-13 02:02 . 2013-11-13 02:02 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-13 02:02 . 2013-11-13 02:02 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-13 02:02 . 2013-11-13 02:02 235520 ----a-w- c:\windows\system32\url.dll
2013-11-13 02:02 . 2013-11-13 02:02 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-13 02:02 . 2013-11-13 02:02 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-13 02:02 . 2013-11-13 02:02 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-13 02:02 . 2013-11-13 02:02 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-13 02:02 . 2013-11-13 02:02 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-13 02:02 . 2013-11-13 02:02 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-13 02:02 . 2013-11-13 02:02 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-13 02:02 . 2013-11-13 02:02 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-13 02:02 . 2013-11-13 02:02 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-10-25 18:31 . 2013-10-25 18:32 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-14 17:00 . 2013-11-13 02:08 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2013-10-14 13:34 . 2013-10-14 13:34 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin
2013-10-12 02:30 . 2013-11-14 12:14 830464 ----a-w- c:\windows\system32\nshwfp.dll
2013-10-12 02:29 . 2013-11-14 12:14 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2013-10-12 02:29 . 2013-11-14 12:14 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2013-10-12 02:03 . 2013-11-14 12:14 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2013-10-12 02:01 . 2013-11-14 12:14 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25 . 2013-11-14 12:14 1474048 ----a-w- c:\windows\system32\crypt32.dll
2013-10-05 19:57 . 2013-11-14 12:14 1168384 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-10-04 02:28 . 2013-11-14 12:14 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2013-10-04 02:25 . 2013-11-14 12:14 197120 ----a-w- c:\windows\system32\credui.dll
2013-10-04 02:24 . 2013-11-14 12:14 1930752 ----a-w- c:\windows\system32\authui.dll
2013-10-04 01:58 . 2013-11-14 12:14 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56 . 2013-11-14 12:14 168960 ----a-w- c:\windows\SysWow64\credui.dll
2013-10-04 01:56 . 2013-11-14 12:14 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-10-03 02:23 . 2013-11-14 12:14 404480 ----a-w- c:\windows\system32\gdi32.dll
2013-10-03 02:00 . 2013-11-14 12:14 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2013-10-01 09:09 . 2013-10-01 09:09 30720 ----a-w- c:\windows\system32\MediaDB64.dll
2013-10-01 09:09 . 2013-10-01 09:09 908800 ----a-w- c:\windows\system32\ContentDirectoryPresenter64.dll
2013-10-01 08:46 . 2013-10-01 08:46 25600 ----a-w- c:\windows\SysWow64\MediaDB.dll
2013-10-01 08:11 . 2013-10-01 08:11 706560 ----a-w- c:\windows\SysWow64\ContentDirectoryPresenter.dll
2013-09-28 01:09 . 2013-11-14 12:14 497152 ----a-w- c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{0287b0a8-8b48-45bc-ae6b-82b58bf234cf}]
2013-12-19 19:08 87552 ----a-w- c:\program files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha825\ie\WebexpEnhancedV1alpha825.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-12-06 20203904]
"MyPhoneExplorer"="c:\program files (x86)\MyPhoneExplorer\MyPhoneExplorer.exe" [2013-09-02 5127896]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2013-12-23 3821136]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2013-12-20 6563096]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2012-01-05 75624]
"NeXuS-Ultimate"="c:\program files (x86)\Winstep\Nexus-Ultimate.exe" [2012-03-29 18509952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-03-21 630912]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2012-03-05 578944]
"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-08-19 379960]
"HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2012-11-05 1343904]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-09-13 103992]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2011-10-30 571392]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-12-10 3568312]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2012-2-1 1380128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys [x]
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R3 AndNetDiag;LGE AndroidNet USB Serial Port;c:\windows\system32\DRIVERS\lgandnetdiag64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetdiag64.sys [x]
R3 ANDNetModem;LGE AndroidNet USB Modem;c:\windows\system32\DRIVERS\lgandnetmodem64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetmodem64.sys [x]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys;c:\windows\SYSNATIVE\DRIVERS\motfilt.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys;c:\windows\SYSNATIVE\Drivers\motoandroid.sys [x]
R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys;c:\windows\SYSNATIVE\DRIVERS\motccgp.sys [x]
R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys;c:\windows\SYSNATIVE\DRIVERS\motccgpfl.sys [x]
R3 MotDev;Motorola Inc. USB Device;c:\windows\system32\DRIVERS\motodrv.sys;c:\windows\SYSNATIVE\DRIVERS\motodrv.sys [x]
R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys;c:\windows\SYSNATIVE\DRIVERS\Motousbnet.sys [x]
R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys;c:\windows\SYSNATIVE\DRIVERS\motusbdevice.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\drivers\Smb_driver.sys;c:\windows\SYSNATIVE\drivers\Smb_driver.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TrueService;TrueAPI Service component;c:\program files\Common Files\AuthenTec\TrueService.exe;c:\program files\Common Files\AuthenTec\TrueService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1305000.091\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1305000.091\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMEFA64.SYS [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1305000.091\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\ccSetx64.sys [x]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1305000.091\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1305000.091\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMNETS.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AllShare Framework DMS;AllShare Framework DMS;c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe;c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 APXACC;AppEx Networks Accelerator LWF;c:\windows\system32\DRIVERS\appexDrv.sys;c:\windows\SYSNATIVE\DRIVERS\appexDrv.sys [x]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys;c:\windows\SYSNATIVE\drivers\aswFsBlk.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 FPLService;TrueSuiteService;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe [x]
S2 ftpsvc;Služba Microsoft FTP Service;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 Samsung Link Service;Samsung Link Service;c:\program files\Samsung\Samsung Link\Samsung Link.exe;c:\program files\Samsung\Samsung Link\Samsung Link.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\drivers\amdhub30.sys;c:\windows\SYSNATIVE\drivers\amdhub30.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\drivers\amdiox64.sys;c:\windows\SYSNATIVE\drivers\amdiox64.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\drivers\amdxhc.sys;c:\windows\SYSNATIVE\drivers\amdxhc.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys;c:\windows\SYSNATIVE\DRIVERS\btwdpan.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;c:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys;c:\windows\SYSNATIVE\DRIVERS\InputFilter_FlexDef2b.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 RSBASTOR;Realtek PCIE CardReader Driver - BA;c:\windows\system32\DRIVERS\RtsBaStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsBaStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 10:18 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 03:41]
.
2013-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 09:40]
.
2013-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 09:40]
.
2013-11-30 c:\windows\Tasks\HPCeeScheduleForGUMÍDEK$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 02:43]
.
2013-12-24 c:\windows\Tasks\HPCeeScheduleForJanovský Lukáš.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 02:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-12-10 12:45 326944 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-11-15 23:07 23496 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-03-06 1425408]
"SetDefault"="c:\program files\Hewlett-Packard\HP LaunchBox\SetDefault.exe" [2011-12-19 44880]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"Samsung Link"="c:\program files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" [2013-11-05 597576]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=13415
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Stáhnout s IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\
FF - prefs.js: browser.startup.homepage - http://www.google.cz
FF - ExtSQL: 2013-12-10 14:11; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-Nexus - (no file)
Wow6432Node-HKCU-Run-Google+ Auto Backup - c:\users\Janovský Lukáš\AppData\Local\Programs\Google\Google+ Auto Backup\Google+ Auto Backup.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
HKLM_Wow6432Node-ActiveSetup-{438363A8-F486-4C37-834C-4955773CB3D3} - msiexec
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{057e2130-f7b3-4613-a609-93c6c9cfe47c}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000063
"Therad"=dword:0000001c
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{0d407645-ad17-41ac-a32e-2bdada0a6cca}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000154
"Therad"=dword:0000001b
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):af,c6,d1,de,09,10,19,d1,9f,66,9f,3c,26,d1,2d,15,97,c8,fb,05,85,
7e,b0,23,91,e7,72,ac,b5,d3,f1,a9,12,51,5d,cd,d5,66,d0,ad,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):8a,d1,8d,f8,f7,89,34,48,a2,bc,b7,38,af,12,57,50,fd,26,e2,9c,e9,
60,0c,4b,96,cd,8f,a2,bb,77,cb,58,70,49,bf,e9,5a,be,1b,c2,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\HP SimplePass\IEWebSiteLogon.exe
c:\program files (x86)\TeamViewer\Version9\TeamViewer.exe
c:\program files (x86)\TeamViewer\Version9\tv_w32.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
.
**************************************************************************
.
Celkový čas: 2013-12-24 12:35:14 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-12-24 11:35
.
Před spuštěním: Volných bajtů: 222 520 098 816
Po spuštění: Volných bajtů: 222 128 492 544
.
- - End Of File - - 1229423FDD794755C1746C6C887FF6B6
A36C5E4F47E84449FF07ED3517B43A31

