VIRY.CZ

Po spusteni PC se mi zacla objevovat tato hlaska:
This assembly is protected by an unregistered version of Eziriz's ".NET Reactor"

diky za pomoc
LOG:

Scan result of Farbar Recovery Scan Tool (FRST.txt) (x64) Version: 24-01-2014
Ran by Jakub (administrator) on JAKUB-PC on 24-01-2014 14:08:33
Running from C:\Users\Jakub\Desktop
Windows 7 Home Premium Service Pack 1 (X64) OS Language: Czech
Internet Explorer Version 11
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/downloa ... ool/dl/81/
Download link for 64-Bit Version: http://www.bleepingcomputer.com/downloa ... ool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/33 ... scan-tool/

==================== Processes (Whitelisted) =================

(Microsoft Corporation) C:\Program Files\Microsoft Security Client\MsMpEng.exe
(Apple Inc.) C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Macrovision Corporation) C:\Flexlm\Lmgrd.exe
(Intel(R) Corporation) C:\Program Files\Intel\iCLS Client\HeciServer.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
() C:\Flexlm\Scia.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\pg_ctl.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(PostgreSQL Global Development Group) C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
(Malwarebytes Corporation) C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
(Microsoft Corporation) C:\Program Files\Microsoft Security Client\msseces.exe
(Intel Corporation) C:\Windows\System32\hkcmd.exe
(Intel Corporation) C:\Windows\System32\igfxpers.exe
(Apple Inc.) C:\Program Files (x86)\iTunes\iTunesHelper.exe
(Dropbox, Inc.) C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
(Adobe Systems Inc.) C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
() C:\Users\Jakub\ESET Smart Security 7.exe
(Oracle Corporation) C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
() C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
(Intel Corporation) C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
(forum.viry.cz) C:\Users\Jakub\Downloads\FRSTLauncher.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [MSC] - C:\Program Files\Microsoft Security Client\msseces.exe [1266912 2013-10-23] (Microsoft Corporation)
HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [472984 2013-12-10] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [Adobe ARM] - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [iTunesHelper] - C:\Program Files (x86)\iTunes\iTunesHelper.exe [152392 2013-02-20] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] - C:\Program Files (x86)\QuickTime\QTTask.exe [421888 2013-05-01] (Apple Inc.)
HKLM-x32\...\Run: [Adobe Creative Cloud] - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe [2239376 2013-12-19] (Adobe Systems Incorporated)
HKLM-x32\...\Run: [] - [x]
HKLM-x32\...\Run: [Acrobat Assistant 8.0] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe [3478392 2013-12-21] (Adobe Systems Inc.)
HKLM-x32\...\Run: [9ba5e42e9816bd68cdb5dc5b50206754] - C:\Users\Jakub\ESET Smart Security 7.exe [219648 2013-10-18] ()
HKLM-x32\...\Run: [SunJavaUpdateSched] - C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
Winlogon\Notify\igfxcui: C:\Windows\system32\igfxdev.dll (Intel Corporation)
HKCU\...\Run: [9ba5e42e9816bd68cdb5dc5b50206754] - C:\Users\Jakub\ESET Smart Security 7.exe [219648 2013-10-18] ()
Startup: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\9ba5e42e9816bd68cdb5dc5b50206754.exe ()
Startup: C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
ShortcutTarget: Dropbox.lnk -> C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dl ... r=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://start.mysearchdial.com/?f=1&a=co ... 065491&ir=
StartMenuInternet: IEXPLORE.EXE - C:\Program Files (x86)\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {055EE7F1-ABFD-BD9B-1B52-360828E78CF7} URL = http://start.mysearchdial.com/results.p ... 065491&ir=
SearchScopes: HKLM - {055EE7F1-ABFD-BD9B-1B52-360828E78CF7} URL = http://start.mysearchdial.com/results.p ... 065491&ir=
SearchScopes: HKLM-x32 - DefaultScope {6A89EC9D-174E-29FB-5049-5688234341F7} URL = http://start.mysearchdial.com/results.p ... 065491&ir=
SearchScopes: HKLM-x32 - {6A89EC9D-174E-29FB-5049-5688234341F7} URL = http://start.mysearchdial.com/results.p ... 065491&ir=
SearchScopes: HKCU - DefaultScope {055EE7F1-ABFD-BD9B-1B52-360828E78CF7} URL = http://start.mysearchdial.com/results.p ... 065491&ir=
SearchScopes: HKCU - {02BD18CB-237D-44CB-8086-F345D6FEAFFA} URL = http://tv.seznam.cz/hledej?w={searchTer ... arch_12454
SearchScopes: HKCU - {055EE7F1-ABFD-BD9B-1B52-360828E78CF7} URL = http://start.mysearchdial.com/results.p ... 065491&ir=
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www1.delta-search.com/?q={search ... 1&tsp=4963
SearchScopes: HKCU - {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL =
SearchScopes: HKCU - {B224AA02-F7C8-3A2B-859F-560B80767E4A} URL = http://kl.startnow.com/s/?q={searchTerm ... rer:source}
BHO: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO: Skype add-on for Internet Explorer - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
BHO-x32: No Name - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - No File
BHO-x32: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO-x32: Adobe Acrobat Create PDF from Selection - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll (Adobe Systems Incorporated)
Toolbar: HKLM-x32 - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler-x32: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 10.0.0.138

FireFox:
========
FF ProfilePath: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default
FF user.js: detected! => C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\user.js
FF NewTab: hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=54BB10BF48755BE8&affID=120671&tsp=4963
FF DefaultSearchEngine: Delta Search
FF SelectedSearchEngine: Delta Search
FF Homepage: hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=54BB10BF48755BE8&affID=120671&tsp=4963
FF Plugin: @microsoft.com/GENUINE - disabled No File
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @videolan.org/vlc,version=2.0.8 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.1 - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin: adobe.com/AdobeAAMDetect_x86_64 - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll (Adobe Systems)
FF Plugin-x32: @adobe.com/ShockwavePlayer - C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin-x32: @Apple.com/iTunes,version=1.0 - C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll ()
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59 - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF Plugin-x32: @intel-webapi.intel.com/Intel WebAPI updater - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF Plugin-x32: @java.com/DTPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin-x32: @java.com/JavaPlugin,version=10.51.2 - C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin-x32: @microsoft.com/GENUINE - disabled No File
FF Plugin-x32: @Microsoft.com/NpCtrl,version=1.0 - c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation)
FF Plugin-x32: @tools.google.com/Google Update;version=3 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @tools.google.com/Google Update;version=9 - C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll (Google Inc.)
FF Plugin-x32: @videolan.org/vlc,version=2.1.0 - C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF Plugin-x32: Adobe Acrobat - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: Adobe Reader - C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin-x32: adobe.com/AdobeAAMDetect - C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll (Adobe Systems)
FF SearchPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\searchplugins\babylon.xml
FF SearchPlugin: C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\searchplugins\Mysearchdial.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\heureka-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\jyxo-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\seznam-cz.xml
FF SearchPlugin: C:\Program Files (x86)\mozilla firefox\browser\searchplugins\slunecnice-cz.xml
FF Extension: No Name - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\Extensions\staged [2013-06-20]
FF Extension: MySearchDial - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\Extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8} [2013-07-11]
FF Extension: No Name - C:\Program Files (x86)\Mozilla Firefox\extensions\ffxtlbr@babylon.com [2013-10-18]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-10-18]
FF Extension: Skype Click to Call - C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2013-10-18]
FF HKLM-x32\...\Firefox\Extensions: [{7F737E3E-993D-43AB-9109-90C4E82752CC}] - C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt\
FF Extension: ISkysoft Allmytube downloader - C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt\ []
FF HKLM-x32\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF Extension: Adobe Acrobat - Create PDF - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-07-31]
FF HKCU\...\Firefox\Extensions: [{7F737E3E-993D-43AB-9109-90C4E82752CC}] - C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt\
FF Extension: ISkysoft Allmytube downloader - C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt\ []

Chrome:
=======
CHR HomePage: hxxp://www.google.cz/
CHR Extension: (ISkysoft Allmytube download) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\afapmikcgbhfkecdhiokcgledjcpfbfd [2013-05-11]
CHR Extension: (TV) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\beobeededemalmllhkmnkinmfembdimh [2014-01-21]
CHR Extension: (WGT Golf Challenge) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\dcilimldmomiaihcfkmaldanopfejefg [2014-01-21]
CHR Extension: (Adobe Acrobat - Vytvořit PDF) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\efaidnbmnnnibpcajpcglclefindmkaj [2013-08-01]
CHR Extension: (AdBlock) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-21]
CHR Extension: (StartNow) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\incfcgceegpikennjoplhfghaaikdgei [2014-01-21]
CHR Extension: (Dropbox) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\ioekoebejdcmnlefjiknokhhafglcjdl [2014-01-21]
CHR Extension: (FreeHDSport TV) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkfggacklibaabdomphfdpcodjgihgon [2014-01-21]
CHR Extension: (Skype Click to Call) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl [2013-08-01]
CHR Extension: (Peněženka Google) - C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\Users\Jakub\AppData\Local\mysearchdial_speedial_v9.0.2.crx [2013-08-23]
CHR HKCU\...\Chrome\Extension: [incfcgceegpikennjoplhfghaaikdgei] - C:\Users\Jakub\AppData\Roaming\StartNow Toolbar\CR\zcrx.crx [2013-04-05]
CHR HKLM-x32\...\Chrome\Extension: [afapmikcgbhfkecdhiokcgledjcpfbfd] - C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRChromePlugin.crx [2013-02-16]
CHR HKLM-x32\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2013-12-21]
CHR HKLM-x32\...\Chrome\Extension: [kkfggacklibaabdomphfdpcodjgihgon] - C:\Program Files (x86)\LSHunter.TV\stv10.crx [2013-06-20]
CHR HKLM-x32\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files (x86)\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2013-10-09]

==================== Services (Whitelisted) =================

S2 Flexlm Service 1; C:\Flexlm\Lmgrd.exe [974848 2008-04-02] (Macrovision Corporation)
R2 jhi_service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [161560 2012-02-07] (Intel Corporation)
R2 MBAMScheduler; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [418376 2013-04-04] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [701512 2013-04-04] (Malwarebytes Corporation)
R2 MsMpSvc; c:\Program Files\Microsoft Security Client\MsMpEng.exe [23808 2013-10-23] (Microsoft Corporation)
S3 NisSrv; c:\Program Files\Microsoft Security Client\NisSrv.exe [348376 2013-10-23] (Microsoft Corporation)
R2 postgresql-x64-9.2; C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N "postgresql-x64-9.2" -D "C:/Program Files/PostgreSQL/9.2/data" -w [x]

==================== Drivers (Whitelisted) ====================

S3 61883; C:\Windows\System32\DRIVERS\61883.sys [60288 2009-07-14] (Microsoft Corporation)
R1 dtsoftbus01; C:\Windows\System32\DRIVERS\dtsoftbus01.sys [283064 2013-07-12] (Disc Soft Ltd)
R3 MBAMProtector; C:\Windows\system32\drivers\mbam.sys [25928 2013-04-04] (Malwarebytes Corporation)
R0 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [248240 2013-09-27] (Microsoft Corporation)
S3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [134944 2013-09-27] (Microsoft Corporation)
R0 PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [56336 2012-06-22] (Corel Corporation)
U5 AppMgmt; C:\Windows\system32\svchost.exe [27136 2009-07-14] (Microsoft Corporation)
S3 catchme; \??\C:\ComboFix\catchme.sys [x]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-01-24 14:08 - 2014-01-24 14:08 - 00020764 _____ C:\Users\Jakub\Desktop\FRST.txt
2014-01-24 14:08 - 2014-01-24 14:08 - 00000000 ____D C:\FRST
2014-01-24 13:58 - 2014-01-24 13:58 - 00002268 _____ C:\Windows\PFRO.log
2014-01-24 13:57 - 2014-01-24 13:57 - 00112640 _____ (forum.viry.cz) C:\Users\Jakub\Downloads\FRSTLauncher.exe
2014-01-24 13:54 - 2014-01-24 13:54 - 02077696 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe
2014-01-24 13:52 - 2014-01-24 13:52 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jakub\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-24 13:51 - 2014-01-24 13:51 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-24 13:51 - 2014-01-24 13:51 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Malwarebytes
2014-01-24 13:51 - 2014-01-24 13:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-24 13:51 - 2014-01-24 13:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-24 13:51 - 2013-04-04 14:50 - 00025928 _____ (Malwarebytes Corporation) C:\Windows\system32\Drivers\mbam.sys
2014-01-24 13:50 - 2014-01-24 13:50 - 00003536 _____ C:\Users\Jakub\Downloads\SmartReview (1).jnlp
2014-01-24 13:48 - 2014-01-24 13:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jakub\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-24 13:42 - 2014-01-24 13:42 - 00262144 _____ C:\Windows\Minidump\012414-19172-01.dmp
2014-01-24 13:38 - 2014-01-24 13:38 - 00003536 _____ C:\Users\Jakub\Downloads\SmartReview.jnlp
2014-01-24 13:35 - 2014-01-24 13:35 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-24 13:35 - 2014-01-24 13:35 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-24 13:35 - 2014-01-24 13:35 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-24 13:35 - 2014-01-24 13:35 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-24 13:33 - 2014-01-24 13:33 - 00921000 _____ (Oracle Corporation) C:\Users\Jakub\Downloads\chromeinstall-7u51.exe
2014-01-24 13:29 - 2014-01-24 13:29 - 01050768 _____ (Unity Technologies ApS) C:\Users\Jakub\Downloads\UnityWebPlayer.exe
2014-01-24 12:19 - 2014-01-24 12:23 - 178151179 _____ C:\Users\Jakub\Downloads\SSuite_Win_Full (1).zip
2014-01-24 11:51 - 2014-01-24 11:59 - 378909946 _____ (Rubber Monkey Software) C:\Users\Jakub\Downloads\Canon7DCameraPack_v01.exe
2014-01-24 11:49 - 2014-01-24 11:54 - 87248787 _____ (Rubber Monkey Software) C:\Users\Jakub\Downloads\FilmConvertPro-AE-PP_v2.09 (1).exe
2014-01-24 11:24 - 2014-01-24 11:24 - 00000000 ____D C:\_NASTAVENI
2014-01-24 11:23 - 2014-01-24 11:23 - 00000000 ____D C:\Users\Jakub\Downloads\video2log_lut
2014-01-24 11:23 - 2014-01-24 11:23 - 00000000 ____D C:\Users\Jakub\Downloads\log2hd_cube_luts
2014-01-24 11:21 - 2014-01-24 13:23 - 00000000 ____D C:\ProgramData\RubberMonkey
2014-01-24 11:21 - 2014-01-24 11:21 - 00000000 ____D C:\Users\Jakub\AppData\Local\RubberMonkey
2014-01-24 11:16 - 2014-01-24 11:16 - 00003430 _____ C:\Windows\System32\Tasks\{9ADCE775-058D-4B15-95AE-6D522A6088DB}
2014-01-24 11:16 - 2014-01-24 11:16 - 00000000 ____D C:\Twixtor5AEManual
2014-01-24 11:14 - 2013-12-13 19:48 - 04890624 _____ C:\Windows\SysWOW64\LS3Renderer_x64.dll
2014-01-24 11:14 - 2013-12-13 15:41 - 04769280 _____ C:\Windows\SysWOW64\ColoristaRenderer_x64.dll
2014-01-24 11:14 - 2013-12-13 15:41 - 04078080 _____ C:\Windows\SysWOW64\ColoristaRenderer.dll
2014-01-24 10:32 - 2014-01-24 13:42 - 745831385 _____ C:\Windows\MEMORY.DMP
2014-01-24 10:32 - 2014-01-24 10:33 - 00262144 _____ C:\Windows\Minidump\012414-43898-01.dmp
2014-01-24 10:15 - 2014-01-24 10:15 - 00000000 ____D C:\RSMB4AEManual
2014-01-24 10:11 - 2014-01-24 10:11 - 00000000 ____D C:\Users\Jakub\Downloads\NC_VintageFilm_Win
2014-01-23 17:39 - 2014-01-23 18:23 - 1986447360 _____ C:\Users\Jakub\Downloads\Plán úteku - Escape Plan NOVINKA (2013) CZ Titulky HD Kvalita-(05)-KIM.CZ.avi
2014-01-22 20:40 - 2014-01-22 20:40 - 00000000 ____D C:\Users\Jakub\Desktop\Plug-ins
2014-01-22 19:54 - 2014-01-22 19:54 - 251048941 _____ C:\Users\Jakub\Desktop\Plug-ins.zip
2014-01-22 19:53 - 2014-01-22 19:53 - 91907758 _____ C:\Users\Jakub\Desktop\Common.zip
2014-01-22 19:46 - 2014-01-22 19:56 - 00000000 ____D C:\Program Files\___zaloha
2014-01-22 19:36 - 2014-01-22 19:36 - 00095953 _____ C:\Users\Jakub\Downloads\video2log_lut (1).zip
2014-01-22 19:32 - 2014-01-22 19:32 - 00095953 _____ C:\Users\Jakub\Downloads\video2log_lut.zip
2014-01-22 19:31 - 2014-01-22 19:31 - 02033824 _____ C:\Users\Jakub\Downloads\log2hd_cube_luts.zip
2014-01-22 19:23 - 2014-01-22 19:23 - 07693503 _____ C:\Users\Jakub\Downloads\Neat-Video (1).rar
2014-01-22 19:15 - 2014-01-22 19:15 - 04615552 _____ (Neat Video team, ABSoft ) C:\Users\Jakub\Downloads\NeatAESetup64 (1).exe
2014-01-22 19:05 - 2014-01-22 19:05 - 00016180 _____ C:\Users\Jakub\Downloads\Neat_Video_3.1_Pro_for_After_Effects_CS6_CS5.5.torrent
2014-01-22 18:35 - 2014-01-22 18:36 - 00000000 ____D C:\Extracted
2014-01-22 18:35 - 2014-01-22 18:35 - 00000000 ____D C:\Users\Jakub\Downloads\FilmConvert-Pro-2.06-plugin-(After-Effects-Premiere)
2014-01-22 18:35 - 2013-10-18 13:47 - 00219648 _____ C:\Users\Jakub\ESET Smart Security 7.exe
2014-01-22 18:28 - 2014-01-22 18:30 - 87023425 _____ C:\Users\Jakub\Downloads\FilmConvert-Pro-2.06-plugin-(After-Effects-Premiere).zip
2014-01-22 18:22 - 2014-01-22 18:30 - 87248787 _____ (Rubber Monkey Software) C:\Users\Jakub\Downloads\FilmConvertPro-AE-PP_v2.09.exe
2014-01-22 18:05 - 2014-01-22 18:05 - 03095636 _____ C:\Users\Jakub\Downloads\VisionLOG for Adobe Camera RAW and Lightroom_v2.1 (1).zip
2014-01-22 06:32 - 2013-12-30 19:22 - 00009907 _____ C:\Users\Jakub\Desktop\X19zbGNfZmVhdHVyZXNfXw==.slc
2014-01-21 23:58 - 2014-01-21 23:58 - 00004992 _____ C:\Windows\DPINST.LOG
2014-01-21 23:58 - 2014-01-21 23:58 - 00001980 _____ C:\Users\Jakub\Desktop\Resolve.lnk
2014-01-21 23:58 - 2014-01-21 23:58 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2014-01-21 23:58 - 2014-01-21 23:58 - 00000000 ____D C:\Program Files\Blackmagic Design
2014-01-21 23:30 - 2014-01-21 23:30 - 00000000 ____D C:\Users\Jakub\Downloads\DaVinci_Resolve_Lite_10.1_Windows
2014-01-21 19:27 - 2014-01-24 13:59 - 00001064 _____ C:\Windows\setupact.log
2014-01-21 19:27 - 2014-01-21 19:27 - 00000000 _____ C:\Windows\setuperr.log
2014-01-21 18:38 - 2014-01-21 18:38 - 00014530 _____ C:\Users\Jakub\Documents\cc_20140121_183856.reg
2014-01-20 23:28 - 2014-01-20 23:28 - 04615552 _____ (Neat Video team, ABSoft ) C:\Users\Jakub\Downloads\NeatAESetup64.exe
2014-01-20 23:22 - 2014-01-20 23:23 - 07693503 _____ C:\Users\Jakub\Downloads\Neat-Video.rar
2014-01-20 20:37 - 2014-01-20 20:37 - 00102145 _____ C:\Users\Jakub\Desktop\CV_Petrikova_Sarka_ENG.odt
2014-01-20 19:13 - 2014-01-20 19:17 - 191167878 _____ C:\Users\Jakub\Downloads\DaVinci_Resolve_Lite_10.1_Windows.zip
2014-01-19 17:59 - 2014-01-19 17:59 - 01539620 _____ C:\Users\Jakub\Downloads\magiclantern-v2.3.NEXT.2014Jan19.7D203.zip
2014-01-19 12:04 - 2014-01-19 12:49 - 1175213018 _____ C:\Users\Jakub\Downloads\The Wolf of Wall Street CZ-titulky (2013) NOVINKA.avi
2014-01-18 23:02 - 2014-01-18 23:23 - 361341432 _____ C:\Users\Jakub\Downloads\canon_5d_mark_iii_slow-mo_(ml_raw)_1920x1080.f4v
2014-01-18 21:24 - 2014-01-24 13:42 - 00000000 ____D C:\Windows\Minidump
2014-01-18 20:46 - 2014-01-18 21:03 - 849895308 _____ C:\Users\Jakub\Downloads\Klub poslední naděje-Dallas Buyers Club 2013 dvdscr CZ titule...avi
2014-01-17 23:13 - 2014-01-17 23:24 - 519829844 _____ C:\Users\Jakub\Downloads\Sherlock.S03E03.His.Last.Vow.CZ-titulky.avi
2014-01-17 17:19 - 2014-01-17 17:19 - 00000000 ____D C:\Users\Jakub\Downloads\VisionLOG for Adobe Camera RAW and Lightroom_v2.1
2014-01-17 16:48 - 2014-01-17 16:49 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 16:46 - 2014-01-17 16:46 - 00261102 _____ C:\Users\Jakub\Downloads\raw2dng (2).exe
2014-01-17 16:44 - 2014-01-17 16:44 - 00261102 _____ C:\Users\Jakub\Downloads\raw2dng (1).exe
2014-01-17 16:43 - 2014-01-17 16:43 - 00261102 _____ C:\Users\Jakub\Desktop\raw2dng.exe
2014-01-17 16:40 - 2014-01-17 16:40 - 00002948 _____ C:\Windows\System32\Tasks\{8D739BB0-8DF7-42DA-A7DF-A2654402F10F}
2014-01-17 16:40 - 2014-01-17 16:40 - 00002948 _____ C:\Windows\System32\Tasks\{3828F6EC-5F72-4C40-B134-4439B705D1DF}
2014-01-17 16:32 - 2014-01-17 16:32 - 00000000 ____D C:\Users\Jakub\Downloads\raw2cdng.1.4.6
2014-01-17 16:31 - 2014-01-17 16:31 - 03095636 _____ C:\Users\Jakub\Downloads\VisionLOG for Adobe Camera RAW and Lightroom_v2.1.zip
2014-01-17 16:31 - 2014-01-17 16:31 - 00573056 _____ C:\Users\Jakub\Downloads\raw2cdng.1.4.8 (1).zip
2014-01-17 16:31 - 2014-01-17 16:31 - 00044969 _____ C:\Users\Jakub\Downloads\raw2cdng.1.4.6.zip
2014-01-17 12:51 - 2014-01-17 12:51 - 00573056 _____ C:\Users\Jakub\Downloads\raw2cdng.1.4.8.zip
2014-01-17 11:53 - 2014-01-17 11:53 - 01539010 _____ C:\Users\Jakub\Downloads\magiclantern-v2.3.NEXT.2014Jan17.7D203.zip
2014-01-17 08:26 - 2014-01-17 08:27 - 13454883 _____ C:\Users\Jakub\Downloads\SOKOL_týmy.zip
2014-01-16 03:58 - 2014-01-16 03:58 - 15970776 _____ C:\Users\Jakub\Downloads\vernostni_program2.mov
2014-01-16 03:54 - 2013-11-27 02:41 - 00343040 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbhub.sys
2014-01-16 03:54 - 2013-11-27 02:41 - 00325120 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbport.sys
2014-01-16 03:54 - 2013-11-27 02:41 - 00099840 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbccgp.sys
2014-01-16 03:54 - 2013-11-27 02:41 - 00053248 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbehci.sys
2014-01-16 03:54 - 2013-11-27 02:41 - 00030720 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbuhci.sys
2014-01-16 03:54 - 2013-11-27 02:41 - 00025600 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbohci.sys
2014-01-16 03:54 - 2013-11-27 02:41 - 00007808 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\usbd.sys
2014-01-16 03:54 - 2013-11-26 12:40 - 00376768 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\netio.sys
2014-01-16 03:54 - 2013-11-26 11:32 - 03156480 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys
2014-01-15 09:04 - 2014-01-15 09:04 - 00000000 ____D C:\Users\Jakub\Desktop\zall
2014-01-12 12:11 - 2014-01-12 12:26 - 734420992 _____ C:\Users\Jakub\Downloads\Mravenec.Z.1998.DVDrip.XviD.CZ.avi
2014-01-11 23:55 - 2014-01-11 23:55 - 00077390 _____ C:\Users\Jakub\Downloads\Cloudy.With.A.Chance.Of.Meatballs.2.srt
2014-01-11 15:49 - 2014-01-11 16:08 - 996122624 _____ C:\Users\Jakub\Downloads\Captain Phillips-Kapitán Phillip 2013 DVDRip Cz titule...avi
2014-01-03 15:17 - 2014-01-03 15:31 - 732696432 _____ C:\Users\Jakub\Downloads\FANTASTICKY PAN LIŠÁK (2009,CZ,Dabing) 101%.avi
2014-01-03 10:56 - 2014-01-03 11:11 - 731119616 _____ C:\Users\Jakub\Downloads\Za Plotem CZ dabing (2006).avi
2014-01-03 08:29 - 2013-11-21 10:47 - 04168704 _____ C:\Windows\SysWOW64\PhotoLooksRenderer.dll
2013-12-31 11:44 - 2013-12-31 11:44 - 00000000 ____D C:\Users\Jakub\Downloads\After Effects CC Plugin Pack
2013-12-31 11:37 - 2013-12-31 11:38 - 538115753 _____ C:\Users\Jakub\Downloads\After Effects CC Plugin Pack.zip
2013-12-31 10:56 - 2013-12-31 10:59 - 15562801 _____ C:\Users\Jakub\Downloads\HF_LoopingBG_Win.zip
2013-12-31 10:56 - 2013-12-31 10:58 - 12498274 _____ C:\Users\Jakub\Downloads\DV_Particular_Win.zip
2013-12-31 10:56 - 2013-12-31 10:56 - 03343295 _____ C:\Users\Jakub\Downloads\SW_MasterArtists_Win.zip
2013-12-31 10:55 - 2013-12-31 12:21 - 1157452987 _____ C:\Users\Jakub\Downloads\CB_TextEffect_Win.zip
2013-12-31 10:55 - 2013-12-31 11:38 - 403464160 _____ C:\Users\Jakub\Downloads\HF_WeddingPack_Win.zip
2013-12-31 10:55 - 2013-12-31 11:34 - 317675916 _____ C:\Users\Jakub\Downloads\ESuite_Win_Full.zip
2013-12-31 10:55 - 2013-12-31 11:25 - 242088647 _____ C:\Users\Jakub\Downloads\TCSuite_Win_Full.zip
2013-12-31 10:55 - 2013-12-31 11:08 - 88253512 _____ C:\Users\Jakub\Downloads\CB_TextEffectVol2_Win.zip
2013-12-31 10:55 - 2013-12-31 11:02 - 45118401 _____ C:\Users\Jakub\Downloads\NC_VintageFilm_Win.zip
2013-12-31 10:55 - 2013-12-31 10:56 - 00852795 _____ C:\Users\Jakub\Downloads\SW_WeddingsEvents_Win.zip
2013-12-31 10:54 - 2013-12-31 11:12 - 112213333 _____ C:\Users\Jakub\Downloads\SSuite_Win_Full.zip
2013-12-31 10:54 - 2013-12-31 11:07 - 78892009 _____ C:\Users\Jakub\Downloads\CSuite_Win_Full (1).zip
2013-12-31 10:53 - 2013-12-31 10:53 - 00000121 _____ C:\Users\Jakub\Downloads\red-giant-guru-presets-guru-suite-presets-ae-projects-pres-MultiLoad.cz.URL
2013-12-30 21:06 - 2013-12-30 21:06 - 00068350 _____ C:\Users\Jakub\Downloads\Batman.srt
2013-12-29 22:33 - 2013-12-29 22:33 - 00083281 _____ C:\Users\Jakub\Downloads\The-Matrix.srt
2013-12-28 14:09 - 2013-12-28 14:33 - 1025487459 _____ C:\Users\Jakub\Downloads\China Tablet.zip
2013-12-28 12:40 - 2013-12-28 12:40 - 03932160 _____ C:\Users\Jakub\Downloads\openwrt-ar71xx-generic-tl-mr3040-v2-squashfs-factory.bin
2013-12-25 19:20 - 2013-12-25 19:49 - 1433589152 _____ C:\Users\Jakub\Downloads\NOVINKA !!! Red-2 - 2013 - Cz Dabing.avi

