Problém s Windows Update
Napsal: 10 črc 2014 08:02
Dobrý den,
po "zapůjčení" notebooku synovi mi nejde spustit Windows Update. Každý pokus končí hláškou "Služba Windows Update nyní nemůže vyhledat aktualizace, protože tato služba není spuštěna. Zřejmě bude nutné restartovat počítač". Služba je prokazatelně zapnuta a po restartu se nic nezmění. Výpis z Combofix přikládám a prosím o radu co dál.
ComboFix 14-07-08.01 - Martin_NB 10.07.2014 8:27.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2975.1635 [GMT 2:00]
Spuštěný z: c:\users\Martin_NB\Downloads\ComboFix.exe
AV: Norton 360 *Enabled/Updated* {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
FW: Norton 360 *Disabled* {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
SP: Norton 360 *Enabled/Updated* {631E4324-D31C-783F-EC5C-35AD42B18466}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Java\jre7\bin\jp2ssv.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_ctypes.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_elementtree.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_hashlib.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_multiprocessing.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_socket.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_ssl.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\hashobjs_ext.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\pyexpat.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\pysqlite2._sqlite.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\python27.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\pythoncom27.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\PyWinTypes27.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\select.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\unicodedata.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32api.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32com.shell.shell.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32crypt.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32event.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32file.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32gui.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32inet.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32pdh.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32pipe.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32process.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32profile.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32security.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32ts.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\windows._lib_cacheinvalidation.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._animate.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._controls_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._core_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._gdi_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._html2.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._misc_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._windows_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._wizard.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxbase294u_net_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxbase294u_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_adv_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_core_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_html_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_webview_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_ctypes.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_elementtree.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_hashlib.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_multiprocessing.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_socket.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_ssl.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\hashobjs_ext.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\pyexpat.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\pysqlite2._sqlite.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\python27.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\pythoncom27.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\PyWinTypes27.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\select.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\unicodedata.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32api.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32com.shell.shell.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32crypt.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32event.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32file.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32gui.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32inet.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32pdh.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32pipe.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32process.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32profile.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32security.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32ts.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\windows._lib_cacheinvalidation.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._animate.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._controls_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._core_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._gdi_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._html2.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._misc_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._windows_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._wizard.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxbase294u_net_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxbase294u_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_adv_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_core_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_html_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_webview_vc90.dll
c:\users\Public\HDREfexPro-pl-ver1.203all.exe
c:\windows\Downloaded Program Files\tgctlsr.dll
c:\windows\security\Database\tmp.edb
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-10 do 2014-07-10 )))))))))))))))))))))))))))))))
.
.
2014-07-10 06:44 . 2014-07-10 06:44 -------- d-----w- c:\users\Martin\AppData\Local\temp
2014-07-08 18:46 . 2014-07-08 18:47 -------- d-----w- c:\windows\system32\drivers\N360\1504000.00D
2014-07-06 19:40 . 2014-07-06 19:40 -------- d-----w- C:\found.004
2014-06-10 18:24 . 2014-06-10 18:24 -------- d-----w- c:\users\Martin_NB\AppData\Roaming\SketchUp
2014-06-10 18:22 . 2014-06-10 18:22 -------- d-----w- c:\programdata\SketchUp
2014-06-10 18:22 . 2014-06-10 18:22 -------- d-----w- c:\program files\SketchUp
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-09 16:20 . 2012-04-05 17:48 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 16:20 . 2011-05-25 16:26 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-09 07:06 . 2014-05-14 02:33 369664 ----a-w- c:\windows\system32\aepdu.dll