#11 Příspěvek od **Roli** » 26 pro 2013 21:16

chenny píše:...jinak už je to mnohem lepší

Ještě ale doladíme.

Přesuň Combofix na Místní disk C:

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:

Kód: Vybrat vše

RegLock:: 
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

ulož Tebou vytvořený TXT soubor jako CFScript.txt také na Místní disk C:,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:

Obrázek

Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci

chenny · #12 Příspěvek od **chenny** » 26 pro 2013 23:55

ComboFix 13-12-24.01 - Janovský Lukáš 26.12.2013 23:02:55.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3554.766 [GMT 1:00]
Spuštěný z: C:\ComboFix.exe
Použité ovládací přepínače :: c:\users\Janovskř LukßÜ\Documents\CFScript.txt
AV: avast! Internet Security *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Internet Security *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Internet Security *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\_ctypes.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\_elementtree.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\_hashlib.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\_multiprocessing.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\_socket.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\_ssl.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\pyexpat.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\pysqlite2._sqlite.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\python27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\pythoncom27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\PyWinTypes27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\select.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\unicodedata.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32api.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32com.shell.shell.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32crypt.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32event.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32file.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32inet.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32pdh.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32pipe.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32process.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32profile.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32security.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\win32ts.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\windows._lib_cacheinvalidation.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._controls_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._core_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._gdi_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._html2.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._misc_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._windows_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wx._wizard.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wxbase294u_net_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wxbase294u_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wxmsw294u_adv_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wxmsw294u_core_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wxmsw294u_html_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55002\wxmsw294u_webview_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\cidaemon.exe
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\dwm.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\dwm.exe
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\libcurl-4.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\libeay32.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\libidn-11.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\librtmp.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\libssh2.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\libusb-1.0.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\ssleay32.dll
c:\users\JANOVS~1\AppData\Local\Temp\iswizard05\zlib1.dll
c:\users\JANOVS~1\AppData\Local\Temp\mdi164.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\_ctypes.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\_elementtree.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\_hashlib.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\_multiprocessing.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\_socket.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\_ssl.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\pyexpat.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\pysqlite2._sqlite.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\python27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\pythoncom27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\PyWinTypes27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\select.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\unicodedata.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32api.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32com.shell.shell.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32crypt.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32event.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32file.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32inet.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32pdh.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32pipe.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32process.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32profile.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32security.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\win32ts.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\windows._lib_cacheinvalidation.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._controls_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._core_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._gdi_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._html2.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._misc_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._windows_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wx._wizard.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wxbase294u_net_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wxbase294u_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wxmsw294u_adv_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wxmsw294u_core_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wxmsw294u_html_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55002\wxmsw294u_webview_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\cidaemon.exe
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\dwm.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\dwm.exe
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\libcurl-4.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\libeay32.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\libidn-11.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\librtmp.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\libssh2.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\libusb-1.0.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\ssleay32.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\iswizard05\zlib1.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\mdi164.dll
c:\windows\PFRO.log
c:\windows\TEMP\sqlite-3.7.2-sqlitejdbc.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-26 do 2013-12-26 )))))))))))))))))))))))))))))))
.
.
2013-12-26 22:15 . 2013-12-26 22:15 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2013-12-26 22:15 . 2013-12-26 22:15 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-26 13:50 . 2013-12-26 13:51 -------- d-----w- c:\program files (x86)\Winstep
2013-12-24 19:30 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{394C2BE1-8D41-4701-BBA1-2F52B6E334D5}\mpengine.dll
2013-12-24 18:07 . 2013-12-24 18:07 -------- d-----w- c:\users\Janovský Lukáš\.android
2013-12-24 17:29 . 2013-12-24 17:31 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\MyPhoneExplorer
2013-12-24 17:29 . 2013-12-24 18:03 -------- d-----w- c:\program files (x86)\MyPhoneExplorer
2013-12-24 14:13 . 2013-12-24 14:34 -------- d-----w- c:\users\Janovský Lukáš\AppData\Local\WebPlayer
2013-12-24 14:12 . 2013-12-24 14:13 -------- d-----w- c:\program files (x86)\Apps Hat Madness
2013-12-24 11:35 . 2013-12-24 11:35 -------- d-----w- c:\users\Obrázky\AppData
2013-12-23 19:40 . 2013-12-23 19:40 -------- d-----w- c:\users\Janovský Lukáš\.objectdb
2013-12-21 22:46 . 2013-12-21 22:46 -------- d-----w- c:\programdata\Malwarebytes
2013-12-20 19:52 . 2013-12-20 19:52 -------- d-----w- c:\program files (x86)\WebexpEnhancedV1
2013-12-20 18:21 . 2013-12-21 22:21 -------- d-----w- C:\AdwCleaner
2013-12-20 15:02 . 2013-12-20 18:09 -------- d-----w- c:\program files\trend micro
2013-12-16 19:34 . 2011-05-06 18:37 655872 ----a-w- c:\windows\SysWow64\msvcr90.dll
2013-12-16 19:34 . 2011-05-06 18:37 568832 ----a-w- c:\windows\SysWow64\msvcp90.dll
2013-12-16 19:34 . 2011-05-06 18:37 224768 ----a-w- c:\windows\SysWow64\msvcm90.dll
