Prosím o kontrolu logu ComboFix

[goha]

Můžu poprosit o kontrolu logu?

ComboFix 14-04-12.01 - BetaVerze 15.04.2014 20:54:17.1.4 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.8191.5511 [GMT 2:00]
Spuštěný z: D:\ComboFix.exe
AV: Emsisoft Anti-Malware *Enabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Emsisoft Anti-Malware *Enabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
ADS - Windows: deleted 192 bytes in 1 streams.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-03-15 do 2014-04-15 )))))))))))))))))))))))))))))))
.
.
2014-04-15 10:51 . 2014-04-15 10:51 -------- d-sh--w- c:\programdata\{01BD4FC9-2F86-4706-A62E-774BB7E9D308}
2014-04-15 10:50 . 2014-04-15 10:50 -------- d-----w- c:\users\BetaVerze\AppData\Roaming\OpenCandy
2014-04-14 19:46 . 2014-03-07 04:43 10521840 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{52BE99D5-82BE-466F-80D6-D9E2651D5648}\mpengine.dll
2014-04-13 18:30 . 2014-03-07 04:43 10521840 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-04-12 21:24 . 2014-04-12 21:24 901848 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2014-04-12 21:24 . 2014-04-12 21:24 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2014-04-12 21:23 . 2014-04-12 21:23 2157704 ----a-w- c:\windows\system32\YamahaAE.dll
2014-04-12 21:23 . 2014-04-12 21:23 2101848 ----a-w- c:\windows\system32\WavesGUILib64.dll
2014-04-10 22:02 . 2014-04-10 22:03 -------- d-----w- c:\programdata\Spyware Terminator
2014-04-10 22:01 . 2014-04-10 22:06 -------- d-----w- c:\program files (x86)\Spyware Terminator
2014-04-10 20:59 . 2014-04-10 20:59 -------- d-----w- c:\program files (x86)\Crawler
2014-04-10 19:17 . 2013-08-22 18:50 357337 ----a-w- c:\program files (x86)\EAM-TR.exe
2014-04-10 08:11 . 2014-04-15 19:06 -------- d-----w- c:\program files (x86)\Emsisoft Anti-Malware
2014-04-10 06:41 . 2013-09-20 08:49 21040 ----a-w- c:\windows\system32\sdnclean64.exe
2014-04-10 06:41 . 2014-04-10 07:13 -------- d-----w- c:\program files (x86)\Spybot - Search & Destroy 2
2014-04-10 06:35 . 2014-04-10 19:48 -------- d-----w- c:\windows\SysWow64\bitstreams
2014-04-10 06:35 . 2013-10-26 18:30 538126 --s-a-w- c:\windows\SysWow64\libcurl-4.dll
2014-04-10 06:35 . 2013-10-26 18:30 364544 --s-a-w- c:\windows\SysWow64\ssleay32.dll
2014-04-10 06:35 . 2013-10-26 18:30 192512 --s-a-w- c:\windows\SysWow64\libidn-11.dll
2014-04-10 06:35 . 2013-10-26 18:30 171008 --s-a-w- c:\windows\SysWow64\libssh2.dll
2014-04-10 06:35 . 2013-10-26 18:30 1704448 --s-a-w- c:\windows\SysWow64\libeay32.dll
2014-04-10 06:35 . 2013-10-26 18:30 133632 --s-a-w- c:\windows\SysWow64\librtmp.dll
2014-04-10 06:35 . 2013-06-12 13:15 119888 --s-a-w- c:\windows\SysWow64\pthreadGC2.dll
2014-04-10 06:35 . 2013-06-12 13:15 100864 --s-a-w- c:\windows\SysWow64\zlib1.dll
2014-04-10 06:35 . 2012-09-25 21:46 472424 --s-a-w- c:\windows\SysWow64\cudart32_50_35.dll
2014-04-10 06:35 . 2012-05-26 23:36 55808 --s-a-w- c:\windows\SysWow64\pthreadVC2.dll
2014-04-09 20:39 . 2014-04-10 07:10 -------- d-----w- c:\programdata\Spybot - Search & Destroy
2014-04-08 17:09 . 2014-04-08 17:09 -------- d---a-w- c:\windows\rundll16.exe
2014-04-08 17:09 . 2014-04-08 17:09 -------- d---a-w- c:\windows\logo1_.exe
2014-04-08 16:58 . 2014-04-08 16:58 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2014-04-08 16:23 . 2014-04-08 16:23 -------- d-----w- c:\program files (x86)\VLCPortable
2014-04-05 16:55 . 2013-12-17 13:06 29704 ----a-w- c:\windows\system32\nitrolocalmon9.dll
2014-04-05 16:55 . 2013-12-17 13:06 17928 ----a-w- c:\windows\system32\nitrolocalui9.dll
2014-04-05 16:25 . 2014-04-05 16:25 -------- d-----w- c:\program files (x86)\Common Files\PDF Architect
2014-04-05 10:09 . 2013-11-19 14:52 34080 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2014-04-05 10:08 . 2014-03-10 16:17 128288 ----a-w- c:\windows\system32\IObitSmartDefragExtension.dll
2014-04-03 21:26 . 2014-02-20 17:03 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C17F5A08-24F6-41C2-AE29-5B5DEE000DA9}\gapaengine.dll
2014-04-03 21:24 . 2014-04-03 21:24 -------- d-----w- c:\users\BetaVerze\AppData\Roaming\ProductData
2014-04-02 18:18 . 2014-04-02 18:18 -------- d-----w- c:\program files (x86)\Hosts_Anti_Adwares_PUPs
2014-04-02 18:18 . 2014-04-10 19:35 -------- d-----w- C:\AdwCleaner
2014-04-02 09:17 . 2014-04-02 09:17 -------- d-----w- c:\program files (x86)\Ashampoo
2014-03-25 20:33 . 2009-01-18 21:35 15688 ----a-w- c:\windows\system32\lsdelete.exe
2014-03-25 07:20 . 2014-03-25 07:20 -------- d-----w- c:\programdata\Lavasoft
2014-03-25 07:18 . 2014-03-25 07:18 -------- d-----w- c:\program files (x86)\Lavasoft Ad-Aware Pro Anniversary Edition v8.0.2
2014-03-21 09:10 . 2014-03-21 09:10 -------- d-----w- c:\users\BetaVerze\AppData\Local\AdTrustMedia
2014-03-21 09:09 . 2014-03-21 09:09 -------- d-----w- c:\programdata\Adtrustmedia
2014-03-21 09:09 . 2014-03-21 09:10 -------- d-----w- c:\programdata\COMODO
2014-03-21 09:08 . 2014-03-21 09:08 -------- d-----w- C:\first_launch
2014-03-19 17:46 . 2014-03-19 17:46 -------- d-----w- c:\program files (x86)\PROFIT
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-04-12 21:24 . 2011-10-07 20:24 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2014-04-07 07:26 . 2012-04-02 05:11 692616 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2014-04-07 07:26 . 2011-10-07 21:00 71048 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2014-03-16 10:39 . 2014-03-16 10:39 729088 ----a-w- c:\windows\system32\msfeeds.dll
