Preventivní kontrola - upozornění od Google

Zpráva

_Antti_ · #1 Příspěvek od **_Antti_** » 23 bře 2014 12:40

Zdravím, chtěl bych poprosit o preventivní kontrolu, protože před pár dny na mě google vyhodil obrazovku, že z mé ip adresy jde moc požadavků (Naše systémy zjistily, že vaše počítačová síť je zdrojem neobvyklého provozu. Účelem této stránky je zkontrolovat, zda požadavky odesíláte skutečně vy, a ne robot. ), nebo prostě něco jiného.

Děkuji.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Jan at 2014-03-23 12:33:30
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 180 GB (49%) free of 364 GB
Total RAM: 3039 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:33:50, on 23.3.2014
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files\Sony\VAIO Update 4\VAIOUpdt.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Program Files\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Program Files\Genius\Gila\mousehid.exe
C:\Program Files\Genius\Gila\trayicon.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Bitdefender\Bitdefender\bdagent.exe
C:\Program Files\sony\Network Utility\LANUtil.exe
C:\Program Files\Steam\Steam.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe
C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
C:\Program Files\Expat Shield\bin\openvpntray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\PROGRA~1\Raptr\raptr.exe
C:\Program Files\Google\Drive\googledrivesync.exe
C:\PROGRA~1\Raptr\raptr_im.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Jan\Downloads\RSIT (4).exe
C:\Program Files\trend micro\Jan.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Bitdefender Wallet - {1DAC0C53-7D23-4AB3-856A-B04D98CD982A} - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll
O2 - BHO: Expat Shield Class - {3706EE7C-3CAD-445D-8A43-03EBC3B75908} - C:\Program Files\Expat Shield\HssIE\ExpatIE.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [Skytel] Skytel.exe
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [AML] C:\Program Files\Sony\VAIO Launcher\AML.exe InitApp
O4 - HKLM\..\Run: [Gila] C:\Program Files\Genius\Gila\mousehid.exe
O4 - HKLM\..\Run: [TP-LINK USB Printer Controller] C:\Program Files\TP-LINK\USB Printer Controller\USB Printer Controller.exe -mini
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Fences] "C:\Program Files\Stardock\Fences\Fences.exe" /startup
O4 - HKLM\..\Run: [Bdagent] "C:\Program Files\Bitdefender\Bitdefender\bdagent.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [AMD AVT] Cmd.exe /c start "AMD Accelerated Video Transcoding device initialization" /min "C:\Program Files\AMD AVT\bin\kdbsync.exe" aml
O4 - HKCU\..\Run: [NSUFloatingUI] "C:\Program Files\Sony\Network Utility\LANUtil.exe"
O4 - HKCU\..\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [GoogleDriveSync] "C:\Program Files\Google\Drive\googledrivesync.exe" /autostart
O4 - HKCU\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe"
O4 - HKCU\..\Run: [Bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard
O4 - HKCU\..\Run: [Bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe"
O4 - HKCU\..\Run: [Raptr] C:\PROGRA~1\Raptr\raptrstub.exe --startup
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet] "C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe" --hidden --nowizard (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\Run: [Bitdefender Wallet Application Agent] "C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe" (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [Bitdefender Wallet Agent] "C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe" (User 'Default user')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O22 - SharedTaskScheduler: FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Active File Monitor V6 (AdobeActiveFileMonitor6.0) - Unknown owner - c:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: Expat Shield Service (ExpatShieldService) - Unknown owner - C:\Program Files\Expat Shield\bin\openvpnas.exe
O23 - Service: Expat Shield Routing Service (ExpatSrv) - AnchorFree Inc. - C:\Program Files\Expat Shield\HssWPR\hsssrv.exe
O23 - Service: Expat Shield Tray Service (ExpatTrayService) - Unknown owner - C:\Program Files\Expat Shield\bin\ExpatTrayService.EXE
O23 - Service: Expat Shield Monitoring Service (ExpatWd) - Unknown owner - C:\Program Files\Expat Shield\bin\hsswd.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Desktop Manager 5.8.809.23506 (GoogleDesktopManager-092308-165331) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: IviRegMgr - InterVideo - c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: LMIGuardianSvc - LogMeIn, Inc. - C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: NSUService - Sony Corporation - C:\Program Files\sony\Network Utility\NSUService.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: Realtek Audio Service (RtkAudioService) - Realtek Semiconductor - C:\Windows\RtkAudioService.exe
O23 - Service: Skype Updater (SkypeUpdate) - Skype Technologies - C:\Program Files\Skype\Updater\Updater.exe
O23 - Service: VAIO Media plus Content Importer (SOHCImp) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe
O23 - Service: VAIO Media plus Digital Media Server (SOHDms) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDms.exe
O23 - Service: VAIO Media plus Device Searcher (SOHDs) - Sony Corporation - C:\Program Files\Sony\VAIO Media plus\SOHDs.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files\Common Files\Steam\SteamService.exe
O23 - Service: CamMonitor (uCamMonitor) - ArcSoft, Inc. - C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe
O23 - Service: Bitdefender Desktop Update Service (UPDATESRV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe
O23 - Service: VAIO Entertainment TV Device Arbitration Service - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe
O23 - Service: VAIO Event Service - Sony Corporation - C:\Program Files\sony\VAIO Event Service\VESMgr.exe
O23 - Service: VAIO Content Folder Watcher (VCFw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe
O23 - Service: VAIO Content Metadata Intelligent Analyzing Manager (VcmIAlzMgr) - Sony Corporation - C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe
O23 - Service: VAIO Content Metadata XML Interface (VcmXmlIfHelper) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe
O23 - Service: VAIO Entertainment UPnP Client Adapter (Vcsw) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
O23 - Service: Bitdefender Virus Shield (VSSERV) - Bitdefender - C:\Program Files\Bitdefender\Bitdefender\vsserv.exe
O23 - Service: VAIO Entertainment Database Service (VzCdbSvc) - Sony Corporation - C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
O23 - Service: wampapache - Apache Software Foundation - c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe
O23 - Service: wampmysqld - Unknown owner - c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 14211 bytes

======Scheduled tasks folder======

C:\Windows\tasks\dsmonitor.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\uarvi6mo.default

"{20a82645-c095-46ed-80e3-08825760534b}"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"ffpwdman@bitdefender.com"=C:\Program Files\Bitdefender\Bitdefender\ffpwdman\

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 11.9.900.152 Plugin
"Path"=C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_152.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Player Plugin,version=1.0.0]
"Description"=DivX® Player Plugin for VOD Content
"Path"=C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.51.2]
"Description"=Java™ Deployment Toolkit
"Path"=C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.51.2]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@ngm.nexoneu.com/NxGame]
"Description"=Nexon Game Controller
"Path"=C:\ProgramData\NexonEU\NGM\npnxgameEU.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.22.5\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@videolan.org/vlc,version=2.0.8]
"Description"=VLC Multimedia Plugin
"Path"=C:\Program Files\VideoLAN\VLC\npvlc.dll

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2008-06-12 75128]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1DAC0C53-7D23-4AB3-856A-B04D98CD982A}]
Bitdefender Wallet - C:\Program Files\Bitdefender\Bitdefender\pmbxie.dll [2014-02-17 156400]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}]
Expat Shield Class - C:\Program Files\Expat Shield\HssIE\ExpatIE.dll [2012-01-05 233288]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2013-12-18 462760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-12 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2013-12-18 171944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-12 345480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2008-06-12 345480]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint\Apoint.exe [2008-09-30 122880]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2008-10-17 6295552]
"Skytel"=C:\Windows\Skytel.exe [2008-10-17 1826816]
"Acrobat Assistant 8.0"=C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2008-06-12 640376]
"AML"=C:\Program Files\Sony\VAIO Launcher\AML.exe [2008-09-09 1097728]
"Gila"=C:\Program Files\Genius\Gila\mousehid.exe [2013-01-16 307712]
"TP-LINK USB Printer Controller"=C:\Program Files\TP-LINK\USB Printer Controller\USB Printer Controller.exe [2012-09-21 4226048]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-02-11 186904]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2013-07-02 254336]
"Fences"=C:\Program Files\Stardock\Fences\Fences.exe [2013-11-26 4031152]
"Bdagent"=C:\Program Files\Bitdefender\Bitdefender\bdagent.exe [2014-01-29 1843016]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2013-04-30 642304]
"AMD AVT"=Cmd.exe /c start AMD Accelerated Video Transcoding device initialization /min C:\Program Files\AMD AVT\bin\kdbsync.exe aml []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NSUFloatingUI"=C:\Program Files\Sony\Network Utility\LANUtil.exe [2008-12-05 270336]
"Steam"=C:\Program Files\Steam\Steam.exe [2014-02-25 1821888]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2013-03-14 3672640]
"GoogleDriveSync"=C:\Program Files\Google\Drive\googledrivesync.exe [2014-01-30 21822128]
"Bitdefender Wallet Agent"=C:\Program Files\Bitdefender\Bitdefender\pmbxag.exe [2014-02-03 481880]
"Bitdefender Wallet"=C:\Program Files\Bitdefender\Bitdefender\pwdmanui.exe [2014-02-03 901096]
"Bitdefender Wallet Application Agent"=C:\Program Files\Bitdefender\Bitdefender\bdapppassmgr.exe [2014-01-29 614232]
"Raptr"=C:\PROGRA~1\Raptr\raptrstub.exe [2014-03-07 55360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-29 30192]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2014-02-26 3814736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2013-11-14 20584608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk]
C:\PROGRA~1\LOLREP~1\LOLREC~1.EXE [2013-12-11 526848]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\VESWinlogon]
C:\Windows\system32\VESWinlogon.dll [2008-11-06 98304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\explorer\SharedTaskScheduler]
FencesShellExt - {1984DD45-52CF-49cd-AB77-18F378FEA264} - C:\Program Files\Stardock\Fences\FencesMenu.dll [2013-11-26 456368]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticetext"=