2013-12-16 19:33 . 2006-04-30 13:33 53248 ----a-w- c:\windows\SysWow64\CommonDL.dll
2013-12-16 19:33 . 2005-09-30 06:39 44544 ----a-w- c:\windows\SysWow64\msxml4a.dll
2013-12-16 19:32 . 2013-12-16 19:34 -------- d-----w- c:\programdata\LGMOBILEAX
2013-12-16 19:30 . 2013-06-28 10:45 36352 ----a-w- c:\windows\system32\drivers\lgandnetmodem64.sys
2013-12-16 19:30 . 2013-04-18 15:14 29184 ----a-w- c:\windows\system32\drivers\lgandnetdiag64.sys
2013-12-16 12:06 . 2013-12-16 12:06 -------- d-----w- c:\users\Janovský Lukáš\adata
2013-12-15 14:55 . 2013-12-15 14:55 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\LG Electronics
2013-12-15 13:03 . 2013-12-15 14:50 -------- d-----w- c:\users\Janovský Lukáš\AppData\Local\LG Electronics
2013-12-15 13:00 . 2013-12-16 19:30 -------- d-----w- c:\program files (x86)\LG Electronics
2013-12-15 09:43 . 2013-11-28 00:24 175480 ----a-w- c:\windows\system32\drivers\idmwfp.sys
2013-12-12 02:03 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2013-12-12 02:03 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2013-12-12 02:03 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2013-12-12 02:03 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2013-12-12 02:03 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2013-12-11 23:48 . 2013-10-30 02:32 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-12-10 13:12 . 2013-12-10 13:11 28184 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-12-10 13:11 . 2013-12-10 13:11 447888 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2013-12-10 12:46 . 2013-12-10 12:46 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\AVAST Software
2013-12-10 12:45 . 2013-12-10 12:45 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-12-10 12:45 . 2013-12-10 12:45 84328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-12-10 12:45 . 2013-12-10 12:45 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-12-10 12:45 . 2013-12-10 12:45 65264 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-12-10 12:45 . 2013-12-10 12:45 409832 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-12-10 12:45 . 2013-12-10 12:45 38984 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-12-10 12:45 . 2013-12-10 12:45 205320 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-12-10 12:45 . 2013-12-10 12:45 1032416 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-12-10 12:45 . 2013-12-10 12:45 43152 ----a-w- c:\windows\avastSS.scr
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-15 02:00 . 2012-11-13 08:38 90708896 ----a-w- c:\windows\system32\MRT.exe
2013-12-11 03:41 . 2012-05-16 12:04 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-11 03:41 . 2012-05-16 12:04 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-10 12:45 . 2012-11-16 09:40 334648 ----a-w- c:\windows\system32\aswBoot.exe
2013-11-21 09:56 . 2013-11-21 09:56 99384 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 09:56 . 2013-11-21 09:56 99384 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 09:56 . 2013-11-21 09:56 82816 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-21 09:56 . 2013-11-21 09:56 82816 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-19 02:33 . 2010-11-21 03:27 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-11-13 02:02 . 2013-11-13 02:02 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-13 02:02 . 2013-11-13 02:02 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-13 02:02 . 2013-11-13 02:02 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-13 02:02 . 2013-11-13 02:02 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-13 02:02 . 2013-11-13 02:02 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-13 02:02 . 2013-11-13 02:02 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-13 02:02 . 2013-11-13 02:02 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-13 02:02 . 2013-11-13 02:02 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-13 02:02 . 2013-11-13 02:02 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-13 02:02 . 2013-11-13 02:02 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-11-13 02:02 . 2013-11-13 02:02 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-13 02:02 . 2013-11-13 02:02 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-13 02:02 . 2013-11-13 02:02 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-13 02:02 . 2013-11-13 02:02 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-13 02:02 . 2013-11-13 02:02 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-11-13 02:02 . 2013-11-13 02:02 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-13 02:02 . 2013-11-13 02:02 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-13 02:02 . 2013-11-13 02:02 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-11-13 02:02 . 2013-11-13 02:02 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-13 02:02 . 2013-11-13 02:02 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-13 02:02 . 2013-11-13 02:02 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-13 02:02 . 2013-11-13 02:02 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-11-13 02:02 . 2013-11-13 02:02 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-13 02:02 . 2013-11-13 02:02 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-13 02:02 . 2013-11-13 02:02 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-13 02:02 . 2013-11-13 02:02 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-13 02:02 . 2013-11-13 02:02 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-13 02:02 . 2013-11-13 02:02 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-13 02:02 . 2013-11-13 02:02 195584 ----a-w- c:\windows\system32\msrating.dll
2013-11-13 02:02 . 2013-11-13 02:02 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-13 02:02 . 2013-11-13 02:02 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-13 02:02 . 2013-11-13 02:02 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-13 02:02 . 2013-11-13 02:02 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-13 02:02 . 2013-11-13 02:02 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-13 02:02 . 2013-11-13 02:02 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-13 02:02 . 2013-11-13 02:02 413696 ----a-w- c:\windows\system32\html.iec
2013-11-13 02:02 . 2013-11-13 02:02 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-13 02:02 . 2013-11-13 02:02 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-13 02:02 . 2013-11-13 02:02 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-13 02:02 . 2013-11-13 02:02 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-13 02:02 . 2013-11-13 02:02 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-13 02:02 . 2013-11-13 02:02 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-11-13 02:02 . 2013-11-13 02:02 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-13 02:02 . 2013-11-13 02:02 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-13 02:02 . 2013-11-13 02:02 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-13 02:02 . 2013-11-13 02:02 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-13 02:02 . 2013-11-13 02:02 235520 ----a-w- c:\windows\system32\url.dll
2013-11-13 02:02 . 2013-11-13 02:02 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-13 02:02 . 2013-11-13 02:02 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-13 02:02 . 2013-11-13 02:02 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-13 02:02 . 2013-11-13 02:02 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-13 02:02 . 2013-11-13 02:02 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-13 02:02 . 2013-11-13 02:02 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-13 02:02 . 2013-11-13 02:02 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-13 02:02 . 2013-11-13 02:02 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-13 02:02 . 2013-11-13 02:02 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-10-25 18:31 . 2013-10-25 18:32 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-14 17:00 . 2013-11-13 02:08 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2013-10-14 13:34 . 2013-10-14 13:34 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin
2013-10-12 02:30 . 2013-11-14 12:14 830464 ----a-w- c:\windows\system32\nshwfp.dll
2013-10-12 02:29 . 2013-11-14 12:14 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2013-10-12 02:29 . 2013-11-14 12:14 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2013-10-12 02:03 . 2013-11-14 12:14 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2013-10-12 02:01 . 2013-11-14 12:14 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25 . 2013-11-14 12:14 1474048 ----a-w- c:\windows\system32\crypt32.dll
2013-10-05 19:57 . 2013-11-14 12:14 1168384 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-10-04 02:28 . 2013-11-14 12:14 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2013-10-04 02:25 . 2013-11-14 12:14 197120 ----a-w- c:\windows\system32\credui.dll
2013-10-04 02:24 . 2013-11-14 12:14 1930752 ----a-w- c:\windows\system32\authui.dll
2013-10-04 01:58 . 2013-11-14 12:14 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56 . 2013-11-14 12:14 168960 ----a-w- c:\windows\SysWow64\credui.dll
2013-10-04 01:56 . 2013-11-14 12:14 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-10-03 02:23 . 2013-11-14 12:14 404480 ----a-w- c:\windows\system32\gdi32.dll