2014-05-09 07:04 . 2014-05-14 02:33 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-05-06 03:07 . 2014-05-14 21:04 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-04-14 18:13 . 2014-04-18 15:46 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-04-12 02:15 . 2014-05-14 02:33 136640 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:15 . 2014-05-14 02:33 67520 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:12 . 2014-05-14 02:33 15872 ----a-w- c:\windows\system32\sspisrv.dll
2014-04-12 02:12 . 2014-05-14 02:33 100352 ----a-w- c:\windows\system32\sspicli.dll
2014-04-12 02:12 . 2014-05-14 02:33 22016 ----a-w- c:\windows\system32\secur32.dll
2014-04-12 02:11 . 2014-05-14 02:33 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-04-12 02:11 . 2014-05-14 02:33 22528 ----a-w- c:\windows\system32\lsass.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-05-14 19:05 223432 ----a-w- c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-05-14 19:05 223432 ----a-w- c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-05-14 19:05 223432 ----a-w- c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2013-10-01 09:26 2627672 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2013-10-01 09:26 2627672 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2013-10-01 09:26 2627672 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-04-24 17:59 130736 ----a-w- c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-04-24 17:59 130736 ----a-w- c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-04-24 17:59 130736 ----a-w- c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]
"GoogleDriveSync"="c:\program files\Google\Drive\googledrivesync.exe" [2014-06-27 24477056]
"SkyDrive"="c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" [2014-05-14 257224]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"GarminExpressTrayApp"="c:\program files\Garmin\Express Tray\ExpressTray.exe" [2014-06-09 122200]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE" [2014-06-16 833024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-06-18 1537320]
"Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-08-19 487424]
"LManager"="c:\program files\Launch Manager\LManager.exe" [2009-08-27 1191432]
"VitaKeyPdtWzd"="c:\program files\Acer Bio Protection\PdtWzd.exe" [2009-07-21 3567616]
"NortonOnlineBackup"="c:\program files\Symantec\Norton Online Backup\NOBuClient.exe" [2014-04-09 2805616]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-02 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-02 167424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-02 144384]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2013-10-24 7805824]
"AcronisTibMounterMonitor"="c:\program files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" [2013-10-10 1102192]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2013-07-18 379672]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="c:\program files\Garmin\Express Tray\ExpressTray.exe" [2014-06-09 122200]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2009-8-28 708608]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-18 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ c:\program files\Acer Bio Protection\PwdFilter
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
2009-08-21 00:25 261888 ----a-w- c:\program files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VidaOne NetSync]
2011-08-23 15:21 892928 ----a-w- c:\program files\VidaOne\VODF\VODFNetSync.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
R3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-06 108032]
R3 ioloService;ioloToolService;c:\program files\SafePCRepair\ioloToolService.exe [2013-04-05 2625800]
R3 ir650;IrDA-IR650 IrDA Adapter;c:\windows\system32\DRIVERS\ir650.sys [2003-08-21 29076]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-08-22 4232192]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-05-08 165888]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [2009-10-08 17920]
R3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\DRIVERS\silabser.sys [2009-10-08 63872]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-05 1343400]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys [2013-12-16 86304]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360\1503000.00C\SYMDS.SYS [2013-09-10 367704]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360\1503000.00C\SYMEFA.SYS [2014-03-04 936152]
S0 tib;Acronis TIB Manager;c:\windows\system32\DRIVERS\tib.sys [2013-12-16 736192]
S0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys [2013-12-16 143648]
S0 vididr;Acronis Virtual Disk;c:\windows\system32\DRIVERS\vididr.sys [2013-12-16 116000]
S0 vidsflt;Acronis Disk Storage Filter;c:\windows\system32\DRIVERS\vidsflt.sys [2013-12-16 85280]
S1 BHDrvx86;BHDrvx86;c:\program files\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140703.001\BHDrvx86.sys [2014-05-10 1101616]
S1 ccSet_N360;N360 Settings Manager;c:\windows\system32\drivers\N360\1503000.00C\ccSetx86.sys [2013-09-26 127064]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-06-03 242240]
S1 IDSVix86;IDSVix86;c:\program files\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140709.001\IDSvix86.sys [2014-03-28 395992]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360\1503000.00C\Ironx86.SYS [2013-09-27 206936]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360\1503000.00C\SYMNETS.SYS [2014-02-18 447704]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-12-16 3873784]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-04-11 1390720]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-04-11 1764992]
S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [2009-08-24 107016]
S2 EkaProt6;Ekahau User Protocol Driver for NDIS 6;c:\windows\system32\DRIVERS\ekaprot6.sys [2009-04-07 15360]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-08-19 688128]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys [2009-10-16 22528]
S2 Garmin Core Update Service;Garmin Core Update Service;c:\program files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-06-09 435032]
S2 Greg_Service;GRegService;c:\program files\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
S2 IGBASVC;EgisTec Service;c:\program files\Acer Bio Protection\BASVC.exe [2009-07-21 3450368]
S2 N360;Norton 360;c:\program files\Norton 360\Engine\21.3.0.12\N360.exe [2014-05-11 265040]
S2 NOBU;Norton Online Backup;c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-18 11032]
S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
S2 SafePCRepair_89Service;SafePCRepairService;c:\progra~1\SAFEPC~2\bar\1.bin\89barsvc.exe [2013-10-29 44752]
S2 syncagentsrv;Acronis Sync Agent Service;c:\program files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-10-22 7142320]
S2 SynoDrService;SynoDrService;c:\program files\Synology Data Replicator 3\SynoDrService.exe [2012-06-28 248704]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 UsbClientService;UsbClientService;c:\program files\Synology\Assistant\UsbClientService.exe [2013-04-30 248704]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2013-12-16 234752]
S3 busenum;Synology Virtual USB Hub;c:\windows\system32\DRIVERS\busenum.sys [2012-08-03 45792]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-06-11 109872]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2009-09-04 180736]
S3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-14 06:02 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 16:20]
.
2014-07-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-12 18:36]
.
2014-07-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-12 18:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
uInternet Settings,ProxyServer = proxy.chello.cz:3129
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
Trusted Zone: geocaching.com\www
Trusted Zone: mojebanka.cz
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz
TCP: DhcpNameServer = 192.168.137.1
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB
DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} - hxxp://www.o2c.de/download/o2cplayerac.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
HKCU-Run-Zoner Photo Studio Service 16 - c:\program files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEc:\program files\Zoner\Photo Studio 16\Program32\ZPSService.exe
SafeBoot-mcmscsvc
SafeBoot-MCODS
MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe
AddRemove-SLABCOMM&10C4&EA60 - c:\windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\N360]
"ImagePath"="\"c:\program files\Norton 360\Engine\21.3.0.12\N360.exe\" /s \"N360\" /m \"c:\program files\Norton 360\Engine\21.3.0.12\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\System32\Drivers\N360\1503000.00C\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files\Norton 360\Engine\21.3.0.12"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1745135371-2628171207-2759079417-1000_Classes\VirtualStore\MACHINE\SOFTWARE\Apple Computer, Inc.\QuickTime\Favorite Movies]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(704)
c:\program files\Acer Bio Protection\PwdFilter.DLL
.
- - - - - - - > 'Explorer.exe'(5060)
c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Acer Bio Protection\CompPtcVUI.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\windows\system32\taskhost.exe
c:\program files\Creative\Shared Files\CTDevSrv.exe
c:\program files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Acer Bio Protection\PwdBank.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Celkový čas: 2014-07-10 08:53:37 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-07-10 06:53
.
Před spuštěním: Volných bajtů: 119 781 924 864
Po spuštění: Volných bajtů: 120 144 949 248
.
- - End Of File - - E042BF26467B86A13AD4CAFF42275635
A36C5E4F47E84449FF07ED3517B43A31
Děkuji
Martin
po "zapůjčení" notebooku synovi mi nejde spustit Windows Update. Každý pokus končí hláškou "Služba Windows Update nyní nemůže vyhledat aktualizace, protože tato služba není spuštěna. Zřejmě bude nutné restartovat počítač". Služba je prokazatelně zapnuta a po restartu se nic nezmění. Výpis z Combofix přikládám a prosím o radu co dál.
ComboFix 14-07-08.01 - Martin_NB 10.07.2014 8:27.1.2 - x86
Microsoft Windows 7 Professional 6.1.7601.1.1250.420.1029.18.2975.1635 [GMT 2:00]
Spuštěný z: c:\users\Martin_NB\Downloads\ComboFix.exe
AV: Norton 360 *Enabled/Updated* {D87FA2C0-F526-77B1-D6EC-0EDF3936CEDB}
FW: Norton 360 *Disabled* {E04423E5-BF49-76E9-FDB3-A7EAC7E589A0}
SP: Norton 360 *Enabled/Updated* {631E4324-D31C-783F-EC5C-35AD42B18466}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\Java\jre7\bin\jp2ssv.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_ctypes.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_elementtree.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_hashlib.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_multiprocessing.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_socket.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\_ssl.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\hashobjs_ext.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\pyexpat.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\pysqlite2._sqlite.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\python27.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\pythoncom27.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\PyWinTypes27.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\select.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\unicodedata.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32api.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32com.shell.shell.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32crypt.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32event.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32file.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32gui.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32inet.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32pdh.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32pipe.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32process.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32profile.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32security.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\win32ts.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\windows._lib_cacheinvalidation.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._animate.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._controls_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._core_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._gdi_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._html2.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._misc_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._windows_.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wx._wizard.pyd
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxbase294u_net_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxbase294u_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_adv_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_core_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_html_vc90.dll
c:\users\Martin_NB\AppData\Local\Temp\_MEI23722\wxmsw294u_webview_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_ctypes.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_elementtree.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_hashlib.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_multiprocessing.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_socket.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\_ssl.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\hashobjs_ext.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\pyexpat.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\pysqlite2._sqlite.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\python27.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\pythoncom27.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\PyWinTypes27.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\select.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\unicodedata.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32api.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32com.shell.shell.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32crypt.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32event.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32file.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32gui.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32inet.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32pdh.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32pipe.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32process.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32profile.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32security.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\win32ts.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\windows._lib_cacheinvalidation.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._animate.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._controls_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._core_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._gdi_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._html2.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._misc_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._windows_.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wx._wizard.pyd
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxbase294u_net_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxbase294u_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_adv_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_core_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_html_vc90.dll
c:\users\MARTIN~1\AppData\Local\Temp\_MEI23722\wxmsw294u_webview_vc90.dll
c:\users\Public\HDREfexPro-pl-ver1.203all.exe
c:\windows\Downloaded Program Files\tgctlsr.dll
c:\windows\security\Database\tmp.edb
c:\windows\wininit.ini
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2014-06-10 do 2014-07-10 )))))))))))))))))))))))))))))))
.
.
2014-07-10 06:44 . 2014-07-10 06:44 -------- d-----w- c:\users\Martin\AppData\Local\temp
2014-07-08 18:46 . 2014-07-08 18:47 -------- d-----w- c:\windows\system32\drivers\N360\1504000.00D
2014-07-06 19:40 . 2014-07-06 19:40 -------- d-----w- C:\found.004
2014-06-10 18:24 . 2014-06-10 18:24 -------- d-----w- c:\users\Martin_NB\AppData\Roaming\SketchUp
2014-06-10 18:22 . 2014-06-10 18:22 -------- d-----w- c:\programdata\SketchUp
2014-06-10 18:22 . 2014-06-10 18:22 -------- d-----w- c:\program files\SketchUp
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-09 16:20 . 2012-04-05 17:48 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-07-09 16:20 . 2011-05-25 16:26 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-05-09 07:06 . 2014-05-14 02:33 369664 ----a-w- c:\windows\system32\aepdu.dll
2014-05-09 07:04 . 2014-05-14 02:33 302592 ----a-w- c:\windows\system32\aeinv.dll
2014-05-06 03:07 . 2014-05-14 21:04 2724864 ----a-w- c:\windows\system32\mshtml.tlb
2014-04-14 18:13 . 2014-04-18 15:46 94632 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2014-04-12 02:15 . 2014-05-14 02:33 136640 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2014-04-12 02:15 . 2014-05-14 02:33 67520 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2014-04-12 02:12 . 2014-05-14 02:33 15872 ----a-w- c:\windows\system32\sspisrv.dll
2014-04-12 02:12 . 2014-05-14 02:33 100352 ----a-w- c:\windows\system32\sspicli.dll
2014-04-12 02:12 . 2014-05-14 02:33 22016 ----a-w- c:\windows\system32\secur32.dll
2014-04-12 02:11 . 2014-05-14 02:33 1059840 ----a-w- c:\windows\system32\lsasrv.dll
2014-04-12 02:11 . 2014-05-14 02:33 22528 ----a-w- c:\windows\system32\lsass.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive1]
@="{F241C880-6982-4CE5-8CF7-7085BA96DA5A}"
[HKEY_CLASSES_ROOT\CLSID\{F241C880-6982-4CE5-8CF7-7085BA96DA5A}]
2014-05-14 19:05 223432 ----a-w- c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive2]
@="{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}"
[HKEY_CLASSES_ROOT\CLSID\{A0396A93-DC06-4AEF-BEE9-95FFCCAEF20E}]
2014-05-14 19:05 223432 ----a-w- c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ SkyDrive3]
@="{BBACC218-34EA-4666-9D7A-C78F2274A524}"
[HKEY_CLASSES_ROOT\CLSID\{BBACC218-34EA-4666-9D7A-C78F2274A524}]
2014-05-14 19:05 223432 ----a-w- c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\17.0.4041.0512\SkyDriveShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncError]
@="{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}"
[HKEY_CLASSES_ROOT\CLSID\{934BC6C0-FEC2-4df5-A100-961DE2C8A0ED}]
2013-10-01 09:26 2627672 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncInProgress]
@="{00F848DC-B1D4-4892-9C25-CAADC86A215D}"
[HKEY_CLASSES_ROOT\CLSID\{00F848DC-B1D4-4892-9C25-CAADC86A215D}]
2013-10-01 09:26 2627672 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AcronisSyncOk]
@="{71573297-552E-46fc-BE3D-3DFAF88D47B7}"
[HKEY_CLASSES_ROOT\CLSID\{71573297-552E-46fc-BE3D-3DFAF88D47B7}]
2013-10-01 09:26 2627672 ----a-w- c:\program files\Acronis\TrueImageHome\tishell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-04-24 17:59 130736 ----a-w- c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-04-24 17:59 130736 ----a-w- c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-04-24 17:59 130736 ----a-w- c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveBlacklistedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D42}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedEditOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSharedViewOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D43}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncedOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D40}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GDriveSyncingOverlay]
@="{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}"
[HKEY_CLASSES_ROOT\CLSID\{81539FE6-33C7-4CE7-90C7-1C7B8F2F2D41}]
2014-06-27 12:20 579400 ----a-w- c:\program files\Google\Drive\googledrivesync32.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1174016]
"SoftAuto.exe"="c:\program files\Creative\Software Update 3\SoftAuto.exe" [2008-08-13 405504]
"GoogleDriveSync"="c:\program files\Google\Drive\googledrivesync.exe" [2014-06-27 24477056]
"SkyDrive"="c:\users\Martin_NB\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" [2014-05-14 257224]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2013-03-14 3672640]
"GarminExpressTrayApp"="c:\program files\Garmin\Express Tray\ExpressTray.exe" [2014-06-09 122200]
"Zoner Photo Studio Autoupdate"="c:\program files\ZONER\PHOTO STUDIO 16\Program32\ZPSTRAY.EXE" [2014-06-16 833024]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-05 186904]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2009-06-18 1537320]
"Acer ePower Management"="c:\program files\Acer\Acer PowerSmart Manager\ePowerTrayLauncher.exe" [2009-08-19 487424]
"LManager"="c:\program files\Launch Manager\LManager.exe" [2009-08-27 1191432]
"VitaKeyPdtWzd"="c:\program files\Acer Bio Protection\PdtWzd.exe" [2009-07-21 3567616]
"NortonOnlineBackup"="c:\program files\Symantec\Norton Online Backup\NOBuClient.exe" [2014-04-09 2805616]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-02 135168]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-02 167424]
"Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-02 144384]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 648072]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-07-02 254336]
"TrueImageMonitor.exe"="c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe" [2013-10-24 7805824]
"AcronisTibMounterMonitor"="c:\program files\Common Files\Acronis\TibMounter\TibMounterMonitor.exe" [2013-10-10 1102192]
"Acronis Scheduler2 Service"="c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe" [2013-07-18 379672]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"GarminExpressTrayApp"="c:\program files\Garmin\Express Tray\ExpressTray.exe" [2014-06-09 122200]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2009-8-28 708608]
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-7-18 795936]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ c:\program files\Acer Bio Protection\PwdFilter
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BackupManagerTray]
2009-08-21 00:25 261888 ----a-w- c:\program files\NewTech Infosystems\Acer Backup Manager\BackupManagerTray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2010-11-20 12:17 1174016 ----a-w- c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VidaOne NetSync]
2011-08-23 15:21 892928 ----a-w- c:\program files\VidaOne\VODF\VODFNetSync.exe
.
R2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [2013-10-23 172192]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-07 29472]
R3 CTUPnPSv;Creative Centrale Media Server;c:\program files\Creative\Creative Centrale\CTUPnPSv.exe [2008-05-21 64000]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe [2014-03-06 108032]
R3 ioloService;ioloToolService;c:\program files\SafePCRepair\ioloToolService.exe [2013-04-05 2625800]
R3 ir650;IrDA-IR650 IrDA Adapter;c:\windows\system32\DRIVERS\ir650.sys [2003-08-21 29076]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-08-22 4232192]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 14848]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-05-08 165888]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 silabenm;Silicon Labs CP210x USB to UART Bridge Serial Port Enumerator Driver;c:\windows\system32\DRIVERS\silabenm.sys [2009-10-08 17920]
R3 silabser;Silicon Labs CP210x USB to UART Bridge Driver;c:\windows\system32\DRIVERS\silabser.sys [2009-10-08 63872]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2013-10-02 49152]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-06-05 1343400]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys [2013-12-16 86304]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360\1503000.00C\SYMDS.SYS [2013-09-10 367704]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360\1503000.00C\SYMEFA.SYS [2014-03-04 936152]
S0 tib;Acronis TIB Manager;c:\windows\system32\DRIVERS\tib.sys [2013-12-16 736192]
S0 tib_mounter;Acronis TIB Mounter;c:\windows\system32\DRIVERS\tib_mounter.sys [2013-12-16 143648]
S0 vididr;Acronis Virtual Disk;c:\windows\system32\DRIVERS\vididr.sys [2013-12-16 116000]
S0 vidsflt;Acronis Disk Storage Filter;c:\windows\system32\DRIVERS\vidsflt.sys [2013-12-16 85280]
S1 BHDrvx86;BHDrvx86;c:\program files\Norton 360\NortonData\21.1.0.18\Definitions\BASHDefs\20140703.001\BHDrvx86.sys [2014-05-10 1101616]
S1 ccSet_N360;N360 Settings Manager;c:\windows\system32\drivers\N360\1503000.00C\ccSetx86.sys [2013-09-26 127064]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2013-06-03 242240]
S1 IDSVix86;IDSVix86;c:\program files\Norton 360\NortonData\21.1.0.18\Definitions\IPSDefs\20140709.001\IDSvix86.sys [2014-03-28 395992]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360\1503000.00C\Ironx86.SYS [2013-09-27 206936]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\System32\Drivers\N360\1503000.00C\SYMNETS.SYS [2014-02-18 447704]
S2 afcdpsrv;Acronis Nonstop Backup Service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [2013-12-16 3873784]
S2 c2cautoupdatesvc;Skype Click to Call Updater;c:\program files\Skype\Toolbars\AutoUpdate\SkypeC2CAutoUpdateSvc.exe [2014-04-11 1390720]
S2 c2cpnrsvc;Skype Click to Call PNR Service;c:\program files\Skype\Toolbars\PNRSvc\SkypeC2CPNRSvc.exe [2014-04-11 1764992]
S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [2009-08-24 107016]
S2 EkaProt6;Ekahau User Protocol Driver for NDIS 6;c:\windows\system32\DRIVERS\ekaprot6.sys [2009-04-07 15360]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer PowerSmart Manager\ePowerSvc.exe [2009-08-19 688128]
S2 FPSensor;EgisTec-Corp Fingerprint Reader Driver (FPSensor.sys);c:\windows\system32\Drivers\FPSensor.sys [2009-10-16 22528]
S2 Garmin Core Update Service;Garmin Core Update Service;c:\program files\Garmin\Core Update Service\Garmin.Cartography.MapUpdate.CoreService.exe [2014-06-09 435032]
S2 Greg_Service;GRegService;c:\program files\Acer\Registration\GregHSRW.exe [2009-06-04 1150496]
S2 IGBASVC;EgisTec Service;c:\program files\Acer Bio Protection\BASVC.exe [2009-07-21 3450368]
S2 N360;Norton 360;c:\program files\Norton 360\Engine\21.3.0.12\N360.exe [2014-05-11 265040]
S2 NOBU;Norton Online Backup;c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
S2 NTI IScheduleSvc;NTI IScheduleSvc;c:\program files\NewTech Infosystems\Acer Backup Manager\IScheduleSvc.exe [2009-08-21 62720]
S2 regi;regi;c:\windows\system32\drivers\regi.sys [2007-04-18 11032]
S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [2009-07-10 253952]
S2 SafePCRepair_89Service;SafePCRepairService;c:\progra~1\SAFEPC~2\bar\1.bin\89barsvc.exe [2013-10-29 44752]
S2 syncagentsrv;Acronis Sync Agent Service;c:\program files\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2013-10-22 7142320]
S2 SynoDrService;SynoDrService;c:\program files\Synology Data Replicator 3\SynoDrService.exe [2012-06-28 248704]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2009-07-04 240160]
S2 UsbClientService;UsbClientService;c:\program files\Synology\Assistant\UsbClientService.exe [2013-04-30 248704]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [2013-12-16 234752]
S3 busenum;Synology Virtual USB Hub;c:\windows\system32\DRIVERS\busenum.sys [2012-08-03 45792]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2014-06-11 109872]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\DRIVERS\ewusbnet.sys [2009-09-04 180736]
S3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-06-23 275048]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
WindowsMobile REG_MULTI_SZ wcescomm rapimgr
LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-14 06:02 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2014-07-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-05 16:20]
.
2014-07-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-12 18:36]
.
2014-07-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-04-12 18:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.google.cz/
uInternet Settings,ProxyServer = proxy.chello.cz:3129
uInternet Settings,ProxyOverride = <local>
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: WikiKomentáře Google... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll/cmsidewiki.html
Trusted Zone: geocaching.com\www
Trusted Zone: mojebanka.cz
Trusted Zone: mojebanka.cz\www
Trusted Zone: mojebanka.cz
TCP: DhcpNameServer = 192.168.137.1
DPF: Garmin Communicator Plug-In - hxxps://static.garmincdn.com/gcp/ie/4.0.4.0/GarminAxControl_32.CAB
DPF: {813A45F9-744F-435F-A815-19E2DF35A9D8} - hxxp://www.o2c.de/download/o2cplayerac.cab
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
HKCU-Run-Zoner Photo Studio Service 16 - c:\program files\Zoner\Photo Studio 16\Program32\ZPSTRAY.EXEc:\program files\Zoner\Photo Studio 16\Program32\ZPSService.exe
SafeBoot-mcmscsvc
SafeBoot-MCODS
MSConfigStartUp-Adobe Reader Speed Launcher - c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe
AddRemove-SLABCOMM&10C4&EA60 - c:\windows\system32\Silabs\DriverUninstaller.exe VCP CP210x Cardinal\SLABCOMM&10C4&EA60
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\N360]
"ImagePath"="\"c:\program files\Norton 360\Engine\21.3.0.12\N360.exe\" /s \"N360\" /m \"c:\program files\Norton 360\Engine\21.3.0.12\diMaster.dll\" /prefetch:1"
"ImagePath"="\SystemRoot\System32\Drivers\N360\1503000.00C\SYMNETS.SYS"
"TrustedImagePaths"="c:\program files\Norton 360\Engine\21.3.0.12"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1745135371-2628171207-2759079417-1000_Classes\VirtualStore\MACHINE\SOFTWARE\Apple Computer, Inc.\QuickTime\Favorite Movies]
@DACL=(02 0000)
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'lsass.exe'(704)
c:\program files\Acer Bio Protection\PwdFilter.DLL
.
- - - - - - - > 'Explorer.exe'(5060)
c:\users\Martin_NB\AppData\Roaming\Dropbox\bin\DropboxExt.19.dll
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Acer Bio Protection\CompPtcVUI.exe
c:\program files\Common Files\Acronis\Schedule2\schedul2.exe
c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\windows\system32\taskhost.exe
c:\program files\Creative\Shared Files\CTDevSrv.exe
c:\program files\Google\Update\1.3.24.15\GoogleCrashHandler.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\conhost.exe
c:\program files\Synaptics\SynTP\SynTPHelper.exe
c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe
c:\windows\system32\igfxsrvc.exe
c:\program files\Acer Bio Protection\PwdBank.exe
c:\program files\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
.
**************************************************************************
.
Celkový čas: 2014-07-10 08:53:37 - počítač byl restartován
ComboFix-quarantined-files.txt 2014-07-10 06:53
.
Před spuštěním: Volných bajtů: 119 781 924 864
Po spuštění: Volných bajtů: 120 144 949 248
.
- - End Of File - - E042BF26467B86A13AD4CAFF42275635
A36C5E4F47E84449FF07ED3517B43A31
Děkuji
Martin