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"C:\Nexon\Combat Arms EU\CombatArms.exe"="C:\Nexon\Combat Arms EU\CombatArms.exe:*Enabled:CombatArms.exe"
"C:\Nexon\Combat Arms EU\Engine.exe"="C:\Nexon\Combat Arms EU\Engine.exe:*Enabled:Engine.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"MSVideo8"=VfWWDM32.dll
"vidc.DIVX"=DivX.dll
"VIDC.dvsd"=C:\Program Files\Common Files\Sony Shared\VideoLib\sonydv.dll
"vidc.yv12"=DivX.dll
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"vidc.VP60"=C:\Windows\system32\vp6vfw.dll
"vidc.VP61"=C:\Windows\system32\vp6vfw.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 month======

2014-03-22 10:10:05 ----D---- C:\Windows\pss
2014-03-21 14:45:15 ----D---- C:\Program Files\Game Dev Tycoon
2014-03-21 14:33:45 ----D---- C:\ProgramData\ATI
2014-03-21 14:33:42 ----D---- C:\ProgramData\AMD
2014-03-21 14:33:41 ----D---- C:\Program Files\AMD AVT
2014-03-21 14:33:37 ----D---- C:\Program Files\AMD APP
2014-03-21 14:33:33 ----D---- C:\Program Files\Common Files\ATI Technologies
2014-03-21 14:28:30 ----SHD---- C:\Config.Msi
2014-03-21 14:24:05 ----D---- C:\AMD
2014-03-21 14:23:01 ----D---- C:\Users\Jan\AppData\Roaming\library_dir
2014-03-21 14:22:29 ----D---- C:\Users\Jan\AppData\Roaming\Raptr
2014-03-21 14:21:56 ----D---- C:\Program Files\Raptr
2014-03-21 14:06:43 ----RASH---- C:\MSDOS.SYS
2014-03-21 14:06:43 ----RASH---- C:\IO.SYS
2014-03-18 18:25:48 ----D---- C:\Users\Jan\AppData\Roaming\JetBrains
2014-03-16 21:17:01 ----A---- C:\bdlog.txt
2014-03-16 21:10:13 ----A---- C:\Windows\system32\drivers\bdvedisk.sys
2014-03-16 21:06:28 ----A---- C:\Windows\system32\WdfCoInstaller01009.dll
2014-03-16 21:06:17 ----D---- C:\ProgramData\BDLogging
2014-03-16 21:05:56 ----A---- C:\Windows\system32\drivers\bdsandbox.sys
2014-03-16 21:05:56 ----A---- C:\Windows\system32\drivers\BdfNdisf6.sys
2014-03-16 21:05:56 ----A---- C:\Windows\system32\bdsandboxuiskin.dll
2014-03-16 21:05:56 ----A---- C:\Windows\system32\bdsandboxuh.dll
2014-03-16 21:05:56 ----A---- C:\Windows\capicom.dll
2014-03-16 21:05:46 ----A---- C:\Windows\system32\drivers\avchv.sys
2014-03-16 21:05:46 ----A---- C:\Windows\system32\drivers\avckf.sys
2014-03-16 21:05:46 ----A---- C:\Windows\system32\drivers\avc3.sys
2014-03-16 20:53:12 ----D---- C:\Users\Jan\AppData\Roaming\Bitdefender
2014-03-16 20:48:24 ----D---- C:\ProgramData\Bitdefender
2014-03-16 20:48:24 ----A---- C:\Windows\system32\drivers\gzflt.sys
2014-03-16 20:48:22 ----D---- C:\Program Files\Bitdefender
2014-03-16 20:48:22 ----A---- C:\Windows\system32\drivers\trufos.sys
2014-03-16 20:48:00 ----D---- C:\Users\Jan\AppData\Roaming\QuickScan
2014-03-16 20:47:31 ----D---- C:\Program Files\Common Files\Bitdefender
2014-03-15 22:34:09 ----D---- C:\Program Files\WYSIWYG Web Builder 9
2014-03-15 22:32:45 ----A---- C:\Windows\WYSIWYG Web Builder 9 Setup Log.txt
2014-03-14 21:24:54 ----D---- C:\ProgramData\Stardock
2014-03-14 21:22:15 ----D---- C:\Users\Jan\AppData\Roaming\Stardock
2014-03-14 21:22:08 ----D---- C:\Program Files\Stardock
2014-03-14 21:13:38 ----A---- C:\Windows\system32\wmp.dll
2014-03-14 21:13:37 ----A---- C:\Windows\system32\wmploc.DLL
2014-03-14 21:05:05 ----D---- C:\Windows\system32\MRT
2014-03-14 21:05:01 ----A---- C:\Windows\system32\MRT.exe
2014-03-14 20:50:37 ----SHD---- C:\Windows\system32\%APPDATA%
2014-03-14 18:45:48 ----A---- C:\Windows\system32\wer.dll
2014-03-14 18:29:58 ----A---- C:\Windows\system32\secproc_isv.dll
2014-03-14 18:29:58 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2014-03-14 18:29:58 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2014-03-14 18:29:58 ----A---- C:\Windows\system32\RMActivate_isv.exe
2014-03-14 18:29:58 ----A---- C:\Windows\system32\RMActivate.exe
2014-03-14 18:29:57 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2014-03-14 18:29:57 ----A---- C:\Windows\system32\secproc_ssp.dll
2014-03-14 18:29:57 ----A---- C:\Windows\system32\secproc.dll
2014-03-14 18:29:57 ----A---- C:\Windows\system32\msdrm.dll
2014-03-14 17:34:13 ----SD---- C:\32788R22FWJFW
2014-03-09 12:11:44 ----D---- C:\wamp
2014-02-28 07:48:10 ----D---- C:\Program Files\LogMeIn Hamachi
2014-02-24 15:27:06 ----D---- C:\ProgramData\Oracle
2014-02-24 15:27:02 ----D---- C:\Program Files\Common Files\Java
2014-02-24 15:26:57 ----A---- C:\Windows\system32\javaws.exe
2014-02-24 15:26:48 ----A---- C:\Windows\system32\WindowsAccessBridge.dll
2014-02-24 15:26:48 ----A---- C:\Windows\system32\javaw.exe
2014-02-24 15:26:48 ----A---- C:\Windows\system32\java.exe