2013-10-03 02:00 . 2013-11-14 12:14 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2013-10-01 09:09 . 2013-10-01 09:09 30720 ----a-w- c:\windows\system32\MediaDB64.dll
2013-10-01 09:09 . 2013-10-01 09:09 908800 ----a-w- c:\windows\system32\ContentDirectoryPresenter64.dll
2013-10-01 08:46 . 2013-10-01 08:46 25600 ----a-w- c:\windows\SysWow64\MediaDB.dll
2013-10-01 08:11 . 2013-10-01 08:11 706560 ----a-w- c:\windows\SysWow64\ContentDirectoryPresenter.dll
2013-09-28 01:09 . 2013-11-14 12:14 497152 ----a-w- c:\windows\system32\drivers\afd.sys
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{0287b0a8-8b48-45bc-ae6b-82b58bf234cf}]
2013-12-19 19:08 87552 ----a-w- c:\program files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha825\ie\WebexpEnhancedV1alpha825.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{11111111-1111-1111-1111-110411851155}]
2013-12-24 14:24 640512 ----a-w- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-bho.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-12-06 20203904]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2013-12-23 3821136]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2013-12-20 6563096]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2012-01-05 75624]
"NeXuS-Ultimate"="c:\program files (x86)\Winstep\Nexus-Ultimate.exe" [2011-10-10 14558848]
"Nexus"="" [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-03-21 630912]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2012-03-05 578944]
"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-08-19 379960]
"HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2012-11-05 1343904]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-09-13 103992]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2011-10-30 571392]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-12-10 3568312]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2012-2-1 1380128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys [x]
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R3 AndNetDiag;LGE AndroidNet USB Serial Port;c:\windows\system32\DRIVERS\lgandnetdiag64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetdiag64.sys [x]
R3 ANDNetModem;LGE AndroidNet USB Modem;c:\windows\system32\DRIVERS\lgandnetmodem64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetmodem64.sys [x]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys;c:\windows\SYSNATIVE\DRIVERS\motfilt.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys;c:\windows\SYSNATIVE\Drivers\motoandroid.sys [x]
R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys;c:\windows\SYSNATIVE\DRIVERS\motccgp.sys [x]
R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys;c:\windows\SYSNATIVE\DRIVERS\motccgpfl.sys [x]
R3 MotDev;Motorola Inc. USB Device;c:\windows\system32\DRIVERS\motodrv.sys;c:\windows\SYSNATIVE\DRIVERS\motodrv.sys [x]
R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys;c:\windows\SYSNATIVE\DRIVERS\Motousbnet.sys [x]
R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys;c:\windows\SYSNATIVE\DRIVERS\motusbdevice.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\drivers\Smb_driver.sys;c:\windows\SYSNATIVE\drivers\Smb_driver.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TrueService;TrueAPI Service component;c:\program files\Common Files\AuthenTec\TrueService.exe;c:\program files\Common Files\AuthenTec\TrueService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1305000.091\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1305000.091\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMEFA64.SYS [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1305000.091\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\ccSetx64.sys [x]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1305000.091\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1305000.091\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMNETS.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AllShare Framework DMS;AllShare Framework DMS;c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe;c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 APXACC;AppEx Networks Accelerator LWF;c:\windows\system32\DRIVERS\appexDrv.sys;c:\windows\SYSNATIVE\DRIVERS\appexDrv.sys [x]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys;c:\windows\SYSNATIVE\drivers\aswFsBlk.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 FPLService;TrueSuiteService;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe [x]
S2 ftpsvc;Služba Microsoft FTP Service;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 Samsung Link Service;Samsung Link Service;c:\program files\Samsung\Samsung Link\Samsung Link.exe;c:\program files\Samsung\Samsung Link\Samsung Link.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\drivers\amdhub30.sys;c:\windows\SYSNATIVE\drivers\amdhub30.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\drivers\amdiox64.sys;c:\windows\SYSNATIVE\drivers\amdiox64.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\drivers\amdxhc.sys;c:\windows\SYSNATIVE\drivers\amdxhc.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys;c:\windows\SYSNATIVE\DRIVERS\btwdpan.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;c:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys;c:\windows\SYSNATIVE\DRIVERS\InputFilter_FlexDef2b.sys [x]
S3 RSBASTOR;Realtek PCIE CardReader Driver - BA;c:\windows\system32\DRIVERS\RtsBaStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsBaStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 10:18 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 03:41]
.
2013-12-26 c:\windows\Tasks\Apps Hat Madness-chromeinstaller.job
- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-chromeinstaller.exe [2013-12-24 14:24]
.
2013-12-26 c:\windows\Tasks\Apps Hat Madness-codedownloader.job
- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-codedownloader.exe [2013-12-24 14:24]
.
2013-12-26 c:\windows\Tasks\Apps Hat Madness-enabler.job
- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-enabler.exe [2013-12-24 14:24]
.
2013-12-26 c:\windows\Tasks\Apps Hat Madness-firefoxinstaller.job
- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-firefoxinstaller.exe [2013-12-24 14:24]
.
2013-12-26 c:\windows\Tasks\Apps Hat Madness-updater.job
- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-updater.exe [2013-12-24 14:24]
.
2013-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 09:40]
.
2013-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 09:40]
.
2013-11-30 c:\windows\Tasks\HPCeeScheduleForGUMÍDEK$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 02:43]
.
2013-12-26 c:\windows\Tasks\HPCeeScheduleForJanovský Lukáš.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 02:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{11111111-1111-1111-1111-110411851155}]
2013-12-24 14:24 969216 ----a-w- c:\program files (x86)\Apps Hat Madness\Apps Hat Madness-bho64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-12-10 12:45 326944 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-11-15 23:07 23496 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-03-06 1425408]
"SetDefault"="c:\program files\Hewlett-Packard\HP LaunchBox\SetDefault.exe" [2011-12-19 44880]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"Samsung Link"="c:\program files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" [2013-11-05 597576]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=13415
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Stáhnout s IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\
FF - prefs.js: browser.startup.homepage - http://www.google.cz
FF - ExtSQL: 2013-12-10 14:11; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-NextSTART - (no file)
Wow6432Node-HKLM-Run-Workshelf - (no file)
AddRemove-Webexp Enhanced - c:\program files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha825\uninstall.exe
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{057e2130-f7b3-4613-a609-93c6c9cfe47c}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000063
"Therad"=dword:0000001c
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{0d407645-ad17-41ac-a32e-2bdada0a6cca}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000154
"Therad"=dword:0000001b
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):af,c6,d1,de,09,10,19,d1,9f,66,9f,3c,26,d1,2d,15,97,c8,fb,05,85,
7e,b0,23,91,e7,72,ac,b5,d3,f1,a9,12,51,5d,cd,d5,66,d0,ad,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):8a,d1,8d,f8,f7,89,34,48,a2,bc,b7,38,af,12,57,50,fd,26,e2,9c,e9,
60,0c,4b,96,cd,8f,a2,bb,77,cb,58,70,49,bf,e9,5a,be,1b,c2,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\TeamViewer\Version9\TeamViewer.exe
c:\program files (x86)\HP SimplePass\IEWebSiteLogon.exe
c:\program files (x86)\TeamViewer\Version9\tv_w32.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
.
**************************************************************************
.
Celkový čas: 2013-12-26 23:23:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-12-26 22:23
.
Před spuštěním: Volných bajtů: 222 782 312 448
Po spuštění: Volných bajtů: 222 363 062 272
.
- - End Of File - - FFFC780FDAB2C4AFE62A4AE3E426E53E
A36C5E4F47E84449FF07ED3517B43A31