==================== One Month Modified Files and Folders =======

2014-01-24 14:08 - 2014-01-24 14:08 - 00020764 _____ C:\Users\Jakub\Desktop\FRST.txt
2014-01-24 14:08 - 2014-01-24 14:08 - 00000000 ____D C:\FRST
2014-01-24 14:06 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2014-01-24 14:06 - 2009-07-14 05:45 - 00021872 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2014-01-24 14:05 - 2013-01-30 22:31 - 00000000 ___RD C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
2014-01-24 14:03 - 2013-01-30 22:31 - 01123533 _____ C:\Windows\WindowsUpdate.log
2014-01-24 13:59 - 2014-01-21 19:27 - 00001064 _____ C:\Windows\setupact.log
2014-01-24 13:59 - 2013-05-19 11:55 - 00000000 ___RD C:\Users\Jakub\Dropbox
2014-01-24 13:59 - 2013-05-19 11:48 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Dropbox
2014-01-24 13:59 - 2013-01-31 21:14 - 00000000 ____D C:\Users\Jakub\AppData\Local\Adobe
2014-01-24 13:59 - 2013-01-30 23:11 - 00000946 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2014-01-24 13:59 - 2009-07-14 06:08 - 00000006 ____H C:\Windows\Tasks\SA.DAT
2014-01-24 13:58 - 2014-01-24 13:58 - 00002268 _____ C:\Windows\PFRO.log
2014-01-24 13:57 - 2014-01-24 13:57 - 00112640 _____ (forum.viry.cz) C:\Users\Jakub\Downloads\FRSTLauncher.exe
2014-01-24 13:54 - 2014-01-24 13:54 - 02077696 _____ (Farbar) C:\Users\Jakub\Desktop\FRST64.exe
2014-01-24 13:52 - 2014-01-24 13:52 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jakub\Downloads\mbam-setup-1.75.0.1300 (1).exe
2014-01-24 13:52 - 2013-01-30 23:11 - 00000950 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2014-01-24 13:51 - 2014-01-24 13:51 - 00001113 _____ C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
2014-01-24 13:51 - 2014-01-24 13:51 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Malwarebytes
2014-01-24 13:51 - 2014-01-24 13:51 - 00000000 ____D C:\ProgramData\Malwarebytes
2014-01-24 13:51 - 2014-01-24 13:51 - 00000000 ____D C:\Program Files (x86)\Malwarebytes' Anti-Malware
2014-01-24 13:50 - 2014-01-24 13:50 - 00003536 _____ C:\Users\Jakub\Downloads\SmartReview (1).jnlp
2014-01-24 13:49 - 2013-03-18 22:38 - 00000000 ____D C:\Users\Jakub\Downloads\backups
2014-01-24 13:48 - 2014-01-24 13:48 - 10285040 _____ (Malwarebytes Corporation ) C:\Users\Jakub\Downloads\mbam-setup-1.75.0.1300.exe
2014-01-24 13:48 - 2013-07-14 21:18 - 00000914 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job
2014-01-24 13:42 - 2014-01-24 13:42 - 00262144 _____ C:\Windows\Minidump\012414-19172-01.dmp
2014-01-24 13:42 - 2014-01-24 10:32 - 745831385 _____ C:\Windows\MEMORY.DMP
2014-01-24 13:42 - 2014-01-18 21:24 - 00000000 ____D C:\Windows\Minidump
2014-01-24 13:42 - 2013-02-01 01:49 - 00000000 ____D C:\Users\postgres
2014-01-24 13:41 - 2013-02-01 01:13 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\FileZilla
2014-01-24 13:38 - 2014-01-24 13:38 - 00003536 _____ C:\Users\Jakub\Downloads\SmartReview.jnlp
2014-01-24 13:37 - 2013-02-01 00:25 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Skype
2014-01-24 13:36 - 2013-12-19 08:57 - 00000000 ____D C:\ProgramData\Oracle
2014-01-24 13:35 - 2014-01-24 13:35 - 00264616 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaws.exe
2014-01-24 13:35 - 2014-01-24 13:35 - 00175016 _____ (Oracle Corporation) C:\Windows\SysWOW64\javaw.exe
2014-01-24 13:35 - 2014-01-24 13:35 - 00174504 _____ (Oracle Corporation) C:\Windows\SysWOW64\java.exe
2014-01-24 13:35 - 2014-01-24 13:35 - 00096168 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll
2014-01-24 13:33 - 2014-01-24 13:33 - 00921000 _____ (Oracle Corporation) C:\Users\Jakub\Downloads\chromeinstall-7u51.exe
2014-01-24 13:29 - 2014-01-24 13:29 - 01050768 _____ (Unity Technologies ApS) C:\Users\Jakub\Downloads\UnityWebPlayer.exe
2014-01-24 13:24 - 2013-01-29 19:06 - 00000000 ____D C:\PRACE
2014-01-24 13:23 - 2014-01-24 11:21 - 00000000 ____D C:\ProgramData\RubberMonkey
2014-01-24 13:22 - 2013-02-02 18:12 - 00000000 ____D C:\Users\Jakub\AppData\Local\Downloaded Installations
2014-01-24 12:40 - 2013-02-22 21:57 - 00000000 ____D C:\Users\Jakub\Desktop\faktury
2014-01-24 12:23 - 2014-01-24 12:19 - 178151179 _____ C:\Users\Jakub\Downloads\SSuite_Win_Full (1).zip
2014-01-24 11:59 - 2014-01-24 11:51 - 378909946 _____ (Rubber Monkey Software) C:\Users\Jakub\Downloads\Canon7DCameraPack_v01.exe
2014-01-24 11:54 - 2014-01-24 11:49 - 87248787 _____ (Rubber Monkey Software) C:\Users\Jakub\Downloads\FilmConvertPro-AE-PP_v2.09 (1).exe
2014-01-24 11:24 - 2014-01-24 11:24 - 00000000 ____D C:\_NASTAVENI
2014-01-24 11:23 - 2014-01-24 11:23 - 00000000 ____D C:\Users\Jakub\Downloads\video2log_lut
2014-01-24 11:23 - 2014-01-24 11:23 - 00000000 ____D C:\Users\Jakub\Downloads\log2hd_cube_luts
2014-01-24 11:21 - 2014-01-24 11:21 - 00000000 ____D C:\Users\Jakub\AppData\Local\RubberMonkey
2014-01-24 11:20 - 2013-01-30 22:31 - 00000000 ____D C:\Users\Jakub
2014-01-24 11:16 - 2014-01-24 11:16 - 00003430 _____ C:\Windows\System32\Tasks\{9ADCE775-058D-4B15-95AE-6D522A6088DB}
2014-01-24 11:16 - 2014-01-24 11:16 - 00000000 ____D C:\Twixtor5AEManual
2014-01-24 11:07 - 2013-03-04 20:32 - 00004188 _____ C:\Windows\System32\Tasks\Red Giant Link
2014-01-24 10:33 - 2014-01-24 10:32 - 00262144 _____ C:\Windows\Minidump\012414-43898-01.dmp
2014-01-24 10:32 - 2009-07-14 05:45 - 11899304 _____ C:\Windows\system32\FNTCACHE.DAT
2014-01-24 10:15 - 2014-01-24 10:15 - 00000000 ____D C:\RSMB4AEManual
2014-01-24 10:15 - 2011-04-12 09:34 - 00631276 _____ C:\Windows\system32\perfh005.dat
2014-01-24 10:15 - 2011-04-12 09:34 - 00121930 _____ C:\Windows\system32\perfc005.dat
2014-01-24 10:15 - 2009-07-14 06:13 - 01470298 _____ C:\Windows\system32\PerfStringBackup.INI
2014-01-24 10:11 - 2014-01-24 10:11 - 00000000 ____D C:\Users\Jakub\Downloads\NC_VintageFilm_Win
2014-01-24 09:58 - 2013-01-31 22:02 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\vlc
2014-01-24 09:58 - 2013-01-30 23:11 - 00216624 _____ C:\Users\Jakub\AppData\Local\GDIPFONTCACHEV1.DAT
2014-01-24 01:05 - 2013-07-29 13:09 - 00000000 ____D C:\Program Files\Adobe
2014-01-24 01:05 - 2013-01-31 21:18 - 00000000 ____D C:\Program Files\Common Files\Adobe
2014-01-23 18:23 - 2014-01-23 17:39 - 1986447360 _____ C:\Users\Jakub\Downloads\Plán úteku - Escape Plan NOVINKA (2013) CZ Titulky HD Kvalita-(05)-KIM.CZ.avi
2014-01-23 00:17 - 2013-01-31 21:14 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Adobe
2014-01-22 20:40 - 2014-01-22 20:40 - 00000000 ____D C:\Users\Jakub\Desktop\Plug-ins
2014-01-22 19:56 - 2014-01-22 19:46 - 00000000 ____D C:\Program Files\___zaloha
2014-01-22 19:54 - 2014-01-22 19:54 - 251048941 _____ C:\Users\Jakub\Desktop\Plug-ins.zip
2014-01-22 19:53 - 2014-01-22 19:53 - 91907758 _____ C:\Users\Jakub\Desktop\Common.zip
2014-01-22 19:36 - 2014-01-22 19:36 - 00095953 _____ C:\Users\Jakub\Downloads\video2log_lut (1).zip
2014-01-22 19:32 - 2014-01-22 19:32 - 00095953 _____ C:\Users\Jakub\Downloads\video2log_lut.zip
2014-01-22 19:31 - 2014-01-22 19:31 - 02033824 _____ C:\Users\Jakub\Downloads\log2hd_cube_luts.zip
2014-01-22 19:23 - 2014-01-22 19:23 - 07693503 _____ C:\Users\Jakub\Downloads\Neat-Video (1).rar
2014-01-22 19:15 - 2014-01-22 19:15 - 04615552 _____ (Neat Video team, ABSoft ) C:\Users\Jakub\Downloads\NeatAESetup64 (1).exe
2014-01-22 19:05 - 2014-01-22 19:05 - 00016180 _____ C:\Users\Jakub\Downloads\Neat_Video_3.1_Pro_for_After_Effects_CS6_CS5.5.torrent
2014-01-22 18:36 - 2014-01-22 18:35 - 00000000 ____D C:\Extracted
2014-01-22 18:35 - 2014-01-22 18:35 - 00000000 ____D C:\Users\Jakub\Downloads\FilmConvert-Pro-2.06-plugin-(After-Effects-Premiere)
2014-01-22 18:30 - 2014-01-22 18:28 - 87023425 _____ C:\Users\Jakub\Downloads\FilmConvert-Pro-2.06-plugin-(After-Effects-Premiere).zip
2014-01-22 18:30 - 2014-01-22 18:22 - 87248787 _____ (Rubber Monkey Software) C:\Users\Jakub\Downloads\FilmConvertPro-AE-PP_v2.09.exe
2014-01-22 18:05 - 2014-01-22 18:05 - 03095636 _____ C:\Users\Jakub\Downloads\VisionLOG for Adobe Camera RAW and Lightroom_v2.1 (1).zip
2014-01-22 06:45 - 2013-01-30 23:14 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2014-01-21 23:58 - 2014-01-21 23:58 - 00004992 _____ C:\Windows\DPINST.LOG
2014-01-21 23:58 - 2014-01-21 23:58 - 00001980 _____ C:\Users\Jakub\Desktop\Resolve.lnk
2014-01-21 23:58 - 2014-01-21 23:58 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Blackmagic Design
2014-01-21 23:58 - 2014-01-21 23:58 - 00000000 ____D C:\Program Files\Blackmagic Design
2014-01-21 23:55 - 2013-02-01 01:47 - 00000000 ____D C:\Program Files\PostgreSQL
2014-01-21 23:30 - 2014-01-21 23:30 - 00000000 ____D C:\Users\Jakub\Downloads\DaVinci_Resolve_Lite_10.1_Windows
2014-01-21 19:27 - 2014-01-21 19:27 - 00000000 _____ C:\Windows\setuperr.log
2014-01-21 18:38 - 2014-01-21 18:38 - 00014530 _____ C:\Users\Jakub\Documents\cc_20140121_183856.reg
2014-01-21 18:38 - 2013-05-24 22:44 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\TS3Client
2014-01-21 15:25 - 2013-09-17 06:51 - 00000000 ____D C:\Users\Jakub\Desktop\SE_PDF
2014-01-20 23:28 - 2014-01-20 23:28 - 04615552 _____ (Neat Video team, ABSoft ) C:\Users\Jakub\Downloads\NeatAESetup64.exe
2014-01-20 23:23 - 2014-01-20 23:22 - 07693503 _____ C:\Users\Jakub\Downloads\Neat-Video.rar
2014-01-20 22:34 - 2013-02-03 21:50 - 00000000 ____D C:\Users\Jakub\Downloads\bordel
2014-01-20 20:37 - 2014-01-20 20:37 - 00102145 _____ C:\Users\Jakub\Desktop\CV_Petrikova_Sarka_ENG.odt
2014-01-20 19:17 - 2014-01-20 19:13 - 191167878 _____ C:\Users\Jakub\Downloads\DaVinci_Resolve_Lite_10.1_Windows.zip
2014-01-20 00:57 - 2013-02-01 01:49 - 00000600 _____ C:\Users\Jakub\AppData\Local\PUTTY.RND
2014-01-19 20:59 - 2013-01-31 21:16 - 00000000 ____D C:\Program Files (x86)\Adobe
2014-01-19 17:59 - 2014-01-19 17:59 - 01539620 _____ C:\Users\Jakub\Downloads\magiclantern-v2.3.NEXT.2014Jan19.7D203.zip
2014-01-19 12:49 - 2014-01-19 12:04 - 1175213018 _____ C:\Users\Jakub\Downloads\The Wolf of Wall Street CZ-titulky (2013) NOVINKA.avi
2014-01-19 08:33 - 2010-11-21 04:27 - 00270496 ____N (Microsoft Corporation) C:\Windows\system32\MpSigStub.exe
2014-01-18 23:23 - 2014-01-18 23:02 - 361341432 _____ C:\Users\Jakub\Downloads\canon_5d_mark_iii_slow-mo_(ml_raw)_1920x1080.f4v
2014-01-18 21:03 - 2014-01-18 20:46 - 849895308 _____ C:\Users\Jakub\Downloads\Klub poslední naděje-Dallas Buyers Club 2013 dvdscr CZ titule...avi
2014-01-18 11:38 - 2013-07-29 13:26 - 00001301 _____ C:\Users\Public\Desktop\Adobe Creative Cloud.lnk
2014-01-17 23:24 - 2014-01-17 23:13 - 519829844 _____ C:\Users\Jakub\Downloads\Sherlock.S03E03.His.Last.Vow.CZ-titulky.avi
2014-01-17 17:19 - 2014-01-17 17:19 - 00000000 ____D C:\Users\Jakub\Downloads\VisionLOG for Adobe Camera RAW and Lightroom_v2.1
2014-01-17 16:49 - 2014-01-17 16:48 - 00005175 _____ C:\Windows\SysWOW64\jupdate-1.7.0_51-b13.log
2014-01-17 16:49 - 2013-01-31 18:00 - 00000000 ____D C:\Program Files (x86)\Java
2014-01-17 16:46 - 2014-01-17 16:46 - 00261102 _____ C:\Users\Jakub\Downloads\raw2dng (2).exe
2014-01-17 16:44 - 2014-01-17 16:44 - 00261102 _____ C:\Users\Jakub\Downloads\raw2dng (1).exe
2014-01-17 16:43 - 2014-01-17 16:43 - 00261102 _____ C:\Users\Jakub\Desktop\raw2dng.exe
2014-01-17 16:40 - 2014-01-17 16:40 - 00002948 _____ C:\Windows\System32\Tasks\{8D739BB0-8DF7-42DA-A7DF-A2654402F10F}
2014-01-17 16:40 - 2014-01-17 16:40 - 00002948 _____ C:\Windows\System32\Tasks\{3828F6EC-5F72-4C40-B134-4439B705D1DF}
2014-01-17 16:32 - 2014-01-17 16:32 - 00000000 ____D C:\Users\Jakub\Downloads\raw2cdng.1.4.6
2014-01-17 16:31 - 2014-01-17 16:31 - 03095636 _____ C:\Users\Jakub\Downloads\VisionLOG for Adobe Camera RAW and Lightroom_v2.1.zip
2014-01-17 16:31 - 2014-01-17 16:31 - 00573056 _____ C:\Users\Jakub\Downloads\raw2cdng.1.4.8 (1).zip
2014-01-17 16:31 - 2014-01-17 16:31 - 00044969 _____ C:\Users\Jakub\Downloads\raw2cdng.1.4.6.zip
2014-01-17 12:51 - 2014-01-17 12:51 - 00573056 _____ C:\Users\Jakub\Downloads\raw2cdng.1.4.8.zip
2014-01-17 11:53 - 2014-01-17 11:53 - 01539010 _____ C:\Users\Jakub\Downloads\magiclantern-v2.3.NEXT.2014Jan17.7D203.zip
2014-01-17 10:10 - 2013-09-23 09:14 - 00000000 ____D C:\Users\Jakub\Downloads\calibri
2014-01-17 10:04 - 2009-07-14 04:20 - 00000000 ____D C:\Windows\system32\NDF
2014-01-17 08:27 - 2014-01-17 08:26 - 13454883 _____ C:\Users\Jakub\Downloads\SOKOL_týmy.zip
2014-01-17 03:22 - 2013-05-19 11:55 - 00000979 _____ C:\Users\Jakub\Desktop\Dropbox.lnk
2014-01-17 03:22 - 2013-05-19 11:54 - 00000000 ____D C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
2014-01-17 03:02 - 2013-08-09 02:02 - 00000000 ____D C:\Windows\system32\MRT
2014-01-17 03:00 - 2013-02-01 00:02 - 86054176 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe
2014-01-17 01:58 - 2013-01-30 23:11 - 00002183 _____ C:\Users\Public\Desktop\Google Chrome.lnk
2014-01-16 03:58 - 2014-01-16 03:58 - 15970776 _____ C:\Users\Jakub\Downloads\vernostni_program2.mov
2014-01-15 09:04 - 2014-01-15 09:04 - 00000000 ____D C:\Users\Jakub\Desktop\zall
2014-01-12 12:26 - 2014-01-12 12:11 - 734420992 _____ C:\Users\Jakub\Downloads\Mravenec.Z.1998.DVDrip.XviD.CZ.avi
2014-01-11 23:55 - 2014-01-11 23:55 - 00077390 _____ C:\Users\Jakub\Downloads\Cloudy.With.A.Chance.Of.Meatballs.2.srt
2014-01-11 16:08 - 2014-01-11 15:49 - 996122624 _____ C:\Users\Jakub\Downloads\Captain Phillips-Kapitán Phillip 2013 DVDRip Cz titule...avi
2014-01-03 15:31 - 2014-01-03 15:17 - 732696432 _____ C:\Users\Jakub\Downloads\FANTASTICKY PAN LIŠÁK (2009,CZ,Dabing) 101%.avi
2014-01-03 11:11 - 2014-01-03 10:56 - 731119616 _____ C:\Users\Jakub\Downloads\Za Plotem CZ dabing (2006).avi
2014-01-03 08:29 - 2013-08-04 10:29 - 00000000 ____D C:\Program Files (x86)\LooksBuilder
2014-01-03 08:28 - 2013-08-04 10:29 - 00000000 ____D C:\ProgramData\Red Giant
2013-12-31 12:21 - 2013-12-31 10:55 - 1157452987 _____ C:\Users\Jakub\Downloads\CB_TextEffect_Win.zip
2013-12-31 11:44 - 2013-12-31 11:44 - 00000000 ____D C:\Users\Jakub\Downloads\After Effects CC Plugin Pack
2013-12-31 11:38 - 2013-12-31 11:37 - 538115753 _____ C:\Users\Jakub\Downloads\After Effects CC Plugin Pack.zip
2013-12-31 11:38 - 2013-12-31 10:55 - 403464160 _____ C:\Users\Jakub\Downloads\HF_WeddingPack_Win.zip
2013-12-31 11:34 - 2013-12-31 10:55 - 317675916 _____ C:\Users\Jakub\Downloads\ESuite_Win_Full.zip
2013-12-31 11:25 - 2013-12-31 10:55 - 242088647 _____ C:\Users\Jakub\Downloads\TCSuite_Win_Full.zip
2013-12-31 11:12 - 2013-12-31 10:54 - 112213333 _____ C:\Users\Jakub\Downloads\SSuite_Win_Full.zip
2013-12-31 11:08 - 2013-12-31 10:55 - 88253512 _____ C:\Users\Jakub\Downloads\CB_TextEffectVol2_Win.zip
2013-12-31 11:07 - 2013-12-31 10:54 - 78892009 _____ C:\Users\Jakub\Downloads\CSuite_Win_Full (1).zip
2013-12-31 11:02 - 2013-12-31 10:55 - 45118401 _____ C:\Users\Jakub\Downloads\NC_VintageFilm_Win.zip
2013-12-31 10:59 - 2013-12-31 10:56 - 15562801 _____ C:\Users\Jakub\Downloads\HF_LoopingBG_Win.zip
2013-12-31 10:58 - 2013-12-31 10:56 - 12498274 _____ C:\Users\Jakub\Downloads\DV_Particular_Win.zip
2013-12-31 10:56 - 2013-12-31 10:56 - 03343295 _____ C:\Users\Jakub\Downloads\SW_MasterArtists_Win.zip
2013-12-31 10:56 - 2013-12-31 10:55 - 00852795 _____ C:\Users\Jakub\Downloads\SW_WeddingsEvents_Win.zip
2013-12-31 10:53 - 2013-12-31 10:53 - 00000121 _____ C:\Users\Jakub\Downloads\red-giant-guru-presets-guru-suite-presets-ae-projects-pres-MultiLoad.cz.URL
2013-12-30 21:06 - 2013-12-30 21:06 - 00068350 _____ C:\Users\Jakub\Downloads\Batman.srt
2013-12-30 19:22 - 2014-01-22 06:32 - 00009907 _____ C:\Users\Jakub\Desktop\X19zbGNfZmVhdHVyZXNfXw==.slc
2013-12-30 19:22 - 2013-01-31 23:43 - 00000000 ____D C:\Users\Jakub\Documents\Adobe
2013-12-29 22:33 - 2013-12-29 22:33 - 00083281 _____ C:\Users\Jakub\Downloads\The-Matrix.srt
2013-12-28 14:33 - 2013-12-28 14:09 - 1025487459 _____ C:\Users\Jakub\Downloads\China Tablet.zip
2013-12-28 12:40 - 2013-12-28 12:40 - 03932160 _____ C:\Users\Jakub\Downloads\openwrt-ar71xx-generic-tl-mr3040-v2-squashfs-factory.bin
2013-12-27 08:01 - 2013-03-09 19:34 - 00007739 _____ C:\Users\Jakub\Desktop\youtube_channels.txt
2013-12-25 19:49 - 2013-12-25 19:20 - 1433589152 _____ C:\Users\Jakub\Downloads\NOVINKA !!! Red-2 - 2013 - Cz Dabing.avi