======List of files/folders modified in the last 1 month======

2014-03-23 12:33:35 ----D---- C:\Program Files\trend micro
2014-03-23 12:31:23 ----RD---- C:\Program Files
2014-03-23 12:31:07 ----RSD---- C:\Windows\assembly
2014-03-23 12:30:59 ----D---- C:\Program Files\Cheat Engine 6.3
2014-03-23 12:29:52 ----D---- C:\Windows\system32\drivers\etc
2014-03-23 11:47:21 ----D---- C:\Windows\temp
2014-03-23 11:26:54 ----D---- C:\ProgramData\PMB Files
2014-03-23 11:25:43 ----D---- C:\Users\Jan\AppData\Roaming\TS3Client
2014-03-23 10:29:57 ----D---- C:\Windows\system32\config
2014-03-23 10:21:21 ----D---- C:\Windows\Prefetch
2014-03-23 10:19:55 ----D---- C:\Program Files\Steam
2014-03-23 10:19:41 ----D---- C:\Windows
2014-03-23 10:16:36 ----D---- C:\Windows\System32
2014-03-22 20:26:33 ----D---- C:\Windows\system32\catroot
2014-03-22 13:18:55 ----SHD---- C:\System Volume Information
2014-03-22 06:27:18 ----D---- C:\Windows\system32\drivers
2014-03-21 14:36:14 ----D---- C:\Users\Jan\AppData\Roaming\uTorrent
2014-03-21 14:33:45 ----D---- C:\ProgramData
2014-03-21 14:33:42 ----SHD---- C:\Windows\Installer
2014-03-21 14:33:33 ----D---- C:\Program Files\Common Files
2014-03-21 14:33:13 ----D---- C:\Program Files\ATI Technologies
2014-03-21 14:27:05 ----D---- C:\Windows\inf
2014-03-21 14:27:01 ----D---- C:\Windows\system32\DriverStore
2014-03-21 13:06:32 ----D---- C:\Users\Jan\AppData\Roaming\Skype
2014-03-18 18:18:13 ----D---- C:\Program Files\Java
2014-03-18 18:17:54 ----D---- C:\Windows\system32\catroot2
2014-03-16 16:08:46 ----D---- C:\Users\Jan\AppData\Roaming\.minecraft
2014-03-16 12:59:17 ----A---- C:\Windows\system32\PerfStringBackup.INI
2014-03-15 22:34:02 ----A---- C:\Windows\iun6002.exe
2014-03-15 13:26:41 ----D---- C:\Windows\rescache
2014-03-15 11:49:23 ----D---- C:\Windows\Microsoft.NET
2014-03-14 22:41:19 ----D---- C:\Users\Jan\AppData\Roaming\FileZilla
2014-03-14 22:41:05 ----D---- C:\Windows\Logs
2014-03-14 22:41:05 ----D---- C:\Windows\debug
2014-03-14 22:21:26 ----D---- C:\Windows\winsxs
2014-03-14 22:17:36 ----D---- C:\Users\Jan\AppData\Roaming\vlc
2014-03-14 21:59:11 ----D---- C:\Program Files\Windows Media Player
2014-03-14 21:59:09 ----D---- C:\Windows\system32\cs-CZ
2014-03-14 21:59:09 ----D---- C:\Program Files\Windows Defender
2014-03-14 21:59:08 ----D---- C:\Windows\system32\wbem
2014-03-14 21:37:36 ----D---- C:\Program Files\osu!
2014-03-14 21:37:21 ----D---- C:\ProgramData\Microsoft Help
2014-03-14 20:52:18 ----D---- C:\ProgramData\Package Cache
2014-03-14 05:56:45 ----D---- C:\Program Files\TeamSpeak 3 Client
2014-03-10 14:41:09 ----HD---- C:\Program Files\InstallShield Installation Information
2014-03-10 14:39:41 ----D---- C:\ProgramData\ArcSoft
2014-02-27 07:48:31 ----D---- C:\Program Files\Common Files\Steam
2014-02-26 17:53:25 ----D---- C:\Program Files\LOLReplay
2014-02-24 10:36:55 ----D---- C:\Windows\system32\NDF
2014-02-24 09:42:30 ----D---- C:\Program Files\Wolfenstein - Enemy Territory
2014-02-24 09:40:34 ----A---- C:\Windows\system32\PnkBstrB.exe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 avc3;avc3; C:\Windows\system32\DRIVERS\avc3.sys [2013-12-02 778032]
R0 giveio;giveio; C:\Windows\system32\giveio.sys [1996-04-03 5248]
R0 gzflt;gzflt; C:\Windows\system32\DRIVERS\gzflt.sys [2013-08-23 165744]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2008-10-17 327192]
R0 PxHelp20;PxHelp20; C:\Windows\System32\Drivers\PxHelp20.sys [2008-06-16 44944]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 speedfan;speedfan; C:\Windows\system32\speedfan.sys [2012-12-29 24184]
R0 trufos;trufos; C:\Windows\system32\DRIVERS\trufos.sys [2013-08-07 360376]
R1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver; \??\c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2013-02-22 78144]
R1 bdfwfpf;bdfwfpf; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 90704]
R1 bdselfpr;bdselfpr; \??\C:\Program Files\Bitdefender\Bitdefender\bdselfpr.sys [2013-07-26 135600]
R1 DMICall;Sony DMI Call service; C:\Windows\system32\DRIVERS\DMICall.sys [2008-11-25 10216]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-25 242240]
R1 VBoxDrv;VirtualBox Service; C:\Windows\system32\DRIVERS\VBoxDrv.sys [2013-07-04 188176]
R1 VBoxUSBMon;VirtualBox USB Monitor Driver; C:\Windows\system32\DRIVERS\VBoxUSBMon.sys [2013-07-04 94480]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2008-01-25 12672]
R2 regi;regi; \??\C:\Windows\system32\drivers\regi.sys [2007-04-18 11032]
R2 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2008-10-23 68608]
R2 risdptsk;risdptsk; C:\Windows\system32\DRIVERS\risdptsk.sys [2008-10-23 46592]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2013-04-30 290304]
R3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect; C:\Windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2008-04-24 17920]
R3 avckf;avckf; C:\Windows\system32\DRIVERS\avckf.sys [2013-12-02 516936]
R3 avchv;avchv Function Driver; C:\Windows\system32\DRIVERS\avchv.sys [2012-11-02 242504]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2008-01-25 985600]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2008-01-25 207360]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-10-17 2149912]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 RTHDMIAzAudService;Service for HDMI; C:\Windows\system32\drivers\RtHDMIV.sys [2008-10-24 150560]
R3 SFEP;Sony Firmware Extension Parser; C:\Windows\system32\DRIVERS\SFEP.sys [2008-08-22 9344]
R3 taphss;Anchorfree HSS Adapter; C:\Windows\system32\DRIVERS\taphss.sys [2012-01-05 32768]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2008-09-30 164400]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2013-04-30 10070016]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 bdfwfpf_pc;bdfwfpf_pc; \??\C:\Program Files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-07-02 108008]
S3 BDSandBox;BDSandBox; \??\C:\Windows\system32\drivers\bdsandbox.sys [2013-11-04 66832]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 78336]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2010-11-20 393216]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2010-11-20 60416]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2008-10-21 84008]
S3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2008-10-21 109096]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2008-10-21 29736]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2008-10-21 18344]
S3 catchme;catchme; \??\C:\Users\Jan\AppData\Local\Temp\catchme.sys []
S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudbus.sys [2013-08-20 84248]
S3 EagleXNt;EagleXNt; \??\C:\Windows\system32\drivers\EagleXNt.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\Windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 100224]
S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.); C:\Windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 182680]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter; C:\Windows\system32\DRIVERS\VBoxNetAdp.sys [2013-07-04 104720]
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeActiveFileMonitor6.0;Adobe Active File Monitor V6; c:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe [2007-09-11 124832]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2013-04-30 217088]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [2008-10-15 555560]
R2 EvtEng;Intel® PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2008-08-21 860160]
R2 ExpatShieldService;Expat Shield Service; C:\Program Files\Expat Shield\bin\openvpnas.exe [2012-01-17 331608]
R2 ExpatSrv;Expat Shield Routing Service; C:\Program Files\Expat Shield\HssWPR\hsssrv.exe [2012-01-05 363336]
R2 ExpatWd;Expat Shield Monitoring Service; C:\Program Files\Expat Shield\bin\hsswd.exe [2012-01-05 329544]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2014-02-26 1678672]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-02-11 354840]
R2 IviRegMgr;IviRegMgr; c:\Program Files\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LMIGuardianSvc;LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-02-26 375056]
R2 NSUService;NSUService; C:\Program Files\sony\Network Utility\NSUService.exe [2008-12-05 303104]
R2 PnkBstrA;PnkBstrA; C:\Windows\system32\PnkBstrA.exe [2013-12-26 75136]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2008-08-21 466944]
R2 RtkAudioService;Realtek Audio Service; C:\Windows\RtkAudioService.exe [2008-10-17 102400]
R2 SQLWriter;SQL Server VSS Writer; C:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2012-02-11 105048]
R2 uCamMonitor;CamMonitor; C:\Program Files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
R2 UPDATESRV;Bitdefender Desktop Update Service; C:\Program Files\Bitdefender\Bitdefender\updatesrv.exe [2013-10-07 54424]
R2 VAIO Event Service;VAIO Event Service; C:\Program Files\sony\VAIO Event Service\VESMgr.exe [2008-11-06 203624]
R2 VCFw;VAIO Content Folder Watcher; C:\Program Files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2008-09-12 446464]
R2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager; C:\Program Files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2008-10-02 369952]
R2 VSSERV;Bitdefender Virus Shield; C:\Program Files\Bitdefender\Bitdefender\vsserv.exe [2014-01-29 1235304]
R2 VzCdbSvc;VAIO Entertainment Database Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe [2008-09-08 192512]
R3 Steam Client Service;Steam Client Service; C:\Program Files\Common Files\Steam\SteamService.exe [2014-02-25 568512]
R3 Vcsw;VAIO Entertainment UPnP Client Adapter; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe [2008-09-08 279848]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2012-07-08 104912]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-22 116648]
S2 SkypeUpdate;Skype Updater; C:\Program Files\Skype\Updater\Updater.exe [2013-09-05 171680]
S3 ACDaemon;ArcSoft Connect Daemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
S3 ExpatTrayService;Expat Shield Tray Service; C:\Program Files\Expat Shield\bin\ExpatTrayService.EXE [2012-01-17 77520]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-11-29 651720]
S3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-29 30192]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2013-07-22 116648]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2013-07-22 156656]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2014-01-11 119408]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2008-05-20 53248]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2008-05-20 53248]
S3 SOHCImp;VAIO Media plus Content Importer; C:\Program Files\Sony\VAIO Media plus\SOHCImp.exe [2008-10-21 103712]
S3 SOHDms;VAIO Media plus Digital Media Server; C:\Program Files\Sony\VAIO Media plus\SOHDms.exe [2008-10-21 353568]
S3 SOHDs;VAIO Media plus Device Searcher; C:\Program Files\Sony\VAIO Media plus\SOHDs.exe [2008-10-21 62752]
S3 SPTISRV;Sony SPTI Service; C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe [2008-05-20 77824]
S3 VAIO Entertainment TV Device Arbitration Service;VAIO Entertainment TV Device Arbitration Service; C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzHardwareResourceManager\VzHardwareResourceManager\VzHardwareResourceManager.exe [2008-09-08 73728]
S3 VcmXmlIfHelper;VAIO Content Metadata XML Interface; C:\Program Files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2008-09-19 83232]
S3 wampapache;wampapache; c:\wamp\bin\apache\apache2.4.4\bin\httpd.exe [2013-06-23 22016]
S3 wampmysqld;wampmysqld; c:\wamp\bin\mysql\mysql5.6.12\bin\mysqld.exe [2013-06-23 10923520]
S4 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2012-07-08 46528]
S4 BdDesktopParental;Bitdefender Desktop Parental Control; C:\Program Files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-21 69880]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139680]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139680]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2012-07-08 139680]

-----------------EOF-----------------

#2 Příspěvek od **Roli** » 23 bře 2014 21:55

Zdravím, smaž nepotřebné soubory

pomocí CCleaneru

návod :

Čistič - tady vyčistíš PC od nepotřebných souborů a vysypeš Koš

Registry - tady vyčistíš registry (před použitím doporučuji udělat jejich zálohu kterou CCleaner nabízí)

čištění registru je třeba několikrát zopakovat !

Nástroje - tady lze odinstalovat programy, upravit co se spustí po Startu systému a obnovit systém

Stáhni a ulož na plochu AdwCleaner,

ukonči všechny programy včetně prohlížeče a dvojklikem spusť,

objeví se okno kde vlevo nahoře klikni na Scan.

Po té proběhne sken a po jeho skončení klikni na Report a to co na Tebe vypadne mi sem zkopíruj.

Pak použij Mbam z mého podpisu a dej mi sem z něj také log, předem nic nemazat !

_Antti_ · #3 Příspěvek od **_Antti_** » 25 bře 2014 05:34

Sice ten scan MBAM trval dlou, ale tady je.

# AdwCleaner v3.022 - Report created 24/03/2014 at 06:39:27
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Jan - JAN-PC
# Running from : C:\Users\Jan\Desktop\adwcleaner (2).exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

File Found : C:\Users\Jan\Desktop\Uninstall.exe
File Found : C:\Windows\System32\Tasks\dsmonitor
File Found : C:\Windows\Tasks\dsmonitor.job
Folder Found C:\Program Files\uniblue
Folder Found C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniblue
Folder Found C:\ProgramData\uniblue
Folder Found C:\Users\Jan\AppData\Roaming\uniblue
Folder Found C:\Windows\system32\AI_RecycleBin

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Found : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Found : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Plain\dsmonitor
Key Found : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BC7DE9E-EAC2-44F4-A34C-2DA753B3328C}
Key Found : HKLM\Software\Uniblue

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7601.17514

-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\uarvi6mo.default\prefs.js ]

-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [3522 octets] - [24/10/2013 15:56:43]
AdwCleaner[R1].txt - [1870 octets] - [24/03/2014 06:39:27]
AdwCleaner[S0].txt - [3586 octets] - [24/10/2013 16:04:09]

########## EOF - C:\AdwCleaner\AdwCleaner[R1].txt - [1990 octets] ##########
___________________________________________________________________________________________________________________
Malwarebytes Anti-Malware 1.75.0.1300
www.malwarebytes.org

Verze: v2014.03.24.04

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 8.0.7601.17514
Jan :: JAN-PC [administrátor]

24.3.2014 19:37:51
mbam-log-2014-03-24 (19-37-51).txt

Typ: Kompletní kontrola (C:\|)
Nastavení kontroly povoleno: Paměť | Po spuštění | Registr | Systémové soubory | Heuristická analýza Extra | Heuristická analýza Shuriken | PUP | PUM
Nastavení kontroly zakázáno: P2P
Kontrolované objekty: 561647
Uplynulý čas: 9 hodin, 25 minut,

Nalezené procesy v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené moduly v paměti: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené klíče v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené hodnoty v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené datové položky v registru: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené složky: 0
(Žádné škodlivé položky nebyly zjištěny)

Nalezené soubory: 0
(Žádné škodlivé položky nebyly zjištěny)

(konec)

#4 Příspěvek od **Roli** » 25 bře 2014 17:38

Znovu spusť AdwCleaner ale tentokrát klikni na Clean,

proběhne restart PC kdy dojde ke smazání nepořádku.

Po té mi sem zase zkopíruj Report.

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

V případě nejasností je ZDE obrázkový návod.

_Antti_ · #5 Příspěvek od **_Antti_** » 25 bře 2014 18:55

# AdwCleaner v3.022 - Report created 25/03/2014 at 18:17:35
# Updated 13/03/2014 by Xplode
# Operating System : Windows 7 Home Premium Service Pack 1 (32 bits)
# Username : Jan - JAN-PC
# Running from : C:\Users\Jan\Desktop\adwcleaner (2).exe
# Option : Clean

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Deleted : C:\ProgramData\uniblue
Folder Deleted : C:\ProgramData\Microsoft\Windows\Start Menu\Programs\uniblue
Folder Deleted : C:\Program Files\uniblue
Folder Deleted : C:\Windows\system32\AI_RecycleBin
Folder Deleted : C:\Users\Jan\AppData\Roaming\uniblue
File Deleted : C:\Windows\Tasks\dsmonitor.job
File Deleted : C:\Windows\System32\Tasks\dsmonitor

***** [ Shortcuts ] *****

***** [ Registry ] *****

[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Logon\{1BC7DE9E-EAC2-44F4-A34C-2DA753B3328C}
[#] Key Deleted : HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{1BC7DE9E-EAC2-44F4-A34C-2DA753B3328C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{80703783-E415-4EE3-AB60-D36981C5A6F1}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{9945959C-AAD8-4312-8B57-2DE11927E770}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{6978F29A-3493-40B2-8CDC-9C13A02F85A4}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{D7949A66-D936-4028-9552-14F7DC50F38D}
Key Deleted : HKLM\Software\Uniblue

***** [ Browsers ] *****

-\\ Internet Explorer v8.0.7601.17514

-\\ Mozilla Firefox v26.0 (cs)

[ File : C:\Users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\uarvi6mo.default\prefs.js ]

-\\ Google Chrome v33.0.1750.154

[ File : C:\Users\Jan\AppData\Local\Google\Chrome\User Data\Default\preferences ]

*************************

AdwCleaner[R0].txt - [3522 octets] - [24/10/2013 15:56:43]
AdwCleaner[R1].txt - [2070 octets] - [24/03/2014 06:39:27]
AdwCleaner[R2].txt - [2130 octets] - [25/03/2014 18:15:24]
AdwCleaner[S0].txt - [3586 octets] - [24/10/2013 16:04:09]
AdwCleaner[S1].txt - [2077 octets] - [25/03/2014 18:17:35]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [2137 octets] ##########
_______________________________________________________________________________________________________________________
_______________________________________________________________________________________________________________________
ComboFix 14-03-24.01 - Jan 25.03.2014 18:31:39.3.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3039.1850 [GMT 1:00]
Spuštěný z: c:\users\Jan\Desktop\ComboFix.exe
AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
FW: Bitdefender Firewall *Disabled* {A23392FD-84B9-F933-2C71-81E751F6EF46}
SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\install.exe
c:\programdata\1394999280.bdinstall.bin
c:\users\Jan\AppData\Local\Temp\_MEI24922\_ctypes.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\_elementtree.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\_hashlib.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\_multiprocessing.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\_socket.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\_ssl.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\pyexpat.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\pysqlite2._sqlite.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\python27.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\pythoncom27.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\PyWinTypes27.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\select.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\unicodedata.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32api.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32com.shell.shell.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32crypt.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32event.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32file.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32inet.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32pdh.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32pipe.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32process.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32profile.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32security.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\win32ts.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\windows._lib_cacheinvalidation.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._controls_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._core_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._gdi_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._html2.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._misc_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._windows_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wx._wizard.pyd
c:\users\Jan\AppData\Local\Temp\_MEI24922\wxbase294u_net_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\wxbase294u_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\wxmsw294u_adv_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\wxmsw294u_core_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\wxmsw294u_html_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI24922\wxmsw294u_webview_vc90.dll
c:\windows\security\Database\tmp.edb
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-25 do 2014-03-25 )))))))))))))))))))))))))))))))
.
.
2014-03-25 17:44 . 2014-03-25 17:48 -------- d-----w- c:\users\Jan\AppData\Local\temp
2014-03-25 17:44 . 2014-03-25 17:44 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-03-25 17:44 . 2014-03-25 17:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-24 18:37 . 2014-03-24 18:37 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2014-03-21 13:45 . 2014-03-21 13:45 -------- d-----w- c:\program files\Game Dev Tycoon
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\programdata\ATI
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\programdata\AMD
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\program files\AMD AVT
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\program files\AMD APP
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\program files\Common Files\ATI Technologies
2014-03-21 13:24 . 2014-03-21 13:24 -------- d-----w- C:\AMD
2014-03-21 13:23 . 2014-03-21 13:23 -------- d-----w- c:\users\Jan\AppData\Roaming\library_dir
2014-03-21 13:22 . 2014-03-25 17:24 -------- d-----w- c:\users\Jan\AppData\Roaming\Raptr
2014-03-21 13:21 . 2014-03-21 13:23 -------- d-----w- c:\program files\Raptr
2014-03-20 15:39 . 2014-03-23 10:43 -------- d-----w- c:\users\Jan\AppData\Local\Game Dev Tycoon
2014-03-18 17:35 . 2014-03-18 17:35 -------- d-----w- c:\users\Jan\.android
2014-03-18 17:25 . 2014-03-18 17:25 -------- d-----w- c:\users\Jan\AppData\Roaming\JetBrains
2014-03-18 17:23 . 2014-03-18 17:25 -------- d-----w- c:\users\Jan\.gradle
2014-03-18 17:22 . 2014-03-18 17:55 -------- d-----w- c:\users\Jan\AndroidStudioProjects
2014-03-18 17:19 . 2014-03-18 17:19 -------- d-----w- c:\users\Jan\.AndroidStudioPreview
2014-03-18 16:41 . 2014-03-18 16:41 -------- d-----w- c:\users\Jan\AppData\Local\Android
2014-03-16 20:10 . 2014-03-16 20:10 72704 ----a-w- c:\windows\system32\drivers\bdvedisk.sys
2014-03-16 20:06 . 2009-07-14 21:27 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2014-03-16 20:06 . 2014-03-16 20:06 -------- d-----w- c:\programdata\BDLogging
2014-03-16 20:05 . 2013-11-04 14:47 66832 ----a-w- c:\windows\system32\drivers\bdsandbox.sys
2014-03-16 20:05 . 2013-11-04 14:47 74512 ----a-w- c:\windows\system32\bdsandboxuiskin.dll
2014-03-16 20:05 . 2013-11-04 14:46 27168 ----a-w- c:\windows\system32\bdsandboxuh.dll
2014-03-16 20:05 . 2013-02-22 17:46 78144 ----a-w- c:\windows\system32\drivers\BdfNdisf6.sys
2014-03-16 20:05 . 2007-04-11 09:11 511328 ----a-w- c:\windows\capicom.dll
2014-03-16 20:05 . 2013-12-02 10:57 516936 ----a-w- c:\windows\system32\drivers\avckf.sys
2014-03-16 20:05 . 2013-12-02 10:55 778032 ----a-w- c:\windows\system32\drivers\avc3.sys
2014-03-16 20:05 . 2012-11-02 12:17 242504 ----a-w- c:\windows\system32\drivers\avchv.sys
2014-03-16 19:53 . 2014-03-16 19:53 -------- d-----w- c:\users\Jan\AppData\Roaming\Bitdefender
2014-03-16 19:48 . 2014-03-16 20:12 -------- d-----w- c:\programdata\Bitdefender
2014-03-16 19:48 . 2013-08-23 11:48 165744 ----a-w- c:\windows\system32\drivers\gzflt.sys
2014-03-16 19:48 . 2014-03-16 19:48 -------- d-----w- c:\program files\Bitdefender
2014-03-16 19:48 . 2013-08-07 11:46 360376 ----a-w- c:\windows\system32\drivers\trufos.sys
2014-03-16 19:48 . 2014-03-16 19:48 -------- d-----w- c:\users\Jan\AppData\Roaming\QuickScan
2014-03-16 19:47 . 2014-03-16 19:48 -------- d-----w- c:\program files\Common Files\Bitdefender
2014-03-16 13:17 . 2014-03-16 13:17 -------- d-----w- c:\users\Jan\AppData\Local\Incomedia
2014-03-15 21:34 . 2014-03-15 21:34 -------- d-----w- c:\program files\WYSIWYG Web Builder 9
2014-03-14 20:24 . 2014-03-14 20:24 -------- d-----w- c:\programdata\Stardock
2014-03-14 20:23 . 2014-03-14 20:23 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2014-03-14 20:22 . 2014-03-14 20:22 -------- d-----w- c:\users\Jan\AppData\Roaming\Stardock
2014-03-14 20:22 . 2014-03-14 20:22 -------- d-----w- c:\program files\Stardock
2014-03-14 20:13 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2014-03-14 20:13 . 2013-05-10 03:48 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-03-14 20:05 . 2014-03-14 20:10 -------- d-----w- c:\windows\system32\MRT
2014-03-14 19:50 . 2014-03-14 19:50 -------- d-sh--w- c:\windows\system32\%APPDATA%
2014-03-14 17:45 . 2014-01-29 02:06 381440 ----a-w- c:\windows\system32\wer.dll
2014-03-14 17:29 . 2013-12-04 02:03 423936 ----a-w- c:\windows\system32\secproc_isv.dll
2014-03-14 17:29 . 2013-12-04 01:54 510976 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2014-03-14 17:29 . 2013-12-04 01:54 594944 ----a-w- c:\windows\system32\RMActivate_isv.exe
2014-03-14 17:29 . 2013-12-04 01:54 572416 ----a-w- c:\windows\system32\RMActivate.exe
2014-03-14 17:29 . 2013-12-04 01:54 508928 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2014-03-14 17:29 . 2013-12-04 02:03 87040 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2014-03-14 17:29 . 2013-12-04 02:03 87040 ----a-w- c:\windows\system32\secproc_ssp.dll
2014-03-14 17:29 . 2013-12-04 02:03 428032 ----a-w- c:\windows\system32\secproc.dll
2014-03-14 17:29 . 2013-12-04 02:02 390144 ----a-w- c:\windows\system32\msdrm.dll
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-sh--we c:\windows\system32\config\systemprofile\Soubory cookie
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-sh--we c:\windows\system32\config\systemprofile\Nabídka Start
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-sh--we c:\windows\system32\config\systemprofile\Data aplikací
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-----w- c:\users\Jan\AppData\Local\ArcSoft
2014-03-09 12:09 . 2014-03-09 12:21 -------- d-----w- c:\users\Jan\workspace
2014-03-09 11:11 . 2014-03-09 11:13 -------- d-----w- C:\wamp
2014-02-28 12:43 . 2014-02-28 12:43 -------- d-----w- c:\users\Jan\AppData\Local\Microsoft Games
2014-02-28 06:48 . 2014-02-28 06:48 -------- d-----w- c:\program files\LogMeIn Hamachi
2014-02-24 14:27 . 2014-03-18 17:19 -------- d-----w- c:\programdata\Oracle
2014-02-24 14:27 . 2014-02-24 14:27 -------- d-----w- c:\program files\Common Files\Java
2014-02-24 14:26 . 2013-12-18 20:10 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-15 21:34 . 2013-10-05 17:34 737280 ----a-w- c:\windows\iun6002.exe
2014-03-14 19:54 . 2013-10-04 15:13 1066368 ----a-w- c:\programdata\Microsoft\WDExpress\11.0\1033\ResourceCache.dll
2014-02-24 08:40 . 2013-12-26 14:06 137176 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-02-24 08:40 . 2013-12-28 09:12 268952 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-02-24 08:40 . 2013-12-26 14:06 268952 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-01-13 05:09 . 2013-12-26 14:06 268952 ----a-w- c:\windows\system32\PnkBstrB.ex0
2013-12-26 19:18 . 2013-12-26 14:05 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2013-12-26 14:06 . 2013-12-26 14:06 22328 ----a-w- c:\users\Jan\AppData\Roaming\PnkBstrK.sys
2013-12-26 14:05 . 2013-12-26 14:05 682280 ----a-w- c:\windows\system32\pbsvc.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}]
2012-01-04 23:02 233288 ----a-w- c:\program files\Expat Shield\HssIE\ExpatIE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NSUFloatingUI"="c:\program files\Sony\Network Utility\LANUtil.exe" [2008-12-05 270336]
"Steam"="c:\program files\Steam\Steam.exe" [2014-02-25 1821888]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"GoogleDriveSync"="c:\program files\Google\Drive\googledrivesync.exe" [2014-01-30 21822128]
"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-02-03 481880]
"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2014-02-03 901096]
"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\bdapppassmgr.exe" [2014-01-29 614232]
"Raptr"="c:\progra~1\Raptr\raptrstub.exe" [2014-03-06 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2008-09-30 122880]
"RtHDVCpl"="RtHDVCpl.exe" [2008-10-17 6295552]
"Skytel"="Skytel.exe" [2008-10-17 1826816]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-12 640376]
"AML"="c:\program files\Sony\VAIO Launcher\AML.exe" [2008-09-09 1097728]
"Gila"="c:\program files\Genius\Gila\mousehid.exe" [2013-01-16 307712]
"TP-LINK USB Printer Controller"="c:\program files\TP-LINK\USB Printer Controller\USB Printer Controller.exe" [2012-09-21 4226048]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-02-11 186904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Fences"="c:\program files\Stardock\Fences\Fences.exe" [2013-11-26 4031152]
"Bdagent"="c:\program files\Bitdefender\Bitdefender\bdagent.exe" [2014-01-29 1843016]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-04-29 642304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-02-03 481880]
"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2014-02-03 901096]
"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\bdapppassmgr.exe" [2014-01-29 614232]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-10-15 776744]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2013-11-26 456368]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2008-11-06 01:32 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk
backup=c:\windows\pss\LOLRecorder.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2008-11-29 01:06 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2014-02-26 18:57 3814736 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-11-14 15:42 20584608 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
"HP Software Update"=c:\program files\Hp\HP Software Update\HPWuSchd2.exe
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe"
"MarketingTools"=c:\program files\Sony\Marketing Tools\MarketingTools.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
.
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-02-26 1678672]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-09-05 171680]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2013-12-02 516936]
R3 bdfwfpf_pc;bdfwfpf_pc;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-07-02 108008]
R3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys [2013-11-04 66832]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2008-10-21 29736]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2013-08-20 84248]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 ExpatTrayService;Expat Shield Tray Service;c:\program files\Expat Shield\bin\ExpatTrayService.EXE [2012-01-17 77520]
R3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-29 30192]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2014-03-24 40776]
R3 SOHCImp;VAIO Media plus Content Importer;c:\program files\Sony\VAIO Media plus\SOHCImp.exe [2008-10-21 103712]
R3 SOHDms;VAIO Media plus Digital Media Server;c:\program files\Sony\VAIO Media plus\SOHDms.exe [2008-10-21 353568]
R3 SOHDs;VAIO Media plus Device Searcher;c:\program files\Sony\VAIO Media plus\SOHDs.exe [2008-10-21 62752]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 100224]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 182680]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2013-07-04 104720]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2008-09-19 83232]
R4 BdDesktopParental;Bitdefender Desktop Parental Control;c:\program files\Bitdefender\Bitdefender\bdparentalservice.exe [2013-11-21 69880]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2013-12-02 778032]
S0 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys [2013-08-23 165744]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2013-02-22 78144]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 90704]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-25 242240]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2013-07-04 188176]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2013-07-04 94480]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-04-30 217088]
S2 ExpatShieldService;Expat Shield Service;c:\program files\Expat Shield\bin\openvpnas.exe [2012-01-17 331608]
S2 ExpatSrv;Expat Shield Routing Service;c:\program files\Expat Shield\HssWPR\hsssrv.exe [2012-01-04 363336]
S2 ExpatWd;Expat Shield Monitoring Service;c:\program files\Expat Shield\bin\hsswd.exe [2012-01-04 329544]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-02-26 375056]
S2 NSUService;NSUService;c:\program files\sony\Network Utility\NSUService.exe [2008-12-05 303104]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-18 11032]
S2 RtkAudioService;Realtek Audio Service;c:\windows\RtkAudioService.exe [2008-10-17 102400]
S2 uCamMonitor;CamMonitor;c:\program files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
S2 UPDATESRV;Bitdefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender\updatesrv.exe [2013-10-07 54424]
S2 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2008-09-12 446464]
S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2008-10-02 369952]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2008-04-24 17920]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [2012-11-02 242504]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2008-08-22 9344]
S3 yukonw7;Ovladač NDIS6.2 Miniport pro řadič Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-07-13 311296]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - aswFsBlk
*Deregistered* - aswFW
*Deregistered* - aswMonFlt
*Deregistered* - aswNdis2
*Deregistered* - aswRdr
*Deregistered* - aswRvrt
*Deregistered* - aswSnx
*Deregistered* - aswSP
*Deregistered* - aswTdi
*Deregistered* - aswVmm
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 19:45 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-25 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-22 20:17]
.
2014-03-25 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-22 20:17]
.
.
------- Doplňkový sken -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
uStart Page = about:blank
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\uarvi6mo.default\
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3598126742-3985364578-432227459-1000\Control Panel\Desktop*]
"WheelScrollLines"="3"
DUMPHIVE0.003 (REGF)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(4672)
c:\windows\system32\btmmhook.dll
c:\windows\system32\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Bitdefender\Bitdefender\vsserv.exe
c:\windows\system32\atieclxx.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\conhost.exe
c:\program files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\windows\system32\taskhost.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Sony\VAIO Update 4\VAIOUpdt.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\sony\VAIO Event Service\VESMgr.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
c:\windows\system32\DllHost.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\sony\VAIO Event Service\VESMgrSub.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\system32\DllHost.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
c:\program files\Expat Shield\bin\openvpntray.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Genius\Gila\trayicon.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\progra~1\Raptr\raptr.exe
c:\progra~1\Raptr\raptr_im.exe
c:\program files\Common Files\Steam\SteamService.exe
.
**************************************************************************
.
Celkový čas: 2014-03-25 18:58:07 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-03-25 17:58
ComboFix2.txt 2013-08-27 20:12
ComboFix3.txt 2013-08-27 18:21
.
Před spuštěním: Volných bajtů: 191 765 168 128
Po spuštění: Volných bajtů: 191 972 720 640
.
- - End Of File - - F8EA715F625CF370FA660F6FDF167919
A36C5E4F47E84449FF07ED3517B43A31

#6 Příspěvek od **Roli** » 26 bře 2014 17:44

Pokud jsi tak ještě neučinil, přesuň Combofix na plochu

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:

Kód: Vybrat vše

RegLock::  
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]

ulož Tebou vytvořený TXT soubor jako CFScript.txt na plochu,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:

Obrázek

Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci

_Antti_ · #7 Příspěvek od **_Antti_** » 27 bře 2014 16:37

Snad jsem ten script použil dobře, protože to vypadalo jako další skenování.

ComboFix 14-03-24.01 - Jan 27.03.2014 16:14:58.4.2 - x86
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3039.1874 [GMT 1:00]
Spuštěný z: c:\users\Jan\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Jan\Desktop\CFScript.txt
AV: Bitdefender Antivirus *Disabled/Updated* {9A0813D8-CED6-F86B-072E-28D2AF25A83D}
FW: Bitdefender Firewall *Disabled* {A23392FD-84B9-F933-2C71-81E751F6EF46}
SP: Bitdefender Antispyware *Disabled/Updated* {2169F23C-E8EC-F7E5-3D9E-13A0D4A2E280}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Jan\AppData\Local\Temp\_MEI51042\_ctypes.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\_elementtree.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\_hashlib.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\_multiprocessing.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\_socket.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\_ssl.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\pyexpat.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\pysqlite2._sqlite.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\python27.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\pythoncom27.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\PyWinTypes27.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\select.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\unicodedata.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32api.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32com.shell.shell.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32crypt.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32event.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32file.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32inet.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32pdh.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32pipe.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32process.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32profile.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32security.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\win32ts.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\windows._lib_cacheinvalidation.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._controls_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._core_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._gdi_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._html2.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._misc_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._windows_.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wx._wizard.pyd
c:\users\Jan\AppData\Local\Temp\_MEI51042\wxbase294u_net_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\wxbase294u_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\wxmsw294u_adv_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\wxmsw294u_core_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\wxmsw294u_html_vc90.dll
c:\users\Jan\AppData\Local\Temp\_MEI51042\wxmsw294u_webview_vc90.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-02-27 do 2014-03-27 )))))))))))))))))))))))))))))))
.
.
2014-03-27 15:27 . 2014-03-27 15:27 -------- d-----w- c:\windows\system32\86CA~1
2014-03-27 15:27 . 2014-03-27 15:27 -------- d-----w- C:\microsoft
2014-03-27 15:27 . 2014-03-27 15:31 -------- d-----w- c:\users\Jan\AppData\Local\temp
2014-03-27 15:27 . 2014-03-27 15:27 -------- d-----w- c:\users\Public\AppData\Local\temp
2014-03-27 15:27 . 2014-03-27 15:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2014-03-24 18:37 . 2014-03-24 18:37 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2014-03-21 13:45 . 2014-03-21 13:45 -------- d-----w- c:\program files\Game Dev Tycoon
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\programdata\ATI
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\programdata\AMD
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\program files\AMD AVT
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\program files\AMD APP
2014-03-21 13:33 . 2014-03-21 13:33 -------- d-----w- c:\program files\Common Files\ATI Technologies
2014-03-21 13:24 . 2014-03-21 13:24 -------- d-----w- C:\AMD
2014-03-21 13:23 . 2014-03-21 13:23 -------- d-----w- c:\users\Jan\AppData\Roaming\library_dir
2014-03-21 13:22 . 2014-03-27 14:36 -------- d-----w- c:\users\Jan\AppData\Roaming\Raptr
2014-03-21 13:21 . 2014-03-21 13:23 -------- d-----w- c:\program files\Raptr
2014-03-20 15:39 . 2014-03-23 10:43 -------- d-----w- c:\users\Jan\AppData\Local\Game Dev Tycoon
2014-03-18 17:35 . 2014-03-18 17:35 -------- d-----w- c:\users\Jan\.android
2014-03-18 17:25 . 2014-03-18 17:25 -------- d-----w- c:\users\Jan\AppData\Roaming\JetBrains
2014-03-18 17:23 . 2014-03-18 17:25 -------- d-----w- c:\users\Jan\.gradle
2014-03-18 17:22 . 2014-03-18 17:55 -------- d-----w- c:\users\Jan\AndroidStudioProjects
2014-03-18 17:19 . 2014-03-18 17:19 -------- d-----w- c:\users\Jan\.AndroidStudioPreview
2014-03-18 16:41 . 2014-03-18 16:41 -------- d-----w- c:\users\Jan\AppData\Local\Android
2014-03-16 20:10 . 2014-03-16 20:10 72704 ----a-w- c:\windows\system32\drivers\bdvedisk.sys
2014-03-16 20:06 . 2009-07-14 21:27 1461992 ----a-w- c:\windows\system32\WdfCoInstaller01009.dll
2014-03-16 20:06 . 2014-03-16 20:06 -------- d-----w- c:\programdata\BDLogging
2014-03-16 20:05 . 2013-11-04 14:47 66832 ----a-w- c:\windows\system32\drivers\bdsandbox.sys
2014-03-16 20:05 . 2013-11-04 14:47 74512 ----a-w- c:\windows\system32\bdsandboxuiskin.dll
2014-03-16 20:05 . 2013-11-04 14:46 27168 ----a-w- c:\windows\system32\bdsandboxuh.dll
2014-03-16 20:05 . 2013-02-22 17:46 78144 ----a-w- c:\windows\system32\drivers\BdfNdisf6.sys
2014-03-16 20:05 . 2007-04-11 09:11 511328 ----a-w- c:\windows\capicom.dll
2014-03-16 20:05 . 2013-12-02 10:57 516936 ----a-w- c:\windows\system32\drivers\avckf.sys
2014-03-16 20:05 . 2013-12-02 10:55 778032 ----a-w- c:\windows\system32\drivers\avc3.sys
2014-03-16 20:05 . 2012-11-02 12:17 242504 ----a-w- c:\windows\system32\drivers\avchv.sys
2014-03-16 19:53 . 2014-03-16 19:53 -------- d-----w- c:\users\Jan\AppData\Roaming\Bitdefender
2014-03-16 19:48 . 2014-03-16 20:12 -------- d-----w- c:\programdata\Bitdefender
2014-03-16 19:48 . 2013-08-23 11:48 165744 ----a-w- c:\windows\system32\drivers\gzflt.sys
2014-03-16 19:48 . 2014-03-16 19:48 -------- d-----w- c:\program files\Bitdefender
2014-03-16 19:48 . 2013-08-07 11:46 360376 ----a-w- c:\windows\system32\drivers\trufos.sys
2014-03-16 19:48 . 2014-03-16 19:48 -------- d-----w- c:\users\Jan\AppData\Roaming\QuickScan
2014-03-16 19:47 . 2014-03-16 19:48 -------- d-----w- c:\program files\Common Files\Bitdefender
2014-03-16 13:17 . 2014-03-16 13:17 -------- d-----w- c:\users\Jan\AppData\Local\Incomedia
2014-03-15 21:34 . 2014-03-15 21:34 -------- d-----w- c:\program files\WYSIWYG Web Builder 9
2014-03-14 20:24 . 2014-03-14 20:24 -------- d-----w- c:\programdata\Stardock
2014-03-14 20:23 . 2014-03-14 20:23 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2014-03-14 20:22 . 2014-03-14 20:22 -------- d-----w- c:\users\Jan\AppData\Roaming\Stardock
2014-03-14 20:22 . 2014-03-14 20:22 -------- d-----w- c:\program files\Stardock
2014-03-14 20:13 . 2013-05-10 04:56 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2014-03-14 20:13 . 2013-05-10 03:48 164864 ----a-w- c:\program files\Windows Media Player\wmplayer.exe
2014-03-14 20:05 . 2014-03-14 20:10 -------- d-----w- c:\windows\system32\MRT
2014-03-14 19:50 . 2014-03-14 19:50 -------- d-sh--w- c:\windows\system32\%APPDATA%
2014-03-14 17:45 . 2014-01-29 02:06 381440 ----a-w- c:\windows\system32\wer.dll
2014-03-14 17:29 . 2013-12-04 02:03 423936 ----a-w- c:\windows\system32\secproc_isv.dll
2014-03-14 17:29 . 2013-12-04 01:54 510976 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2014-03-14 17:29 . 2013-12-04 01:54 594944 ----a-w- c:\windows\system32\RMActivate_isv.exe
2014-03-14 17:29 . 2013-12-04 01:54 572416 ----a-w- c:\windows\system32\RMActivate.exe
2014-03-14 17:29 . 2013-12-04 01:54 508928 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2014-03-14 17:29 . 2013-12-04 02:03 87040 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2014-03-14 17:29 . 2013-12-04 02:03 87040 ----a-w- c:\windows\system32\secproc_ssp.dll
2014-03-14 17:29 . 2013-12-04 02:03 428032 ----a-w- c:\windows\system32\secproc.dll
2014-03-14 17:29 . 2013-12-04 02:02 390144 ----a-w- c:\windows\system32\msdrm.dll
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-sh--we c:\windows\system32\config\systemprofile\Soubory cookie
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-sh--we c:\windows\system32\config\systemprofile\Nabídka Start
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-sh--we c:\windows\system32\config\systemprofile\Data aplikací
2014-03-10 13:39 . 2014-03-10 13:39 -------- d-----w- c:\users\Jan\AppData\Local\ArcSoft
2014-03-09 12:09 . 2014-03-09 12:21 -------- d-----w- c:\users\Jan\workspace
2014-03-09 11:11 . 2014-03-09 11:13 -------- d-----w- C:\wamp
2014-02-28 12:43 . 2014-02-28 12:43 -------- d-----w- c:\users\Jan\AppData\Local\Microsoft Games
2014-02-28 06:48 . 2014-02-28 06:48 -------- d-----w- c:\program files\LogMeIn Hamachi
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-03-15 21:34 . 2013-10-05 17:34 737280 ----a-w- c:\windows\iun6002.exe
2014-03-14 19:54 . 2013-10-04 15:13 1066368 ----a-w- c:\programdata\Microsoft\WDExpress\11.0\1033\ResourceCache.dll
2014-02-24 08:40 . 2013-12-26 14:06 137176 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2014-02-24 08:40 . 2013-12-28 09:12 268952 ----a-w- c:\windows\system32\PnkBstrB.xtr
2014-02-24 08:40 . 2013-12-26 14:06 268952 ----a-w- c:\windows\system32\PnkBstrB.exe
2014-01-13 05:09 . 2013-12-26 14:06 268952 ----a-w- c:\windows\system32\PnkBstrB.ex0
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\~\Browser Helper Objects\{3706EE7C-3CAD-445D-8A43-03EBC3B75908}]
2012-01-04 23:02 233288 ----a-w- c:\program files\Expat Shield\HssIE\ExpatIE.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-01-30 14:05 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NSUFloatingUI"="c:\program files\Sony\Network Utility\LANUtil.exe" [2008-12-05 270336]
"Steam"="c:\program files\Steam\Steam.exe" [2014-02-25 1821888]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"GoogleDriveSync"="c:\program files\Google\Drive\googledrivesync.exe" [2014-01-30 21822128]
"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-03-27 482392]
"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2014-03-27 901096]
"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\bdapppassmgr.exe" [2014-03-27 614232]
"Raptr"="c:\progra~1\Raptr\raptrstub.exe" [2014-03-06 55360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AMD AVT"="start AMD Accelerated Video Transcoding device initialization" [X]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2008-09-30 122880]
"RtHDVCpl"="RtHDVCpl.exe" [2008-10-17 6295552]
"Skytel"="Skytel.exe" [2008-10-17 1826816]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-12 640376]
"AML"="c:\program files\Sony\VAIO Launcher\AML.exe" [2008-09-09 1097728]
"Gila"="c:\program files\Genius\Gila\mousehid.exe" [2013-01-16 307712]
"TP-LINK USB Printer Controller"="c:\program files\TP-LINK\USB Printer Controller\USB Printer Controller.exe" [2012-09-21 4226048]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-02-11 186904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"Fences"="c:\program files\Stardock\Fences\Fences.exe" [2013-11-26 4031152]
"Bdagent"="c:\program files\Bitdefender\Bitdefender\bdagent.exe" [2014-03-27 1845064]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2013-04-29 642304]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"Bitdefender Wallet Agent"="c:\program files\Bitdefender\Bitdefender\pmbxag.exe" [2014-03-27 482392]
"Bitdefender Wallet"="c:\program files\Bitdefender\Bitdefender\pwdmanui.exe" [2014-03-27 901096]
"Bitdefender Wallet Application Agent"="c:\program files\Bitdefender\Bitdefender\bdapppassmgr.exe" [2014-03-27 614232]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2008-10-15 776744]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "c:\program files\Stardock\Fences\FencesMenu.dll" [2013-11-26 456368]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\VESWinlogon]
2008-11-06 01:32 98304 ----a-w- c:\windows\System32\VESWinlogon.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^LOLRecorder.lnk]
path=c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\LOLRecorder.lnk
backup=c:\windows\pss\LOLRecorder.lnk.CommonStartup
backupExtension=.CommonStartup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2008-11-29 01:06 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2014-02-26 18:57 3814736 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
2013-11-14 15:42 20584608 ----a-r- c:\program files\Skype\Phone\Skype.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
"HP Software Update"=c:\program files\Hp\HP Software Update\HPWuSchd2.exe
"ISBMgr.exe"="c:\program files\Sony\ISB Utility\ISBMgr.exe"
"MarketingTools"=c:\program files\Sony\Marketing Tools\MarketingTools.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
.
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2014-02-26 1678672]
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-09-05 171680]
R3 avckf;avckf;c:\windows\system32\DRIVERS\avckf.sys [2013-12-02 516936]
R3 bdfwfpf_pc;bdfwfpf_pc;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf_pc.sys [2013-07-02 108008]
R3 BDSandBox;BDSandBox;c:\windows\system32\drivers\bdsandbox.sys [2013-11-04 66832]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2008-10-21 29736]
R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2013-08-20 84248]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 ExpatTrayService;Expat Shield Tray Service;c:\program files\Expat Shield\bin\ExpatTrayService.EXE [2012-01-17 77520]
R3 GoogleDesktopManager-092308-165331;Google Desktop Manager 5.8.809.23506;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2008-11-29 30192]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2014-03-24 40776]
R3 SOHCImp;VAIO Media plus Content Importer;c:\program files\Sony\VAIO Media plus\SOHCImp.exe [2008-10-21 103712]
R3 SOHDms;VAIO Media plus Digital Media Server;c:\program files\Sony\VAIO Media plus\SOHDms.exe [2008-10-21 353568]
R3 SOHDs;VAIO Media plus Device Searcher;c:\program files\Sony\VAIO Media plus\SOHDs.exe [2008-10-21 62752]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2009-09-19 98432]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2009-09-19 14848]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2009-09-19 123648]
R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys [2009-09-19 100224]
R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2013-08-20 182680]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2013-07-04 104720]
R3 VcmXmlIfHelper;VAIO Content Metadata XML Interface;c:\program files\Common Files\Sony Shared\VcmXml\VcmXmlIfHelper.exe [2008-09-19 83232]
R4 BdDesktopParental;Bitdefender Desktop Parental Control;c:\program files\Bitdefender\Bitdefender\bdparentalservice.exe [2014-03-27 69880]
S0 avc3;avc3;c:\windows\system32\DRIVERS\avc3.sys [2013-12-02 778032]
S0 gzflt;gzflt;c:\windows\system32\DRIVERS\gzflt.sys [2013-08-23 165744]
S1 BdfNdisf;BitDefender Firewall NDIS 6 Filter Driver;c:\program files\common files\bitdefender\bitdefender firewall\bdfndisf6.sys [2013-02-22 78144]
S1 bdfwfpf;bdfwfpf;c:\program files\Common Files\Bitdefender\Bitdefender Firewall\bdfwfpf.sys [2011-11-14 90704]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-09-25 242240]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2013-07-04 188176]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [2013-07-04 94480]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2013-04-30 217088]
S2 ExpatShieldService;Expat Shield Service;c:\program files\Expat Shield\bin\openvpnas.exe [2012-01-17 331608]
S2 ExpatSrv;Expat Shield Routing Service;c:\program files\Expat Shield\HssWPR\hsssrv.exe [2012-01-04 363336]
S2 ExpatWd;Expat Shield Monitoring Service;c:\program files\Expat Shield\bin\hsswd.exe [2012-01-04 329544]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn Hamachi\LMIGuardianSvc.exe [2014-02-26 375056]
S2 NSUService;NSUService;c:\program files\sony\Network Utility\NSUService.exe [2008-12-05 303104]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-18 11032]
S2 RtkAudioService;Realtek Audio Service;c:\windows\RtkAudioService.exe [2008-10-17 102400]
S2 uCamMonitor;CamMonitor;c:\program files\ArcSoft\Magic-i Visual Effects 2\uCamMonitor.exe [2008-09-18 104960]
S2 UPDATESRV;Bitdefender Desktop Update Service;c:\program files\Bitdefender\Bitdefender\updatesrv.exe [2014-03-27 54424]
S2 VCFw;VAIO Content Folder Watcher;c:\program files\Common Files\Sony Shared\VAIO Content Folder Watcher\VCFw.exe [2008-09-12 446464]
S2 VcmIAlzMgr;VAIO Content Metadata Intelligent Analyzing Manager;c:\program files\Sony\VCM Intelligent Analyzing Manager\VcmIAlzMgr.exe [2008-10-02 369952]
S3 ArcSoftKsUFilter;ArcSoft Magic-I Visual Effect;c:\windows\system32\DRIVERS\ArcSoftKsUFilter.sys [2008-04-24 17920]
S3 avchv;avchv Function Driver;c:\windows\system32\DRIVERS\avchv.sys [2012-11-02 242504]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 SFEP;Sony Firmware Extension Parser;c:\windows\system32\DRIVERS\SFEP.sys [2008-08-22 9344]
S3 yukonw7;Ovladač NDIS6.2 Miniport pro řadič Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x86.sys [2009-07-13 311296]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*Deregistered* - aswFsBlk
*Deregistered* - aswFW
*Deregistered* - aswMonFlt
*Deregistered* - aswNdis2
*Deregistered* - aswRdr
*Deregistered* - aswRvrt
*Deregistered* - aswSnx
*Deregistered* - aswSP
*Deregistered* - aswTdi
*Deregistered* - aswVmm
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-03-15 19:45 1150280 ----a-w- c:\program files\Google\Chrome\Application\33.0.1750.154\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-22 20:17]
.
2014-03-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2013-07-22 20:17]
.
.
------- Doplňkový sken -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&s ... f8&oe=utf8
uStart Page = about:blank
uInternet Settings,ProxyOverride = <local>
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz\etrading
Trusted Zone: mojebanka.cz\www
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Jan\AppData\Roaming\Mozilla\Firefox\Profiles\uarvi6mo.default\
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3598126742-3985364578-432227459-1000\Control Panel\Desktop*]
"WheelScrollLines"="3"
DUMPHIVE0.003 (REGF)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil32_11_8_800_94_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(372)
c:\windows\system32\btmmhook.dll
c:\windows\system32\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Bitdefender\Bitdefender\vsserv.exe
c:\windows\system32\WLANExt.exe
c:\windows\system32\atieclxx.exe
c:\windows\system32\conhost.exe
c:\program files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
c:\program files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
c:\program files\Intel\WiFi\bin\EvtEng.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\PnkBstrA.exe
c:\program files\Common Files\Intel\WirelessCommon\RegSrvc.exe
c:\program files\Microsoft SQL Server\90\Shared\sqlwriter.exe
c:\program files\Sony\VAIO Update 4\VAIOUpdt.exe
c:\program files\sony\VAIO Event Service\VESMgr.exe
c:\windows\system32\DllHost.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\sony\VAIO Event Service\VESMgrSub.exe
c:\windows\system32\DllHost.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\program files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe
c:\program files\Expat Shield\bin\openvpntray.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\program files\Genius\Gila\trayicon.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\progra~1\Raptr\raptr.exe
c:\windows\system32\sppsvc.exe
c:\progra~1\Raptr\raptr_im.exe
c:\program files\Common Files\Steam\SteamService.exe
.
**************************************************************************
.
Celkový čas: 2014-03-27 16:41:09 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-03-27 15:41
ComboFix2.txt 2014-03-25 17:58
ComboFix3.txt 2013-08-27 20:12
ComboFix4.txt 2013-08-27 18:21
.
Před spuštěním: Volných bajtů: 191 490 965 504
Po spuštění: Volných bajtů: 191 532 994 560
.
- - End Of File - - 908BA9A9D8C9A4DD51C5D36F6B998E83
A36C5E4F47E84449FF07ED3517B43A31

#8 Příspěvek od **Roli** » 27 bře 2014 21:21

_Antti_ píše:Snad jsem ten script použil dobře, ............

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.

Použij T-Cleaner, který smaže případné zbytky po aplikacích které jsme použili.

Jen před jeho stažením a při použití stopni antivir, protože ho muže detekovat jako vir ale není tomu tak.

Pak dej vědět jaký je stav PC.

_Antti_ · #9 Příspěvek od **_Antti_** » 27 bře 2014 21:29

Dědeček NTB se chová zatím dobře, snad mě jen nechce na tuto chvíli oklamat

. Můžu se zeptat, co tam bylo za viry, konkrétně, jestli tam nebyl keylogger?

#10 Příspěvek od **Roli** » 27 bře 2014 21:56

_Antti_ píše:Můžu se zeptat, co tam bylo za viry, konkrétně, jestli tam nebyl keylogger?

Měls tam malé breberky, nikoliv keylogger co čile komunikovali se světem.

_Antti_ · #11 Příspěvek od **_Antti_** » 28 bře 2014 14:31

Aha, děkuji za objasnění. Pokud k tomu už nic nemáš, tak bych ti na závěr chtěl moc poděkovat za pomoc.

#12 Příspěvek od **Roli** » 28 bře 2014 21:25

Z mé strany je to vše, není tedy vůbec zač a

VIRY.CZ

Preventivní kontrola - upozornění od Google

Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google

Re: Preventivní kontrola - upozornění od Google