#13 Příspěvek od **Roli** » 27 pro 2013 19:56

Prosím Tě i ten skript musí být uložen na Céčku, nejen Combofix jinak to nefunguje.

Tak ještě jednou a lépe

chenny · #14 Příspěvek od **chenny** » 27 pro 2013 21:53

Tady je nový log...snad už je to v pořádku

ComboFix 13-12-24.01 - Janovský Lukáš 27.12.2013 20:19:01.3.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3554.1547 [GMT 1:00]
Spuštěný z: C:\ComboFix.exe
Použité ovládací přepínače :: C:\CFScript.txt
AV: avast! Internet Security *Disabled/Updated* {17AD7D40-BA12-9C46-7131-94903A54AD8B}
FW: avast! Internet Security *Disabled* {2F96FC65-F07D-9D1E-5A6E-3DA5C487EAF0}
SP: avast! Internet Security *Disabled/Updated* {ACCC9CA4-9C28-93C8-4B81-AFE241D3E736}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\_ctypes.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\_elementtree.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\_hashlib.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\_multiprocessing.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\_socket.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\_ssl.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\pyexpat.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\pysqlite2._sqlite.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\python27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\pythoncom27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\PyWinTypes27.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\select.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\unicodedata.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32api.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32com.shell.shell.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32crypt.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32event.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32file.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32inet.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32pdh.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32pipe.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32process.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32profile.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32security.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\win32ts.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\windows._lib_cacheinvalidation.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._controls_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._core_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._gdi_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._html2.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._misc_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._windows_.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wx._wizard.pyd
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wxbase294u_net_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wxbase294u_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wxmsw294u_adv_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wxmsw294u_core_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wxmsw294u_html_vc90.dll
c:\users\JANOVS~1\AppData\Local\Temp\_MEI55122\wxmsw294u_webview_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\_ctypes.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\_elementtree.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\_hashlib.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\_multiprocessing.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\_socket.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\_ssl.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\pyexpat.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\pysqlite2._sqlite.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\python27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\pythoncom27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\PyWinTypes27.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\select.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\unicodedata.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32api.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32com.shell.shell.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32crypt.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32event.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32file.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32inet.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32pdh.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32pipe.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32process.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32profile.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32security.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\win32ts.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\windows._lib_cacheinvalidation.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._controls_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._core_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._gdi_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._html2.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._misc_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._windows_.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wx._wizard.pyd
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wxbase294u_net_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wxbase294u_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wxmsw294u_adv_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wxmsw294u_core_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wxmsw294u_html_vc90.dll
c:\users\Janovský Lukáš\AppData\Local\Temp\_MEI55122\wxmsw294u_webview_vc90.dll
c:\windows\TEMP\sqlite-3.7.2-sqlitejdbc.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-11-27 do 2013-12-27 )))))))))))))))))))))))))))))))
.
.
2013-12-27 19:29 . 2013-12-27 19:29 -------- d-----w- c:\users\DefaultAppPool\AppData\Local\temp
2013-12-27 19:29 . 2013-12-27 19:29 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-12-27 07:43 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D85E76D7-F9FC-4015-B45D-4328876524BC}\mpengine.dll
2013-12-26 13:50 . 2013-12-26 13:51 -------- d-----w- c:\program files (x86)\Winstep
2013-12-24 18:07 . 2013-12-24 18:07 -------- d-----w- c:\users\Janovský Lukáš\.android
2013-12-24 17:29 . 2013-12-24 17:31 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\MyPhoneExplorer
2013-12-24 17:29 . 2013-12-24 18:03 -------- d-----w- c:\program files (x86)\MyPhoneExplorer
2013-12-24 14:13 . 2013-12-24 14:34 -------- d-----w- c:\users\Janovský Lukáš\AppData\Local\WebPlayer
2013-12-24 11:35 . 2013-12-24 11:35 -------- d-----w- c:\users\Obrázky\AppData
2013-12-23 19:40 . 2013-12-23 19:40 -------- d-----w- c:\users\Janovský Lukáš\.objectdb
2013-12-21 22:46 . 2013-12-21 22:46 -------- d-----w- c:\programdata\Malwarebytes
2013-12-20 19:52 . 2013-12-20 19:52 -------- d-----w- c:\program files (x86)\WebexpEnhancedV1
2013-12-20 18:21 . 2013-12-21 22:21 -------- d-----w- C:\AdwCleaner
2013-12-20 15:02 . 2013-12-20 18:09 -------- d-----w- c:\program files\trend micro
2013-12-16 19:34 . 2011-05-06 18:37 655872 ----a-w- c:\windows\SysWow64\msvcr90.dll
2013-12-16 19:34 . 2011-05-06 18:37 568832 ----a-w- c:\windows\SysWow64\msvcp90.dll
2013-12-16 19:34 . 2011-05-06 18:37 224768 ----a-w- c:\windows\SysWow64\msvcm90.dll
2013-12-16 19:33 . 2006-04-30 13:33 53248 ----a-w- c:\windows\SysWow64\CommonDL.dll
2013-12-16 19:33 . 2005-09-30 06:39 44544 ----a-w- c:\windows\SysWow64\msxml4a.dll
2013-12-16 19:32 . 2013-12-16 19:34 -------- d-----w- c:\programdata\LGMOBILEAX
2013-12-16 19:30 . 2013-06-28 10:45 36352 ----a-w- c:\windows\system32\drivers\lgandnetmodem64.sys
2013-12-16 19:30 . 2013-04-18 15:14 29184 ----a-w- c:\windows\system32\drivers\lgandnetdiag64.sys