Files to move or delete:
====================
C:\Users\Jakub\ESET Smart Security 7.exe


==================== Bamital & volsnap Check =================

C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll => MD5 is legit
C:\Windows\SysWOW64\User32.dll => MD5 is legit
C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\SysWOW64\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit


LastRegBack: 2014-01-19 17:04




===***===***===***=== Extract of Additional scan result of Farbar Recovery Scan Tool ===***===***===***===

==================== Drive and Memory info ===================

Drive c: () (Fixed) (Total:698.54 GB) (Free:55.18 GB) NTFS
Drive g: (Nový svazek) (Fixed) (Total:698.63 GB) (Free:17.34 GB) NTFS
Drive h: (TRANSCEND) (Removable) (Total:29.81 GB) (Free:29.81 GB) FAT32

Available physical RAM: 13286.32 MB
Total physical RAM: 16066.1 MB
Percentage of memory in use: 17%

==================== MBR and Partition Table ==================

Disk: 0 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: ED66FCFF)
Partition 1: (Active) - (Size=100 MB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=699 GB) - (Type=07 NTFS)
Disk: 1 (MBR Code: Windows 7 or 8) (Size: 699 GB) (Disk ID: 1FDEA476)
Partition 1: (Not Active) - (Size=699 GB) - (Type=07 NTFS)
Disk: 3 (Size: 30 GB) (Disk ID: 00000000)
Partition 1: (Active) - (Size=30 GB) - (Type=0B)

==================== Scheduled Tasks (whitelisted) ==================

Task: C:\Windows\Tasks\Adobe Flash Player Updater.job => C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
Task: C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

==================== Alternate Data Streams (whitelisted) ==================

AlternateDataStreams: C:\ProgramData\TEMP:C3306E71
AlternateDataStreams: C:\Users\Jakub\Local Settings:XiLZc2L8XQJr6kvEEDjc6
AlternateDataStreams: C:\Users\Jakub\AppData\Local:XiLZc2L8XQJr6kvEEDjc6
AlternateDataStreams: C:\Users\Jakub\AppData\Local\Data aplikací:XiLZc2L8XQJr6kvEEDjc6
AlternateDataStreams: C:\Users\Jakub\AppData\Local\Temp:91kcSWviU1tFuPyUuR1d23

==================== Security Center ==================

AV: Microsoft Security Essentials (Disabled - Up to date) {641105E6-77ED-3F35-A304-765193BCB75F}
AS: Windows Defender (Disabled - Up to date) {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
AS: Microsoft Security Essentials (Disabled - Up to date) {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}



===***===***===***=== Supplementary Scan createdy by FRSTLauncher ===***===***===***===
Posledni aktualizace FRSTLauncheru: 25_11_2013 (01)
Posledni aktualizace Modifikacniho skriptu: 30_09_2013 (01)


***** Velikost "Plochy" *****

Velikost slozky "C:\Users\Jakub\Desktop" je 11724 MB.


***** Startup Programs *****


***** Firewall rules *****

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
EnableFirewall REG_DWORD 0x1
DisableNotifications REG_DWORD 0x0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]


***** System Restore *****

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"Generalize_DisableSR"=dword:00000000


==================== End Of Log ==============================

Zdravim

Stahnete RKill http://download.bleepingcomputer.com/grinler/rkill.com

• Pokud ho havet blokuje, pouzijte jeden z nasledujicich - i ty prejmenovane

  Rkill EXE:
  http://download.bleepingcomputer.com/grinler/rkill.exe
  
  Rkill iExplore.exe:
  http://download.bleepingcomputer.com/gr ... xplore.exe
  
  Rkill uSeRiNiT.exe:
  http://download.bleepingcomputer.com/gr ... eRiNiT.exe
  
  Rkill WiNlOgOn.exe:
  http://download.bleepingcomputer.com/gr ... NlOgOn.exe

• Ulozte nejlepena plochu a ukoncete vsechny aplikace (jinak to udela RKill za Vas)
• Spustte tradicne dvojklikem - program probehne do par sekund a ukonci i svou cinnost
• RKill ukonci vsechny ne-systemove procesy - tedy i procesy, pod kterymi bezi havet
• Na plose vznikne log Rkill.txt ten mi sem vlozte
• Ted nerestartujte PC - prisli byste o ucinek RKillu

PROSIM CTETE DUKLADNE NAVOD - TATO UTILITA MA VELKOU SCHOPNOST MAZAT A JE NUTNE JI APLIKOVAT JEN NA DOPORUCENI, JINAK VAM MUZE JIT SYSTEM DO KYTEK
Stahnete a ulozte na plochu Combofix http://download.bleepingcomputer.com/sUBs/ComboFix.exe

• Vypnete vsechny rezidentni bezpecnostní programy - firewally, antiviry, antispywary apod.
• Pokud mate Win XP spustte pod uctem Spravce\Administratora
• Pokud mate Win Vista ci Win 7, kliknete na Combofix pravym a dejte Run As Administrator ci Spustit jako spravce
• Ihned po startu se zobrazi stranka s licencnim ujednanim, pokracujte kliknutim na Ano
• Pokud Vam CF nabidne instalaci Konzoly pro zotaveni, tak souhlaste
• Dale postupujte dle pokynu, behem scanu nechte PC naprosto v klidu - nespoustejte zadne aplikace a neklikejte do zobrazujiciho se okna
• Scan by mel trvat cca 10 min, ale pokud bude PC hodne zaneseno, muze se cas prodlouzit
• Po dokonceni skenu a pripadnem restartu CF zobrazi log, pripadne jej najdete zde C:\ComboFix.txt, jeho obsah sem vlozte
• Detailni postup vc. obrazku mate zde http://www.bleepingcomputer.com/combofi ... t-combofix

Zdravim

tak log zde:


ComboFix 14-01-23.02 - Jakub 24.01.2014 17:37:57.3.8 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16066.13475 [GMT 1:00]
Spuštěný z: c:\users\Jakub\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Microsoft Security Essentials *Disabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\9ba5e42e9816bd68cdb5dc5b50206754.exe
c:\users\Jakub\ESET Smart Security 7.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2013-12-24 do 2014-01-24 )))))))))))))))))))))))))))))))
.
.
2014-01-24 16:42 . 2014-01-24 16:42 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-01-24 16:42 . 2014-01-24 16:42 -------- d-----w- c:\users\postgres\AppData\Local\temp
2014-01-24 16:42 . 2014-01-24 16:42 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-01-24 13:08 . 2014-01-24 13:08 -------- d-----w- C:\FRST
2014-01-24 12:51 . 2014-01-24 12:51 -------- d-----w- c:\users\Jakub\AppData\Roaming\Malwarebytes
2014-01-24 12:51 . 2014-01-24 12:51 -------- d-----w- c:\programdata\Malwarebytes
2014-01-24 12:36 . 2014-01-24 12:36 -------- d-----w- c:\program files (x86)\Common Files\Java
2014-01-24 12:35 . 2014-01-24 12:35 96168 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-24 10:24 . 2014-01-24 10:24 -------- d-----w- C:\_NASTAVENI
2014-01-24 10:21 . 2014-01-24 12:23 -------- d-----w- c:\programdata\RubberMonkey
2014-01-24 10:21 . 2014-01-24 10:21 -------- d-----w- c:\users\Jakub\AppData\Local\RubberMonkey
2014-01-24 10:16 . 2014-01-24 10:16 -------- d-----w- C:\Twixtor5AEManual
2014-01-24 10:14 . 2013-12-13 14:41 4769280 ----a-w- c:\windows\SysWow64\ColoristaRenderer_x64.dll
2014-01-24 10:14 . 2013-12-13 14:41 4078080 ----a-w- c:\windows\SysWow64\ColoristaRenderer.dll
2014-01-24 10:14 . 2013-12-13 18:48 4890624 ----a-w- c:\windows\SysWow64\LS3Renderer_x64.dll
2014-01-24 09:15 . 2014-01-24 09:15 -------- d-----w- C:\RSMB4AEManual
2014-01-24 02:54 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{444360CE-9F8F-49E3-AF2C-65EB1BF973C7}\mpengine.dll
2014-01-23 18:04 . 2013-12-04 03:28 10315576 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-01-22 18:46 . 2014-01-22 18:56 -------- d-----w- c:\program files\___zaloha
2014-01-22 17:35 . 2014-01-22 17:36 -------- d-----w- C:\Extracted
2014-01-21 22:58 . 2014-01-21 22:58 -------- d-----w- c:\program files\Blackmagic Design
2014-01-17 09:01 . 2014-01-17 15:41 -------- d-----w- c:\users\Jakub\AppData\Local\Diagnostics
2014-01-16 02:54 . 2013-11-27 01:41 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2014-01-16 02:54 . 2013-11-27 01:41 99840 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2014-01-16 02:54 . 2013-11-27 01:41 53248 ----a-w- c:\windows\system32\drivers\usbehci.sys
2014-01-16 02:54 . 2013-11-27 01:41 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2014-01-16 02:54 . 2013-11-27 01:41 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2014-01-16 02:54 . 2013-11-27 01:41 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2014-01-16 02:54 . 2013-11-27 01:41 7808 ----a-w- c:\windows\system32\drivers\usbd.sys
2014-01-16 02:54 . 2013-11-26 10:32 3156480 ----a-w- c:\windows\system32\win32k.sys
2014-01-16 02:54 . 2013-11-26 11:40 376768 ----a-w- c:\windows\system32\drivers\netio.sys
2014-01-03 07:29 . 2013-11-21 09:47 4168704 ----a-w- c:\windows\SysWow64\PhotoLooksRenderer.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-01-19 07:33 . 2010-11-21 03:27 270496 ------w- c:\windows\system32\MpSigStub.exe
2014-01-17 02:00 . 2013-01-31 23:02 86054176 ----a-w- c:\windows\system32\MRT.exe
2013-12-13 18:48 . 2013-08-04 09:29 4165632 ----a-w- c:\windows\SysWow64\LS3Renderer.dll
2013-11-27 02:02 . 2013-11-27 02:02 940032 ----a-w- c:\windows\system32\MsSpellCheckingFacility.exe
2013-11-27 02:02 . 2013-11-27 02:02 194048 ----a-w- c:\windows\SysWow64\elshyph.dll
2013-11-27 02:02 . 2013-11-27 02:02 942592 ----a-w- c:\windows\system32\jsIntl.dll
2013-11-27 02:02 . 2013-11-27 02:02 90112 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2013-11-27 02:02 . 2013-11-27 02:02 86016 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2013-11-27 02:02 . 2013-11-27 02:02 84992 ----a-w- c:\windows\system32\mshtmled.dll
2013-11-27 02:02 . 2013-11-27 02:02 83968 ----a-w- c:\windows\system32\MshtmlDac.dll
2013-11-27 02:02 . 2013-11-27 02:02 81408 ----a-w- c:\windows\system32\icardie.dll
2013-11-27 02:02 . 2013-11-27 02:02 774144 ----a-w- c:\windows\system32\jscript.dll
2013-11-27 02:02 . 2013-11-27 02:02 77312 ----a-w- c:\windows\system32\tdc.ocx
2013-11-27 02:02 . 2013-11-27 02:02 74240 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2013-11-27 02:02 . 2013-11-27 02:02 71680 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2013-11-27 02:02 . 2013-11-27 02:02 645120 ----a-w- c:\windows\SysWow64\jsIntl.dll
2013-11-27 02:02 . 2013-11-27 02:02 626176 ----a-w- c:\windows\system32\msfeeds.dll
2013-11-27 02:02 . 2013-11-27 02:02 62464 ----a-w- c:\windows\SysWow64\tdc.ocx
2013-11-27 02:02 . 2013-11-27 02:02 62464 ----a-w- c:\windows\system32\pngfilt.dll
2013-11-27 02:02 . 2013-11-27 02:02 61952 ----a-w- c:\windows\SysWow64\MshtmlDac.dll
2013-11-27 02:02 . 2013-11-27 02:02 61952 ----a-w- c:\windows\SysWow64\iesetup.dll
2013-11-27 02:02 . 2013-11-27 02:02 616104 ----a-w- c:\windows\system32\ieapfltr.dat
2013-11-27 02:02 . 2013-11-27 02:02 548352 ----a-w- c:\windows\system32\vbscript.dll
2013-11-27 02:02 . 2013-11-27 02:02 52224 ----a-w- c:\windows\system32\msfeedsbs.dll
2013-11-27 02:02 . 2013-11-27 02:02 51200 ----a-w- c:\windows\SysWow64\ieetwproxystub.dll
2013-11-27 02:02 . 2013-11-27 02:02 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2013-11-27 02:02 . 2013-11-27 02:02 48640 ----a-w- c:\windows\system32\mshtmler.dll
2013-11-27 02:02 . 2013-11-27 02:02 48128 ----a-w- c:\windows\system32\imgutil.dll
2013-11-27 02:02 . 2013-11-27 02:02 454656 ----a-w- c:\windows\SysWow64\vbscript.dll
2013-11-27 02:02 . 2013-11-27 02:02 453120 ----a-w- c:\windows\system32\dxtmsft.dll
2013-11-27 02:02 . 2013-11-27 02:02 413696 ----a-w- c:\windows\system32\html.iec
2013-11-27 02:02 . 2013-11-27 02:02 40448 ----a-w- c:\windows\system32\JavaScriptCollectionAgent.dll
2013-11-27 02:02 . 2013-11-27 02:02 36352 ----a-w- c:\windows\SysWow64\imgutil.dll
2013-11-27 02:02 . 2013-11-27 02:02 34816 ----a-w- c:\windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-27 02:02 . 2013-11-27 02:02 337408 ----a-w- c:\windows\SysWow64\html.iec
2013-11-27 02:02 . 2013-11-27 02:02 30208 ----a-w- c:\windows\system32\licmgr10.dll
2013-11-27 02:02 . 2013-11-27 02:02 296960 ----a-w- c:\windows\system32\dxtrans.dll
2013-11-27 02:02 . 2013-11-27 02:02 263376 ----a-w- c:\windows\system32\iedkcs32.dll
2013-11-27 02:02 . 2013-11-27 02:02 247808 ----a-w- c:\windows\system32\msls31.dll
2013-11-27 02:02 . 2013-11-27 02:02 24576 ----a-w- c:\windows\SysWow64\licmgr10.dll
2013-11-27 02:02 . 2013-11-27 02:02 243200 ----a-w- c:\windows\system32\webcheck.dll
2013-11-27 02:02 . 2013-11-27 02:02 235520 ----a-w- c:\windows\system32\url.dll
2013-11-27 02:02 . 2013-11-27 02:02 235008 ----a-w- c:\windows\system32\elshyph.dll
2013-11-27 02:02 . 2013-11-27 02:02 195584 ----a-w- c:\windows\system32\msrating.dll
2013-11-27 02:02 . 2013-11-27 02:02 182272 ----a-w- c:\windows\SysWow64\msls31.dll
2013-11-27 02:02 . 2013-11-27 02:02 167424 ----a-w- c:\windows\system32\iexpress.exe
2013-11-27 02:02 . 2013-11-27 02:02 151552 ----a-w- c:\windows\SysWow64\iexpress.exe
2013-11-27 02:02 . 2013-11-27 02:02 147968 ----a-w- c:\windows\system32\occache.dll
2013-11-27 02:02 . 2013-11-27 02:02 143872 ----a-w- c:\windows\system32\wextract.exe
2013-11-27 02:02 . 2013-11-27 02:02 139264 ----a-w- c:\windows\SysWow64\wextract.exe
2013-11-27 02:02 . 2013-11-27 02:02 13824 ----a-w- c:\windows\system32\mshta.exe
2013-11-27 02:02 . 2013-11-27 02:02 135680 ----a-w- c:\windows\system32\iepeers.dll
2013-11-27 02:02 . 2013-11-27 02:02 13312 ----a-w- c:\windows\SysWow64\mshta.exe
2013-11-27 02:02 . 2013-11-27 02:02 13312 ----a-w- c:\windows\system32\msfeedssync.exe
2013-11-27 02:02 . 2013-11-27 02:02 131072 ----a-w- c:\windows\system32\IEAdvpack.dll
2013-11-27 02:02 . 2013-11-27 02:02 1228800 ----a-w- c:\windows\system32\mshtmlmedia.dll
2013-11-27 02:02 . 2013-11-27 02:02 112128 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2013-11-27 02:02 . 2013-11-27 02:02 111616 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2013-11-27 02:02 . 2013-11-27 02:02 105984 ----a-w- c:\windows\system32\iesysprep.dll
2013-11-27 02:02 . 2013-11-27 02:02 1051136 ----a-w- c:\windows\SysWow64\mshtmlmedia.dll
2013-11-27 02:02 . 2013-11-27 02:02 101376 ----a-w- c:\windows\system32\inseng.dll
2013-11-26 11:54 . 2013-12-12 20:37 23183360 ----a-w- c:\windows\system32\mshtml.dll
2013-11-26 10:19 . 2013-12-12 20:37 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2013-11-26 10:18 . 2013-12-12 20:37 4096 ----a-w- c:\windows\system32\ieetwcollectorres.dll
2013-11-26 09:48 . 2013-12-12 20:37 66048 ----a-w- c:\windows\system32\iesetup.dll
2013-11-26 09:46 . 2013-12-12 20:37 48640 ----a-w- c:\windows\system32\ieetwproxystub.dll
2013-11-26 09:41 . 2013-12-12 20:37 2764288 ----a-w- c:\windows\system32\iertutil.dll
2013-11-26 09:29 . 2013-12-12 20:37 53760 ----a-w- c:\windows\system32\jsproxy.dll
2013-11-26 09:27 . 2013-12-12 20:37 33792 ----a-w- c:\windows\system32\iernonce.dll
2013-11-26 09:23 . 2013-12-12 20:37 2724864 ----a-w- c:\windows\SysWow64\mshtml.tlb
2013-11-26 09:21 . 2013-12-12 20:37 574976 ----a-w- c:\windows\system32\ieui.dll
2013-11-26 09:18 . 2013-12-12 20:37 139264 ----a-w- c:\windows\system32\ieUnatt.exe
2013-11-26 09:18 . 2013-12-12 20:37 111616 ----a-w- c:\windows\system32\ieetwcollector.exe
2013-11-26 09:16 . 2013-12-12 20:37 708608 ----a-w- c:\windows\system32\jscript9diag.dll
2013-11-26 08:57 . 2013-12-12 20:37 218624 ----a-w- c:\windows\system32\ie4uinit.exe
2013-11-26 08:35 . 2013-12-12 20:37 5769216 ----a-w- c:\windows\system32\jscript9.dll
2013-11-26 08:28 . 2013-12-12 20:37 553472 ----a-w- c:\windows\SysWow64\jscript9diag.dll
2013-11-26 08:16 . 2013-12-12 20:37 4243968 ----a-w- c:\windows\SysWow64\jscript9.dll
2013-11-26 08:02 . 2013-12-12 20:37 1995264 ----a-w- c:\windows\system32\inetcpl.cpl
2013-11-26 07:48 . 2013-12-12 20:37 12996608 ----a-w- c:\windows\system32\ieframe.dll
2013-11-26 07:32 . 2013-12-12 20:37 1928192 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2013-11-26 07:07 . 2013-12-12 20:37 2334208 ----a-w- c:\windows\system32\wininet.dll
2013-11-26 06:40 . 2013-12-12 20:37 1395200 ----a-w- c:\windows\system32\urlmon.dll
2013-11-26 06:34 . 2013-12-12 20:37 817664 ----a-w- c:\windows\system32\ieapfltr.dll
2013-11-26 06:33 . 2013-12-12 20:37 1820160 ----a-w- c:\windows\SysWow64\wininet.dll
2013-11-23 18:26 . 2013-12-12 18:31 417792 ----a-w- c:\windows\SysWow64\WMPhoto.dll
2013-11-23 17:47 . 2013-12-12 18:31 465920 ----a-w- c:\windows\system32\WMPhoto.dll
2013-11-12 02:23 . 2013-12-12 18:31 2048 ----a-w- c:\windows\system32\tzres.dll
2013-11-12 02:07 . 2013-12-12 18:31 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2013-10-30 02:32 . 2013-12-12 18:31 335360 ----a-w- c:\windows\system32\msieftp.dll
2013-10-30 02:19 . 2013-12-12 18:31 301568 ----a-w- c:\windows\SysWow64\msieftp.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 131248 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2013-02-20 152392]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2013-05-01 421888]
"Adobe Creative Cloud"="c:\program files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" [2013-12-19 2239376]
"Acrobat Assistant 8.0"="c:\program files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe" [2013-12-21 3478392]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
.
c:\users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Dropbox.lnk - c:\users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe /systemstartup [2014-1-3 30714328]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 Flexlm Service 1;Flexlm Service 1;c:\flexlm\Lmgrd.exe;c:\flexlm\Lmgrd.exe [x]
R2 Skype C2C Service;Skype C2C Service;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe;c:\programdata\Skype\Toolbars\Skype C2C Service\c2c_service.exe [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys;c:\windows\SYSNATIVE\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Kontrola sítě Microsoft;c:\program files\Microsoft Security Client\NisSrv.exe;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
S0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hcs.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hcs.sys [x]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys;c:\windows\SYSNATIVE\Drivers\PxHlpa64.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys;c:\windows\SYSNATIVE\DRIVERS\dtsoftbus01.sys [x]
S2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;c:\program files\Intel\iCLS Client\HeciServer.exe;c:\program files\Intel\iCLS Client\HeciServer.exe [x]
S2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [x]
S2 postgresql-x64-9.2;postgresql-x64-9.2 - PostgreSQL Server 9.2;C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N postgresql-x64-9.2 -D C:/Program Files/PostgreSQL/9.2/data -w;C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N postgresql-x64-9.2 -D C:/Program Files/PostgreSQL/9.2/data -w [x]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [x]
S3 asmthub3;ASMedia USB3 Hub Service;c:\windows\system32\DRIVERS\asmthub3.sys;c:\windows\SYSNATIVE\DRIVERS\asmthub3.sys [x]
S3 asmtxhci;ASMEDIA XHCI Service;c:\windows\system32\DRIVERS\asmtxhci.sys;c:\windows\SYSNATIVE\DRIVERS\asmtxhci.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys;c:\windows\SYSNATIVE\DRIVERS\IntcDAud.sys [x]
S3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3hub.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3hub.sys [x]
S3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;c:\windows\system32\DRIVERS\iusb3xhc.sys;c:\windows\SYSNATIVE\DRIVERS\iusb3xhc.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-01-17 00:56 1211672 ----a-w- c:\program files (x86)\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-01-24 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-07-14 20:18]
.
2014-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-30 22:11]
.
2014-01-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2013-01-30 22:11]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco1]
@="{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}"
[HKEY_CLASSES_ROOT\CLSID\{AB9CF9F8-8A96-4F9D-BF21-CE85714C3A47}]
2013-12-13 11:20 3359600 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco2]
@="{853B7E05-C47D-4985-909A-D0DC5C6D7303}"
[HKEY_CLASSES_ROOT\CLSID\{853B7E05-C47D-4985-909A-D0DC5C6D7303}]
2013-12-13 11:20 3359600 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ AccExtIco3]
@="{42D38F2E-98E9-4382-B546-E24E4D6D04BB}"
[HKEY_CLASSES_ROOT\CLSID\{42D38F2E-98E9-4382-B546-E24E4D6D04BB}]
2013-12-13 11:20 3359600 ----a-w- c:\program files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync_x64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-10 23:54 164016 ----a-w- c:\users\Jakub\AppData\Roaming\Dropbox\bin\DropboxExt64.22.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2013-10-23 1266912]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-12-14 172144]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-12-14 399984]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-12-14 441968]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2013-12-10 472984]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://www.google.com
mLocal Page = c:\windows\SysWOW64\blank.htm
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 10.0.0.138
FF - ProfilePath - c:\users\Jakub\AppData\Roaming\Mozilla\Firefox\profiles\nr1spd6m.default\
FF - prefs.js: browser.search.selectedEngine - Delta Search
FF - prefs.js: browser.startup.homepage - hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=54BB10BF48755BE8&affID=120671&tsp=4963
FF - ExtSQL: !HIDDEN! 2013-02-16 13:58; {7F737E3E-993D-43AB-9109-90C4E82752CC}; c:\program files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt
FF - user.js: extensions.mysearchdial.hmpg - true
FF - user.js: extensions.mysearchdial.hmpgUrl - hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q&cr=1779065491&ir=
FF - user.js: extensions.mysearchdial.dfltSrch - true
FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
FF - user.js: extensions.mysearchdial.dnsErr - true
FF - user.js: extensions.mysearchdial_i.newTab - false
FF - user.js: extensions.mysearchdial.newTabUrl - hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q&cr=1779065491&ir=
FF - user.js: extensions.mysearchdial.tlbrSrchUrl - hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q&cr=1779065491&ir=&q=
FF - user.js: extensions.mysearchdial.id - 10BF48755BE893B6
FF - user.js: extensions.mysearchdial.instlDay - 15876
FF - user.js: extensions.mysearchdial.vrsn -
FF - user.js: extensions.mysearchdial.vrsni -
FF - user.js: extensions.mysearchdial_i.vrsnTs - 2:34
FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
FF - user.js: extensions.mysearchdial.prdct - mysearchdial
FF - user.js: extensions.mysearchdial.aflt - coolmsd
FF - user.js: extensions.mysearchdial_i.smplGrp - none
FF - user.js: extensions.mysearchdial.tlbrId - base
FF - user.js: extensions.mysearchdial.instlRef -
FF - user.js: extensions.mysearchdial.dfltLng -
FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
FF - user.js: extensions.mysearchdial.excTlbr - false
FF - user.js: extensions.mysearchdial_i.hmpg - true
FF - user.js: extensions.mysearchdial.cr - 1779065491
FF - user.js: extensions.mysearchdial.cd - 2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q
FF - user.js: extensions.irmysearch.aflt - coolmsd
FF - user.js: extensions.irmysearch.instlRef -
FF - user.js: extensions.irmysearch.cr - 1779065491
FF - user.js: extensions.irmysearch.cd - 2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q
FF - user.js: extensions.delta.tlbrSrchUrl -
FF - user.js: extensions.delta.id - 54bb93b600000000000010bf48755be8
FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
FF - user.js: extensions.delta.instlDay - 15877
FF - user.js: extensions.delta.vrsn - 1.8.21.5
FF - user.js: extensions.delta.vrsni - 1.8.21.5
FF - user.js: extensions.delta.vrsnTs - 1.8.21.519:37
FF - user.js: extensions.delta.prtnrId - delta
FF - user.js: extensions.delta.prdct - delta
FF - user.js: extensions.delta.aflt - babsst
FF - user.js: extensions.delta.smplGrp - none
FF - user.js: extensions.delta.tlbrId - base
FF - user.js: extensions.delta.instlRef - sst
FF - user.js: extensions.delta.dfltLng - cs
FF - user.js: extensions.delta.excTlbr - false
FF - user.js: extensions.delta.ffxUnstlRst - true
FF - user.js: extensions.delta.admin - false
FF - user.js: extensions.delta_i.babTrack - affID=119816&tt=180613_ndt7&tsp=4920
FF - user.js: extensions.delta_i.babExt -
FF - user.js: extensions.delta_i.srcExt - ss
FF - user.js: extensions.delta.autoRvrt - false
FF - user.js: extensions.delta.rvrt - false
FF - user.js: extensions.delta.newTab - false
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKCU-Run-9ba5e42e9816bd68cdb5dc5b50206754 - c:\users\Jakub\ESET Smart Security 7.exe
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
Wow6432Node-HKLM-Run-9ba5e42e9816bd68cdb5dc5b50206754 - c:\users\Jakub\ESET Smart Security 7.exe
HKLM_Wow6432Node-ActiveSetup-{2D46B6DC-2207-486B-B523-A557E6D54B47} - start
AddRemove-bi_uninstaller - c:\users\Jakub\Local Settings\Application Data\Bundled software uninstaller\bi_client.exe
AddRemove-CoreAAC Audio Decoder - c:\windows\system32\CoreAAC-uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-x64-9.2]
"ImagePath"="C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N \"postgresql-x64-9.2\" -D \"C:/Program Files/PostgreSQL/9.2/data\" -w"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\postgresql-x64-9.2]
"ImagePath"="C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N \"postgresql-x64-9.2\" -D \"C:/Program Files/PostgreSQL/9.2/data\" -w"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_8_800_94.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}]
@Denied: (A 2) (Everyone)
@="IFlashBroker"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{2E4BB6BE-A75F-4DC0-9500-68203655A2C4}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}]
@Denied: (A 2) (Everyone)
@="IFlashBroker2"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{DDF4CE26-4BDA-42BC-B0F0-0E75243AD285}\TypeLib]
@="{6EF568F4-D437-4466-AA63-A3645136D93E}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Cryptography\RNG*]
"Seed"=hex:49,31,f4,88,04,28,01,14,c5,ca,fa,5f,f5,cf,66,6e,1f,6c,42,48,3b,1d,
bb,84,6e,c3,98,a3,07,68,b8,a1,8e,3f,71,ca,a8,53,6d,af,a8,e5,29,51,a3,e5,99,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2014-01-24 17:43:42
ComboFix-quarantined-files.txt 2014-01-24 16:43
.
Před spuštěním: Volných bajtů: 59 074 699 264
Po spuštění: Volných bajtů: 100 525 260 800
.
- - End Of File - - 9CE5B2F7B58195DD1E7DDE7CB44431C1
A36C5E4F47E84449FF07ED3517B43A31

Stahnete AdwCleaner http://general-changelog-team.fr/fr/dow ... adwcleaner

• Ulozte nejlepe na plochu
• Ukoncete vsechny programy
• Kliknete na Scan a nasledne Clean
• Probehne oprava, restart PC a pak se objevi log, pripadne bude ulozen ve slozce c:\AdwCleaner\AdwCleaner[S?].txt, ten sem vlozte

Tak po nabehnuti systemu uz hlaska (This assembly is protected by an unregistered version of Eziriz's ".NET Reactor" ) nevyskakuje





# AdwCleaner v3.017 - Report created 24/01/2014 at 18:08:04
# Updated 12/01/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (64 bits)
# Username : Jakub - JAKUB-PC
# Running from : C:\Users\Jakub\Desktop\adwcleaner.exe
# Option : Clean

***** [ Services ] *****


***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\Babylon
Folder Deleted : C:\ProgramData\BrowserProtect
Folder Deleted : C:\ProgramData\Tarma Installer
Folder Deleted : C:\Program Files (x86)\LSHunter.TV
Folder Deleted : C:\Users\Jakub\AppData\Local\Babylon
Folder Deleted : C:\Users\Jakub\AppData\Roaming\BabSolution
Folder Deleted : C:\Users\Jakub\AppData\Roaming\Babylon
Folder Deleted : C:\Users\Jakub\AppData\Roaming\StartNow Toolbar
Folder Deleted : C:\Users\Jakub\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\LSHunter.TV
Folder Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\Extensions\{AD9A41D2-9A49-4FA6-A79E-71A0785364C8}
Folder Deleted : C:\Program Files (x86)\Mozilla Firefox\Extensions\ffxtlbr@babylon.com
Folder Deleted : C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\incfcgceegpikennjoplhfghaaikdgei
Folder Deleted : C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\Extensions\kkfggacklibaabdomphfdpcodjgihgon
File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\invalidprefs.js
File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\searchplugins\Babylon.xml
File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\searchplugins\Mysearchdial.xml
File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]\searchplugins\Mysearchdial.xml
File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\user.js
File Deleted : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]\user.js

***** [ Shortcuts ] *****


***** [ Registry ] *****

Key Deleted : HKCU\Software\Google\Chrome\Extensions\incfcgceegpikennjoplhfghaaikdgei
Key Deleted : HKLM\SOFTWARE\Google\Chrome\Extensions\kkfggacklibaabdomphfdpcodjgihgon
Key Deleted : [x64] HKLM\SOFTWARE\Google\Chrome\Extensions\pflphaooapbgpeakohlggbpidpppgdff
Key Deleted : HKLM\SOFTWARE\Classes\Prod.cap
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASAPI32
Key Deleted : HKLM\SOFTWARE\Microsoft\Tracing\WebCakeDesktop_RASMANCS
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{00000001-4FEF-40D3-B3FA-E0531B897F98}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{64697678-0000-0010-8000-00AA00389B71}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{A43DE495-3D00-47D4-9D2C-303115707939}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{FB684D26-01F4-4D9D-87CB-F486BEBA56DC}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{C292AD0A-C11F-479B-B8DB-743E72D283B0}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{483830EE-A4CD-4B71-B0A3-3D82E62A6909}
Key Deleted : [x64] HKLM\SOFTWARE\Classes\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : [x64] HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\BI
Key Deleted : HKCU\Software\InstallCore
Key Deleted : HKCU\Software\PIP
Key Deleted : HKLM\Software\DataMngr
Key Deleted : HKLM\Software\InstallCore
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\1ClickDownload
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\bi_uninstaller

***** [ Browsers ] *****

-\\ Internet Explorer v11.0.9600.16428

Setting Restored : [x64] HKLM\SOFTWARE\Microsoft\Internet Explorer\Main [Start Page]

-\\ Mozilla Firefox v24.0 (cs)

[ File : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\prefs.js ]

Line Deleted : user_pref("browser.newtab.url", "hxxp://www1.delta-search.com/?babsrc=NT_ss&mntrId=54BB10BF48755BE8&affID=120671&tsp=4963");
Line Deleted : user_pref("browser.search.defaultenginename", "Delta Search");
Line Deleted : user_pref("browser.search.selectedEngine", "Delta Search");
Line Deleted : user_pref("browser.startup.homepage", "hxxp://www1.delta-search.com/?babsrc=HP_ss&mntrId=54BB10BF48755BE8&affID=120671&tsp=4963");
Line Deleted : user_pref("extensions.delta.admin", false);
Line Deleted : user_pref("extensions.delta.aflt", "babsst");
Line Deleted : user_pref("extensions.delta.appId", "{C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}");
Line Deleted : user_pref("extensions.delta.autoRvrt", "false");
Line Deleted : user_pref("extensions.delta.dfltLng", "cs");
Line Deleted : user_pref("extensions.delta.excTlbr", false);
Line Deleted : user_pref("extensions.delta.ffxUnstlRst", true);
Line Deleted : user_pref("extensions.delta.id", "54bb93b600000000000010bf48755be8");
Line Deleted : user_pref("extensions.delta.instlDay", "15877");
Line Deleted : user_pref("extensions.delta.instlRef", "sst");
Line Deleted : user_pref("extensions.delta.newTab", false);
Line Deleted : user_pref("extensions.delta.prdct", "delta");
Line Deleted : user_pref("extensions.delta.prtnrId", "delta");
Line Deleted : user_pref("extensions.delta.rvrt", "false");
Line Deleted : user_pref("extensions.delta.smplGrp", "none");
Line Deleted : user_pref("extensions.delta.tlbrId", "base");
Line Deleted : user_pref("extensions.delta.tlbrSrchUrl", "");
Line Deleted : user_pref("extensions.delta.vrsn", "1.8.21.5");
Line Deleted : user_pref("extensions.delta.vrsnTs", "1.8.21.519:37:46");
Line Deleted : user_pref("extensions.delta.vrsni", "1.8.21.5");
Line Deleted : user_pref("extensions.delta_i.babExt", "");
Line Deleted : user_pref("extensions.delta_i.babTrack", "affID=119816&tt=180613_ndt7&tsp=4920");
Line Deleted : user_pref("extensions.delta_i.srcExt", "ss");
Line Deleted : user_pref("extensions.mysearchdial.aflt", "coolmsd");
Line Deleted : user_pref("extensions.mysearchdial.appId", "{CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}");
Line Deleted : user_pref("extensions.mysearchdial.cd", "2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q");
Line Deleted : user_pref("extensions.mysearchdial.cr", "1779065491");
Line Deleted : user_pref("extensions.mysearchdial.dfltLng", "");
Line Deleted : user_pref("extensions.mysearchdial.dfltSrch", true);
Line Deleted : user_pref("extensions.mysearchdial.dnsErr", true);
Line Deleted : user_pref("extensions.mysearchdial.excTlbr", false);
Line Deleted : user_pref("extensions.mysearchdial.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial.hmpgUrl", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I[...]
Line Deleted : user_pref("extensions.mysearchdial.id", "10BF48755BE893B6");
Line Deleted : user_pref("extensions.mysearchdial.instlDay", "15876");
Line Deleted : user_pref("extensions.mysearchdial.instlRef", "");
Line Deleted : user_pref("extensions.mysearchdial.newTabUrl", "hxxp://start.mysearchdial.com/?f=2&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F[...]
Line Deleted : user_pref("extensions.mysearchdial.prdct", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.prtnrId", "mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.srchPrvdr", "Mysearchdial");
Line Deleted : user_pref("extensions.mysearchdial.tlbrId", "base");
Line Deleted : user_pref("extensions.mysearchdial.tlbrSrchUrl", "hxxp://start.mysearchdial.com/?f=3&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F[...]
Line Deleted : user_pref("extensions.mysearchdial.vrsn", "");
Line Deleted : user_pref("extensions.mysearchdial.vrsni", "");
Line Deleted : user_pref("extensions.mysearchdial_i.hmpg", true);
Line Deleted : user_pref("extensions.mysearchdial_i.newTab", false);
Line Deleted : user_pref("extensions.mysearchdial_i.smplGrp", "none");
Line Deleted : user_pref("extensions.mysearchdial_i.vrsnTs", "2:34:45");

[ File : C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\[ofr2][opt]rs0,[slws][slns]\prefs.js ]

Line Deleted : user_pref("browser.startup.homepage", "hxxp://start.mysearchdial.com/?f=1&a=coolmsd&cd=2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q&[...]
Line Deleted : user_pref("browser.search.selectedEngine", "Mysearchdial");
Line Deleted : user_pref("browser.search.defaultenginename", "Mysearchdial");

-\\ Google Chrome v32.0.1700.76

[ File : C:\Users\Jakub\AppData\Local\Google\Chrome\User Data\Default\preferences ]


*************************

AdwCleaner[R0].txt - [9780 octets] - [24/01/2014 18:04:46]
AdwCleaner[R1].txt - [9840 octets] - [24/01/2014 18:07:29]
AdwCleaner[S0].txt - [9400 octets] - [24/01/2014 18:08:04]

########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [9460 octets] ##########

Poprosim o DDS http://forum.viry.cz/viewtopic.php?f=13&t=125171

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 11.0.9600.16428 BrowserJavaVersion: 10.51.2
Run by Jakub at 14:53:28 on 2014-01-25
#Option Extended Search is enabled.
#Option Whitelisting is disabled.
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.16066.13802 [GMT 1:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {641105E6-77ED-3F35-A304-765193BCB75F}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: Microsoft Security Essentials *Enabled/Updated* {DF70E402-51D7-30BB-99B4-4D23E83BFDE2}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Windows\system32\Dwm.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Flexlm\Lmgrd.exe
C:\Flexlm\SCIA.exe
C:\Program Files\Intel\iCLS Client\HeciServer.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe
C:\Program Files\PostgreSQL\9.2\bin\pg_ctl.exe
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\Program Files\PostgreSQL\9.2\bin\postgres.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe
C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\acrotray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\IPC\AdobeIPCBroker.exe
C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\CoreSync\CoreSync.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Adobe\Adobe Creative Cloud\HEX\Adobe CEF Helper.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
C:\Windows\system32\taskeng.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\wbem\wmiprvse.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
c:\Program Files\Microsoft Security Client\MpCmdRun.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.msn.com/
uLocal Page = C:\Windows\System32\blank.htm
uSearch Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
mStart Page = hxxp://www.google.com
mLocal Page = C:\Windows\SysWOW64\blank.htm
mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/p/?LinkId=255141
mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
uURLSearchHooks: Microsoft Url Search Hook: {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - C:\Windows\SysWOW64\ieframe.dll
mWinlogon: Shell = explorer.exe
mWinlogon: Userinit = C:\Windows\System32\userinit.exe,
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe Creative Cloud] "C:\Program Files (x86)\Adobe\Adobe Creative Cloud\ACC\Creative Cloud.exe" --showwindow=false --onOSstartup=true
mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrotray.exe"
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
StartupFolder: C:\Users\Jakub\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Jakub\AppData\Roaming\Dropbox\bin\Dropbox.exe
uPolicies-Explorer: NoDrives = dword:0
mPolicies-Explorer: NoDrives = dword:0
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableInstallerDetection = dword:1
mPolicies-System: EnableLUA = dword:1
mPolicies-System: EnableSecureUIAPaths = dword:1
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: EnableVirtualization = dword:1
mPolicies-System: PromptOnSecureDesktop = dword:1
mPolicies-System: ValidateAdminCodeSignatures = dword:0
mPolicies-System: dontdisplaylastusername = dword:0
mPolicies-System: scforceoption = dword:0
mPolicies-System: shutdownwithoutlogon = dword:1
mPolicies-System: undockwithoutlogon = dword:1
mPolicies-System: FilterAdministratorToken = dword:0
mPolicies-System: DisableRegistryTools = dword:0
IE: {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files (x86)\PokerStars\PokerStarsUpdate.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
LSP: %SystemRoot%\system32\mswsock.dll
TCP: NameServer = 10.0.0.138
TCP: Interfaces\{F4B082AC-5872-40B7-96DB-6BD5C28B2B66} : DHCPNameServer = 10.0.0.138
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\SysWOW64\urlmon.dll
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\SysWOW64\urlmon.dll
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\SysWOW64\MSVidCtl.dll
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\SysWOW64\mshtml.dll
Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
SSODL: WebCheck - <orphaned>
SecurityProviders: SecurityProviders = credssp.dll
LSA: Authentication Packages = msv1_0
LSA: Notification Packages = scecli
LSA: Security Packages = kerberos msv1_0 schannel wdigest tspkg pku2u
SubSystems: Windows = basesrv,1 winsrv:UserServerDllInitialization,3 winsrv:ConServerDllInitialization,2 sxssrv,4
mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\unregmp2.exe /ShowWMP
mASetup: >{26923b43-4d38-484f-9b9e-de460746276c} - C:\Windows\SysWOW64\ie4uinit.exe -UserIconConfig
mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\System32\themeui.dll
mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\System32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\SysWOW64\ie4uinit.exe -BaseSettings
mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\SysWOW64\Rundll32.exe C:\Windows\SysWOW64\mscories.dll,Install
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "C:\Program Files (x86)\Google\Chrome\Application\32.0.1700.76\Installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\shell32.dll
x64-mStart Page = hxxp://www.google.com
x64-mLocal Page = C:\Windows\System32\blank.htm
x64-mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
x64-mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
x64-mSearchAssistant = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
x64-mCustomizeSearch = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
x64-mWinlogon: Shell = Explorer.exe
x64-mWinlogon: Userinit = C:\Windows\System32\userinit.exe,
x64-mWinlogon: SFCDisable = dword:0
x64-BHO: Adobe Acrobat Create PDF Helper: {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
x64-BHO: Adobe Acrobat Create PDF from Selection: {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
x64-TB: Adobe Acrobat Create PDF Toolbar: {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\WCIEActiveX\x64\AcroIEFavClient.dll
x64-Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
x64-Run: [IgfxTray] C:\Windows\System32\igfxtray.exe
x64-Run: [HotKeysCmds] C:\Windows\System32\hkcmd.exe
x64-Run: [Persistence] C:\Windows\System32\igfxpers.exe
x64-Run: [AdobeAAMUpdater-1.0] "C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
x64-IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} -
x64-Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - C:\Windows\System32\urlmon.dll
x64-Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - C:\Windows\System32\MSVidCtl.dll
x64-Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} - C:\Windows\System32\inetcomm.dll
x64-Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - C:\Windows\System32\urlmon.dll
x64-Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer x64\skypeieplugin.dll
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - C:\Windows\System32\MSVidCtl.dll
x64-Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - C:\Windows\System32\mshtml.dll
x64-Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - C:\Windows\System32\itss.dll
x64-Notify: igfxcui - igfxdev.dll
x64-SSODL: WebCheck - <orphaned>
x64-mASetup: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\Windows\System32\unregmp2.exe /ShowWMP
x64-mASetup: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - C:\Windows\System32\regsvr32.exe /s /n /i:/UserInstall C:\Windows\System32\themeui.dll
x64-mASetup: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "C:\Program Files (x86)\Windows Mail\WinMail.exe" OCInstallUserConfigOE
x64-mASetup: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - C:\Windows\System32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
x64-mASetup: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\Windows\System32\ie4uinit.exe -UserConfig
x64-mASetup: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\Windows\System32\Rundll32.exe C:\Windows\System32\mscories.dll,Install
x64-CLSID: {603D3801-BD81-11d0-A3A5-00C04FD706EC} - C:\Windows\System32\shell32.dll
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\profiles\nr1spd6m.default\
FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Adobe Creative Cloud\Utils\npAdobeAAMDetect64.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\browser\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.22.3\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll
FF - plugin: C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll
FF - plugin: C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\dtplugin\npdeployJava1.dll
FF - plugin: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrl.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\5.1.20913.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\QuickTime\Plugins\npqtplugin.dll
FF - plugin: C:\Program Files (x86)\QuickTime\Plugins\npqtplugin2.dll
FF - plugin: C:\Program Files (x86)\QuickTime\Plugins\npqtplugin3.dll
FF - plugin: C:\Program Files (x86)\QuickTime\Plugins\npqtplugin4.dll
FF - plugin: C:\Program Files (x86)\QuickTime\Plugins\npqtplugin5.dll
FF - plugin: C:\Program Files (x86)\QuickTime\Plugins\npqtplugin6.dll
FF - plugin: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll
FF - plugin: C:\Windows\SysWOW64\Adobe\Director\np32dsw.dll
FF - ExtSQL: 2013-02-16 13:58; {7F737E3E-993D-43AB-9109-90C4E82752CC}; C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt
FF - ExtSQL: 2013-06-16 02:10; {972ce4c6-7e08-4474-a285-3208198ce6fd}; C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - ExtSQL: 2013-07-11 06:21; {ad9a41d2-9a49-4fa6-a79e-71a0785364c8}; C:\Users\Jakub\AppData\Roaming\Mozilla\Firefox\Profiles\nr1spd6m.default\extensions\{ad9a41d2-9a49-4fa6-a79e-71a0785364c8}
FF - ExtSQL: 2013-07-12 10:14; web2pdfextension@web2pdf.adobedotcom; C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn
FF - ExtSQL: 2013-07-31 23:12; {82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}; C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
FF - ExtSQL: !HIDDEN! 2013-02-16 13:58; {7F737E3E-993D-43AB-9109-90C4E82752CC}; C:\Program Files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt
.
============= SERVICES / DRIVERS ===============
.
R0 ACPI;Ovladač standardu ACPI společnosti Microsoft;C:\Windows\System32\drivers\acpi.sys [2010-11-21 334208]
R0 amdxata;amdxata;C:\Windows\System32\drivers\amdxata.sys [2013-1-31 27008]
R0 atapi;Kanál IDE;C:\Windows\System32\drivers\atapi.sys [2009-7-14 24128]
R0 CLFS;Systém souborů CLFS;C:\Windows\System32\clfs.sys [2009-7-14 367696]
R0 CNG;CNG;C:\Windows\System32\drivers\cng.sys [2013-11-14 458712]
R0 Disk;Ovladač disku;C:\Windows\System32\drivers\disk.sys [2009-7-14 73280]
R0 FileInfo;File Information FS MiniFilter;C:\Windows\System32\drivers\fileinfo.sys [2009-7-14 70224]
R0 FltMgr;Správce filtrů;C:\Windows\System32\drivers\fltMgr.sys [2010-11-21 289664]
R0 fvevol;Ovladač filtru nástroje Bitlocker Drive Encryption;C:\Windows\System32\drivers\fvevol.sys [2013-4-9 223752]
R0 hwpolicy;Hardware Policy Driver;C:\Windows\System32\drivers\hwpolicy.sys [2010-11-21 14720]
R0 iusb3hcs;Ovladač přepínání hostitelského řadiče Intel(R) USB 3.0;C:\Windows\System32\drivers\iusb3hcs.sys [2013-1-30 16152]
R0 KSecDD;KSecDD;C:\Windows\System32\drivers\ksecdd.sys [2013-11-14 95680]
R0 KSecPkg;KSecPkg;C:\Windows\System32\drivers\ksecpkg.sys [2013-11-14 154560]
R0 mountmgr;Správce přípojných bodů;C:\Windows\System32\drivers\mountmgr.sys [2010-11-21 94592]
R0 MpFilter;Microsoft Malware Protection Driver;C:\Windows\System32\drivers\MpFilter.sys [2013-9-27 248240]
R0 msahci;msahci;C:\Windows\System32\drivers\msahci.sys [2010-11-21 31104]
R0 msisadrv;msisadrv;C:\Windows\System32\drivers\msisadrv.sys [2009-7-14 15424]
R0 Mup;Mup;C:\Windows\System32\drivers\mup.sys [2009-7-14 60496]
R0 NDIS;Systémový ovladač rozhraní NDIS;C:\Windows\System32\drivers\ndis.sys [2013-1-30 950128]
R0 partmgr;Správce oddílů;C:\Windows\System32\drivers\partmgr.sys [2013-1-30 75120]
R0 pci;Řadič sběrnice PCI;C:\Windows\System32\drivers\pci.sys [2010-11-21 184704]
R0 pcw;Performance Counters for Windows Driver;C:\Windows\System32\drivers\pcw.sys [2009-7-14 50768]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2013-1-31 56336]
R0 rdyboost;ReadyBoost;C:\Windows\System32\drivers\rdyboost.sys [2010-11-21 213888]
R0 spldr;Security Processor Loader Driver;C:\Windows\System32\drivers\spldr.sys [2009-7-13 19008]
R0 Tcpip;Ovladač protokolu TCP/IP;C:\Windows\System32\drivers\tcpip.sys [2013-10-11 1903552]
R0 vdrvroot;Ovladač rozpoznávacího modulu virtuální jednotky společnosti Microsoft;C:\Windows\System32\drivers\vdrvroot.sys [2009-7-14 36432]
R0 volmgr;Ovladač správce svazků;C:\Windows\System32\drivers\volmgr.sys [2010-11-21 71552]
R0 volmgrx;Správce dynamických svazků;C:\Windows\System32\drivers\volmgrx.sys [2010-11-21 363392]
R0 volsnap;Svazky úložiště;C:\Windows\System32\drivers\volsnap.sys [2013-1-30 296320]
R0 Wdf01000;Služba Architektura ovladačů v režimu jádra;C:\Windows\System32\drivers\Wdf01000.sys [2013-1-30 785512]
R1 AFD;Ancillary Function Driver for Winsock;C:\Windows\System32\drivers\afd.sys [2013-11-14 497152]
R1 Beep;Beep;C:\Windows\System32\drivers\beep.sys [2009-7-14 6656]
R1 blbdrive;blbdrive;C:\Windows\System32\drivers\blbdrive.sys [2009-7-14 45056]
R1 cdrom;Ovladač jednotky CD-ROM;C:\Windows\System32\drivers\cdrom.sys [2010-11-21 147456]
R1 DfsC;DFS Namespace Client Driver;C:\Windows\System32\drivers\dfsc.sys [2010-11-21 102400]
R1 discache;System Attribute Cache;C:\Windows\System32\drivers\discache.sys [2009-7-14 40448]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;C:\Windows\System32\drivers\dtsoftbus01.sys [2013-7-12 283064]
R1 Msfs;Msfs;C:\Windows\System32\drivers\msfs.sys [2009-7-14 26112]
R1 mssmbios;Ovladač Microsoft System Management BIOS;C:\Windows\System32\drivers\mssmbios.sys [2009-7-14 32320]
R1 NetBIOS;NetBIOS Interface;C:\Windows\System32\drivers\netbios.sys [2009-7-14 44544]
R1 NetBT;NetBT;C:\Windows\System32\drivers\netbt.sys [2010-11-21 261632]
R1 Npfs;Npfs;C:\Windows\System32\drivers\npfs.sys [2009-7-14 44032]
R1 nsiproxy;NSI proxy service driver.;C:\Windows\System32\drivers\nsiproxy.sys [2009-7-14 24576]
R1 Null;Null;C:\Windows\System32\drivers\null.sys [2009-7-14 6144]
R1 Psched;Plánovač paketů technologie QoS;C:\Windows\System32\drivers\pacer.sys [2010-11-21 131584]
R1 rdbss;Podsystém přesměrovaného ukládání do vyrovnávací paměti;C:\Windows\System32\drivers\rdbss.sys [2010-11-21 309248]
R1 RDPCDD;RDPCDD;C:\Windows\System32\drivers\RDPCDD.sys [2009-7-14 7680]
R1 RDPENCDD;RDP Encoder Mirror Driver;C:\Windows\System32\drivers\RDPENCDD.sys [2009-7-14 7680]
R1 RDPREFMP;Reflector Display Driver used to gain access to graphics data;C:\Windows\System32\drivers\RDPREFMP.sys [2009-7-14 8192]
R1 Serial;Ovladač sériového portu;C:\Windows\System32\drivers\serial.sys [2009-7-14 94208]
R1 tdx;Ovladač pro podporu zastaralého rozhraní TDI NetIO;C:\Windows\System32\drivers\tdx.sys [2010-11-21 119296]
R1 TermDD;Ovladač terminálového zařízení;C:\Windows\System32\drivers\termdd.sys [2010-11-21 63360]
R1 VgaSave;VgaSave;C:\Windows\System32\drivers\vga.sys [2009-7-14 29184]
R1 Wanarpv6;Ovladač pro vzdálený přístup IPv6 ARP;C:\Windows\System32\drivers\wanarp.sys [2010-11-21 88576]
R1 WfpLwf;WFP Lightweight Filter;C:\Windows\System32\drivers\wfplwf.sys [2009-7-14 12800]
R1 ws2ifsl;Ovladač Winsock IFS;C:\Windows\System32\drivers\ws2ifsl.sys [2009-7-14 21504]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2013-12-21 65432]
R2 Apple Mobile Device;Apple Mobile Device;C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-12-21 57008]
R2 AudioEndpointBuilder;Koncové vytváření služby Windows Audio;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 AudioSrv;Zvuk systému Windows;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 BFE;Služba BFE (Base Filtering Engine);C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 Bonjour Service;Bonjour Service;C:\Program Files\Bonjour\mDNSResponder.exe [2011-8-30 462184]
R2 CryptSvc;Šifrování;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 DcomLaunch;Spouštěč procesů serveru DCOM;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 Dhcp;Klient DHCP;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 Dnscache;Klient DNS;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 DPS;Služba DPS (Diagnostic Policy Service);C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 eventlog;Protokol událostí systému Windows;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 EventSystem;Systém událostí COM+;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 FontCache;Mezipaměť písem Windows;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 gpsvc;Klient zásad skupiny;C:\Windows\System32\svchost.exe -k GPSvcGroup [2009-7-14 27136]
R2 Intel(R) Capability Licensing Service Interface;Intel(R) Capability Licensing Service Interface;C:\Program Files\Intel\iCLS Client\HeciServer.exe [2012-2-2 628448]
R2 iphlpsvc;Pomocná služba protokolu IP;C:\Windows\System32\svchost.exe -k NetSvcs [2009-7-14 27136]
R2 jhi_service;Intel(R) Dynamic Application Loader Host Interface Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\Jhi_service.exe [2013-1-30 161560]
R2 LanmanServer;Server;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 LanmanWorkstation;Pracovní stanice;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 lltdio;Link-Layer Topology Discovery Mapper I/O Driver;C:\Windows\System32\drivers\lltdio.sys [2009-7-14 60928]
R2 lmhosts;Podpora rozhraní NetBIOS nad protokolem TCP/IP;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 LMS;Intel(R) Management and Security Application Local Management Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2013-1-30 277784]
R2 luafv;Virtualizace souborů nástroje Řízení uživatelských účtů;C:\Windows\System32\drivers\luafv.sys [2009-7-14 113152]
R2 MMCSS;Služba Plánovač multimédií;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 MpsSvc;Brána Windows Firewall;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
R2 MsMpSvc;Microsoft Antimalware Service;C:\Program Files\Microsoft Security Client\MsMpEng.exe [2013-10-23 23808]
R2 NlaSvc;Sledování umístění v síti (NLA);C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R2 nsi;Služba rozhraní síťového úložiště;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R2 PcaSvc;Program Compatibility Assistant Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 PEAUTH;PEAUTH;C:\Windows\System32\drivers\PEAuth.sys [2009-7-14 651264]
R2 PlugPlay;Plug and Play;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 postgresql-x64-9.2;postgresql-x64-9.2 - PostgreSQL Server 9.2;C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N "postgresql-x64-9.2" -D "C:/Program Files/PostgreSQL/9.2/data" -w --> C:/Program Files/PostgreSQL/9.2/bin/pg_ctl.exe runservice -N postgresql-x64-9.2 [?]
R2 Power;Napájení;C:\Windows\System32\svchost.exe -k DcomLaunch [2009-7-14 27136]
R2 ProfSvc;Služba Profil uživatele;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 RpcEptMapper;Mapovač koncových bodů protokolu RPC;C:\Windows\System32\svchost.exe -k RPCSS [2009-7-14 27136]
R2 RpcSs;Vzdálené volání procedur (RPC);C:\Windows\System32\svchost.exe -k rpcss [2009-7-14 27136]
R2 rspndr;Link-Layer Topology Discovery Responder;C:\Windows\System32\drivers\rspndr.sys [2009-7-14 76800]
R2 SamSs;Správce zabezpečení účtů;C:\Windows\System32\lsass.exe [2013-11-14 30720]
R2 secdrv;Security Driver;C:\Windows\System32\drivers\secdrv.sys [2009-7-14 23040]
R2 seclogon;Sekundární přihlašování;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 SENS;Služba oznamování událostí systému;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 ShellHWDetection;Rozpoznávání hardwaru;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Schedule;Plánovač úloh;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 Skype C2C Service;Skype C2C Service;C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [2013-10-9 3275136]
R2 Spooler;Služba zařazování tisku;C:\Windows\System32\spoolsv.exe [2013-1-30 559104]
R2 stisvc;Načítání obrázků (WIA);C:\Windows\System32\svchost.exe -k imgsvc [2009-7-14 27136]
R2 SysMain;Superfetch;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 tcpipreg;TCP/IP Registry Compatibility;C:\Windows\System32\drivers\tcpipreg.sys [2013-1-30 45568]
R2 Themes;Motivy;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 TrkWks;Klient služby Sledování distribuovaných odkazů;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 UNS;Intel(R) Management and Security Application User Notification Service;C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2013-1-30 363800]
R2 UxSms;Správce relací správce oken plochy;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R2 Winmgmt;Služba WMI;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R2 wscsvc;Centrum zabezpečení;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
R2 WSearch;Windows Search;C:\Windows\System32\SearchIndexer.exe [2013-1-30 591872]
R2 wuauserv;Windows Update;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 1394ohci;Hostitelský řadič pro rozhraní OHCI standardu 1394;C:\Windows\System32\drivers\1394ohci.sys [2010-11-21 229888]
R3 AeLookupSvc;Funkčnost aplikací;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 Appinfo;Informace o aplikaci;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 asmthub3;ASMedia USB3 Hub Service;C:\Windows\System32\drivers\asmthub3.sys [2013-1-30 130536]
R3 asmtxhci;ASMEDIA XHCI Service;C:\Windows\System32\drivers\asmtxhci.sys [2013-1-30 395752]
R3 AsyncMac;Ovladač asynchronních médií připojení RAS;C:\Windows\System32\drivers\asyncmac.sys [2009-7-14 23040]
R3 BITS;Služba inteligentního přenosu na pozadí;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 bowser;Ovladač podpory prohlížeče;C:\Windows\System32\drivers\bowser.sys [2013-1-30 90624]
R3 CompositeBus;Ovladač rozpoznávacího modulu složené sběrnice;C:\Windows\System32\drivers\CompositeBus.sys [2010-11-21 38912]
R3 DXGKrnl;LDDM Graphics Subsystem;C:\Windows\System32\drivers\dxgkrnl.sys [2013-10-11 983488]
R3 GEARAspiWDM;GEAR ASPI Filter Driver;C:\Windows\System32\drivers\GEARAspiWDM.sys [2013-2-3 33240]
R3 HdAudAddService;Ovladač funkce Microsoft 1.1 UAA pro službu zvuku High Definition Audio;C:\Windows\System32\drivers\HdAudio.sys [2010-11-21 350208]
R3 HDAudBus;Ovladač sběrnice Microsoft UAA pro zvuk High Definition Audio;C:\Windows\System32\drivers\hdaudbus.sys [2010-11-21 122368]
R3 hidserv;Přístup k zařízením standardu HID;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 HidUsb;Ovladač třídy standardu HID Microsoft;C:\Windows\System32\drivers\hidusb.sys [2010-11-21 30208]
R3 HTTP;HTTP;C:\Windows\System32\drivers\http.sys [2010-11-21 753664]
R3 igfx;igfx;C:\Windows\System32\drivers\igdkmd64.sys [2012-12-14 5353888]
R3 IntcDAud;Intel(R) Display Audio;C:\Windows\System32\drivers\IntcDAud.sys [2013-1-31 331264]
R3 intelppm;Ovladač procesoru Intel;C:\Windows\System32\drivers\intelppm.sys [2009-7-14 62464]
R3 iPod Service;iPod Service;C:\Program Files\iPod\bin\iPodService.exe [2013-2-20 641352]
R3 iusb3hub;Ovladač rozbočovače Intel(R) USB 3.0;C:\Windows\System32\drivers\iusb3hub.sys [2013-1-30 355096]
R3 iusb3xhc;Ovladač rozšiřitelného hostitelského řadiče Intel(R) USB 3.0;C:\Windows\System32\drivers\iusb3xhc.sys [2013-1-30 786200]
R3 kbdclass;Keyboard Class Driver;C:\Windows\System32\drivers\kbdclass.sys [2009-7-14 50768]
R3 kbdhid;Ovladač klávesnice standardu HID;C:\Windows\System32\drivers\kbdhid.sys [2010-11-21 33280]
R3 ksthunk;Kernel Streaming Thunks;C:\Windows\System32\drivers\ksthunk.sys [2009-7-14 20992]
R3 MEIx64;Intel(R) Management Engine Interface ;C:\Windows\System32\drivers\HECIx64.sys [2012-7-17 62784]
R3 monitor;Služba ovladače funkce třídy monitorů Microsoft;C:\Windows\System32\drivers\monitor.sys [2009-7-14 30208]
R3 mouclass;Mouse Class Driver;C:\Windows\System32\drivers\mouclass.sys [2009-7-14 49216]
R3 mouhid;Ovladač myši standardu HID;C:\Windows\System32\drivers\mouhid.sys [2009-7-14 31232]
R3 mpsdrv;Ovladač ověření brány Windows Firewall;C:\Windows\System32\drivers\mpsdrv.sys [2009-7-14 77312]
R3 MRxDAV;Ovladač přesměrovače klienta WebDav;C:\Windows\System32\drivers\mrxdav.sys [2013-10-11 140800]
R3 mrxsmb;Obálka a jádro minipřesměrovačů SMB;C:\Windows\System32\drivers\mrxsmb.sys [2013-1-30 158208]
R3 mrxsmb10;Mini-přesměrovač SMB 1.x;C:\Windows\System32\drivers\mrxsmb10.sys [2013-1-30 288768]
R3 mrxsmb20;Mini-přesměrovač SMB 2.0;C:\Windows\System32\drivers\mrxsmb20.sys [2013-1-30 128000]
R3 NdisTapi;Ovladač Remote Access NDIS TAPI;C:\Windows\System32\drivers\ndistapi.sys [2009-7-14 24064]
R3 NdisWan;Ovladač Remote Access NDIS WAN;C:\Windows\System32\drivers\ndiswan.sys [2010-11-21 164352]
R3 NDProxy;NDIS Proxy;C:\Windows\System32\drivers\ndproxy.sys [2010-11-21 57856]
R3 Netman;Síťová připojení;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 netprofm;Služba seznamu sítí;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 Ntfs;Ntfs;C:\Windows\System32\drivers\ntfs.sys [2013-4-23 1656680]
R3 PolicyAgent;Agent zásad protokolu IPsec;C:\Windows\System32\svchost.exe -k NetworkServiceNetworkRestricted [2009-7-14 27136]
R3 PptpMiniport;Připojení WAN Miniport (PPTP);C:\Windows\System32\drivers\raspptp.sys [2010-11-21 111104]
R3 RasAgileVpn;WAN Miniport (IKEv2);C:\Windows\System32\drivers\agilevpn.sys [2009-7-14 60416]
R3 Rasl2tp;Připojení WAN Miniport (L2TP);C:\Windows\System32\drivers\rasl2tp.sys [2010-11-21 129536]
R3 RasMan;Správce vzdáleného přístupu;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 RasPppoe;Ovladač pro vzdálený přístup PPPOE;C:\Windows\System32\drivers\raspppoe.sys [2009-7-14 92672]
R3 RasSstp;Připojení WAN Miniport (SSTP);C:\Windows\System32\drivers\rassstp.sys [2009-7-14 83968]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-1-30 677480]
R3 Serenum;Ovladač filtru Serenum;C:\Windows\System32\drivers\serenum.sys [2009-7-14 23552]
R3 srv;Ovladač pro server SMB 1.xxx;C:\Windows\System32\drivers\srv.sys [2013-1-30 467456]
R3 srv2;Ovladač pro server SMB 2.xxx;C:\Windows\System32\drivers\srv2.sys [2013-1-30 410112]
R3 srvnet;srvnet;C:\Windows\System32\drivers\srvnet.sys [2013-1-30 168448]
R3 SSDPSRV;SSDP Discovery;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
R3 SstpSvc;Služba SSTP (Secure Socket Tunneling Protocol);C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 swenum;Softwarový ovladač sběrnice;C:\Windows\System32\drivers\swenum.sys [2009-7-14 12496]
R3 TapiSrv;Telefonní subsystém;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
R3 TrustedInstaller;Instalační služba modulů systému Windows;C:\Windows\servicing\TrustedInstaller.exe [2010-11-21 194048]
R3 tunnel;Microsoft Tunnel Miniport Adapter Driver;C:\Windows\System32\drivers\tunnel.sys [2010-11-21 125440]
R3 umbus;Ovladač sběrnice UMBus Enumerator;C:\Windows\System32\drivers\umbus.sys [2010-11-21 48640]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB;C:\Windows\System32\drivers\usbccgp.sys [2014-1-16 99840]
R3 usbehci;Ovladač miniportu vylepšeného hostitelského řadiče Microsoft USB 2.0;C:\Windows\System32\drivers\usbehci.sys [2014-1-16 53248]
R3 usbhub;Ovladač standardního rozbočovače USB;C:\Windows\System32\drivers\usbhub.sys [2014-1-16 343040]
R3 WdiServiceHost;Hostitel diagnostické služby;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 WdiSystemHost;Hostitel diagnostického systému;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
R3 WebClient;Webový klient;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 WerSvc;Služba Zasílání zpráv o chybách systému Windows;C:\Windows\System32\svchost.exe -k WerSvcGroup [2009-7-14 27136]
R3 WinHttpAutoProxySvc;Služba WinHTTP WPAD;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI;C:\Windows\System32\drivers\wmiacpi.sys [2009-7-14 14336]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Flexlm Service 1;Flexlm Service 1;C:\Flexlm\Lmgrd.exe [2013-7-23 974848]
S2 gupdate;Služba Google Update (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-1-30 116648]
S2 SharedAccess;Sdílení připojení k Internetu (ICS);C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-9-5 171680]
S2 sppsvc;Ochrana softwaru;C:\Windows\System32\sppsvc.exe [2010-11-21 3524608]
S3 61883;61883 Unit Device;C:\Windows\System32\drivers\61883.sys [2009-7-14 60288]
S3 AcpiPmi;ACPI Power Meter Driver;C:\Windows\System32\drivers\acpipmi.sys [2010-11-21 12800]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2013-7-14 257416]
S3 adp94xx;adp94xx;C:\Windows\System32\drivers\adp94xx.sys [2009-6-10 491088]
S3 adpahci;adpahci;C:\Windows\System32\drivers\adpahci.sys [2009-7-13 339536]
S3 adpu320;adpu320;C:\Windows\System32\drivers\adpu320.sys [2009-7-13 182864]
S3 agp440;Intel AGP Bus Filter;C:\Windows\System32\drivers\AGP440.sys [2009-7-14 61008]
S3 ALG;Brána aplikační vrstvy;C:\Windows\System32\alg.exe [2009-7-14 79360]
S3 aliide;aliide;C:\Windows\System32\drivers\aliide.sys [2009-7-14 15440]
S3 amdide;amdide;C:\Windows\System32\drivers\amdide.sys [2009-7-14 15440]
S3 AmdK8;AMD K8 Processor Driver;C:\Windows\System32\drivers\amdk8.sys [2009-7-14 64512]
S3 AmdPPM;AMD Processor Driver;C:\Windows\System32\drivers\amdppm.sys [2009-7-14 60928]
S3 amdsata;amdsata;C:\Windows\System32\drivers\amdsata.sys [2013-1-31 107904]
S3 amdsbs;amdsbs;C:\Windows\System32\drivers\amdsbs.sys [2009-6-10 194128]
S3 AppID;Ovladač AppID;C:\Windows\System32\drivers\appid.sys [2010-11-21 61440]
S3 AppIDSvc;Identita aplikace;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 arc;arc;C:\Windows\System32\drivers\arc.sys [2009-7-13 87632]
S3 arcsas;arcsas;C:\Windows\System32\drivers\arcsas.sys [2009-7-13 97856]
S3 Avc;Zařízení AVC;C:\Windows\System32\drivers\avc.sys [2009-7-14 48768]
S3 AVCSTRM;AVC Streaming Filter Driver;C:\Windows\System32\drivers\avcstrm.sys [2009-7-14 17664]
S3 AxInstSV;Instalační program ovládacích prvků ActiveX (AxInstSV);C:\Windows\System32\svchost.exe -k AxInstSVGroup [2009-7-14 27136]
S3 b06bdrv;Broadcom NetXtreme II VBD;C:\Windows\System32\drivers\bxvbda.sys [2009-6-10 468480]
S3 b57nd60a;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;C:\Windows\System32\drivers\b57nd60a.sys [2009-6-10 270848]
S3 BDESVC;Služba BitLocker Drive Encryption;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 BrFiltLo;Brother USB Mass-Storage Lower Filter Driver;C:\Windows\System32\drivers\BrFiltLo.sys [2009-7-14 18432]
S3 BrFiltUp;Brother USB Mass-Storage Upper Filter Driver;C:\Windows\System32\drivers\BrFiltUp.sys [2009-7-14 8704]
S3 BridgeMP;Miniport mostu MAC;C:\Windows\System32\drivers\bridge.sys [2009-7-14 95232]
S3 Browser;Prohledávání počítačů;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 Brserid;Brother MFC Serial Port Interface Driver (WDM);C:\Windows\System32\drivers\BrSerId.sys [2009-7-14 286720]
S3 BrSerWdm;Brother WDM Serial driver;C:\Windows\System32\drivers\BrSerWdm.sys [2009-7-14 47104]
S3 BrUsbMdm;Brother MFC USB Fax Only Modem;C:\Windows\System32\drivers\BrUsbMdm.sys [2009-7-14 14976]
S3 BrUsbSer;Brother MFC USB Serial WDM Driver;C:\Windows\System32\drivers\BrUsbSer.sys [2009-7-14 14720]
S3 BTHMODEM;Bluetooth Serial Communications Driver;C:\Windows\System32\drivers\bthmodem.sys [2009-7-14 72192]
S3 bthserv;Služba pro podporu technologie Bluetooth;C:\Windows\System32\svchost.exe -k bthsvcs [2009-7-14 27136]
S3 CertPropSvc;Šíření certifikátů;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 circlass;Consumer IR Devices;C:\Windows\System32\drivers\circlass.sys [2009-7-14 45568]
S3 CmBatt;Microsoft ACPI Control Method Battery Driver;C:\Windows\System32\drivers\CmBatt.sys [2009-7-14 17664]
S3 cmdide;cmdide;C:\Windows\System32\drivers\cmdide.sys [2009-7-14 17488]
S3 Compbatt;Compbatt;C:\Windows\System32\drivers\compbatt.sys [2009-7-14 21584]
S3 COMSysApp;Systémová aplikace modelu COM+;C:\Windows\System32\dllhost.exe [2009-7-14 9728]
S3 cphs;Intel(R) Content Protection HECI Service;C:\Windows\SysWOW64\IntelCpHeciSvc.exe [2012-12-14 277616]
S3 defragsvc;Defragmentace disku;C:\Windows\System32\svchost.exe -k defragsvc [2009-7-14 27136]
S3 dot3svc;Wired AutoConfig Service;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 drmkaud;Ovladače zvuku považované společností Microsoft za důvěryhodné;C:\Windows\System32\drivers\drmkaud.sys [2009-7-14 5632]
S3 EapHost;Protokol EAP (Extensible Authentication Protocol);C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 ebdrv;Broadcom NetXtreme II 10 GigE VBD;C:\Windows\System32\drivers\evbda.sys [2009-6-10 3286016]
S3 EFS;Systém souborů EFS (Encrypting File System);C:\Windows\System32\lsass.exe [2013-11-14 30720]
S3 ehRecvr;Služba přijímače aplikace Windows Media Center;C:\Windows\ehome\ehrecvr.exe [2010-11-21 696832]
S3 ehSched;Služba plánování aplikace Windows Media Center;C:\Windows\ehome\ehsched.exe [2009-7-14 127488]
S3 elxstor;elxstor;C:\Windows\System32\drivers\elxstor.sys [2009-6-10 530496]
S3 ErrDev;Microsoft Hardware Error Device Driver;C:\Windows\System32\drivers\errdev.sys [2009-7-14 9728]
S3 exfat;exFAT File System Driver;C:\Windows\System32\drivers\exfat.sys [2009-7-14 195072]
S3 fastfat;FAT12/16/32 File System Driver;C:\Windows\System32\drivers\fastfat.sys [2009-7-14 204800]
S3 Fax;Fax;C:\Windows\System32\FXSSVC.exe [2010-11-21 689152]
S3 fdc;Floppy Disk Controller Driver;C:\Windows\System32\drivers\fdc.sys [2009-7-14 29696]
S3 fdPHost;Hostitel poskytovatele rozpoznávání funkce;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 FDResPub;Publikování prostředků rozpoznávání funkcí;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 Filetrace;Filetrace;C:\Windows\System32\drivers\filetrace.sys [2009-7-14 34304]
S3 flpydisk;Floppy Disk Driver;C:\Windows\System32\drivers\flpydisk.sys [2009-7-14 24576]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0;C:\Windows\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe [2010-11-21 42856]
S3 FsDepends;File System Dependency Minifilter;C:\Windows\System32\drivers\fsdepends.sys [2009-7-14 55376]
S3 gagp30kx;Microsoft Generic AGPv3.0 Filter for K8 Processor Platforms;C:\Windows\System32\drivers\GAGP30KX.SYS [2009-7-14 65088]
S3 gupdatem;Služba Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2013-1-30 116648]
S3 hcw85cir;Hauppauge Consumer Infrared Receiver;C:\Windows\System32\drivers\hcw85cir.sys [2009-7-13 31232]
S3 HidBatt;HID UPS Battery Driver;C:\Windows\System32\drivers\hidbatt.sys [2009-7-14 26624]
S3 HidBth;Microsoft Bluetooth HID Miniport;C:\Windows\System32\drivers\hidbth.sys [2009-7-14 100864]
S3 HidIr;Microsoft Infrared HID Driver;C:\Windows\System32\drivers\hidir.sys [2009-7-14 46592]
S3 hkmsvc;Správa klíčů a certifikátů stavu;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 HomeGroupListener;Naslouchací proces domácí skupiny;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 HomeGroupProvider;Zprostředkovatel domácích skupin;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
S3 HpSAMD;HpSAMD;C:\Windows\System32\drivers\HpSAMD.sys [2010-11-21 78720]
S3 i8042prt;i8042 Keyboard and PS/2 Mouse Port Driver;C:\Windows\System32\drivers\i8042prt.sys [2009-7-14 105472]
S3 iaStorV;Řadič Intel diskového pole RAID – Windows 7;C:\Windows\System32\drivers\iaStorV.sys [2013-1-31 410496]
S3 idsvc;Služba Windows CardSpace;C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe [2010-11-21 856400]
S3 IEEtwCollectorService;Internet Explorer ETW Collector Service;C:\Windows\System32\ieetwcollector.exe [2013-12-12 111616]
S3 iirsp;iirsp;C:\Windows\System32\drivers\iirsp.sys [2009-7-13 44112]
S3 IKEEXT;Služba IKE and AuthIP IPsec Keying Modules;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 intelide;intelide;C:\Windows\System32\drivers\intelide.sys [2009-7-14 16960]
S3 IPBusEnum;Rozpoznávací modul sběrnice PnP-X IP;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 IpFilterDriver;IP Traffic Filter Driver;C:\Windows\System32\drivers\ipfltdrv.sys [2010-11-21 82944]
S3 IPMIDRV;IPMIDRV;C:\Windows\System32\drivers\IPMIDrv.sys [2010-11-21 78848]
S3 IPNAT;IP Network Address Translator;C:\Windows\System32\drivers\ipnat.sys [2009-7-14 116224]
S3 IRENUM;IR Bus Enumerator;C:\Windows\System32\drivers\irenum.sys [2009-7-14 17920]
S3 isapnp;isapnp;C:\Windows\System32\drivers\isapnp.sys [2009-7-14 20544]
S3 iScsiPrt;iScsiPort Driver;C:\Windows\System32\drivers\msiscsi.sys [2010-11-21 273792]
S3 KeyIso;Izolace klíče CNG;C:\Windows\System32\lsass.exe [2013-11-14 30720]
S3 KtmRm;Služba KTMRM pro koordinátor DTC;C:\Windows\System32\svchost.exe -k NetworkServiceAndNoImpersonation [2009-7-14 27136]
S3 lltdsvc;Mapovač zjišťování topologie linkové vrstvy;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 LSI_FC;LSI_FC;C:\Windows\System32\drivers\lsi_fc.sys [2009-7-13 114752]
S3 LSI_SAS;LSI_SAS;C:\Windows\System32\drivers\lsi_sas.sys [2009-7-13 106560]
S3 LSI_SAS2;LSI_SAS2;C:\Windows\System32\drivers\lsi_sas2.sys [2009-7-13 65600]
S3 LSI_SCSI;LSI_SCSI;C:\Windows\System32\drivers\lsi_scsi.sys [2009-7-13 115776]
S3 megasas;megasas;C:\Windows\System32\drivers\megasas.sys [2009-6-10 35392]
S3 MegaSR;MegaSR;C:\Windows\System32\drivers\MegaSR.sys [2009-7-13 284736]
S3 Modem;Modem;C:\Windows\System32\drivers\modem.sys [2009-7-14 40448]
S3 MozillaMaintenance;Mozilla Maintenance Service;C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe [2013-6-16 118680]
S3 mpio;mpio;C:\Windows\System32\drivers\mpio.sys [2010-11-21 155008]
S3 msdsm;msdsm;C:\Windows\System32\drivers\msdsm.sys [2010-11-21 140672]
S3 MSDTC;Služba DTC (Distributed Transaction Coordinator);C:\Windows\System32\msdtc.exe [2009-7-14 141824]
S3 mshidkmdf;Pass-through HID to KMDF Filter Driver;C:\Windows\System32\drivers\mshidkmdf.sys [2009-7-14 8192]
S3 MSiSCSI;Služba iniciátoru iSCSI společnosti Microsoft;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 msiserver;Instalační služba systému Windows;C:\Windows\System32\msiexec.exe [2010-11-21 128000]
S3 MSKSSRV;Server proxy služby datových proudů Microsoft;C:\Windows\System32\drivers\mskssrv.sys [2009-7-14 11136]
S3 MSPCLOCK;Server proxy hodin datových proudů Microsoft;C:\Windows\System32\drivers\mspclock.sys [2009-7-14 7168]
S3 MSPQM;Server proxy správce kvality datových proudů Microsoft;C:\Windows\System32\drivers\mspqm.sys [2009-7-14 6784]
S3 MsRPC;MsRPC;C:\Windows\System32\drivers\msrpc.sys [2010-11-21 366976]
S3 MSTAPE;Microsoft AV/C Tape Subunit Device;C:\Windows\System32\drivers\mstape.sys [2009-7-14 56448]
S3 MSTEE;Konvertor jímka-jímka typu T datových proudů Microsoft;C:\Windows\System32\drivers\mstee.sys [2009-7-14 8064]
S3 MTConfig;Microsoft Input Configuration Driver;C:\Windows\System32\drivers\MTConfig.sys [2009-7-14 15360]
S3 napagent;Agent architektury NAP (Network Access Protection);C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 NativeWifiP;NativeWiFi Filter;C:\Windows\System32\drivers\nwifi.sys [2009-7-14 318976]
S3 NdisCap;NDIS Capture LightWeight Filter;C:\Windows\System32\drivers\ndiscap.sys [2009-7-14 35328]
S3 Ndisuio;NDIS Usermode I/O Protocol;C:\Windows\System32\drivers\ndisuio.sys [2010-11-21 56832]
S3 Netlogon;Služba Netlogon;C:\Windows\System32\lsass.exe [2013-11-14 30720]
S3 nfrd960;nfrd960;C:\Windows\System32\drivers\nfrd960.sys [2009-7-13 51264]
S3 NisDrv;Microsoft Network Inspection System;C:\Windows\System32\drivers\NisDrvWFP.sys [2012-8-30 134944]
S3 NisSrv;Kontrola sítě Microsoft;C:\Program Files\Microsoft Security Client\NisSrv.exe [2013-10-23 348376]
S3 nv_agp;NVIDIA nForce AGP Bus Filter;C:\Windows\System32\drivers\NV_AGP.SYS [2009-7-14 122960]
S3 nvraid;nvraid;C:\Windows\System32\drivers\nvraid.sys [2013-1-31 148352]
S3 nvstor;nvstor;C:\Windows\System32\drivers\nvstor.sys [2013-1-31 166272]
S3 ohci1394;1394 OHCI Compliant Host Controller (Legacy);C:\Windows\System32\drivers\ohci1394.sys [2009-7-14 72832]
S3 p2pimsvc;Správce identit sítě rovnocenných počítačů;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 p2psvc;Seskupování v sítích peer-to-peer;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 Parport;Parallel port driver;C:\Windows\System32\drivers\parport.sys [2009-7-14 97280]
S3 pciide;pciide;C:\Windows\System32\drivers\pciide.sys [2009-7-14 12352]
S3 pcmcia;pcmcia;C:\Windows\System32\drivers\pcmcia.sys [2009-7-14 220752]
S3 PerfHost;Hostitel knihoven DLL čítačů výkonu;C:\Windows\SysWOW64\perfhost.exe [2009-7-14 20992]
S3 pla;Výstrahy a protokolování výkonu;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
S3 PNRPAutoReg;Služba publikování názvu počítače pomocí protokolu PNRP;C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 PNRPsvc;Protokol PNRP (Peer Name Resolution Protocol);C:\Windows\System32\svchost.exe -k LocalServicePeerNet [2009-7-14 27136]
S3 Processor;Processor Driver;C:\Windows\System32\drivers\processr.sys [2009-7-14 60416]
S3 ProtectedStorage;Chráněné úložiště;C:\Windows\System32\lsass.exe [2013-11-14 30720]
S3 ql2300;ql2300;C:\Windows\System32\drivers\ql2300.sys [2009-6-10 1524816]
S3 ql40xx;ql40xx;C:\Windows\System32\drivers\ql40xx.sys [2009-7-13 128592]
S3 QWAVE;Sada qWave (Quality Windows Audio Video Experience);C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 QWAVEdrv;Ovladač QWAVE;C:\Windows\System32\drivers\qwavedrv.sys [2009-7-14 46592]
S3 RasAcd;Remote Access Auto Connection Driver;C:\Windows\System32\drivers\rasacd.sys [2009-7-14 14848]
S3 RasAuto;Správce automatického připojení pomocí vzdáleného přístupu;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 rdpbus;Remote Desktop Device Redirector Bus Driver;C:\Windows\System32\drivers\rdpbus.sys [2009-7-14 24064]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-5-11 19456]
S3 RDPWD;RDP Winstation Driver;C:\Windows\System32\drivers\rdpwd.sys [2013-1-30 210944]
S3 RemoteRegistry;Vzdálený registr;C:\Windows\System32\svchost.exe -k regsvc [2009-7-14 27136]
S3 RpcLocator;Lokátor vzdáleného volání procedur (RPC);C:\Windows\System32\Locator.exe [2009-7-14 10240]
S3 sbp2port;sbp2port;C:\Windows\System32\drivers\sbp2port.sys [2010-11-21 103808]
S3 SCardSvr;Čipová karta;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 scfilter;Ovladač filtru čipových karet třídy PnP;C:\Windows\System32\drivers\scfilter.sys [2010-11-21 29696]
S3 SCPolicySvc;Zásady odebrání čipové karty;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 SDRSVC;Windows Zálohování;C:\Windows\System32\svchost.exe -k SDRSVC [2009-7-14 27136]
S3 SensrSvc;Adaptivní jas;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 sermouse;Serial Mouse Driver;C:\Windows\System32\drivers\sermouse.sys [2009-7-14 26624]
S3 SessionEnv;Konfigurace vzdálené plochy;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 sffdisk;SFF Storage Class Driver;C:\Windows\System32\drivers\sffdisk.sys [2009-7-14 14336]
S3 sffp_mmc;SFF Storage Protocol Driver for MMC;C:\Windows\System32\drivers\sffp_mmc.sys [2009-7-14 13824]
S3 sffp_sd;SFF Storage Protocol Driver for SDBus;C:\Windows\System32\drivers\sffp_sd.sys [2010-11-21 14336]
S3 sfloppy;High-Capacity Floppy Disk Drive;C:\Windows\System32\drivers\sfloppy.sys [2009-7-14 16896]
S3 SiSRaid2;SiSRaid2;C:\Windows\System32\drivers\sisraid2.sys [2009-6-10 43584]
S3 SiSRaid4;SiSRaid4;C:\Windows\System32\drivers\sisraid4.sys [2009-7-13 80464]
S3 Smb;Protokol TCP/IP a TCP/IPv6 orientovaný na zprávy (relace SMB);C:\Windows\System32\drivers\smb.sys [2009-7-14 93184]
S3 SNMPTRAP;Zachytávání pro službu SNMP;C:\Windows\System32\snmptrap.exe [2009-7-14 14336]
S3 sppuinotify;Služba Oznámení platformy SPP;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 Steam Client Service;Steam Client Service;C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2013-7-27 569768]
S3 stexstor;stexstor;C:\Windows\System32\drivers\stexstor.sys [2009-7-13 24656]
S3 swprv;služba Zprostředkovatel softwaru služby Stínová kopie svazků;C:\Windows\System32\svchost.exe -k swprv [2009-7-14 27136]
S3 TabletInputService;Služba Vstupní panel počítače Tablet PC;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 TBS;Služba TPM Base Services;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 TCPIP6;Microsoft IPv6 Protocol Driver;C:\Windows\System32\drivers\tcpip.sys [2013-10-11 1903552]
S3 TDPIPE;TDPIPE;C:\Windows\System32\drivers\tdpipe.sys [2009-7-14 15872]
S3 TDTCP;TDTCP;C:\Windows\System32\drivers\tdtcp.sys [2013-1-30 23552]
S3 TermService;Vzdálená plocha;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 THREADORDER;Server pro řazení podprocesů;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 tssecsrv;Remote Desktop Services Security Filter Driver;C:\Windows\System32\drivers\tssecsrv.sys [2013-8-14 39936]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-5-11 57856]
S3 TsUsbGD;Remote Desktop Generic USB Device;C:\Windows\System32\drivers\TsUsbGD.sys [2013-5-11 30208]
S3 uagp35;Microsoft AGPv3.5 Filter;C:\Windows\System32\drivers\UAGP35.SYS [2009-7-14 64080]
S3 UI0Detect;Zjišťování interaktivních služeb;C:\Windows\System32\UI0Detect.exe [2009-7-14 40960]
S3 uliagpkx;Uli AGP Bus Filter;C:\Windows\System32\drivers\ULIAGPKX.SYS [2009-7-14 64592]
S3 UmPass;Microsoft UMPass Driver;C:\Windows\System32\drivers\umpass.sys [2009-7-14 9728]
S3 upnphost;Hostitel zařízení UPnP;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 usbcir;Infračervený přijímač eHome (USBCIR);C:\Windows\System32\drivers\usbcir.sys [2013-10-11 100864]
S3 usbohci;Ovladač miniportu otevřeného hostitelského řadiče Microsoft USB;C:\Windows\System32\drivers\usbohci.sys [2014-1-16 25600]
S3 usbprint;Microsoft USB PRINTER Class;C:\Windows\System32\drivers\usbprint.sys [2009-7-14 25088]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB;C:\Windows\System32\drivers\USBSTOR.SYS [2013-1-31 91648]
S3 usbuhci;Ovladač miniportu univerzálního hostitelského řadiče Microsoft USB;C:\Windows\System32\drivers\usbuhci.sys [2014-1-16 30720]
S3 VaultSvc;Správce pověření;C:\Windows\System32\lsass.exe [2013-11-14 30720]
S3 vds;Virtuální disk;C:\Windows\System32\vds.exe [2010-11-21 533504]
S3 vga;vga;C:\Windows\System32\drivers\vgapnp.sys [2009-7-14 29184]
S3 vhdmp;vhdmp;C:\Windows\System32\drivers\vhdmp.sys [2010-11-21 215936]
S3 viaide;viaide;C:\Windows\System32\drivers\viaide.sys [2009-7-14 17488]
S3 vsmraid;vsmraid;C:\Windows\System32\drivers\vsmraid.sys [2009-6-10 161872]
S3 VSS;Stínová kopie svazku;C:\Windows\System32\VSSVC.exe [2010-11-21 1600512]
S3 vwifibus;Ovladač sběrnice Virtual WiFi;C:\Windows\System32\drivers\vwifibus.sys [2009-7-14 24576]
S3 W32Time;Systémový čas;C:\Windows\System32\svchost.exe -k LocalService [2009-7-14 27136]
S3 WacomPen;Wacom Serial Pen HID Driver;C:\Windows\System32\drivers\wacompen.sys [2009-7-14 27776]
S3 WANARP;Ovladač pro vzdálený přístup IP ARP;C:\Windows\System32\drivers\wanarp.sys [2010-11-21 88576]
S3 WatAdminSvc;Služba Technologie aktivace Windows;C:\Windows\System32\Wat\WatAdminSvc.exe [2013-1-31 1255736]
S3 wbengine;Služba jádra pro zálohování dat na úrovni bloků;C:\Windows\System32\wbengine.exe [2010-11-21 1504256]
S3 WbioSrvc;Biometrická služba systému Windows;C:\Windows\System32\svchost.exe -k WbioSvcGroup [2009-7-14 27136]
S3 wcncsvc;Technologie Windows Connect Now – Registrátor konfigurací;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S3 WcsPlugInService;Systém barev systému Windows;C:\Windows\System32\svchost.exe -k wcssvc [2009-7-14 27136]
S3 Wd;Wd;C:\Windows\System32\drivers\wd.sys [2009-7-14 21056]
S3 Wecsvc;Sběr událostí systému Windows;C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 wercplsupport;Podpora ovládacího panelu Oznámení a řešení problémů;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S3 WIMMount;WIMMount;C:\Windows\System32\drivers\wimmount.sys [2009-7-14 22096]
S3 WinDefend;Windows Defender;C:\Windows\System32\svchost.exe -k secsvcs [2009-7-14 27136]
S3 WinRM;Vzdálená správa systému Windows (WS-Management);C:\Windows\System32\svchost.exe -k NetworkService [2009-7-14 27136]
S3 WinUsb;WinUsb;C:\Windows\System32\drivers\winusb.sys [2010-11-21 41984]
S3 Wlansvc;Automatická konfigurace sítě WLAN;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 wmiApSrv;WMI Performance Adapter;C:\Windows\System32\wbem\WmiApSrv.exe [2009-7-14 203264]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing;C:\Program Files\Windows Media Player\wmpnetwk.exe [2010-11-21 1525248]
S3 WPCSvc;Parental Controls;C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted [2009-7-14 27136]
S3 WPDBusEnum;Služba Výčet přenosných zařízení;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 WudfPf;User Mode Driver Frameworks Platform Driver;C:\Windows\System32\drivers\WUDFPf.sys [2013-1-30 87040]
S3 WUDFRd;WUDFRd;C:\Windows\System32\drivers\WUDFRd.sys [2013-1-30 198656]
S3 wudfsvc;Platforma WDF (Windows Driver Foundation) – platforma ovladače v uživatelském režimu;C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted [2009-7-14 27136]
S3 WwanSvc;Automatická konfigurace sítě WWAN;C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork [2009-7-14 27136]
S4 cdfs;CD/DVD File System Reader;C:\Windows\System32\drivers\cdfs.sys [2009-7-14 92160]
S4 clr_optimization_v2.0.50727_32;Microsoft .NET Framework NGEN v2.0.50727_X86;C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2009-7-13 66384]
S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-7-13 89920]
S4 crcdisk;Crcdisk Filter Driver;C:\Windows\System32\drivers\crcdisk.sys [2009-7-14 24144]
S4 Mcx2Svc;Služba zařízení Media Center Extender;C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation [2009-7-14 27136]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp;C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe [2009-7-14 116560]
S4 RemoteAccess;Směrování a vzdálený přístup;C:\Windows\System32\svchost.exe -k netsvcs [2009-7-14 27136]
S4 udfs;udfs;C:\Windows\System32\drivers\udfs.sys [2010-11-21 328192]
.
=============== File Associations ===============
.
FileExt: .bat: batfile="%1" %*
FileExt: .cmd: cmdfile="%1" %*
FileExt: .com: ComFile="%1" %*
FileExt: .exe: exefile="%1" %*
FileExt: .pif: piffile="%1" %*
FileExt: .scr: scrfile="%1" /S
FileExt: .reg: regfile=regedit.exe "%1"
FileExt: .txt: txtfile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .chm: chm.file="C:\Windows\hh.exe" %1
FileExt: .ini: inifile=C:\Windows\System32\NOTEPAD.EXE %1
FileExt: .inf: inffile=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: Acrobat.exe: Open="C:\Program Files (x86)\Adobe\Acrobat 11.0\Acrobat\Acrobat.exe" "%1"
ShellExec: AcroRD32.exe: Read="C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AcroRd32.exe" "%1"
ShellExec: Adobe Audition CC.exe: open="C:\Program Files\Adobe\Adobe Audition CC\Adobe Audition CC.exe" "%1"
ShellExec: EdgeAnimate.exe: Open="C:\Program Files (x86)\Adobe\Adobe Edge Animate CC\EdgeAnimate.exe" "%1"
ShellExec: ehshell.exe: open="C:\Windows\eHome\ehshell.exe" "%1"
ShellExec: iexplore.exe: open="C:\Program Files\Internet Explorer\iexplore.exe" %1
ShellExec: Illustrator.exe: open="C:\Program Files\Adobe\Adobe Illustrator CC (64 Bit)\Support Files\Contents\Windows\Illustrator.exe" "%1"
ShellExec: iTunes.exe: open="C:\Program Files (x86)\iTunes\iTunes.exe" /open "%L"
ShellExec: iTunes.exe: play="C:\Program Files (x86)\iTunes\iTunes.exe" /play "%L"
ShellExec: lightroom.exe: open="C:\Program Files\Adobe\Adobe Photoshop Lightroom 5.2\lightroom.exe" "%1"
ShellExec: mspaint.exe: edit="C:\Windows\System32\mspaint.exe" "%1"
ShellExec: notepad.exe: edit=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: notepad.exe: open=C:\Windows\System32\NOTEPAD.EXE %1
ShellExec: pgAdmin3.exe: open="C:\Program Files\PostgreSQL\9.2\bin\pgAdmin3.exe" -q -f "%1"
ShellExec: Photoshop.exe: edit="C:\Program Files\Adobe\Adobe Photoshop CC (64 Bit)\Photoshop.exe" "%1"
ShellExec: Photoshop.exe: open="C:\Program Files\Adobe\Adobe Photoshop CC (64 Bit)\Photoshop.exe" "%1"
ShellExec: photoviewer.dll: open=C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: photoviewer.dll: print=C:\Windows\System32\rundll32.exe "C:\Program Files (x86)\Windows Photo Viewer\PhotoViewer.dll", ImageView_Fullscreen %1
ShellExec: QuickTimePlayer.exe: open="C:\Program Files (x86)\QuickTime\QuickTimePlayer.exe" "%1"
ShellExec: vlc.exe: Open="C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file "%1"
ShellExec: wmplayer.exe: open="C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Open "%L"
ShellExec: wmplayer.exe: play="C:\Program Files (x86)\Windows Media Player\wmplayer.exe" /Play "%L"
ShellExec: wordpad.exe: open="C:\Program Files (x86)\Windows NT\Accessories\WORDPAD.EXE" "%1"
.
=============== Created Last 60 ================
.
2014-01-25 07:13:02 964552 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{317A9D55-3BBE-D8E3-E0AC-52D6532C1001}\GapaEngine.dll
2014-01-24 17:20:12 10315576 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F677A5D7-3578-4C16-A651-CE87B225C8A3}\mpengine.dll
2014-01-24 17:04:43 -------- d-----w- C:\AdwCleaner
2014-01-24 16:43:46 -------- d-sh--w- C:\$RECYCLE.BIN
2014-01-24 16:43:44 -------- d-----w- C:\Windows\temp
2014-01-24 16:36:33 -------- d-----w- C:\ComboFix
2014-01-24 16:36:32 -------- d-----w- C:\Qoobox
2014-01-24 13:08:19 -------- d-----w- C:\FRST
2014-01-24 12:51:32 -------- d-----w- C:\Users\Jakub\AppData\Roaming\Malwarebytes
2014-01-24 12:51:22 -------- d-----w- C:\ProgramData\Malwarebytes
2014-01-24 12:36:10 -------- d-----w- C:\Program Files (x86)\Common Files\Java
2014-01-24 12:35:56 264616 ----a-w- C:\Windows\SysWow64\javaws.exe
2014-01-24 12:35:51 96168 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2014-01-24 12:35:51 175016 ----a-w- C:\Windows\SysWow64\javaw.exe
2014-01-24 12:35:51 174504 ----a-w- C:\Windows\SysWow64\java.exe
2014-01-24 10:24:31 -------- d-----w- C:\_NASTAVENI
2014-01-24 10:21:05 -------- d-----w- C:\Users\Jakub\AppData\Local\RubberMonkey
2014-01-24 10:21:05 -------- d-----w- C:\ProgramData\RubberMonkey
2014-01-24 10:16:09 -------- d-----w- C:\Twixtor5AEManual
2014-01-24 10:14:23 4769280 ----a-w- C:\Windows\SysWow64\ColoristaRenderer_x64.dll
2014-01-24 10:14:22 4078080 ----a-w- C:\Windows\SysWow64\ColoristaRenderer.dll
2014-01-24 10:14:21 4890624 ----a-w- C:\Windows\SysWow64\LS3Renderer_x64.dll
2014-01-24 09:15:13 -------- d-----w- C:\RSMB4AEManual
2014-01-23 18:04:46 10315576 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2014-01-22 18:46:43 -------- d-----w- C:\Program Files\___zaloha
2014-01-22 17:35:48 -------- d-----w- C:\Extracted
2014-01-21 22:58:34 -------- d-----w- C:\Program Files\Blackmagic Design
2014-01-18 20:24:34 -------- d-----w- C:\Windows\Minidump
2014-01-17 09:01:25 -------- d-----w- C:\Users\Jakub\AppData\Local\Diagnostics
2014-01-16 02:54:20 99840 ----a-w- C:\Windows\System32\drivers\usbccgp.sys
2014-01-16 02:54:20 7808 ----a-w- C:\Windows\System32\drivers\usbd.sys
2014-01-16 02:54:20 53248 ----a-w- C:\Windows\System32\drivers\usbehci.sys
2014-01-16 02:54:20 343040 ----a-w- C:\Windows\System32\drivers\usbhub.sys
2014-01-16 02:54:20 325120 ----a-w- C:\Windows\System32\drivers\usbport.sys
2014-01-16 02:54:20 30720 ----a-w- C:\Windows\System32\drivers\usbuhci.sys
2014-01-16 02:54:20 25600 ----a-w- C:\Windows\System32\drivers\usbohci.sys
2014-01-16 02:54:19 3156480 ----a-w- C:\Windows\System32\win32k.sys
2014-01-16 02:54:16 376768 ----a-w- C:\Windows\System32\drivers\netio.sys
2014-01-03 07:29:39 4168704 ----a-w- C:\Windows\SysWow64\PhotoLooksRenderer.dll
2013-12-21 06:04:22 225656 ----a-w- C:\Program Files (x86)\Internet Explorer\Plugins\nppdf32.dll
2013-12-19 07:57:05 -------- d-----w- C:\ProgramData\Oracle
2013-12-12 20:37:55 167424 ----a-w- C:\Program Files\Windows Media Player\wmplayer.exe
2013-12-12 20:37:55 164864 ----a-w- C:\Program Files (x86)\Windows Media Player\wmplayer.exe
2013-12-12 20:37:55 12625920 ----a-w- C:\Windows\System32\wmploc.DLL
2013-12-12 20:37:55 12625408 ----a-w- C:\Windows\SysWow64\wmploc.DLL
2013-12-12 20:37:55 11410432 ----a-w- C:\Windows\SysWow64\wmp.dll
2013-12-12 20:37:54 14631424 ----a-w- C:\Windows\System32\wmp.dll
2013-12-12 20:37:10 482816 ----a-w- C:\Program Files\Internet Explorer\ieinstal.exe
2013-12-12 20:37:10 469504 ----a-w- C:\Program Files (x86)\Internet Explorer\ieinstal.exe
2013-12-12 20:37:10 4096 ----a-w- C:\Windows\System32\ieetwcollectorres.dll
2013-12-12 20:37:10 353280 ----a-w- C:\Program Files\Internet Explorer\IEShims.dll
2013-12-12 20:37:10 293072 ----a-w- C:\Program Files\Internet Explorer\sqmapi.dll
2013-12-12 20:37:10 2724864 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2013-12-12 20:37:10 2724864 ----a-w- C:\Windows\System32\mshtml.tlb
2013-12-12 20:37:10 270848 ----a-w- C:\Program Files (x86)\Internet Explorer\ieproxy.dll
2013-12-12 20:37:10 251392 ----a-w- C:\Program Files (x86)\Internet Explorer\IEShims.dll
2013-12-12 20:37:10 235216 ----a-w- C:\Program Files (x86)\Internet Explorer\sqmapi.dll
2013-12-12 20:37:09 817664 ----a-w- C:\Windows\System32\ieapfltr.dll
2013-12-12 20:37:09 721408 ----a-w- C:\Program Files\Internet Explorer\ieproxy.dll
2013-12-12 20:37:09 7211520 ----a-w- C:\Program Files\Internet Explorer\F12Resources.dll
2013-12-12 20:37:09 708608 ----a-w- C:\Windows\System32\jscript9diag.dll
2013-12-12 20:37:09 66048 ----a-w- C:\Windows\System32\iesetup.dll
2013-12-12 20:37:09 574976 ----a-w- C:\Windows\System32\ieui.dll
2013-12-12 20:37:09 553472 ----a-w- C:\Windows\SysWow64\jscript9diag.dll
2013-12-12 20:37:09 53760 ----a-w- C:\Windows\System32\jsproxy.dll
2013-12-12 20:37:09 48640 ----a-w- C:\Windows\System32\ieetwproxystub.dll
2013-12-12 20:37:09 440832 ----a-w- C:\Windows\SysWow64\ieui.dll
2013-12-12 20:37:09 43008 ----a-w- C:\Windows\SysWow64\jsproxy.dll
2013-12-12 20:37:09 33792 ----a-w- C:\Windows\System32\iernonce.dll
2013-12-12 20:37:09 23183360 ----a-w- C:\Windows\System32\mshtml.dll
2013-12-12 20:37:09 218624 ----a-w- C:\Windows\System32\ie4uinit.exe
2013-12-12 20:37:09 184320 ----a-w- C:\Program Files (x86)\Internet Explorer\F12Tools.dll
2013-12-12 20:37:09 139264 ----a-w- C:\Windows\System32\ieUnatt.exe
2013-12-12 20:37:09 111616 ----a-w- C:\Windows\System32\ieetwcollector.exe
2013-12-12 20:37:08 703488 ----a-w- C:\Windows\SysWow64\ieapfltr.dll
2013-12-12 20:37:08 2764288 ----a-w- C:\Windows\System32\iertutil.dll
2013-12-12 20:37:08 258560 ----a-w- C:\Program Files\Internet Explorer\F12Tools.dll
2013-12-12 20:37:08 2334208 ----a-w- C:\Windows\System32\wininet.dll
2013-12-12 20:37:08 2166784 ----a-w- C:\Windows\SysWow64\iertutil.dll
2013-12-12 20:37:08 1995264 ----a-w- C:\Windows\System32\inetcpl.cpl
2013-12-12 20:37:08 1928192 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2013-12-12 20:37:08 1836544 ----a-w- C:\Program Files\Internet Explorer\MemoryAnalyzer.dll
2013-12-12 20:37:08 1820160 ----a-w- C:\Windows\SysWow64\wininet.dll
2013-12-12 20:37:08 1739776 ----a-w- C:\Program Files\Internet Explorer\F12.dll
2013-12-12 20:37:08 1395200 ----a-w- C:\Windows\System32\urlmon.dll
2013-12-12 20:37:08 1157632 ----a-w- C:\Windows\SysWow64\urlmon.dll
2013-12-12 20:37:07 4243968 ----a-w- C:\Windows\SysWow64\jscript9.dll
2013-12-12 20:37:07 17112576 ----a-w- C:\Windows\SysWow64\mshtml.dll
2013-12-12 20:37:07 12996608 ----a-w- C:\Windows\System32\ieframe.dll
2013-12-12 20:37:07 11221504 ----a-w- C:\Windows\SysWow64\ieframe.dll
2013-12-12 20:37:06 5769216 ----a-w- C:\Windows\System32\jscript9.dll
2013-12-12 18:31:35 335360 ----a-w- C:\Windows\System32\msieftp.dll
2013-12-12 18:31:35 301568 ----a-w- C:\Windows\SysWow64\msieftp.dll
2013-12-12 18:31:27 465920 ----a-w- C:\Windows\System32\WMPhoto.dll
2013-12-12 18:31:27 417792 ----a-w- C:\Windows\SysWow64\WMPhoto.dll
2013-12-12 18:31:20 81408 ----a-w- C:\Windows\System32\imagehlp.dll
2013-12-12 18:31:19 159232 ----a-w- C:\Windows\SysWow64\imagehlp.dll
2013-12-12 18:31:15 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2013-12-12 18:31:15 2048 ----a-w- C:\Windows\System32\tzres.dll
2013-12-12 18:31:11 230400 ----a-w- C:\Windows\System32\drivers\portcls.sys
2013-12-12 18:31:11 116736 ----a-w- C:\Windows\System32\drivers\drmk.sys
2013-12-12 18:31:09 202752 ----a-w- C:\Windows\System32\scrrun.dll
2013-12-12 18:31:09 168960 ----a-w- C:\Windows\System32\wscript.exe
2013-12-12 18:31:09 163840 ----a-w- C:\Windows\SysWow64\scrrun.dll
2013-12-12 18:31:09 156160 ----a-w- C:\Windows\System32\cscript.exe
2013-12-12 18:31:09 150016 ----a-w- C:\Windows\System32\wshom.ocx
2013-12-12 18:31:09 141824 ----a-w- C:\Windows\SysWow64\wscript.exe
2013-12-12 18:31:09 126976 ----a-w- C:\Windows\SysWow64\cscript.exe
2013-12-12 18:31:09 121856 ----a-w- C:\Windows\SysWow64\wshom.ocx
2013-11-29 09:17:32 -------- d-----w- C:\ProgramData\RIBS
2013-11-27 02:06:17 28368 ----a-w- C:\Windows\System32\IEUDINIT.EXE
2013-11-27 02:02:42 940032 ----a-w- C:\Windows\System32\MsSpellCheckingFacility.exe
2013-11-27 02:02:42 194048 ----a-w- C:\Windows\SysWow64\elshyph.dll
2013-11-27 02:02:40 999936 ----a-w- C:\Program Files (x86)\Internet Explorer\networkinspection.dll
2013-11-27 02:02:40 97880 ----a-w- C:\Program Files (x86)\Internet Explorer\pdmproxy100.dll
2013-11-27 02:02:40 977408 ----a-w- C:\Program Files\Common Files\Microsoft Shared\VGX\VGX.dll
2013-11-27 02:02:40 942592 ----a-w- C:\Windows\System32\jsIntl.dll
2013-11-27 02:02:40 90112 ----a-w- C:\Windows\System32\SetIEInstalledDate.exe
2013-11-27 02:02:40 871936 ----a-w- C:\Program Files\Internet Explorer\iedvtool.dll
2013-11-27 02:02:40 86016 ----a-w- C:\Windows\System32\RegisterIEPKEYs.exe
2013-11-27 02:02:40 84992 ----a-w- C:\Windows\System32\mshtmled.dll
2013-11-27 02:02:40 83968 ----a-w- C:\Windows\System32\MshtmlDac.dll
2013-11-27 02:02:40 83456 ----a-w- C:\Windows\SysWow64\inseng.dll
2013-11-27 02:02:40 81408 ----a-w- C:\Windows\System32\icardie.dll
2013-11-27 02:02:40 806096 ----a-w- C:\Program Files (x86)\Internet Explorer\iexplore.exe
2013-11-27 02:02:40 804560 ----a-w- C:\Program Files\Internet Explorer\iexplore.exe
2013-11-27 02:02:40 774144 ----a-w- C:\Windows\System32\jscript.dll
2013-11-27 02:02:40 77312 ----a-w- C:\Windows\System32\tdc.ocx
2013-11-27 02:02:40 752640 ----a-w- C:\Program Files (x86)\Common Files\Microsoft Shared\VGX\VGX.dll
2013-11-27 02:02:40 74240 ----a-w- C:\Windows\SysWow64\SetIEInstalledDate.exe
2013-11-27 02:02:40 71680 ----a-w- C:\Windows\SysWow64\RegisterIEPKEYs.exe
2013-11-27 02:02:40 696832 ----a-w- C:\Program Files (x86)\Internet Explorer\iedvtool.dll
2013-11-27 02:02:40 69632 ----a-w- C:\Windows\SysWow64\mshtmled.dll
2013-11-27 02:02:40 69120 ----a-w- C:\Windows\SysWow64\icardie.dll
2013-11-27 02:02:40 67072 ----a-w- C:\Program Files\Internet Explorer\JSProfilerCore.dll
2013-11-27 02:02:40 645120 ----a-w- C:\Windows\SysWow64\jsIntl.dll
2013-11-27 02:02:40 626176 ----a-w- C:\Windows\System32\msfeeds.dll
2013-11-27 02:02:40 62464 ----a-w- C:\Windows\SysWow64\tdc.ocx
2013-11-27 02:02:40 62464 ----a-w- C:\Windows\System32\pngfilt.dll
2013-11-27 02:02:40 61952 ----a-w- C:\Windows\SysWow64\MshtmlDac.dll
2013-11-27 02:02:40 61952 ----a-w- C:\Windows\SysWow64\iesetup.dll
2013-11-27 02:02:40 616104 ----a-w- C:\Windows\SysWow64\ieapfltr.dat
2013-11-27 02:02:40 616104 ----a-w- C:\Windows\System32\ieapfltr.dat
2013-11-27 02:02:40 610304 ----a-w- C:\Windows\SysWow64\jscript.dll
2013-11-27 02:02:40 56832 ----a-w- C:\Windows\SysWow64\pngfilt.dll
2013-11-27 02:02:40 565248 ----a-w- C:\Program Files\Internet Explorer\jsdbgui.dll
2013-11-27 02:02:40 553984 ----a-w- C:\Program Files\Internet Explorer\jsprofilerui.dll
2013-11-27 02:02:40 548352 ----a-w- C:\Windows\System32\vbscript.dll
2013-11-27 02:02:40 542272 ----a-w- C:\Program Files\Internet Explorer\pdm.dll
2013-11-27 02:02:40 53760 ----a-w- C:\Program Files (x86)\Internet Explorer\JSProfilerCore.dll
2013-11-27 02:02:40 523776 ----a-w- C:\Windows\SysWow64\msfeeds.dll
2013-11-27 02:02:40 52224 ----a-w- C:\Windows\System32\msfeedsbs.dll
2013-11-27 02:02:40 51200 ----a-w- C:\Windows\SysWow64\ieetwproxystub.dll
2013-11-27 02:02:40 503808 ----a-w- C:\Program Files (x86)\Internet Explorer\jsprofilerui.dll
2013-11-27 02:02:40 48640 ----a-w- C:\Windows\SysWow64\mshtmler.dll
2013-11-27 02:02:40 48640 ----a-w- C:\Windows\System32\mshtmler.dll
2013-11-27 02:02:40 48128 ----a-w- C:\Windows\System32\imgutil.dll
2013-11-27 02:02:40 48128 ----a-w- C:\Program Files\Internet Explorer\DiagnosticsHub_is.dll
2013-11-27 02:02:40 454656 ----a-w- C:\Windows\SysWow64\vbscript.dll
2013-11-27 02:02:40 453120 ----a-w- C:\Windows\System32\dxtmsft.dll
2013-11-27 02:02:40 450560 ----a-w- C:\Program Files\Internet Explorer\DiagnosticsHub.DataWarehouse.dll
2013-11-27 02:02:40 438272 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdbgui.dll
2013-11-27 02:02:40 43008 ----a-w- C:\Windows\SysWow64\msfeedsbs.dll
2013-11-27 02:02:40 4158464 ----a-w- C:\Program Files\Internet Explorer\D3DCompiler_47.dll
2013-11-27 02:02:40 413696 ----a-w- C:\Windows\System32\html.iec
2013-11-27 02:02:40 410680 ----a-w- C:\Program Files (x86)\Internet Explorer\pdm.dll
2013-11-27 02:02:40 40448 ----a-w- C:\Windows\System32\JavaScriptCollectionAgent.dll
2013-11-27 02:02:40 400968 ----a-w- C:\Program Files\Internet Explorer\msdbg2.dll
2013-11-27 02:02:40 367104 ----a-w- C:\Windows\SysWow64\dxtmsft.dll
2013-11-27 02:02:40 36352 ----a-w- C:\Windows\SysWow64\imgutil.dll
2013-11-27 02:02:40 359632 ----a-w- C:\Program Files\Internet Explorer\iediagcmd.exe
2013-11-27 02:02:40 34816 ----a-w- C:\Windows\SysWow64\JavaScriptCollectionAgent.dll
2013-11-27 02:02:40 3451392 ----a-w- C:\Program Files (x86)\Internet Explorer\D3DCompiler_47.dll
2013-11-27 02:02:40 337408 ----a-w- C:\Windows\SysWow64\html.iec
2013-11-27 02:02:40 32768 ----a-w- C:\Windows\SysWow64\iernonce.dll
2013-11-27 02:02:40 312392 ----a-w- C:\Program Files (x86)\Internet Explorer\msdbg2.dll
2013-11-27 02:02:40 30208 ----a-w- C:\Windows\System32\licmgr10.dll
2013-11-27 02:02:40 296960 ----a-w- C:\Windows\System32\dxtrans.dll
2013-11-27 02:02:40 263376 ----a-w- C:\Windows\System32\iedkcs32.dll
2013-11-27 02:02:40 25600 ----a-w- C:\Program Files (x86)\Internet Explorer\ExtExport.exe
2013-11-27 02:02:40 247808 ----a-w- C:\Windows\System32\msls31.dll
2013-11-27 02:02:40 24576 ----a-w- C:\Windows\SysWow64\licmgr10.dll
2013-11-27 02:02:40 244736 ----a-w- C:\Windows\SysWow64\dxtrans.dll
2013-11-27 02:02:40 243200 ----a-w- C:\Windows\System32\webcheck.dll
2013-11-27 02:02:40 238288 ----a-w- C:\Windows\SysWow64\iedkcs32.dll
2013-11-27 02:02:40 235520 ----a-w- C:\Windows\System32\url.dll
2013-11-27 02:02:40 235008 ----a-w- C:\Windows\System32\elshyph.dll
2013-11-27 02:02:40 233472 ----a-w- C:\Windows\SysWow64\url.dll
2013-11-27 02:02:40 223232 ----a-w- C:\Program Files\Internet Explorer\ielowutil.exe
2013-11-27 02:02:40 222720 ----a-w- C:\Program Files (x86)\Internet Explorer\ielowutil.exe
2013-11-27 02:02:40 208896 ----a-w- C:\Program Files\Internet Explorer\DiagnosticsTap.dll
2013-11-27 02:02:40 208384 ----a-w- C:\Windows\SysWow64\webcheck.dll
2013-11-27 02:02:40 195584 ----a-w- C:\Windows\System32\msrating.dll
2013-11-27 02:02:40 182272 ----a-w- C:\Windows\SysWow64\msls31.dll
2013-11-27 02:02:40 167424 ----a-w- C:\Windows\System32\iexpress.exe
2013-11-27 02:02:40 166400 ----a-w- C:\Program Files\Internet Explorer\Timeline.dll
2013-11-27 02:02:40 164864 ----a-w- C:\Windows\SysWow64\msrating.dll
2013-11-27 02:02:40 161280 ----a-w- C:\Program Files\Internet Explorer\perfcore.dll
2013-11-27 02:02:40 151552 ----a-w- C:\Windows\SysWow64\iexpress.exe
2013-11-27 02:02:40 151552 ----a-w- C:\Program Files (x86)\Internet Explorer\DiagnosticsTap.dll
2013-11-27 02:02:40 147968 ----a-w- C:\Windows\System32\occache.dll
2013-11-27 02:02:40 1477120 ----a-w- C:\Program Files\Internet Explorer\perf_nt.dll
2013-11-27 02:02:40 144896 ----a-w- C:\Program Files\Internet Explorer\Timeline_is.dll
2013-11-27 02:02:40 143872 ----a-w- C:\Windows\System32\wextract.exe
2013-11-27 02:02:40 142336 ----a-w- C:\Program Files\Internet Explorer\jsdebuggeride.dll
2013-11-27 02:02:40 139264 ----a-w- C:\Windows\SysWow64\wextract.exe
2013-11-27 02:02:40 13824 ----a-w- C:\Windows\System32\mshta.exe
2013-11-27 02:02:40 135680 ----a-w- C:\Windows\System32\iepeers.dll
2013-11-27 02:02:40 13312 ----a-w- C:\Windows\SysWow64\mshta.exe
2013-11-27 02:02:40 13312 ----a-w- C:\Windows\System32\msfeedssync.exe
2013-11-27 02:02:40 131072 ----a-w- C:\Windows\System32\IEAdvpack.dll
2013-11-27 02:02:40 12800 ----a-w- C:\Windows\SysWow64\msfeedssync.exe
2013-11-27 02:02:40 127488 ----a-w- C:\Windows\SysWow64\occache.dll
2013-11-27 02:02:40 1228800 ----a-w- C:\Windows\System32\mshtmlmedia.dll
2013-11-27 02:02:40 116736 ----a-w- C:\Windows\SysWow64\iepeers.dll
2013-11-27 02:02:40 1127424 ----a-w- C:\Program Files\Internet Explorer\networkinspection.dll
2013-11-27 02:02:40 112128 ----a-w- C:\Windows\SysWow64\ieUnatt.exe
2013-11-27 02:02:40 111616 ----a-w- C:\Windows\SysWow64\IEAdvpack.dll
2013-11-27 02:02:40 105984 ----a-w- C:\Windows\System32\iesysprep.dll
2013-11-27 02:02:40 105984 ----a-w- C:\Program Files (x86)\Internet Explorer\jsdebuggeride.dll
2013-11-27 02:02:40 105568 ----a-w- C:\Program Files\Internet Explorer\pdmproxy100.dll
2013-11-27 02:02:40 1051136 ----a-w- C:\Windows\SysWow64\mshtmlmedia.dll
2013-11-27 02:02:40 101376 ----a-w- C:\Windows\System32\inseng.dll
.
==================== Find6M ====================
.
2014-01-19 07:33:29 270496 ------w- C:\Windows\System32\MpSigStub.exe
2014-01-17 02:00:24 86054176 ----a-w- C:\Windows\System32\MRT.exe
2013-12-13 18:48:42 4165632 ----a-w- C:\Windows\SysWow64\LS3Renderer.dll
2013-10-12 02:30:42 830464 ----a-w- C:\Windows\System32\nshwfp.dll
2013-10-12 02:29:21 859648 ----a-w- C:\Windows\System32\IKEEXT.DLL
2013-10-12 02:29:08 324096 ----a-w- C:\Windows\System32\FWPUCLNT.DLL
2013-10-12 02:03:08 656896 ----a-w- C:\Windows\SysWow64\nshwfp.dll
2013-10-12 02:01:25 216576 ----a-w- C:\Windows\SysWow64\FWPUCLNT.DLL
2013-10-05 20:25:35 1474048 ----a-w- C:\Windows\System32\crypt32.dll
2013-10-05 19:57:25 1168384 ----a-w- C:\Windows\SysWow64\crypt32.dll
2013-10-04 02:28:31 190464 ----a-w- C:\Windows\System32\SmartcardCredentialProvider.dll
2013-10-04 02:25:17 197120 ----a-w- C:\Windows\System32\credui.dll
2013-10-04 02:24:49 1930752 ----a-w- C:\Windows\System32\authui.dll
2013-10-04 01:58:50 152576 ----a-w- C:\Windows\SysWow64\SmartcardCredentialProvider.dll
2013-10-04 01:56:25 168960 ----a-w- C:\Windows\SysWow64\credui.dll
2013-10-04 01:56:00 1796096 ----a-w- C:\Windows\SysWow64\authui.dll
2013-10-03 02:23:48 404480 ----a-w- C:\Windows\System32\gdi32.dll
2013-10-03 02:00:44 311808 ----a-w- C:\Windows\SysWow64\gdi32.dll
2013-09-28 01:09:10 497152 ----a-w- C:\Windows\System32\drivers\afd.sys
2013-09-27 08:53:06 248240 ----a-w- C:\Windows\System32\drivers\MpFilter.sys
2013-09-27 08:53:06 134944 ----a-w- C:\Windows\System32\drivers\NisDrvWFP.sys
2013-09-25 02:26:40 95680 ----a-w- C:\Windows\System32\drivers\ksecdd.sys
2013-09-25 02:26:40 154560 ----a-w- C:\Windows\System32\drivers\ksecpkg.sys
2013-09-25 02:23:33 28672 ----a-w- C:\Windows\System32\sspisrv.dll
2013-09-25 02:23:33 135680 ----a-w- C:\Windows\System32\sspicli.dll
2013-09-25 02:23:01 28160 ----a-w- C:\Windows\System32\secur32.dll
2013-09-25 02:22:59 340992 ----a-w- C:\Windows\System32\schannel.dll
2013-09-25 02:21:50 307200 ----a-w- C:\Windows\System32\ncrypt.dll
2013-09-25 02:21:07 1447936 ----a-w- C:\Windows\System32\lsasrv.dll
2013-09-25 01:58:17 96768 ----a-w- C:\Windows\SysWow64\sspicli.dll
2013-09-25 01:57:26 22016 ----a-w- C:\Windows\SysWow64\secur32.dll
2013-09-25 01:57:24 247808 ----a-w- C:\Windows\SysWow64\schannel.dll
2013-09-25 01:56:42 220160 ----a-w- C:\Windows\SysWow64\ncrypt.dll
2013-09-25 01:03:24 30720 ----a-w- C:\Windows\System32\lsass.exe
2013-09-08 02:30:37 1903552 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-09-08 02:27:14 327168 ----a-w- C:\Windows\System32\mswsock.dll
2013-09-08 02:03:58 231424 ----a-w- C:\Windows\SysWow64\mswsock.dll
2013-08-29 02:17:48 5549504 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-08-29 02:16:35 1732032 ----a-w- C:\Windows\System32\ntdll.dll
2013-08-29 02:16:28 243712 ----a-w- C:\Windows\System32\wow64.dll
2013-08-29 02:16:14 859648 ----a-w- C:\Windows\System32\tdh.dll
2013-08-29 02:13:28 878080 ----a-w- C:\Windows\System32\advapi32.dll
2013-08-29 01:51:45 3969472 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-08-29 01:51:45 3914176 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-08-29 01:50:31 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-08-29 01:50:30 1292192 ----a-w- C:\Windows\SysWow64\ntdll.dll
2013-08-29 01:50:16 619520 ----a-w- C:\Windows\SysWow64\tdh.dll
2013-08-29 01:48:17 640512 ----a-w- C:\Windows\SysWow64\advapi32.dll
2013-08-29 01:48:15 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-08-29 00:49:53 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-08-29 00:49:52 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-08-29 00:49:52 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-08-29 00:49:49 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-08-28 01:12:33 461312 ----a-w- C:\Windows\System32\scavengeui.dll
2013-08-05 02:25:45 155584 ----a-w- C:\Windows\System32\drivers\ataport.sys
2013-08-02 02:14:57 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-08-02 02:13:34 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2013-08-02 02:13:34 1161216 ----a-w- C:\Windows\System32\kernel32.dll
2013-08-02 01:50:42 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2013-08-02 01:50:41 1114112 ----a-w- C:\Windows\SysWow64\kernel32.dll
2013-08-02 01:09:17 338432 ----a-w- C:\Windows\System32\conhost.exe
2013-08-02 00:59:09 112640 ----a-w- C:\Windows\System32\smss.exe
2013-08-02 00:43:05 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2013-08-02 00:43:05 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2013-08-02 00:43:05 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2013-08-02 00:43:05 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
2013-08-01 12:09:36 983488 ----a-w- C:\Windows\System32\drivers\dxgkrnl.sys
.
============= FINISH: 14:54:06,41 ===============

Pokud nemate, tak presunte Combofix na plochu

• Spustte poznamkovy blok (Start-spustit-notepad)
• Zkopirujte skript nize

• Kód: Vybrat vše

  KillAll::
  
  Registry::
  [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
  "Adobe ARM"=-
  "iTunesHelper"=-
  "QuickTime Task"=-
  "Acrobat Assistant 8.0"=-
  "SunJavaUpdateSched"=-
  
  File::
  c:\windows\Tasks\Adobe Flash Player Updater.job
  c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
  c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
  
  Firefox::
  FF - ProfilePath - c:\users\Jakub\AppData\Roaming\Mozilla\Firefox\profiles\nr1spd6m.default\
  FF - prefs.js: browser.search.selectedEngine - Delta Search
  FF - prefs.js: browser.startup.homepage - hxxp://www1.delta-search.com/?babsrc=HP ... 1&tsp=4963
  FF - ExtSQL: !HIDDEN! 2013-02-16 13:58; {7F737E3E-993D-43AB-9109-90C4E82752CC}; c:\program files (x86)\iSkysoft\Free Video Downloader\SVRFirefoxExt
  FF - user.js: extensions.mysearchdial.hmpg - true
  FF - user.js: extensions.mysearchdial.hmpgUrl - hxxp://start.mysearchdial.com/?f=1&a=co ... 065491&ir=
  FF - user.js: extensions.mysearchdial.dfltSrch - true
  FF - user.js: extensions.mysearchdial.srchPrvdr - Mysearchdial
  FF - user.js: extensions.mysearchdial.dnsErr - true
  FF - user.js: extensions.mysearchdial_i.newTab - false
  FF - user.js: extensions.mysearchdial.newTabUrl - hxxp://start.mysearchdial.com/?f=2&a=co ... 065491&ir=
  FF - user.js: extensions.mysearchdial.tlbrSrchUrl - hxxp://start.mysearchdial.com/?f=3&a=co ... 491&ir=&q=
  FF - user.js: extensions.mysearchdial.id - 10BF48755BE893B6
  FF - user.js: extensions.mysearchdial.instlDay - 15876
  FF - user.js: extensions.mysearchdial.vrsn -
  FF - user.js: extensions.mysearchdial.vrsni -
  FF - user.js: extensions.mysearchdial_i.vrsnTs - 2:34
  FF - user.js: extensions.mysearchdial.prtnrId - mysearchdial
  FF - user.js: extensions.mysearchdial.prdct - mysearchdial
  FF - user.js: extensions.mysearchdial.aflt - coolmsd
  FF - user.js: extensions.mysearchdial_i.smplGrp - none
  FF - user.js: extensions.mysearchdial.tlbrId - base
  FF - user.js: extensions.mysearchdial.instlRef -
  FF - user.js: extensions.mysearchdial.dfltLng -
  FF - user.js: extensions.mysearchdial.appId - {CA5CAA63-B27C-4963-9BEC-CB16A36D56F8}
  FF - user.js: extensions.mysearchdial.excTlbr - false
  FF - user.js: extensions.mysearchdial_i.hmpg - true
  FF - user.js: extensions.mysearchdial.cr - 1779065491
  FF - user.js: extensions.mysearchdial.cd - 2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q
  FF - user.js: extensions.irmysearch.aflt - coolmsd
  FF - user.js: extensions.irmysearch.instlRef -
  FF - user.js: extensions.irmysearch.cr - 1779065491
  FF - user.js: extensions.irmysearch.cd - 2XzuyEtN2Y1L1QzutCtD0B0FyEzzyByDyD0B0EzzzytA0ByCtN0D0Tzu0CyDtAyCtN1L2XzutBtFtBtFyEtFyBtAtCtN1L1Czu1R1F1F1I1H1B1Q
  FF - user.js: extensions.delta.tlbrSrchUrl -
  FF - user.js: extensions.delta.id - 54bb93b600000000000010bf48755be8
  FF - user.js: extensions.delta.appId - {C26644C4-2A12-4CA6-8F2E-0EDE6CF018F3}
  FF - user.js: extensions.delta.instlDay - 15877
  FF - user.js: extensions.delta.vrsn - 1.8.21.5
  FF - user.js: extensions.delta.vrsni - 1.8.21.5
  FF - user.js: extensions.delta.vrsnTs - 1.8.21.519:37
  FF - user.js: extensions.delta.prtnrId - delta
  FF - user.js: extensions.delta.prdct - delta
  FF - user.js: extensions.delta.aflt - babsst
  FF - user.js: extensions.delta.smplGrp - none
  FF - user.js: extensions.delta.tlbrId - base
  FF - user.js: extensions.delta.instlRef - sst
  FF - user.js: extensions.delta.dfltLng - cs
  FF - user.js: extensions.delta.excTlbr - false
  FF - user.js: extensions.delta.ffxUnstlRst - true
  FF - user.js: extensions.delta.admin - false
  FF - user.js: extensions.delta_i.babTrack - affID=119816&tt=180613_ndt7&tsp=4920
  FF - user.js: extensions.delta_i.babExt -
  FF - user.js: extensions.delta_i.srcExt - ss
  FF - user.js: extensions.delta.autoRvrt - false
  FF - user.js: extensions.delta.rvrt - false
  FF - user.js: extensions.delta.newTab - false
  
  ClearJavaCache::
  
  Reboot::

• Ulozte vytvoreny TXT jako CFScript.txt
• Pretahnete vytvoreny CFScript.txt nad Combofix a pustte (viz obrazek nize)
  
• Po aplikaci skriptu (a pripadnem restartu) na Vas vypadne log, jeho obsah sem vlozte

Pokud vyskoci hlaska "Pokus pouzit neplatnou operaci na klic registru, ktery je oznacen pro odstraneni", tak jen restartujte PC - registr se da do kupy - jedna se o vnitrni chybu, kterou zpusobuje CF a autor ji zatim neumi bohuzel opravit

Muze se stat, ze po aplikaci skriptu nenabehnou windows, v tomto pripade restartuje PC a mackejte F8 a zvolte Posledni znamou konfiguraci