2014-03-16 10:39 . 2014-03-16 10:39 248320 ----a-w- c:\windows\system32\ieui.dll
2014-03-16 10:39 . 2014-03-16 10:39 96768 ----a-w- c:\windows\system32\mshtmled.dll
2014-03-16 10:39 . 2014-03-16 10:39 86016 ----a-w- c:\windows\system32\jsproxy.dll
2014-03-16 10:39 . 2014-03-16 10:39 816640 ----a-w- c:\windows\system32\jscript.dll
2014-03-16 10:39 . 2014-03-16 10:39 599040 ----a-w- c:\windows\system32\vbscript.dll
2014-03-16 10:39 . 2014-03-16 10:39 421376 ----a-w- c:\windows\SysWow64\vbscript.dll
2014-03-16 10:39 . 2014-03-16 10:39 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2014-03-16 10:39 . 2014-03-16 10:39 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2014-03-16 10:39 . 2014-03-16 10:39 2334720 ----a-w- c:\windows\system32\jscript9.dll
2014-03-16 10:39 . 2014-03-16 10:39 1806848 ----a-w- c:\windows\SysWow64\jscript9.dll
2014-03-16 10:39 . 2014-03-16 10:39 17847808 ----a-w- c:\windows\system32\mshtml.dll
2014-03-16 10:39 . 2014-03-16 10:39 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2014-03-16 10:39 . 2014-03-16 10:39 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2014-03-16 10:39 . 2014-03-16 10:39 1392128 ----a-w- c:\windows\system32\wininet.dll
2014-03-16 10:39 . 2014-03-16 10:39 1129472 ----a-w- c:\windows\SysWow64\wininet.dll
2014-03-16 10:39 . 2014-03-16 10:39 10926592 ----a-w- c:\windows\system32\ieframe.dll
2014-03-16 10:39 . 2014-03-16 10:39 237056 ----a-w- c:\windows\system32\url.dll
2014-03-16 10:39 . 2014-03-16 10:39 2147840 ----a-w- c:\windows\system32\iertutil.dll
2014-03-16 10:39 . 2014-03-16 10:39 1494528 ----a-w- c:\windows\system32\inetcpl.cpl
2014-03-16 10:39 . 2014-03-16 10:39 1427968 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2014-03-16 10:39 . 2014-03-16 10:39 1347072 ----a-w- c:\windows\system32\urlmon.dll
2014-03-16 10:37 . 2014-03-16 10:37 624128 ----a-w- c:\windows\system32\qedit.dll
2014-03-16 10:37 . 2014-03-16 10:37 509440 ----a-w- c:\windows\SysWow64\qedit.dll
2014-03-16 10:37 . 2014-03-16 10:37 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-03-16 10:37 . 2014-03-16 10:37 484864 ----a-w- c:\windows\system32\wer.dll
2014-03-16 10:37 . 2014-03-16 10:37 381440 ----a-w- c:\windows\SysWow64\wer.dll
2014-03-16 10:36 . 2014-03-16 10:36 228864 ----a-w- c:\windows\system32\wwansvc.dll
2014-02-28 09:35 . 2014-02-28 09:36 581632 ----a-w- c:\program files (x86)\convert.exe
2014-02-28 07:14 . 2014-02-28 07:14 724728 ----a-w- c:\windows\system32\sltech64.dll
2014-02-28 07:14 . 2014-02-28 07:14 245496 ----a-w- c:\windows\system32\slprp64.dll
2014-02-28 07:14 . 2014-02-28 07:14 899320 ----a-w- c:\windows\system32\sl3apo64.dll
2014-02-28 07:14 . 2014-02-28 07:14 1045752 ----a-w- c:\windows\system32\slcnt64.dll
2014-02-28 07:14 . 2014-02-28 07:14 2825432 ----a-w- c:\windows\system32\RtPgEx64.dll
2014-02-28 07:14 . 2014-02-28 07:14 942384 ----a-w- c:\windows\system32\NAHIMICAPOSettingsIPC.dll
2014-02-28 07:14 . 2014-02-28 07:14 5752072 ----a-w- c:\windows\system32\NAHIMICAPOlfx.dll
2014-02-20 17:03 . 2013-04-24 05:16 1031560 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\NISBackup\gapaengine.dll
2014-02-17 12:41 . 2012-02-12 14:56 27456 ----a-w- c:\windows\system32\RegistryDefragBootTime.exe
2014-02-17 09:26 . 2014-02-17 09:26 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2014-02-17 09:26 . 2014-02-17 09:26 2048 ----a-w- c:\windows\system32\msxml3r.dll
2014-02-17 09:26 . 2014-02-17 09:26 1882112 ----a-w- c:\windows\system32\msxml3.dll
2014-02-17 09:26 . 2014-02-17 09:26 1237504 ----a-w- c:\windows\SysWow64\msxml3.dll
2014-02-17 09:15 . 2014-02-17 09:15 87040 ----a-w- c:\windows\SysWow64\secproc_ssp.dll
2014-02-17 09:15 . 2014-02-17 09:15 572416 ----a-w- c:\windows\SysWow64\RMActivate.exe
2014-02-17 09:15 . 2014-02-17 09:15 528384 ----a-w- c:\windows\system32\msdrm.dll
2014-02-17 09:15 . 2014-02-17 09:15 510976 ----a-w- c:\windows\SysWow64\RMActivate_ssp.exe
2014-02-17 09:15 . 2014-02-17 09:15 428032 ----a-w- c:\windows\SysWow64\secproc.dll
2014-02-17 09:15 . 2014-02-17 09:15 390144 ----a-w- c:\windows\SysWow64\msdrm.dll
2014-02-17 09:15 . 2014-02-17 09:15 553984 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2014-02-17 09:15 . 2014-02-17 09:15 87040 ----a-w- c:\windows\SysWow64\secproc_ssp_isv.dll
2014-02-17 09:15 . 2014-02-17 09:15 658432 ----a-w- c:\windows\system32\RMActivate_isv.exe
2014-02-17 09:15 . 2014-02-17 09:15 626176 ----a-w- c:\windows\system32\RMActivate.exe
2014-02-17 09:15 . 2014-02-17 09:15 594944 ----a-w- c:\windows\SysWow64\RMActivate_isv.exe
2014-02-17 09:15 . 2014-02-17 09:15 552960 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2014-02-17 09:15 . 2014-02-17 09:15 508928 ----a-w- c:\windows\SysWow64\RMActivate_ssp_isv.exe
2014-02-17 09:15 . 2014-02-17 09:15 488448 ----a-w- c:\windows\system32\secproc.dll
2014-02-17 09:15 . 2014-02-17 09:15 485888 ----a-w- c:\windows\system32\secproc_isv.dll
2014-02-17 09:15 . 2014-02-17 09:15 423936 ----a-w- c:\windows\SysWow64\secproc_isv.dll
2014-02-17 09:15 . 2014-02-17 09:15 123392 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2014-02-17 09:15 . 2014-02-17 09:15 123392 ----a-w- c:\windows\system32\secproc_ssp.dll