2013-12-16 12:06 . 2013-12-16 12:06 -------- d-----w- c:\users\Janovský Lukáš\adata
2013-12-15 14:55 . 2013-12-15 14:55 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\LG Electronics
2013-12-15 13:03 . 2013-12-15 14:50 -------- d-----w- c:\users\Janovský Lukáš\AppData\Local\LG Electronics
2013-12-15 13:00 . 2013-12-16 19:30 -------- d-----w- c:\program files (x86)\LG Electronics
2013-12-15 09:43 . 2013-11-28 00:24 175480 ----a-w- c:\windows\system32\drivers\idmwfp.sys
2013-12-12 02:03 . 2013-05-10 04:30 167424 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2013-12-12 02:03 . 2013-05-10 03:48 164864 ----a-w- c:\program files (x86)\Windows Media Player\wmplayer.exe
2013-12-12 02:03 . 2013-05-10 05:56 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2013-12-12 02:03 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2013-12-12 02:03 . 2013-05-10 05:56 14631424 ----a-w- c:\windows\system32\wmp.dll
2013-12-11 23:48 . 2013-10-30 02:32 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-12-10 13:12 . 2013-12-10 13:11 28184 ----a-w- c:\windows\system32\drivers\aswKbd.sys
2013-12-10 13:11 . 2013-12-10 13:11 447888 ----a-w- c:\windows\system32\drivers\aswNdisFlt.sys
2013-12-10 12:46 . 2013-12-10 12:46 -------- d-----w- c:\users\Janovský Lukáš\AppData\Roaming\AVAST Software
2013-12-10 12:45 . 2013-12-10 12:45 92544 ----a-w- c:\windows\system32\drivers\aswRdr2.sys
2013-12-10 12:45 . 2013-12-10 12:45 84328 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-12-10 12:45 . 2013-12-10 12:45 65776 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-12-10 12:45 . 2013-12-10 12:45 65264 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-12-10 12:45 . 2013-12-10 12:45 409832 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-12-10 12:45 . 2013-12-10 12:45 38984 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-12-10 12:45 . 2013-12-10 12:45 205320 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-12-10 12:45 . 2013-12-10 12:45 1032416 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-12-10 12:45 . 2013-12-10 12:45 43152 ----a-w- c:\windows\avastSS.scr
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-12-15 02:00 . 2012-11-13 08:38 90708896 ----a-w- c:\windows\system32\MRT.exe
2013-12-11 03:41 . 2012-05-16 12:04 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-12-11 03:41 . 2012-05-16 12:04 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-12-10 12:45 . 2012-11-16 09:40 334648 ----a-w- c:\windows\system32\aswBoot.exe
2013-11-21 09:56 . 2013-11-21 09:56 99384 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 09:56 . 2013-11-21 09:56 99384 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\inst.exe
2013-11-21 09:56 . 2013-11-21 09:56 82816 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-21 09:56 . 2013-11-21 09:56 82816 ----a-w- c:\users\Janovský Lukáš\AppData\Roaming\pcouffin.sys
2013-11-19 02:33 . 2010-11-21 03:27 267936 ------w- c:\windows\system32\MpSigStub.exe
2013-11-13 02:02 . 2013-11-13 02:02 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-13 02:02 . 2013-11-13 02:02 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-13 02:02 . 2013-11-13 02:02 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-13 02:02 . 2013-11-13 02:02 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-13 02:02 . 2013-11-13 02:02 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-13 02:02 . 2013-11-13 02:02 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-13 02:02 . 2013-11-13 02:02 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-13 02:02 . 2013-11-13 02:02 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-13 02:02 . 2013-11-13 02:02 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-13 02:02 . 2013-11-13 02:02 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-11-13 02:02 . 2013-11-13 02:02 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-13 02:02 . 2013-11-13 02:02 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-13 02:02 . 2013-11-13 02:02 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-13 02:02 . 2013-11-13 02:02 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-13 02:02 . 2013-11-13 02:02 86016 ----a-w- c:\windows\SysWow64\iesysprep.dll
2013-11-13 02:02 . 2013-11-13 02:02 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-13 02:02 . 2013-11-13 02:02 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-13 02:02 . 2013-11-13 02:02 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-11-13 02:02 . 2013-11-13 02:02 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-13 02:02 . 2013-11-13 02:02 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-13 02:02 . 2013-11-13 02:02 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-13 02:02 . 2013-11-13 02:02 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-11-13 02:02 . 2013-11-13 02:02 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-13 02:02 . 2013-11-13 02:02 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-13 02:02 . 2013-11-13 02:02 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-13 02:02 . 2013-11-13 02:02 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-13 02:02 . 2013-11-13 02:02 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-13 02:02 . 2013-11-13 02:02 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-13 02:02 . 2013-11-13 02:02 195584 ----a-w- c:\windows\system32\msrating.dll
2013-11-13 02:02 . 2013-11-13 02:02 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-13 02:02 . 2013-11-13 02:02 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-13 02:02 . 2013-11-13 02:02 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-13 02:02 . 2013-11-13 02:02 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-13 02:02 . 2013-11-13 02:02 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-13 02:02 . 2013-11-13 02:02 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-13 02:02 . 2013-11-13 02:02 413696 ----a-w- c:\windows\system32\html.iec
2013-11-13 02:02 . 2013-11-13 02:02 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-13 02:02 . 2013-11-13 02:02 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-13 02:02 . 2013-11-13 02:02 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-13 02:02 . 2013-11-13 02:02 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-13 02:02 . 2013-11-13 02:02 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-13 02:02 . 2013-11-13 02:02 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-11-13 02:02 . 2013-11-13 02:02 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-13 02:02 . 2013-11-13 02:02 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-13 02:02 . 2013-11-13 02:02 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-13 02:02 . 2013-11-13 02:02 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-13 02:02 . 2013-11-13 02:02 235520 ----a-w- c:\windows\system32\url.dll
2013-11-13 02:02 . 2013-11-13 02:02 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-13 02:02 . 2013-11-13 02:02 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-13 02:02 . 2013-11-13 02:02 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-13 02:02 . 2013-11-13 02:02 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-13 02:02 . 2013-11-13 02:02 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-13 02:02 . 2013-11-13 02:02 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-13 02:02 . 2013-11-13 02:02 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-13 02:02 . 2013-11-13 02:02 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-13 02:02 . 2013-11-13 02:02 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-13 02:02 . 2013-11-13 02:02 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-10-25 18:31 . 2013-10-25 18:32 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-10-14 17:00 . 2013-11-13 02:08 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2013-10-14 13:34 . 2013-10-14 13:34 163504 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10145.bin
2013-10-12 02:30 . 2013-11-14 12:14 830464 ----a-w- c:\windows\system32\nshwfp.dll
2013-10-12 02:29 . 2013-11-14 12:14 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2013-10-12 02:29 . 2013-11-14 12:14 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2013-10-12 02:03 . 2013-11-14 12:14 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2013-10-12 02:01 . 2013-11-14 12:14 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25 . 2013-11-14 12:14 1474048 ----a-w- c:\windows\system32\crypt32.dll
2013-10-05 19:57 . 2013-11-14 12:14 1168384 ----a-w- c:\windows\SysWow64\crypt32.dll
2013-10-04 02:28 . 2013-11-14 12:14 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2013-10-04 02:25 . 2013-11-14 12:14 197120 ----a-w- c:\windows\system32\credui.dll
2013-10-04 02:24 . 2013-11-14 12:14 1930752 ----a-w- c:\windows\system32\authui.dll
2013-10-04 01:58 . 2013-11-14 12:14 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56 . 2013-11-14 12:14 168960 ----a-w- c:\windows\SysWow64\credui.dll
2013-10-04 01:56 . 2013-11-14 12:14 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2013-10-03 02:23 . 2013-11-14 12:14 404480 ----a-w- c:\windows\system32\gdi32.dll
2013-10-03 02:00 . 2013-11-14 12:14 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2013-10-01 09:09 . 2013-10-01 09:09 30720 ----a-w- c:\windows\system32\MediaDB64.dll
2013-10-01 09:09 . 2013-10-01 09:09 908800 ----a-w- c:\windows\system32\ContentDirectoryPresenter64.dll
2013-10-01 08:46 . 2013-10-01 08:46 25600 ----a-w- c:\windows\SysWow64\MediaDB.dll
2013-10-01 08:11 . 2013-10-01 08:11 706560 ----a-w- c:\windows\SysWow64\ContentDirectoryPresenter.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{0287b0a8-8b48-45bc-ae6b-82b58bf234cf}]
2013-12-19 19:08 87552 ----a-w- c:\program files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha825\ie\WebexpEnhancedV1alpha825.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-21 1475584]
"GoogleDriveSync"="c:\program files (x86)\Google\Drive\googledrivesync.exe" [2013-12-06 20203904]
"IDMan"="c:\program files (x86)\Internet Download Manager\IDMan.exe" [2013-12-23 3821136]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2013-12-20 6563096]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe" [2012-01-05 75624]
"NeXuS-Ultimate"="c:\program files (x86)\Winstep\Nexus-Ultimate.exe" [2011-10-10 14558848]
"Nexus"="" [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-03-21 630912]
"HP Quick Launch"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe" [2012-03-05 578944]
"HPOSD"="c:\program files (x86)\Hewlett-Packard\HP On Screen Display\HPOSD.exe" [2011-08-19 379960]
"HP CoolSense"="c:\program files (x86)\Hewlett-Packard\HP CoolSense\CoolSense.exe" [2012-11-05 1343904]
"HPConnectionManager"="c:\program files (x86)\Hewlett-Packard\HP Connection Manager\HPCMDelayStart.exe" [2011-09-13 103992]
"Nikon Message Center 2"="c:\program files (x86)\Nikon\Nikon Message Center 2\NkMC2.exe" [2011-10-30 571392]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2013-12-10 3568312]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2012-2-1 1380128]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"HideFastUserSwitching"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"EnableShellExecuteHooks"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\WIDCOMM\Bluetooth Software\BtwProximityCP.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\BASHDefs\20111201.001\BHDrvx64.sys [x]
R2 AxAutoMntSrv;Alcohol Virtual Drive Auto-mount Service;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe;c:\program files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 HP Support Assistant Service;HP Support Assistant Service;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe;c:\program files (x86)\Hewlett-Packard\HP Support Framework\hpsa_service.exe [x]
R3 AndNetDiag;LGE AndroidNet USB Serial Port;c:\windows\system32\DRIVERS\lgandnetdiag64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetdiag64.sys [x]
R3 ANDNetModem;LGE AndroidNet USB Modem;c:\windows\system32\DRIVERS\lgandnetmodem64.sys;c:\windows\SYSNATIVE\DRIVERS\lgandnetmodem64.sys [x]
R3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys;c:\windows\SYSNATIVE\DRIVERS\motfilt.sys [x]
R3 GamesAppService;GamesAppService;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe;c:\program files (x86)\WildTangent Games\App\GamesAppService.exe [x]
R3 hpCMSrv;HP Connection Manager 4 Service;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe;c:\program files (x86)\Hewlett-Packard\HP Connection Manager\hpCMSrv.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys;c:\windows\SYSNATIVE\Drivers\motoandroid.sys [x]
R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys;c:\windows\SYSNATIVE\DRIVERS\motccgp.sys [x]
R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys;c:\windows\SYSNATIVE\DRIVERS\motccgpfl.sys [x]
R3 MotDev;Motorola Inc. USB Device;c:\windows\system32\DRIVERS\motodrv.sys;c:\windows\SYSNATIVE\DRIVERS\motodrv.sys [x]
R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys;c:\windows\SYSNATIVE\DRIVERS\Motousbnet.sys [x]
R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys;c:\windows\SYSNATIVE\DRIVERS\motusbdevice.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SmbDrv;SmbDrv;c:\windows\system32\drivers\Smb_driver.sys;c:\windows\SYSNATIVE\drivers\Smb_driver.sys [x]
R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTAZL6.SYS [x]
R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTDPV6.SYS [x]
R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT6.SYS;c:\windows\SYSNATIVE\DRIVERS\VSTCNXT6.SYS [x]
R3 TrueService;TrueAPI Service component;c:\program files\Common Files\AuthenTec\TrueService.exe;c:\program files\Common Files\AuthenTec\TrueService.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe;c:\program files\Windows Live\Mesh\wlcrasvc.exe [x]
S0 amd_sata;amd_sata;c:\windows\system32\drivers\amd_sata.sys;c:\windows\SYSNATIVE\drivers\amd_sata.sys [x]
S0 amd_xata;amd_xata;c:\windows\system32\drivers\amd_xata.sys;c:\windows\SYSNATIVE\drivers\amd_xata.sys [x]
S0 amdkmpfd;AMD PCI Root Bus Lower Filter;c:\windows\system32\drivers\amdkmpfd.sys;c:\windows\SYSNATIVE\drivers\amdkmpfd.sys [x]
S0 aswRvrt;avast! Revert; [x]
S0 aswVmm;avast! VM Monitor; [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NISx64\1305000.091\SYMDS64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NISx64\1305000.091\SYMEFA64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMEFA64.SYS [x]
S1 aswKbd;aswKbd;c:\windows\system32\drivers\aswKbd.sys;c:\windows\SYSNATIVE\drivers\aswKbd.sys [x]
S1 aswNdisFlt;Avast! Firewall Driver;c:\windows\system32\DRIVERS\aswNdisFlt.sys;c:\windows\SYSNATIVE\DRIVERS\aswNdisFlt.sys [x]
S1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys;c:\windows\SYSNATIVE\drivers\aswSnx.sys [x]
S1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys;c:\windows\SYSNATIVE\drivers\aswSP.sys [x]
S1 ccSet_NIS;Norton Internet Security Settings Manager;c:\windows\system32\drivers\NISx64\1305000.091\ccSetx64.sys;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\ccSetx64.sys [x]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_19.5.0.145\Definitions\IPSDefs\20111130.012\IDSVia64.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NISx64\1305000.091\Ironx64.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\NISx64\1305000.091\SYMNETS.SYS;c:\windows\SYSNATIVE\drivers\NISx64\1305000.091\SYMNETS.SYS [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
S2 AllShare Framework DMS;AllShare Framework DMS;c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe;c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkManagerDMS.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 APXACC;AppEx Networks Accelerator LWF;c:\windows\system32\DRIVERS\appexDrv.sys;c:\windows\SYSNATIVE\DRIVERS\appexDrv.sys [x]
S2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys;c:\windows\SYSNATIVE\drivers\aswFsBlk.sys [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys;c:\windows\SYSNATIVE\drivers\aswMonFlt.sys [x]
S2 avast! Firewall;avast! Firewall;c:\program files\AVAST Software\Avast\afwServ.exe;c:\program files\AVAST Software\Avast\afwServ.exe [x]
S2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
S2 ezSharedSvc;Easybits Services for Windows;c:\windows\System32\ezSharedSvcHost.exe;c:\windows\SYSNATIVE\ezSharedSvcHost.exe [x]
S2 FPLService;TrueSuiteService;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe;c:\program files (x86)\HP SimplePass\TrueSuiteService.exe [x]
S2 ftpsvc;Služba Microsoft FTP Service;c:\windows\system32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 HPAuto;HP Auto;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe;c:\program files\Hewlett-Packard\HP Auto\HPAuto.exe [x]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe;c:\windows\SYSNATIVE\Hpservice.exe [x]
S2 HPWMISVC;HPWMISVC;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe;c:\program files (x86)\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe [x]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys;c:\windows\SYSNATIVE\DRIVERS\idmwfp.sys [x]
S2 Samsung Link Service;Samsung Link Service;c:\program files\Samsung\Samsung Link\Samsung Link.exe;c:\program files\Samsung\Samsung Link\Samsung Link.exe [x]
S2 TeamViewer9;TeamViewer 9;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe;c:\program files (x86)\TeamViewer\Version9\TeamViewer_Service.exe [x]
S3 amdhub30;AMD USB 3.0 Hub Driver;c:\windows\system32\drivers\amdhub30.sys;c:\windows\SYSNATIVE\drivers\amdhub30.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\drivers\amdiox64.sys;c:\windows\SYSNATIVE\drivers\amdiox64.sys [x]
S3 amdxhc;AMD USB 3.0 Host Controller Driver;c:\windows\system32\drivers\amdxhc.sys;c:\windows\SYSNATIVE\drivers\amdxhc.sys [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 bcbtums;Bluetooth RAM Firmware Download USB Filter;c:\windows\system32\drivers\bcbtums.sys;c:\windows\SYSNATIVE\drivers\bcbtums.sys [x]
S3 btwampfl;btwampfl Bluetooth filter driver;c:\windows\system32\drivers\btwampfl.sys;c:\windows\SYSNATIVE\drivers\btwampfl.sys [x]
S3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys;c:\windows\SYSNATIVE\DRIVERS\btwdpan.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys;c:\windows\SYSNATIVE\DRIVERS\btwl2cap.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys;c:\windows\SYSNATIVE\DRIVERS\clwvd.sys [x]
S3 InputFilter_Hid_FlexDef2b;Siliten HID Devices(FlexDef2b) Driver Service;c:\windows\system32\DRIVERS\InputFilter_FlexDef2b.sys;c:\windows\SYSNATIVE\DRIVERS\InputFilter_FlexDef2b.sys [x]
S3 RSBASTOR;Realtek PCIE CardReader Driver - BA;c:\windows\system32\DRIVERS\RtsBaStor.sys;c:\windows\SYSNATIVE\DRIVERS\RtsBaStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys;c:\windows\SYSNATIVE\DRIVERS\teamviewervpn.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
iissvcs REG_MULTI_SZ w3svc was
apphost REG_MULTI_SZ apphostsvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2013-12-05 10:18 1210320 ----a-w- c:\program files (x86)\Google\Chrome\Application\31.0.1650.63\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2013-12-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-16 03:41]
.
2013-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 09:40]
.
2013-12-21 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-11-16 09:40]
.
2013-11-30 c:\windows\Tasks\HPCeeScheduleForGUMÍDEK$.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 02:43]
.
2013-12-27 c:\windows\Tasks\HPCeeScheduleForJanovský Lukáš.job
- c:\program files (x86)\Hewlett-Packard\HP Ceement\HPCEE.exe [2011-07-15 02:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-12-10 12:45 326944 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2013-12-06 14:47 778704 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\IDM Shell Extension]
@="{CDC95B92-E27C-4745-A8C5-64A52A78855D}"
[HKEY_CLASSES_ROOT\CLSID\{CDC95B92-E27C-4745-A8C5-64A52A78855D}]
2012-11-15 23:07 23496 ----a-w- c:\program files (x86)\Internet Download Manager\IDMShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2012-03-06 1425408]
"SetDefault"="c:\program files\Hewlett-Packard\HP LaunchBox\SetDefault.exe" [2011-12-19 44880]
"Logitech Download Assistant"="c:\windows\System32\LogiLDA.dll" [2012-09-20 1832760]
"Samsung Link"="c:\program files\Samsung\Samsung Link\Samsung Link Tray Agent.exe" [2013-11-05 597576]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/?clid=13415
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Evernote 4.0 - c:\program files (x86)\Evernote\Evernote\EvernoteIE.dll/204
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Stáhnout s IDM - c:\program files (x86)\Internet Download Manager\IEExt.htm
IE: Stáhnout s IDM všechny odkazy - c:\program files (x86)\Internet Download Manager\IEGetAll.htm
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Janovský Lukáš\AppData\Roaming\Mozilla\Firefox\Profiles\o7wlz68g.default-1356371317760\
FF - prefs.js: browser.startup.homepage - hxxps://www.google.cz/
FF - ExtSQL: 2013-12-10 14:11; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
AddRemove-Webexp Enhanced - c:\program files (x86)\WebexpEnhancedV1\WebexpEnhancedV1alpha825\uninstall.exe
AddRemove-{EE202411-2C26-49E8-9784-1BC1DBF7DE96} - c:\program files (x86)\InstallShield Installation Information\{EE202411-2C26-49E8-9784-1BC1DBF7DE96}\setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{057e2130-f7b3-4613-a609-93c6c9cfe47c}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000063
"Therad"=dword:0000001c
"MData"=hex(0):73,d5,cf,b8,a4,07,89,80,31,e4,35,6b,2a,ca,fe,43,b6,1f,81,1f,5a,
1b,4d,36,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,ee,21,46,8f,3c,f2,5c,68,\
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{0d407645-ad17-41ac-a32e-2bdada0a6cca}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"Model"=dword:00000154
"Therad"=dword:0000001b
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{5ED60779-4DE2-4E07-B862-974CA4FF2E9C}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):af,c6,d1,de,09,10,19,d1,9f,66,9f,3c,26,d1,2d,15,97,c8,fb,05,85,
7e,b0,23,91,e7,72,ac,b5,d3,f1,a9,12,51,5d,cd,d5,66,d0,ad,00,00,00,00,00,00,\
.
[HKEY_USERS\S-1-5-21-1669208800-3444714589-653517467-1001_Classes\Wow6432Node\CLSID\{7B8E9164-324D-4A2E-A46D-0165FB2000EC}]
@Denied: (Full) (Everyone)
@Allowed: (Read) (RestrictedCode)
"scansk"=hex(0):8a,d1,8d,f8,f7,89,34,48,a2,bc,b7,38,af,12,57,50,fd,26,e2,9c,e9,
60,0c,4b,96,cd,8f,a2,bb,77,cb,58,70,49,bf,e9,5a,be,1b,c2,00,00,00,00,00,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_9_900_170_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_9_900_170.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\Samsung\AllShare Framework DMS\1.3.21\AllShareFrameworkDMS.exe
c:\windows\SysWOW64\ezSharedSvcHost.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\TeamViewer\Version9\TeamViewer.exe
c:\program files (x86)\TeamViewer\Version9\tv_w32.exe
c:\program files (x86)\CyberLink\YouCam\YCMMirage.exe
.
**************************************************************************
.
Celkový čas: 2013-12-27 20:37:02 - počítač byl restartován
ComboFix-quarantined-files.txt 2013-12-27 19:37
.
Před spuštěním: Volných bajtů: 221 509 570 560
Po spuštění: Volných bajtů: 221 433 606 144
.
- - End Of File - - 4B17692DF4D7678E227E80F8DF131E6E
A36C5E4F47E84449FF07ED3517B43A31

#15 Příspěvek od **Roli** » 29 pro 2013 21:22

chenny píše:Tady je nový log...snad už je to v pořádku

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.

Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.

Pak dej vědět jaký je stav PC.

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu