Zpomalený PC

Zpráva

Venys · #1 Příspěvek od **Venys** » 20 dub 2015 17:45

Combofix

ComboFix 15-04-19.01 - Veny 20.04.2015 18:22:18.1.6 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.8173.6630 [GMT 2:00]
Spuštěný z: c:\users\Veny\Desktop\ComboFix.exe
AV: Bitdefender Antivirus Free Edition *Disabled/Updated* {9B5F5313-CAF9-DD97-C460-E778420237B4}
SP: Bitdefender Antivirus Free Edition *Disabled/Updated* {203EB2F7-ECC3-D219-FED0-DC0A39857D09}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\uiboot.exe
c:\programdata\1427935360.bdinstall.bin
c:\windows\msdownld.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-03-20 do 2015-04-20 )))))))))))))))))))))))))))))))
.
.
2015-04-20 16:31 . 2015-04-20 16:31 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-04-20 12:50 . 2015-04-20 12:50 778416 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2015-04-20 12:50 . 2015-04-20 12:50 142512 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-04-20 12:50 . 2015-04-20 12:50 -------- d-----w- c:\windows\SysWow64\Macromed
2015-04-20 12:50 . 2015-04-20 12:50 -------- d-----w- c:\windows\system32\Macromed
2015-04-20 12:50 . 2015-04-20 12:50 -------- d-----w- c:\program files (x86)\HD Tune Pro
2015-04-20 10:30 . 2015-04-20 10:30 -------- d-----w- c:\program files\Defraggler
2015-04-19 20:56 . 2015-04-19 20:56 65408 ----a-w- c:\windows\system32\drivers\EtronHub3.sys
2015-04-19 20:53 . 2015-04-19 20:53 110080 ----a-w- c:\windows\system32\DelayAPO.dll
2015-04-19 20:53 . 2015-04-19 20:53 94720 ----a-w- c:\windows\system32\drivers\AtihdW76.sys
2015-04-19 20:52 . 2015-04-19 20:52 977624 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2015-04-19 20:52 . 2015-04-19 20:52 73800 ----a-w- c:\windows\system32\RtNicProp64.dll
2015-04-19 20:50 . 2015-04-19 20:50 2888920 ----a-w- c:\windows\system32\RtPgEx64.dll
2015-04-19 20:50 . 2015-04-19 20:50 2702040 ----a-w- c:\windows\system32\RTSnMg64.cpl
2015-04-19 20:50 . 2015-04-19 20:50 4408792 ----a-w- c:\windows\system32\drivers\RTKVHD64.sys
2015-04-19 20:50 . 2015-04-19 20:50 1298136 ----a-w- c:\windows\system32\RTCOM64.dll
2015-04-19 20:50 . 2015-04-19 20:50 2808176 ----a-w- c:\windows\system32\RltkAPO64.dll
2015-04-19 20:50 . 2015-04-19 20:50 1708248 ----a-w- c:\windows\system32\RCoInstII64.dll
2015-04-19 20:50 . 2015-04-19 20:50 2902040 ----a-w- c:\windows\system32\FMAPO64.dll
2015-04-19 20:46 . 2015-04-19 20:46 -------- d-----w- c:\programdata\ProductData
2015-04-19 20:46 . 2015-04-19 20:46 -------- d-----w- c:\programdata\IObit
2015-04-19 20:46 . 2015-04-19 20:46 26528 ----a-w- c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2015-04-19 20:45 . 2015-04-19 20:45 -------- d-----w- c:\program files (x86)\IObit
2015-04-19 17:12 . 2015-04-19 17:13 -------- d-----w- c:\program files\CCleaner
2015-04-19 16:43 . 2015-04-19 16:43 261056 ----a-w- c:\windows\system32\drivers\avchv.sys
2015-04-18 10:49 . 2015-04-18 10:49 -------- d-----w- c:\program files (x86)\Microsoft
2015-04-17 07:10 . 2015-03-17 05:22 95672 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2015-04-07 23:55 . 2015-04-07 23:55 -------- d-----w- c:\program files\FileZilla FTP Client
2015-04-07 15:56 . 2015-04-07 15:56 -------- d-----w- c:\program files (x86)\Common Files\Adobe
2015-04-07 15:50 . 2012-10-17 02:31 741480 ------w- c:\windows\system32\HPDiscoPMAD11.dll
2015-04-07 15:49 . 2015-04-07 15:49 -------- d-----w- c:\programdata\HP
2015-04-07 15:49 . 2015-04-07 15:49 -------- d-----w- c:\program files (x86)\HP
2015-04-07 15:49 . 2015-04-07 15:49 -------- d-----w- c:\program files\HP
2015-04-04 19:04 . 2015-04-04 19:04 -------- d-----w- c:\program files\WinRAR
2015-04-04 18:56 . 2015-04-04 18:56 -------- d-----w- c:\windows\system32\appmgmt
2015-04-04 18:29 . 2015-04-15 18:37 -------- d-----w- c:\program files (x86)\Kingo ROOT
2015-04-04 18:19 . 2015-04-04 18:19 -------- d-----w- c:\program files\SAMSUNG
2015-04-04 18:19 . 2014-10-13 05:57 708168 ----a-w- c:\windows\system32\WinUSBCoInstaller.dll
2015-04-04 18:19 . 2014-10-13 05:57 206080 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
2015-04-04 18:19 . 2014-10-13 05:57 1490656 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2015-04-04 18:19 . 2014-10-13 05:57 110336 ----a-w- c:\windows\system32\drivers\ssudbus.sys
2015-04-04 18:18 . 2014-05-07 15:42 144664 ----a-w- c:\windows\SysWow64\secman.dll
2015-04-04 18:14 . 2015-04-04 18:19 -------- d-----w- c:\programdata\Samsung
2015-04-04 18:12 . 2015-04-04 18:18 -------- d-----w- c:\program files (x86)\Samsung
2015-04-04 16:28 . 2015-04-04 16:28 -------- d-----w- c:\program files (x86)\YaTQA
2015-04-04 15:21 . 2015-04-04 15:21 -------- d-----w- c:\program files\CPUID
2015-04-03 21:57 . 2015-04-03 21:57 -------- d-----w- c:\program files (x86)\Origin Games
2015-04-03 21:32 . 2015-04-08 20:30 -------- d-----w- c:\programdata\Origin
2015-04-03 21:32 . 2015-04-03 21:32 -------- d-----w- c:\programdata\Electronic Arts
2015-04-03 21:32 . 2015-04-03 21:55 -------- d-----w- c:\program files (x86)\Origin
2015-04-03 20:17 . 2014-06-27 02:08 2777088 ----a-w- c:\windows\system32\msmpeg2vdec.dll
2015-04-03 20:17 . 2014-06-27 01:45 2285056 ----a-w- c:\windows\SysWow64\msmpeg2vdec.dll
2015-04-03 20:12 . 2011-03-11 06:33 2565632 ----a-w- c:\windows\system32\esent.dll
2015-04-03 20:12 . 2011-03-11 06:30 96768 ----a-w- c:\windows\system32\fsutil.exe
2015-04-03 20:12 . 2011-03-11 05:33 1699328 ----a-w- c:\windows\SysWow64\esent.dll
2015-04-03 20:12 . 2011-03-11 06:41 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2015-04-03 20:12 . 2011-03-11 06:41 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2015-04-03 20:12 . 2011-03-11 06:41 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2015-04-03 20:12 . 2011-03-11 05:31 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2015-04-03 20:12 . 2011-03-11 04:37 91648 ----a-w- c:\windows\system32\drivers\USBSTOR.SYS
2015-04-03 20:09 . 2015-02-04 03:16 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2015-04-03 20:09 . 2015-02-04 02:54 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2015-04-03 19:36 . 2006-02-03 06:42 355536 ----a-w- c:\windows\system32\xactengine2_0.dll
2015-04-03 19:29 . 2015-04-03 19:29 -------- d-----w- c:\program files (x86)\Ubisoft
2015-04-03 19:27 . 2015-04-03 19:27 30352 ----a-w- c:\windows\system32\drivers\dtlitescsibus.sys
2015-04-03 19:27 . 2015-04-03 19:28 -------- d-----w- c:\program files\DAEMON Tools Lite
2015-04-03 19:26 . 2015-04-03 19:27 -------- d-----w- c:\programdata\DAEMON Tools Lite
2015-04-02 19:46 . 2015-04-02 19:46 -------- d-----w- c:\windows\SysWow64\Wat
2015-04-02 19:46 . 2015-04-02 19:46 -------- d-----w- c:\windows\system32\Wat
2015-04-02 19:44 . 2015-01-09 03:14 91136 ----a-w- c:\windows\system32\wdi.dll
2015-04-02 19:44 . 2015-01-09 03:14 950272 ----a-w- c:\windows\system32\perftrack.dll
2015-04-02 19:44 . 2015-01-09 03:14 29696 ----a-w- c:\windows\system32\powertracker.dll
2015-04-02 19:44 . 2015-01-09 02:48 76800 ----a-w- c:\windows\SysWow64\wdi.dll
2015-04-02 19:44 . 2015-02-03 03:31 1424896 ----a-w- c:\windows\system32\WindowsCodecs.dll
2015-04-02 19:44 . 2015-02-03 03:12 1230848 ----a-w- c:\windows\SysWow64\WindowsCodecs.dll
2015-04-02 19:33 . 2015-04-02 19:39 -------- d-s---w- c:\windows\system32\GWX
2015-04-02 19:33 . 2015-04-02 19:33 -------- d-s---w- c:\windows\SysWow64\GWX
2015-04-02 15:59 . 2013-10-14 16:00 28368 ----a-w- c:\windows\system32\IEUDINIT.EXE
2015-04-02 15:21 . 2013-10-02 01:10 44544 ----a-w- c:\windows\system32\TsUsbGDCoInstaller.dll
2015-04-02 14:47 . 2012-07-26 07:40 2560 ----a-w- c:\windows\system32\drivers\cs-CZ\wdf01000.sys.mui
2015-04-02 14:37 . 2012-08-23 14:10 19456 ----a-w- c:\windows\system32\drivers\rdpvideominiport.sys
2015-04-02 14:37 . 2012-08-23 11:12 192000 ----a-w- c:\windows\SysWow64\rdpendp_winip.dll
2015-04-02 14:37 . 2012-08-23 10:51 228864 ----a-w- c:\windows\system32\rdpendp_winip.dll
2015-04-02 14:10 . 2012-07-26 03:08 84992 ----a-w- c:\windows\system32\WUDFSvc.dll
2015-04-02 14:10 . 2012-07-26 03:08 194048 ----a-w- c:\windows\system32\WUDFPlatform.dll
2015-04-02 14:10 . 2012-07-26 02:26 87040 ----a-w- c:\windows\system32\drivers\WUDFPf.sys
2015-04-02 14:10 . 2012-07-26 02:26 198656 ----a-w- c:\windows\system32\drivers\WUDFRd.sys
2015-04-02 14:10 . 2012-07-26 03:08 229888 ----a-w- c:\windows\system32\WUDFHost.exe
2015-04-02 14:10 . 2012-07-26 03:08 744448 ----a-w- c:\windows\system32\WUDFx.dll
2015-04-02 14:10 . 2012-07-26 03:08 45056 ----a-w- c:\windows\system32\WUDFCoinstaller.dll
2015-04-02 13:57 . 2012-03-01 06:46 23408 ----a-w- c:\windows\system32\drivers\fs_rec.sys
2015-04-02 13:57 . 2012-03-01 06:28 5120 ----a-w- c:\windows\system32\wmi.dll
2015-04-02 13:57 . 2012-03-01 05:29 5120 ----a-w- c:\windows\SysWow64\wmi.dll
2015-04-02 13:49 . 2014-03-09 21:48 171160 ----a-w- c:\windows\system32\infocardapi.dll
2015-04-02 13:49 . 2014-03-09 21:48 1389208 ----a-w- c:\windows\system32\icardagt.exe
2015-04-02 13:49 . 2014-03-09 21:47 99480 ----a-w- c:\windows\SysWow64\infocardapi.dll
2015-04-02 13:49 . 2014-03-09 21:47 619672 ----a-w- c:\windows\SysWow64\icardagt.exe
2015-04-02 13:49 . 2014-06-30 22:24 8856 ----a-w- c:\windows\system32\icardres.dll
2015-04-02 13:49 . 2014-06-30 22:14 8856 ----a-w- c:\windows\SysWow64\icardres.dll
2015-04-02 13:49 . 2014-06-06 06:16 35480 ----a-w- c:\windows\SysWow64\TsWpfWrp.exe
2015-04-02 13:49 . 2014-06-06 06:12 35480 ----a-w- c:\windows\system32\TsWpfWrp.exe
2015-04-02 13:46 . 2014-07-17 02:07 455168 ----a-w- c:\windows\system32\winlogon.exe
2015-04-02 13:46 . 2014-07-17 02:07 235520 ----a-w- c:\windows\system32\winsta.dll
2015-04-02 13:46 . 2014-07-17 02:07 150528 ----a-w- c:\windows\system32\rdpcorekmts.dll
2015-04-02 13:46 . 2014-07-17 01:40 157696 ----a-w- c:\windows\SysWow64\winsta.dll
2015-04-02 13:46 . 2014-07-17 01:21 212480 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2015-04-02 13:46 . 2014-07-17 01:21 39936 ----a-w- c:\windows\system32\drivers\tssecsrv.sys
2015-04-02 13:46 . 2012-04-26 05:41 77312 ----a-w- c:\windows\system32\rdpwsx.dll
2015-04-02 13:46 . 2012-04-26 05:34 9216 ----a-w- c:\windows\system32\rdrmemptylst.exe
2015-04-02 13:44 . 2015-01-30 23:56 459336 ----a-w- c:\windows\system32\drivers\cng.sys
2015-04-02 13:43 . 2011-02-05 17:10 20352 ----a-w- c:\windows\system32\kdusb.dll
2015-04-02 13:42 . 2011-04-29 03:06 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2015-04-02 13:41 . 2015-02-26 03:25 3204096 ----a-w- c:\windows\system32\win32k.sys
2015-04-02 13:40 . 2013-05-13 03:43 1192448 ----a-w- c:\windows\system32\certutil.exe
2015-04-02 13:40 . 2013-05-13 03:08 903168 ----a-w- c:\windows\SysWow64\certutil.exe
2015-04-02 13:40 . 2013-05-13 05:50 52224 ----a-w- c:\windows\system32\certenc.dll
2015-04-02 13:40 . 2013-05-13 03:08 43008 ----a-w- c:\windows\SysWow64\certenc.dll
2015-04-02 13:19 . 2014-07-14 02:02 1216000 ----a-w- c:\windows\system32\rpcrt4.dll
2015-04-02 13:19 . 2014-07-14 01:40 664064 ----a-w- c:\windows\SysWow64\rpcrt4.dll
2015-04-02 13:19 . 2013-10-12 02:29 859648 ----a-w- c:\windows\system32\IKEEXT.DLL
2015-04-02 13:19 . 2013-10-12 02:30 830464 ----a-w- c:\windows\system32\nshwfp.dll
2015-04-02 13:19 . 2013-10-12 02:29 324096 ----a-w- c:\windows\system32\FWPUCLNT.DLL
2015-04-02 13:19 . 2013-10-12 02:03 656896 ----a-w- c:\windows\SysWow64\nshwfp.dll
2015-04-02 13:19 . 2013-10-12 02:01 216576 ----a-w- c:\windows\SysWow64\FWPUCLNT.DLL
2015-04-02 13:19 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-04-19 20:56 . 2011-07-29 03:40 94208 ----a-w- c:\windows\system32\drivers\EtronXHCI.sys
2015-04-02 15:47 . 2015-04-02 15:47 243200 ----a-w- c:\windows\system32\webcheck.dll
2015-04-02 15:47 . 2015-04-02 15:47 208384 ----a-w- c:\windows\SysWow64\webcheck.dll
2015-04-01 23:11 . 2009-07-14 02:36 175616 ----a-w- c:\windows\system32\msclmd.dll
2015-04-01 23:11 . 2009-07-14 02:36 152576 ----a-w- c:\windows\SysWow64\msclmd.dll
2015-03-17 04:56 . 2015-04-17 07:10 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-02-04 10:23 . 2015-02-04 10:23 875688 ----a-w- c:\windows\SysWow64\msvcr120_clr0400.dll
2015-02-04 10:13 . 2015-02-04 10:13 869536 ----a-w- c:\windows\system32\msvcr120_clr0400.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2015-02-27 5583120]
"Kies3PDLR.exe"="c:\program files (x86)\Samsung\Kies3\FirmwareUpdate\Kies3PDLR.exe" [2015-03-24 1015104]
"CCleaner Monitoring"="c:\program files\CCleaner\CCleaner64.exe" [2015-03-13 7451928]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\AMD\ATI.ACE\Core-Static\amd64\CLIStart.exe" [2014-11-20 767176]
"Raptr"="c:\progra~2\Raptr\raptrstub.exe" [2015-03-25 55568]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"EasyTuneVI"="c:\program files (x86)\GIGABYTE\ET6\ETCall.exe" [2012-02-01 40960]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 BBSvc;BingBar Service;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\BBSvc.exe [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 OpenVPNAccessClient;OpenVPN Access Client;c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe;c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\capiws.exe [x]
R3 AppleChargerSrv;AppleChargerSrv;c:\windows\system32\AppleChargerSrv.exe;c:\windows\SYSNATIVE\AppleChargerSrv.exe [x]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssudbus.sys [x]
R3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys;c:\windows\GVTDrv64.sys [x]
R3 ICCS;Intel(R) Integrated Clock Controller Service - Intel(R) ICCS;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe;c:\program files (x86)\Intel\Intel(R) Integrated Clock Controller Service\ICCProxy.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 Origin Client Service;Origin Client Service;c:\program files (x86)\Origin\OriginClientService.exe;c:\program files (x86)\Origin\OriginClientService.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssudmdm.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys;c:\windows\SYSNATIVE\DRIVERS\avc3.sys [x]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys;c:\windows\SYSNATIVE\DRIVERS\AppleCharger.sys [x]
S1 bdfwfpf;bdfwfpf;c:\program files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys;c:\program files\Bitdefender\Antivirus Free Edition\bdfwfpf.sys [x]
S1 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys;c:\windows\SYSNATIVE\DRIVERS\gzflt.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 gzserv;Bitdefender Antivirus Free Edition;c:\program files\Bitdefender\Antivirus Free Edition\gzserv.exe;c:\program files\Bitdefender\Antivirus Free Edition\gzserv.exe [x]
S2 ss_conn_service;SAMSUNG Mobile Connectivity Service;c:\program files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe;c:\program files\SAMSUNG\USB Drivers\25_escape\conn\ss_conn_service.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys;c:\windows\SYSNATIVE\DRIVERS\avckf.sys [x]
S3 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe;c:\program files (x86)\Microsoft\BingBar\7.1.362.0\SeaPort.exe [x]
S3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys;c:\windows\SYSNATIVE\Drivers\EtronHub3.sys [x]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys;c:\windows\SYSNATIVE\Drivers\EtronXHCI.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\DRIVERS\tapoas.sys;c:\windows\SYSNATIVE\DRIVERS\tapoas.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys;c:\windows\SYSNATIVE\DRIVERS\usbfilter.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - AODDriver
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-04-17 07:38 988488 ----a-w- c:\program files (x86)\Google\Chrome\Application\42.0.2311.90\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-04-20 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-04-20 12:50]
.
2015-04-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-04-01 21:30]
.
2015-04-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2015-04-01 21:30]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2015-04-19 13874392]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = about:blank
mStart Page = about:blank
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.0.0.138
.
.
------- Asociace souborů -------
.
inifile="%SystemRoot%\system32\NOTEPAD.EXE" %1
txtfile="%SystemRoot%\system32\NOTEPAD.EXE" %1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKU-Default-RunOnce-SPReview - c:\windows\System32\SPReview\SPReview.exe
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\OpenVPN Client.lnk - c:\program files (x86)\OpenVPN Technologies\OpenVPN Client\core\uiboot.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_17_0_0_169_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.17"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_17_0_0_169.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2015-04-20 18:40:38
ComboFix-quarantined-files.txt 2015-04-20 16:40
.
Před spuštěním: Volných bajtů: 892 276 359 168
Po spuštění: Volných bajtů: 892 102 828 032
.
- - End Of File - - 6A3A26C799690CCBD48236AA65C1BD40

#2 Příspěvek od **Rudy** » 20 dub 2015 18:29

Zdravím!
1. Jak je na tom váš oper.systém s legalitou?
2. Proč spouštíte ComboFix, profesionální utilitu, která v laických rukou může poškodit systém?

Venys · #3 Příspěvek od **Venys** » 20 dub 2015 21:01

Legalita není

Combofix jsem spouštěl podle návod zas takový laik nejsem

Jenom se ptám jestli něco není špatně a za odpověď děkuji

#4 Příspěvek od **Rudy** » 20 dub 2015 21:34

Vzhledem k tomu, že váš oper. systém není legální, nemohu podle pravidel fóra: http://forum.viry.cz/viewtopic.php?f=12&t=115512 váš problém řešit. Lituji.

VIRY.CZ

Zpomalený PC

Zpomalený PC

Re: Zpomalený PC

Re: Zpomalený PC

Re: Zpomalený PC