2014-02-11 11:17 . 2014-02-11 11:17 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-02-11 11:15 . 2014-02-11 11:15 335360 ----a-w- c:\windows\system32\msieftp.dll
2014-02-11 11:15 . 2014-02-11 11:15 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
2014-02-11 11:14 . 2014-02-11 11:14 14631424 ----a-w- c:\windows\system32\wmp.dll
2014-02-11 11:14 . 2014-02-11 11:14 12625920 ----a-w- c:\windows\system32\wmploc.DLL
2014-02-11 11:14 . 2014-02-11 11:14 12625408 ----a-w- c:\windows\SysWow64\wmploc.DLL
2014-02-11 11:14 . 2014-02-11 11:14 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2014-02-11 11:14 . 2014-02-11 11:14 2048 ----a-w- c:\windows\system32\tzres.dll
2014-02-11 11:14 . 2014-02-11 11:14 202752 ----a-w- c:\windows\system32\scrrun.dll
2014-02-11 11:14 . 2014-02-11 11:14 168960 ----a-w- c:\windows\system32\wscript.exe
2014-02-11 11:14 . 2014-02-11 11:14 163840 ----a-w- c:\windows\SysWow64\scrrun.dll
2014-02-11 11:14 . 2014-02-11 11:14 156160 ----a-w- c:\windows\system32\cscript.exe
2014-02-11 11:14 . 2014-02-11 11:14 150016 ----a-w- c:\windows\system32\wshom.ocx
2014-02-11 11:14 . 2014-02-11 11:14 126976 ----a-w- c:\windows\SysWow64\cscript.exe
2014-02-11 11:14 . 2014-02-11 11:14 121856 ----a-w- c:\windows\SysWow64\wshom.ocx
2014-02-11 11:13 . 2014-02-11 11:13 230400 ----a-w- c:\windows\system32\drivers\portcls.sys
2014-02-11 11:13 . 2014-02-11 11:13 116736 ----a-w- c:\windows\system32\drivers\drmk.sys
2014-02-11 11:13 . 2014-02-11 11:13 81408 ----a-w- c:\windows\system32\imagehlp.dll
2014-02-11 11:13 . 2014-02-11 11:13 159232 ----a-w- c:\windows\SysWow64\imagehlp.dll
2014-02-11 11:13 . 2014-02-11 11:13 197120 ----a-w- c:\windows\system32\credui.dll
2014-02-11 11:13 . 2014-02-11 11:13 1930752 ----a-w- c:\windows\system32\authui.dll
2014-02-11 11:13 . 2014-02-11 11:13 190464 ----a-w- c:\windows\system32\SmartcardCredentialProvider.dll
2014-02-11 11:13 . 2014-02-11 11:13 1796096 ----a-w- c:\windows\SysWow64\authui.dll
2014-02-11 11:13 . 2014-02-11 11:13 168960 ----a-w- c:\windows\SysWow64\credui.dll
2014-02-11 11:13 . 2014-02-11 11:13 152576 ----a-w- c:\windows\SysWow64\SmartcardCredentialProvider.dll
2014-02-11 11:12 . 2014-02-11 11:12 404480 ----a-w- c:\windows\system32\gdi32.dll
2014-02-11 11:12 . 2014-02-11 11:12 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2014-02-11 11:12 . 2014-02-11 11:12 1474048 ----a-w- c:\windows\system32\crypt32.dll
2014-02-11 11:12 . 2014-02-11 11:12 1168384 ----a-w- c:\windows\SysWow64\crypt32.dll
2014-02-11 11:11 . 2014-02-11 11:11 497152 ----a-w- c:\windows\system32\drivers\afd.sys
2014-02-11 11:11 . 2014-02-11 11:11 96768 ----a-w- c:\windows\SysWow64\sspicli.dll
2014-02-11 11:11 . 2014-02-11 11:11 95680 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-02-11 11:11 . 2014-02-11 11:11 458712 ----a-w- c:\windows\system32\drivers\cng.sys
2014-02-11 11:11 . 2014-02-11 11:11 340992 ----a-w- c:\windows\system32\schannel.dll
2014-02-11 11:11 . 2014-02-11 11:11 307200 ----a-w- c:\windows\system32\ncrypt.dll
2014-02-11 11:11 . 2014-02-11 11:11 30720 ----a-w- c:\windows\system32\lsass.exe
2014-02-11 11:11 . 2014-02-11 11:11 28672 ----a-w- c:\windows\system32\sspisrv.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-24 04:57 220632 ----a-w- c:\users\BetaVerze\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-24 04:57 220632 ----a-w- c:\users\BetaVerze\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-24 04:57 220632 ----a-w- c:\users\BetaVerze\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MCW Startup"="c:\program files (x86)\Monitor Calibration Wizard\MCW.exe" [2002-12-20 321024]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"365dni"="c:\program files (x86)\365dni\365dniNET.exe" [2010-05-13 858624]
"StickyPassword"="c:\program files (x86)\Sticky Password\stpass.exe" [2014-02-19 14891320]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Ad-Watch"="c:\program files (x86)\Lavasoft\Ad-Aware\AAWTray.exe" [2009-01-18 506712]
"IObit Malware Fighter"="c:\program files (x86)\IObit\IObit Malware Fighter\IMF.exe" [2014-01-24 1566528]
"SDTray"="c:\program files (x86)\Spybot - Search & Destroy 2\SDTray.exe" [2013-07-25 5624784]
"EAM Trial Reset"="c:\program files (x86)\EAM-TR.exe" [2013-08-22 357337]
"MSStp"="c:\windows\inf\msstp.vbe" [2014-03-05 1584]
.
c:\users\BetaVerze\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
EvernoteClipper.lnk - c:\program files (x86)\Evernote\Evernote\EvernoteClipper.exe [2014-4-4 1107808]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoStrCmpLogical"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Lavasoft Ad-Aware Service]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"SpywareTerminator"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe"
.
R1 EIO64;EIO Driver;c:\windows\system32\DRIVERS\EIO64.sys;c:\windows\SYSNATIVE\DRIVERS\EIO64.sys [x]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\programdata\Spyware Terminator\sp_rsdrv2.sys;c:\programdata\Spyware Terminator\sp_rsdrv2.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 P1C1394;Phase One 1394 Camera Driver;c:\windows\System32\Drivers\p1c1394.sys;c:\windows\SYSNATIVE\Drivers\p1c1394.sys [x]
R2 thdudf;TOSHIBA UDF2.5 Reader File System Driver;c:\windows\system32\DRIVERS\thdudf.sys;c:\windows\SYSNATIVE\DRIVERS\thdudf.sys [x]
R2 WiseBootAssistant;Wise Boot Assistant;c:\program files (x86)\Wise\Wise Care 365\BootTime.exe;c:\program files (x86)\Wise\Wise Care 365\BootTime.exe [x]
R3 ampa;ampa;c:\windows\system32\ampa.sys;c:\windows\SYSNATIVE\ampa.sys [x]
R3 BTCFilterService;USB Networking Driver Filter Service;c:\windows\system32\DRIVERS\motfilt.sys;c:\windows\SYSNATIVE\DRIVERS\motfilt.sys [x]
R3 CtClsFlt;Creative Camera Class Upper Filter Driver;c:\windows\system32\DRIVERS\CtClsFlt.sys;c:\windows\SYSNATIVE\DRIVERS\CtClsFlt.sys [x]
R3 motandroidusb;Mot ADB Interface Driver;c:\windows\system32\Drivers\motoandroid.sys;c:\windows\SYSNATIVE\Drivers\motoandroid.sys [x]
R3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\DRIVERS\motccgp.sys;c:\windows\SYSNATIVE\DRIVERS\motccgp.sys [x]
R3 motccgpfl;MotCcgpFlService;c:\windows\system32\DRIVERS\motccgpfl.sys;c:\windows\SYSNATIVE\DRIVERS\motccgpfl.sys [x]
R3 Motousbnet;Motorola USB Networking Driver Service;c:\windows\system32\DRIVERS\Motousbnet.sys;c:\windows\SYSNATIVE\DRIVERS\Motousbnet.sys [x]
R3 motusbdevice;Motorola USB Dev Driver;c:\windows\system32\DRIVERS\motusbdevice.sys;c:\windows\SYSNATIVE\DRIVERS\motusbdevice.sys [x]
R3 PSI;PSI;c:\windows\system32\DRIVERS\psi_mf_amd64.sys;c:\windows\SYSNATIVE\DRIVERS\psi_mf_amd64.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
R3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2);c:\windows\system32\DRIVERS\RtVlan60.sys;c:\windows\SYSNATIVE\DRIVERS\RtVlan60.sys [x]
R3 TEAM;Realtek Virtual Miniport Driver for Teaming (NDIS 6.2);c:\windows\system32\DRIVERS\RtTeam60.sys;c:\windows\SYSNATIVE\DRIVERS\RtTeam60.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 V0770Vid;Live! Cam Sync HD VF0770 Driver;c:\windows\system32\DRIVERS\V0770Vid.sys;c:\windows\SYSNATIVE\DRIVERS\V0770Vid.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetAdp.sys [x]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys;c:\windows\SYSNATIVE\DRIVERS\VBoxNetFlt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [x]
R4 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;c:\program files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe;c:\program files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [x]
R4 ADExchange;ArcSoft Exchange Service;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe;c:\program files (x86)\Common Files\ArcSoft\esinter\Bin\eservutil.exe [x]
R4 AdvancedSystemCareService7;Advanced SystemCare Service 7;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 7\ASCService.exe [x]
R4 AODService;AODService;c:\program files (x86)\AMD\OverDrive\AODAssist.exe;c:\program files (x86)\AMD\OverDrive\AODAssist.exe [x]
R4 AsSysCtrlService;ASUS System Control Service;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe;c:\program files (x86)\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [x]
R4 Backupper Service;AOMEI Backupper Scheduler Service;c:\program files (x86)\AOMEI Backupper\ABService.exe;c:\program files (x86)\AOMEI Backupper\ABService.exe [x]
R4 BstHdAndroidSvc;BlueStacks Android Service;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android;c:\program files (x86)\BlueStacks\HD-Service.exe BstHdAndroidSvc Android [x]
R4 BstHdLogRotatorSvc;BlueStacks Log Rotator Service;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe;c:\program files (x86)\BlueStacks\HD-LogRotatorService.exe [x]
R4 DeviceMonitorService;DeviceMonitorService;c:\program files (x86)\Motorola Media Link\Lite\NServiceEntry.exe;c:\program files (x86)\Motorola Media Link\Lite\NServiceEntry.exe [x]
R4 DfSdkS;Defragmentation-Service;c:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 11\DfsdkS64.exe;c:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 11\DfsdkS64.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
R4 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
R4 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R4 Motorola Device Manager;Motorola Device Manager Service;c:\program files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe;c:\program files (x86)\Motorola Mobility\Motorola Device Manager\MotoHelperService.exe [x]
R4 NitroDriverReadSpool9;NitroPDFDriverCreatorReadSpool9;c:\program files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe;c:\program files\Common Files\Nitro\Pro\9.0\NitroPDFDriverService9x64.exe [x]
R4 NitroReaderDriverReadSpool2;NitroPDFReaderDriverCreatorReadSpool2;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe;c:\program files\Common Files\Nitro PDF\Reader\2.0\NitroPDFReaderDriverService2x64.exe [x]
R4 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\KMPService.exe;c:\program files (x86)\PANDORA.TV\PanService\KMPService.exe [x]
R4 PST Service;PST Service;c:\program files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe;c:\program files (x86)\Motorola\MotForwardDaemon\ForwardDaemon.exe [x]
R4 RVSMONBL;Returnil Virtual System Core Service;c:\windows\SysWOW64\Returnil\RVS3\rvsmon.exe;c:\windows\SysWOW64\Returnil\RVS3\rvsmon.exe [x]
R4 Secunia PSI Agent;Secunia PSI Agent;c:\program files (x86)\Secunia\PSI\PSIA.exe;c:\program files (x86)\Secunia\PSI\PSIA.exe [x]
R4 Secunia Update Agent;Secunia Update Agent;c:\program files (x86)\Secunia\PSI\sua.exe;c:\program files (x86)\Secunia\PSI\sua.exe [x]
R4 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R4 WO_LiveService;Ashampoo LiveTuner Service;d:\ashampoo winoptimizer 10.02.05 cz portable\App\WinOptimizer\LiveTunerService.exe;d:\ashampoo winoptimizer 10.02.05 cz portable\App\WinOptimizer\LiveTunerService.exe [x]
R4 WO_LiveService2;Ashampoo LiveTuner 2 Service;c:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTunerService.exe;c:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTunerService.exe [x]
S0 ambakdrv;ambakdrv;c:\windows\system32\ambakdrv.sys;c:\windows\SYSNATIVE\ambakdrv.sys [x]
S0 RVSystem;RVSystem;c:\windows\system32\Drivers\RVSystem.sys;c:\windows\SYSNATIVE\Drivers\RVSystem.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S1 A2DDA;A2 Direct Disk Access Support Driver;c:\program files (x86)\Emsisoft Anti-Malware\a2ddax64.sys;c:\program files (x86)\Emsisoft Anti-Malware\a2ddax64.sys [x]
S1 a2injectiondriver;a2injectiondriver;c:\program files (x86)\Emsisoft Anti-Malware\a2dix64.sys;c:\program files (x86)\Emsisoft Anti-Malware\a2dix64.sys [x]
S1 a2util;a-squared Malware-IDS utility driver;c:\program files (x86)\Emsisoft Anti-Malware\a2util64.sys;c:\program files (x86)\Emsisoft Anti-Malware\a2util64.sys [x]
S1 AsUpIO;AsUpIO;SysWow64\drivers\AsUpIO.sys;SysWow64\drivers\AsUpIO.sys [x]
S1 CFRMD;CFRMD;c:\windows\system32\DRIVERS\CFRMD.sys;c:\windows\SYSNATIVE\DRIVERS\CFRMD.sys [x]
S1 rvsmon;rvsmon;c:\windows\system32\DRIVERS\rvsmon.sys;c:\windows\SYSNATIVE\DRIVERS\rvsmon.sys [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [x]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [x]
S2 a2AntiMalware;Emsisoft Anti-Malware 8.0 - Service;c:\program files (x86)\Emsisoft Anti-Malware\a2service.exe;c:\program files (x86)\Emsisoft Anti-Malware\a2service.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [x]
S2 ammntdrv;ammntdrv;c:\windows\system32\ammntdrv.sys;c:\windows\SYSNATIVE\ammntdrv.sys [x]
S2 amwrtdrv;amwrtdrv;c:\windows\system32\amwrtdrv.sys;c:\windows\SYSNATIVE\amwrtdrv.sys [x]
S2 ASWLCCSvc;ASUS Wireless Card Service;c:\program files (x86)\ASUS\WLAN Card Utilities\ASWLCCSVC.exe;c:\program files (x86)\ASUS\WLAN Card Utilities\ASWLCCSVC.exe [x]
S2 BstHdDrv;BlueStacks Hypervisor;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys;c:\program files (x86)\BlueStacks\HD-Hypervisor-amd64.sys [x]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files (x86)\Lavasoft\Ad-Aware\AAWService.exe;c:\program files (x86)\Lavasoft\Ad-Aware\AAWService.exe [x]
S2 LiveTuner2PM;Ashampoo LiveTuner 2 Driver;c:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTuner64.sys;c:\program files (x86)\Ashampoo\Ashampoo WinOptimizer 11\LiveTuner64.sys [x]
S2 LiveTunerPM;Ashampoo LiveTuner ProcessMonitor Driver;d:\ashampoo winoptimizer 10.02.05 cz portable\App\WinOptimizer\LiveTunerProcessMonitor64.sys;d:\ashampoo winoptimizer 10.02.05 cz portable\App\WinOptimizer\LiveTunerProcessMonitor64.sys [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [x]
S2 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
S2 nlsX86cc;Nalpeiron Licensing Service;c:\windows\SysWOW64\NLSSRV32.EXE;c:\windows\SysWOW64\NLSSRV32.EXE [x]
S2 RtNdPt60;Realtek NDIS Protocol Driver;c:\windows\system32\DRIVERS\RtNdPt60.sys;c:\windows\SYSNATIVE\DRIVERS\RtNdPt60.sys [x]
S2 rvsmonf;rvsmonf;c:\windows\system32\DRIVERS\rvsmonf.sys;c:\windows\SYSNATIVE\DRIVERS\rvsmonf.sys [x]
S2 rvsmonn;rvsmonn;c:\windows\system32\DRIVERS\rvsmonn2.sys;c:\windows\SYSNATIVE\DRIVERS\rvsmonn2.sys [x]
S2 SDScannerService;Spybot-S&D 2 Scanner Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDFSSvc.exe [x]
S2 SDUpdateService;Spybot-S&D 2 Updating Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDUpdSvc.exe [x]
S2 SDWSCService;Spybot-S&D 2 Security Center Service;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe;c:\program files (x86)\Spybot - Search & Destroy 2\SDWSCSvc.exe [x]
S2 SSPORT;SSPORT;c:\windows\system32\Drivers\SSPORT.sys;c:\windows\SYSNATIVE\Drivers\SSPORT.sys [x]
S3 a2acc;a2acc;c:\program files (x86)\EMSISOFT ANTI-MALWARE\a2accx64.sys;c:\program files (x86)\EMSISOFT ANTI-MALWARE\a2accx64.sys [x]
S3 amdiox64;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox64.sys;c:\windows\SYSNATIVE\DRIVERS\amdiox64.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 cleanhlp;cleanhlp;c:\program files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys;c:\program files (x86)\Emsisoft Anti-Malware\cleanhlp64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys;c:\windows\SYSNATIVE\drivers\mbam.sys [x]
S3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\nusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 seehcri;Sony Ericsson seehcri Device Driver;c:\windows\system32\DRIVERS\seehcri.sys;c:\windows\SYSNATIVE\DRIVERS\seehcri.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-04-10 23:07 1077576 ----a-w- c:\program files (x86)\Google\Chrome\Application\34.0.1847.116\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-04-15 c:\windows\Tasks\Ad-Aware Update (Daily).job
- c:\program files (x86)\Lavasoft\Ad-Aware\Ad-AwareAdmin.exe [2009-01-18 21:34]
.
2014-04-15 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-02 07:26]
.
2014-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-22 09:36]
.
2014-04-15 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-05-22 09:36]
.
2014-04-15 c:\windows\Tasks\Wise Care 365.job
- c:\program files (x86)\Wise\Wise Care 365\WiseTray.exe [2013-03-30 05:47]
.
2013-12-18 c:\windows\Tasks\Wise Turbo Checker.job
- c:\program files (x86)\Wise\Wise Care 365\WiseTurbo.exe [2013-12-18 05:47]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-04-03 21:24 2471744 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2013-06-24 04:57 244696 ----a-w- c:\users\BetaVerze\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2013-06-24 04:57 244696 ----a-w- c:\users\BetaVerze\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2013-06-24 04:57 244696 ----a-w- c:\users\BetaVerze\AppData\Local\Microsoft\SkyDrive\16.4.6013.0910\amd64\SkyDriveShell64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\BetaVerze\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-01-30 14:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-01-30 14:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-01-30 14:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-01-30 14:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-01-30 14:05 777032 ----a-w- c:\program files (x86)\Google\Drive\googledrivesync64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncBackedUp]
@="{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}"
[HKEY_CLASSES_ROOT\CLSID\{0C4A258A-3F3B-4FFF-80A7-9B3BEC139472}]
2013-01-24 07:48 482144 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncPending]
@="{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}"
[HKEY_CLASSES_ROOT\CLSID\{62CCD8E3-9C21-41E1-B55E-1E26DFC68511}]
2013-01-24 07:48 482144 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncRoot]
@="{A759AFF6-5851-457D-A540-F4ECED148351}"
[HKEY_CLASSES_ROOT\CLSID\{A759AFF6-5851-457D-A540-F4ECED148351}]
2013-01-24 07:48 482144 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\SugarSyncShared]
@="{1574C9EF-7D58-488F-B358-8B78C1538F51}"
[HKEY_CLASSES_ROOT\CLSID\{1574C9EF-7D58-488F-B358-8B78C1538F51}]
2013-01-24 07:48 482144 ----a-w- c:\program files (x86)\SugarSync\SugarSyncShellExt_x64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDVCPL"="c:\program files\Realtek\Audio\HDA\RtkNGUI64.exe" [2014-04-12 7541976]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.com
uLocal Page = c:\windows\system32\blank.htm
mDefault_Search_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Clip image - c:\program files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=4
IE: Clip selection - c:\program files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=3
IE: Clip this page - c:\program files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=1
IE: Clip URL - c:\program files (x86)\Evernote\Evernote\EvernoteIERes\Clip.html?clipAction=0
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: New note - c:\program files (x86)\Evernote\Evernote\EvernoteIERes\NewNote.html
IE: Nová poznámka - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\NewNote.html
IE: Oříznout tuto stránku - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=1
IE: Vystřihnout obrázek - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=4
IE: Vystřihnout URL - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=0
IE: Výběr oříznutí - c:\program files (x86)\Evernote\Evernote\\EvernoteIERes\Clip.html?clipAction=3
IE: {{230D1201-7607-4CF6-A11F-9E4BF0A333E0} - {0DB13731-CEFD-43CF-A8FD-B61DCBC4D5B8} - c:\program files (x86)\Verdict Free\etnxp.dll
IE: {{2C73F784-D2DE-4422-B070-2E3332FE5744} - {0320AC26-52C8-4316-B2C4-24BB6FA73C9A} - c:\program files (x86)\Verdict Free\etnxp.dll
IE: {{2F5C139F-79BD-4C84-A95A-E7140525BC55} - {5B06364D-FF00-4BD5-9D01-4379952513F2} -
IE: {{572BF76C-9EFF-4e1e-93DE-72EF1E91B3DF} - {DB7FBFE3-82CB-49E0-9C41-39C2A80B4966} - c:\progra~2\Eurotran 2003\e2003i.dll
Trusted Zone: samsungsetup.com\www
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\
FF - prefs.js: browser.search.selectedEngine - Yahoo!
FF - prefs.js: browser.startup.homepage - about:home
FF - prefs.js: keyword.URL - hxxp://search.yahoo.com/search?fr=green ... =902615&p=
FF - ExtSQL: 2014-02-25 21:38; {54affe52-8223-453b-be1e-2fe2e250045c}; c:\users\BetaVerze\AppData\Roaming\Lamantine\Sticky Password\spAutofill
FF - ExtSQL: 2014-03-15 16:32; fmconverter@gmail.com; c:\program files (x86)\Freemake\Freemake Video Converter\BrowserPlugin\Firefox
FF - ExtSQL: 2014-03-21 10:09; PrivDog@AdTrustMedia.com; c:\users\BetaVerze\AppData\Roaming\Mozilla\Firefox\Profiles\gnleqish.default\extensions\PrivDog@AdTrustMedia.com.xpi
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Notify-SDWinLogon - SDWinLogon.dll
SafeBoot-CleanHlp
SafeBoot-CleanHlp.sys
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\BlueStacks]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_12_0_0_77_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.12"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_12_0_0_77.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\PnkBstrB.exe
c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
c:\program files (x86)\ASUS\PC Probe II\Probe2.exe
c:\program files (x86)\IObit\Advanced SystemCare 7\Monitor.exe
c:\program files\ASUS\GPU Boost Driver\GpuBoostServer.exe
c:\program files (x86)\ASUS\AASP\1.01.05\aaCenter.exe
.
**************************************************************************
.
Celkový čas: 2014-04-15 21:11:22 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-04-15 19:11
.
Před spuštěním: Volných bajtů: 115 368 206 336
Po spuštění: Volných bajtů: 114 278 330 368
.
- - End Of File - - A28C67600D20D183069B2F31487CE013
687BD79F63D87AA25AA115FF2FF4D12C



Moc díky.

[vyosek]

Zdravim

:arrow:Co se tyce ComboFixu, ktery jste pouzil, tak na zaklade licence a pravidel fora ptam, umite s nim pracovat (spusteni, rozlusteni logu, napsani skriptu)?

Licencni podminky ComboFixu hovori jasne "Nikdy by nemel byt pouzit v prostredi bez dozoru zkusene osoby"


Nebezpeci CFka

• Je urcen primarne pro radce - jeho svevolnym pouzitim ztracite narok na podporu
• Maze stopy po haveti, takze v logu z RSIT neni nic videt
• Jeho log je treba dolustit, jelikoz neumi smazat vse - to ovsem tezko zvladnete pokud k tomu nejste vyskolen
• CF muze mit bug = sunda Vam system, pokud nevite kam co uklada, jak co obnovit, mate system v kytkam a ceka Vas reinstal
• CF taky bohuzel prozatim nekontroluje nektere dulezite knihovny (napr. hal.dll) - ty treba mazou nektere typy haveti (napr. angela) - smaze Vam po restartu hal.dll = nenajede Vam system a jste o radek vyse = reinstal

[JaRon]

pozn.
pan bude zrejme instalater >>
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
+ dalsie 2 produkty pochybnej kvality patriace do SP

[goha]

Tak zatím tady stále vidím jen doporučení "podpořte fórum", ale konkrétní pomoc aby hledal .... až na trochu smysluplný první příspěvek.

[vyosek]

Ja zas vsude treba vidim pravidla fora, kde se pise o vstupech do cizich temat, pouzivani ComboFixu atd

2. Před položením dotazu použijte tlačítko Hledat. Možná již někdo problém podobným Vašemu řešil. Pokud ale ve vyřešeném tématu budou aplikovány různé utility\aplikace, nespouštějte je! Utility se používají až na pokyn rádce, jelikož mohou mazat stopy po havěti a v rukou ne-oborníka může mít jejich použití nedozírné následky.

3. Zvláště utilitu ComboFix nespouštějte i když Vám ji poradil kamarád či nějaký rádoby odborný web. Naše fórum je jediné z CZ\SK antivirových fór, které má právo luštit logy z ComboFixu a máme též plnou podporu autora této utility a přístup k nejaktuálnějším informacím a návodům.

4. Na svůj problém si založte jen jedno téma - založením témat do více sekcí řešení neuspíší, ba naopak problém znepřehledníte a jen přidáte práci rádcům a moderátorům. Taktéž nevkládejte žádost o pomoc do cizího tématu, jen tím uděláte rádci v tématu guláš.

7. Chovejte se k moderátorům a rádcům a celému týmu pomocníků slušně, věnují svůj volný čas na řešení vašich problémů.

Takze si mlaskave odpustte tento arogantni ton, my jsme tu zdarma a SVUJ volny cas venujeme na reseni VASICH problemu. Takze bud holt budete dodrzovat nase pravidla nebo klidne nemusite, ale pak tu nemate co delat. Nikdo vas tu nedrzi, tlacitko Odhlasit mate vlevo nahore

Stale jste mi neodpovedel na otazku ohledne Combofixu

[goha]

Předpokládal jsem, že mi CF vygeneruje log o systému a zde najdu radu, jak systém opravit.

[vyosek]

CF log generuje, ale i maze stopy. Navic i jeho licencni podminky uvadeji, ze se nema pouzivat bez doporuceni a s temi jste souhlasil

Udelejte poradek v zabezpeceni, jak upozornoval kolega - toto je strasna kombinace a dochazi ke kolizim = odinstalujte vse krome Microsoft Security Essentials

AV: Emsisoft Anti-Malware *Enabled/Updated* {8504DEEF-CC04-1F76-2137-F1A5F4A659DA}
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Emsisoft Anti-Malware *Enabled/Updated* {3E653F0B-EA3E-10F8-1B87-CAD78F211367}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Spybot - Search and Destroy *Disabled/Updated* {9BC38DF1-3CCA-732D-A930-C1CA5F20A4B0}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

[goha]

Tak jsem to uvolnil a nechal jen MSE.

[vyosek]

Stahnete SecurityCheck http://screen317.spywareinfoforum.org/SecurityCheck.exe

• Ulozte nejlepe na Plochu
• Spustte tradicne dvouklikem a postupujte dle pokynu utility
• Po dokonceni skenu se vytvori a otevre log, ten mi sem vlozte

[goha]

Stránka nenalezena, stáhl jsem to odtud:
http://www.bleepingcomputer.com/download/securitycheck/
Je to správně?

[vyosek]

Ano, me to tedy slo, ale dobra...

Poprosim o ten log

[goha]

Omlouvám se, dostal jsem se k tomu až teď
Trvalo to cca 20 sec. a zde je výsledek:

Results of screen317's Security Check version 0.99.81
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Microsoft Security Essentials
Emsisoft Anti-Malware
Antivirus out of date! (On Access scanning disabled!)
`````````Anti-malware/Other Utilities Check:`````````
Ad-Aware
Spyware Terminator
Spybot - Search & Destroy
Secunia PSI (3.0.0.9016)
Gmer
JavaFX 2.1.1
Java 7 Update 51
Adobe Flash Player 12.0.0.77
Mozilla Firefox 19.0.2 Firefox out of Date!
Mozilla Thunderbird (17.0.)
Google Chrome 33.0.1750.154
Google Chrome 34.0.1847.116
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
Ad-Aware AAWService.exe is disabled!
Ad-Aware AAWTray.exe is disabled!
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````

[vyosek]

Nejak jste s temi zabezpecnimi poradek neudelal

`````````Anti-malware/Other Utilities Check:`````````
Ad-Aware
Spyware Terminator
Spybot - Search & Destroy
Gmer

To je pak tezsi spoluprace

[goha]

Tak znovu a lépe:

Results of screen317's Security Check version 0.99.81
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 11
``````````````Antivirus/Firewall Check:``````````````
Microsoft Security Essentials
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Secunia PSI (3.0.0.9016)
JavaFX 2.1.1
Java 7 Update 51
Adobe Flash Player 13.0.0.182
Mozilla Firefox 19.0.2 Firefox out of Date!
Mozilla Thunderbird (17.0.)
Google Chrome 33.0.1750.154
Google Chrome 34.0.1847.116
````````Process Check: objlist.exe by Laurent````````
Windows Defender MSMpEng.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````


1/ Ten ad-aware se držel jak klíště, byl odinstalovaný, zbytky fyzicky smazané, CCleanrem pročištěno a pořád ho to hlásilo.
Teprve man. promazat registry pomohlo.

2/ Co je ten Gmer .... kde se tam vzal?

[vyosek]

No to ja nevim kde a kdy jste gmer stahoval - je to ucelny a jednorazovy antirootkit

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte