ComboFix 15-05-13.01 - lkt85 24.05.2015 0:02.1.2 - x64
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.4095.2541 [GMT 2:00]
Spuštěný z: c:\users\lkt85\Desktop\ComboFix.exe
AV: ESET Smart Security 7.0 *Disabled/Updated* {19259FAE-8396-A113-46DB-15B0E7DFA289}
FW: ESET Personální firewall *Enabled* {211E1E8B-C9F9-A04B-6D84-BC85190CE5F2}
SP: ESET Smart Security 7.0 *Disabled/Updated* {A2447E4A-A5AC-AE9D-7C6B-2EC29C58E834}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\ntuser.pol
c:\users\lkt85\AppData\Local\Microsoft\Windows\Temporary Internet Files\{0BC39C59-F18F-4D28-8D1A-FC4A8A992064}.xps
c:\users\lkt85\AppData\Local\Microsoft\Windows\Temporary Internet Files\{63D86893-46D7-4C82-A9D0-111FE7B54B92}.xps
c:\users\lkt85\AppData\Local\Microsoft\Windows\Temporary Internet Files\{70F67BC8-3DC7-42A5-8BA6-B743074DE7E5}.xps
c:\users\lkt85\AppData\Local\Microsoft\Windows\Temporary Internet Files\{7C329D41-A1D1-49E4-977F-33BEBA3AF74C}.xps
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NETHFDRV
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2015-04-23 do 2015-05-23 )))))))))))))))))))))))))))))))
.
.
2015-05-23 22:08 . 2015-05-23 22:08 -------- d-----w- c:\users\Default\AppData\Local\temp
2015-05-23 16:59 . 2015-05-23 16:59 -------- d-----w- c:\users\lkt85\AppData\Roaming\com.relax-gaming.skywalker
2015-05-23 16:58 . 2015-05-23 16:59 -------- d-----w- c:\program files (x86)\Unibet Poker
2015-05-22 10:12 . 2015-05-03 03:16 12214312 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{B22A491A-E42A-47F8-B435-AC50D64A73FD}\mpengine.dll
2015-05-17 18:35 . 2015-05-17 18:35 -------- d-----w- c:\users\lkt85\AppData\Local\Microsoft Help
2015-05-13 07:45 . 2015-05-01 13:17 124112 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2015-05-13 07:45 . 2015-05-01 13:16 102608 ----a-w- c:\windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll
2015-05-12 18:06 . 2015-05-05 01:29 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-12 18:06 . 2015-05-05 01:12 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-05-12 18:06 . 2015-04-18 03:10 460800 ----a-w- c:\windows\system32\certcli.dll
2015-05-12 18:06 . 2015-04-18 02:56 342016 ----a-w- c:\windows\SysWow64\certcli.dll
2015-05-12 18:04 . 2015-04-08 03:29 668672 ----a-w- c:\program files\Windows Journal\MSPVWCTL.DLL
2015-05-11 14:39 . 2015-05-11 14:39 -------- d-----w- c:\program files\Rockstar Games
2015-05-11 14:17 . 2015-05-11 14:39 -------- d-----w- c:\program files (x86)\Rockstar Games
2015-05-11 14:08 . 2015-05-11 14:08 -------- d-sh--w- c:\programdata\SecuROM
2015-05-11 13:34 . 2015-05-11 14:09 -------- d-----w- c:\users\lkt85\AppData\Local\Rockstar Games
2015-05-11 13:02 . 2015-05-11 13:02 348160 ----a-w- c:\windows\SysWow64\Msvcr71.dll
2015-05-11 13:02 . 2015-05-11 13:02 1700352 ----a-w- c:\windows\SysWow64\gdiplus.dll
2015-05-11 13:02 . 2015-05-11 13:02 1060864 ----a-w- c:\windows\SysWow64\mfc71.dll
2015-05-10 23:04 . 2015-05-10 23:04 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2015-05-10 22:58 . 2015-05-10 22:58 -------- d--h--r- c:\users\lkt85\AppData\Roaming\SecuROM
2015-05-09 21:50 . 2015-05-09 21:50 -------- d-----w- c:\users\lkt85\AppData\Roaming\ATI
2015-05-09 21:50 . 2015-05-09 21:50 -------- d-----w- c:\users\lkt85\AppData\Local\ATI
2015-05-09 21:50 . 2015-05-09 21:50 -------- d-----w- c:\programdata\ATI
2015-05-09 21:50 . 2015-05-09 21:50 -------- d-----w- c:\program files (x86)\AMD APP
2015-05-09 21:50 . 2015-05-09 21:50 -------- d-----w- c:\program files\Common Files\ATI Technologies
2015-05-09 21:50 . 2015-05-09 21:50 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2015-05-09 21:48 . 2015-05-09 21:48 -------- d-----w- c:\program files (x86)\ATI Technologies
2015-05-09 21:48 . 2015-05-09 21:48 -------- d-----w- c:\program files\ATI
2015-05-09 21:47 . 2015-05-09 21:50 -------- d-----w- c:\program files\ATI Technologies
2015-05-09 21:46 . 2015-05-09 21:46 -------- d-----w- C:\ATI
2015-04-30 08:32 . 2015-04-30 08:32 -------- d-----w- c:\program files (x86)\Stavební fyzika
2015-04-30 08:32 . 2015-04-30 08:32 -------- d-----w- c:\program files (x86)\Common Files\Svoboda Software
2015-04-29 20:21 . 2015-04-29 20:21 -------- d-----w- c:\users\lkt85\AppData\Local\SafeNet Sentinel
2015-04-29 20:21 . 2015-04-29 20:21 -------- d-----w- c:\programdata\SafeNet Sentinel
2015-04-29 19:59 . 2014-11-27 08:04 91784 ----a-w- c:\windows\system32\drivers\aksdf.sys
2015-04-29 19:59 . 2015-04-29 19:59 -------- d-----w- c:\program files (x86)\Common Files\SafeNet Sentinel
2015-04-29 19:59 . 2014-11-27 08:04 4608320 ----a-w- c:\windows\system32\hasplms.exe
2015-04-29 19:59 . 2014-11-27 08:04 4608320 ----a-w- c:\windows\system32\aksllmtp.exe
2015-04-29 19:59 . 2014-11-27 08:04 162136 ----a-w- c:\windows\system32\drivers\aksfridge.sys
2015-04-29 19:58 . 2014-11-27 08:04 331608 ----a-w- c:\windows\system32\drivers\hardlock.sys
2015-04-29 19:58 . 2014-11-27 08:04 198088 ----a-w- c:\windows\SysWow64\hlvdd.dll
2015-04-29 19:56 . 2015-04-29 19:56 -------- d-----w- c:\program files (x86)\Common Files\Aladdin Shared
2015-04-29 19:55 . 2015-04-29 19:58 -------- d-----w- c:\program files\Common Files\Dlubal
2015-04-29 19:55 . 2015-04-29 19:57 -------- d-----w- c:\program files (x86)\Common Files\Dlubal
2015-04-29 19:55 . 2015-04-29 19:55 -------- d-----w- c:\program files\Dlubal
2015-04-29 19:55 . 2015-04-29 19:55 -------- d-----w- c:\programdata\Dlubal
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-05-13 07:49 . 2014-10-22 20:58 140425016 ----a-w- c:\windows\system32\MRT.exe
2015-05-05 01:29 . 2015-05-12 18:06 342016 ----a-w- c:\windows\system32\schannel.dll
2015-05-05 01:12 . 2015-05-12 18:06 248832 ----a-w- c:\windows\SysWow64\schannel.dll
2015-04-27 19:23 . 2015-05-12 18:05 113664 ----a-w- c:\windows\system32\sechost.dll
2015-04-27 19:05 . 2015-05-12 18:05 92160 ----a-w- c:\windows\SysWow64\sechost.dll
2015-04-27 19:04 . 2015-05-12 18:05 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2015-03-25 03:24 . 2015-04-15 19:27 98304 ----a-w- c:\windows\system32\wudriver.dll
2015-03-25 03:24 . 2015-04-15 19:27 37376 ----a-w- c:\windows\system32\wups2.dll
2015-03-25 03:24 . 2015-04-15 19:27 35328 ----a-w- c:\windows\system32\wups.dll
2015-03-25 03:24 . 2015-04-15 19:27 3298816 ----a-w- c:\windows\system32\wucltux.dll
2015-03-25 03:24 . 2015-04-15 19:27 2553856 ----a-w- c:\windows\system32\wuaueng.dll
2015-03-25 03:24 . 2015-04-15 19:27 191488 ----a-w- c:\windows\system32\wuwebv.dll
2015-03-25 03:24 . 2015-04-15 19:27 696320 ----a-w- c:\windows\system32\wuapi.dll
2015-03-25 03:24 . 2015-04-15 19:27 60416 ----a-w- c:\windows\system32\WinSetupUI.dll
2015-03-25 03:23 . 2015-04-15 19:27 12288 ----a-w- c:\windows\system32\wu.upgrade.ps.dll
2015-03-25 03:23 . 2015-04-15 19:27 36864 ----a-w- c:\windows\system32\wuapp.exe
2015-03-25 03:23 . 2015-04-15 19:27 135168 ----a-w- c:\windows\system32\wuauclt.exe
2015-03-25 03:00 . 2015-04-15 19:27 92672 ----a-w- c:\windows\SysWow64\wudriver.dll
2015-03-25 03:00 . 2015-04-15 19:27 566784 ----a-w- c:\windows\SysWow64\wuapi.dll
2015-03-25 03:00 . 2015-04-15 19:27 29696 ----a-w- c:\windows\SysWow64\wups.dll
2015-03-25 03:00 . 2015-04-15 19:27 173056 ----a-w- c:\windows\SysWow64\wuwebv.dll
2015-03-25 03:00 . 2015-04-15 19:27 33792 ----a-w- c:\windows\SysWow64\wuapp.exe
2015-03-23 03:25 . 2015-04-15 19:27 726528 ----a-w- c:\windows\system32\generaltel.dll
2015-03-23 03:25 . 2015-04-15 19:27 769536 ----a-w- c:\windows\system32\invagent.dll
2015-03-23 03:24 . 2015-04-15 19:27 419840 ----a-w- c:\windows\system32\devinv.dll
2015-03-23 03:24 . 2015-04-15 19:27 957952 ----a-w- c:\windows\system32\appraiser.dll
2015-03-23 03:24 . 2015-04-15 19:27 30720 ----a-w- c:\windows\system32\acmigration.dll
2015-03-23 03:24 . 2015-04-15 19:27 192000 ----a-w- c:\windows\system32\aepic.dll
2015-03-23 03:24 . 2015-04-15 19:27 227328 ----a-w- c:\windows\system32\aepdu.dll
2015-03-23 03:17 . 2015-04-15 19:27 1111552 ----a-w- c:\windows\system32\aeinv.dll
2015-03-10 08:45 . 2014-10-23 18:55 907976 ----a-w- c:\programdata\Microsoft\ClickToRun\{9AC08E99-230B-47e8-9721-4577B7F124EA}\integrator.exe
2015-03-10 03:25 . 2015-04-15 19:26 1882624 ----a-w- c:\windows\system32\msxml3.dll
2015-03-10 03:21 . 2015-04-15 19:26 2048 ----a-w- c:\windows\system32\msxml3r.dll
2015-03-10 03:08 . 2015-04-15 19:26 1237504 ----a-w- c:\windows\SysWow64\msxml3.dll
2015-03-10 03:05 . 2015-04-15 19:26 2048 ----a-w- c:\windows\SysWow64\msxml3r.dll
2015-03-05 05:12 . 2015-04-15 19:27 404480 ----a-w- c:\windows\system32\gdi32.dll
2015-03-05 04:05 . 2015-04-15 19:27 311808 ----a-w- c:\windows\SysWow64\gdi32.dll
2015-03-04 04:55 . 2015-04-15 19:24 367552 ----a-w- c:\windows\system32\clfs.sys
2015-03-04 04:41 . 2015-04-15 19:24 79360 ----a-w- c:\windows\system32\clfsw32.dll
2015-03-04 04:41 . 2015-05-12 18:04 309248 ----a-w- c:\windows\apppatch\AppPatch64\AcGenral.dll
2015-03-04 04:41 . 2015-05-12 18:04 103424 ----a-w- c:\windows\apppatch\AppPatch64\acspecfc.dll
2015-03-04 04:10 . 2015-04-15 19:24 58880 ----a-w- c:\windows\SysWow64\clfsw32.dll
2015-03-04 04:10 . 2015-05-12 18:04 470528 ----a-w- c:\windows\apppatch\AcSpecfc.dll
2015-03-04 04:10 . 2015-05-12 18:04 2178560 ----a-w- c:\windows\apppatch\AcGenral.dll
2015-03-04 04:06 . 2015-05-12 18:04 2560 ----a-w- c:\windows\apppatch\AcRes.dll
2015-02-27 20:59 . 2014-12-26 18:28 5 ----a-w- c:\windows\SysWow64\lMMLDeleteUserData42107612FX.tmp
2015-02-25 03:18 . 2015-04-15 19:26 754688 ----a-w- c:\windows\system32\drivers\http.sys
2015-02-24 02:17 . 2010-11-21 03:27 295552 ------w- c:\windows\system32\MpSigStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{51D26BB4-4D2C-4AE4-9873-5FF41B6DED1F}]
2015-05-20 06:54 538240 ----a-w- c:\program files (x86)\XTab\SupTab.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\~\Browser Helper Objects\{FCE3FA8B-BA81-467C-81D8-E43C00D1BC71}]
2014-06-15 13:17 434024 ----a-w- c:\programdata\YTAHelper\YTAHelper.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 12:42 1729752 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 12:42 1729752 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 12:42 1729752 ----a-w- c:\program files\Microsoft Office 15\root\vfs\ProgramFilesX86\Microsoft Office\Office15\grooveex.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SpybotSD TeaTimer"="c:\program files (x86)\Spybot - Search & Destroy\TeaTimer.exe" [2009-01-26 2144088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2014-12-19 1022152]
"HTC Sync Loader"="c:\program files (x86)\HTC\HTC Sync 3.0\htcUPCTLoader.exe" [2011-01-27 585728]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Autodesk Sync"="c:\program files\Autodesk\Autodesk Sync\AdSync.exe" [2013-02-04 1081224]
.
c:\users\lkt85\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
play.m3u [2015-5-14 64]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R3 cpuz137;cpuz137;c:\users\lkt85\AppData\Local\Temp\cpuz137\cpuz137_x64.sys;c:\users\lkt85\AppData\Local\Temp\cpuz137\cpuz137_x64.sys [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 FlexNet Licensing Service 64;FlexNet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [x]
R3 HTCAND64;HTC Device Driver;c:\windows\system32\Drivers\ANDROIDUSB.sys;c:\windows\SYSNATIVE\Drivers\ANDROIDUSB.sys [x]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys;c:\windows\SYSNATIVE\DRIVERS\htcnprot.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\MBAMSwissArmy.sys;c:\windows\SYSNATIVE\drivers\MBAMSwissArmy.sys [x]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [x]
R3 PDF Architect 2;PDF Architect 2;c:\program files (x86)\PDF Architect 2\ws.exe;c:\program files (x86)\PDF Architect 2\ws.exe [x]
R3 pdfforge CrashHandler;pdfforge CrashHandler;c:\program files (x86)\PDF Architect 2\crash-handler-ws.exe;c:\program files (x86)\PDF Architect 2\crash-handler-ws.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys;c:\windows\SYSNATIVE\DRIVERS\epfwwfp.sys [x]
S0 FSProFilter2;FSPro File Filter 2;c:\windows\System32\Drivers\FSPFltd2.sys;c:\windows\SYSNATIVE\Drivers\FSPFltd2.sys [x]
S1 {4a0d8869-1fbc-4918-9ada-bb10f8dfcc5c}Gw64;{4a0d8869-1fbc-4918-9ada-bb10f8dfcc5c}Gw64;c:\windows\system32\drivers\{4a0d8869-1fbc-4918-9ada-bb10f8dfcc5c}Gw64.sys;c:\windows\SYSNATIVE\drivers\{4a0d8869-1fbc-4918-9ada-bb10f8dfcc5c}Gw64.sys [x]
S1 {ff8c2376-7eac-401f-82bd-d1e681ca83ee}Gw64;{ff8c2376-7eac-401f-82bd-d1e681ca83ee}Gw64;c:\windows\system32\drivers\{ff8c2376-7eac-401f-82bd-d1e681ca83ee}Gw64.sys;c:\windows\SYSNATIVE\drivers\{ff8c2376-7eac-401f-82bd-d1e681ca83ee}Gw64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys;c:\windows\SYSNATIVE\DRIVERS\eamonm.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys;c:\windows\SYSNATIVE\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys;c:\windows\SYSNATIVE\DRIVERS\EpfwLWF.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys;c:\windows\SYSNATIVE\drivers\aksdf.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Autodesk Content Service;Autodesk Content Service;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe;c:\program files (x86)\Autodesk\Content Service\Connect.Service.ContentService.exe [x]
S2 ClickToRunSvc;Služba Microsoft Office ClickToRun;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe;c:\program files\Microsoft Office 15\ClientX64\OfficeClickToRun.exe [x]
S2 CodeMeter.exe;CodeMeter Runtime Server;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe;c:\program files (x86)\CodeMeter\Runtime\bin\CodeMeter.exe [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [x]
S2 hasplms;Sentinel LDK License Manager;c:\windows\system32\hasplms.exe -run;c:\windows\SYSNATIVE\hasplms.exe -run [x]
S2 IHProtect Service;IHProtect Service;c:\program files (x86)\XTab\ProtectService.exe;c:\program files (x86)\XTab\ProtectService.exe [x]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [x]
S2 PDF Architect 2 Creator;PDF Architect 2 Creator;c:\program files (x86)\PDF Architect 2\creator-ws.exe;c:\program files (x86)\PDF Architect 2\creator-ws.exe [x]
S2 WindowsMangerProtect;WindowsMangerProtect Service;c:\programdata\WindowsMangerProtect\ProtectWindowsManager.exe;c:\programdata\WindowsMangerProtect\ProtectWindowsManager.exe [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2015-05-22 11:02 986440 ----a-w- c:\program files (x86)\Google\Chrome\Application\43.0.2357.65\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2015-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 20:45]
.
2015-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore1d090b1b4114861.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 20:45]
.
2015-05-17 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 20:45]
.
2015-05-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA1d090b1b4c7067a.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2014-11-24 20:45]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2014-11-01 17:09 2471744 ----a-w- c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro1 (ErrorConflict)]
@="{8BA85C75-763B-4103-94EB-9470F12FE0F7}"
[HKEY_CLASSES_ROOT\CLSID\{8BA85C75-763B-4103-94EB-9470F12FE0F7}]
2015-04-14 14:30 2334936 ----a-w- c:\program files\Microsoft Office 15\root\office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro2 (SyncInProgress)]
@="{CD55129A-B1A1-438E-A425-CEBC7DC684EE}"
[HKEY_CLASSES_ROOT\CLSID\{CD55129A-B1A1-438E-A425-CEBC7DC684EE}]
2015-04-14 14:30 2334936 ----a-w- c:\program files\Microsoft Office 15\root\office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrivePro3 (InSync)]
@="{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}"
[HKEY_CLASSES_ROOT\CLSID\{E768CD3B-BDDC-436D-9C13-E1B39CA257B1}]
2015-04-14 14:30 2334936 ----a-w- c:\program files\Microsoft Office 15\root\office15\grooveex.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2013-08-19 5617432]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://search.delta-homes.com/web/?type=ds&ts=1432151129&z=1231a1d7ba62b053c8c911fgfz7c8o1gfw8geg0c1e&from=wpm05203&uid=WDCXWD5001AALS-00L3B2_WD-WMASY525185451854&q={searchTerms}
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\program files\Microsoft Office 15\Root\Office15\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\program files\Microsoft Office 15\Root\Office15\ONBttnIE.dll/105
TCP: DhcpNameServer = 192.168.88.254
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{10921475-03CE-4E04-90CE-E2E7EF20C814} - (no file)
AddRemove-Internet Speed Checker - c:\program files (x86)\Internet Speed Checker\Uninstall.exe
AddRemove-KaraFun Player_is1 - d:\program files\KaraFun Player\unins000.exe
AddRemove-KaraFun_is1 - d:\program files\KaraFun\unins000.exe
AddRemove-PokerStars.eu - h:\hry\Nová složka\PokerStarsUninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2689556588-9665318-1912531368-1000\Software\SecuROM\License information*]
"datasecu"=hex:e3,b0,01,82,e5,f6,f6,f8,2c,6c,6f,16,17,08,c6,39,e9,af,06,d2,9a,
a9,84,10,14,86,5f,5f,9b,80,e8,b7,7b,34,a9,12,a2,87,a3,60,5d,25,0d,2a,90,97,\
"rkeysecu"=hex:5e,ae,8b,39,4d,e9,fe,b6,93,1f,88,d5,46,17,a5,ae
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Nico Mak Computing\WinZip]
"SymbolicLinkValue"=hex(6):5c,00,52,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\windows\system32\hasplms.exe
d:\program files\TeamViewer\TeamViewer_Service.exe
d:\program files\TeamViewer\TeamViewer.exe
d:\program files\TeamViewer\tv_w32.exe
d:\program files\Daemon tools\DAEMON Tools Pro\DTShellHlp.exe
c:\program files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
.
**************************************************************************
.
Celkový čas: 2015-05-24 00:14:56 - počítač byl restartován
ComboFix-quarantined-files.txt 2015-05-23 22:14
.
Před spuštěním: Volných bajtů: 89 885 270 016
Po spuštění: Volných bajtů: 93 234 847 744
.
- - End Of File - - 160257293152F4151435995E3AE0D5F2
A36C5E4F47E84449FF07ED3517B43A31
Přispějete na provoz fóra?