Celkové spomalenie PC a prehliadacov (Chrome, Mozilla)
Napsal: 18 črc 2014 17:12
Zdravim,
vedel by mi prosim niekto poradit co s mojim PC? Je celkovo spomaleny, dlho sa zapina pri starte (cca 10 min) a hlavne akykolvek prehliadac je spomaleny (Mozilla, Chrome aj IE). Mam tusaka ze je v tom nejaky virus, ale moc na tie podozrile stranky nechodim (isto viete ktore myslim
).
Spustila som ComboFix a vyplulo mi tento log:
ComboFix 14-07-17.03 - Bc. Jana Šufliarska . 07. 2014 17:47:12.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1029.18.2046.1427 [GMT 2:00]
Running from: d:\presunutú dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_laahodcomgjmbnifnjnkhbaohjpaoplg_0.localstorage-journal
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_laahodcomgjmbnifnjnkhbaohjpaoplg_0.localstorage
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pggbacoeeiigddnlocgkgigllpiennmd_0.localstorage-journal
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pggbacoeeiigddnlocgkgigllpiennmd_0.localstorage
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\windows\system32\SETEA.tmp
c:\windows\system32\SETEE.tmp
c:\windows\system32\SETEF.tmp
c:\windows\system32\SETF6.tmp
.
.
((((((((((((((((((((((((( Files Created from 2014-06-18 to 2014-07-18 )))))))))))))))))))))))))))))))
.
.
2014-07-17 16:14 . 2014-07-17 16:14 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\IsolatedStorage
2014-07-17 16:14 . 2014-07-17 16:14 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\AskPartnerNetwork
2014-07-17 16:02 . 2014-07-17 16:24 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Yandex
2014-07-17 16:00 . 2014-07-17 16:00 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Opera Software
2014-07-17 16:00 . 2014-07-17 17:12 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Yandex
2014-07-17 16:00 . 2014-07-18 15:15 -------- dc-h--w- c:\documents and settings\All Users\Data aplikací\{E0A9340B-C01B-42C1-9910-C307D7BE4756}
2014-07-17 15:59 . 2014-07-17 15:59 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\ImperiaOnline
2014-07-13 16:08 . 2014-07-13 16:08 -------- d-----w- c:\windows\jumpshot.com
2014-07-13 15:48 . 2014-07-13 15:48 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-07-13 15:48 . 2014-07-13 15:48 43152 ----a-w- c:\windows\avastSS.scr
2014-07-11 15:23 . 2014-07-11 15:23 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\AppData
2014-07-11 15:23 . 2014-07-17 13:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ExStrACouupon
2014-07-08 12:34 . 2014-07-08 12:34 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Adobe
2014-07-04 21:54 . 2014-07-05 01:23 -------- d-----w- c:\windows\system32\Adobe
2014-07-04 18:18 . 2014-07-04 18:18 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Teddy App
2014-07-04 18:18 . 2014-07-17 13:35 -------- d-----w- c:\program files\GS Supporter
2014-07-04 18:17 . 2014-07-11 15:24 -------- d-----w- c:\documents and settings\All Users\Data aplikací\a466aff2d8d557ec
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Torch
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Chromatic Browser
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Comodo
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\SUPPORT_388945a0
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\HelpAssistant
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Guest
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Administrator
2014-07-04 18:16 . 2014-07-04 18:18 -------- d-----w- c:\documents and settings\All Users\Data aplikací\InstallMate
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-13 15:48 . 2013-02-02 17:16 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-07-13 15:48 . 2013-03-20 13:13 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-07-13 15:48 . 2013-03-20 13:13 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-07-13 15:48 . 2013-02-02 17:16 57800 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-07-13 15:48 . 2013-02-02 17:16 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-07-13 15:48 . 2013-03-20 13:13 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-07-13 15:48 . 2013-02-02 17:16 55112 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-07-13 15:48 . 2013-02-02 17:15 276432 ----a-w- c:\windows\system32\aswBoot.exe
2014-07-09 12:12 . 2013-02-03 14:04 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-09 12:12 . 2013-02-03 14:04 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-06-10 18:59 . 2014-06-10 18:59 320120 ----a-w- c:\windows\system32\drivers\sptd.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-13 15:48 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyComGames"="c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\MyComGames\MyComGames.exe" [2014-06-08 4268328]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-13 4086432]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"ApnTBMon"="c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2014-06-21 1956760]
"VNT"="c:\program files\VNT\vntldr.exe" [2014-06-14 196504]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Bc. Jana Šufliarska\Nabídka Start\Programy\Po spuštění\
Dropbox.lnk - c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\Dropbox.exe /systemstartup [2014-5-20 33322312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2005-05-03 10:43 69632 ------r- c:\windows\Alcmtr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
2014-06-21 22:00 1956760 ----a-w- c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-04-21 19:43 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-14 07:52 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
2010-05-07 17:35 165208 ----a-w- c:\program files\Logitech\LWS\Webcam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
2007-05-18 09:00 98304 ----a-r- c:\program files\Hewlett-Packard\OrderReminder\OrderReminder.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2013-05-01 01:59 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2006-01-11 09:23 15961088 ------r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 07:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VNT]
2014-06-14 20:06 196504 ----a-w- c:\program files\VNT\vntldr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Ventrilo\\Ventrilo.exe"=
"c:\\Documents and Settings\\Bc. Jana Šufliarska\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"59136:TCP"= 59136:TCP:Pando Media Booster
"59136:UDP"= 59136:UDP:Pando Media Booster
"8395:TCP"= 8395:TCP:League of Legends Launcher
"8395:UDP"= 8395:UDP:League of Legends Launcher
"8370:TCP"= 8370:TCP:League of Legends Launcher
"8370:UDP"= 8370:UDP:League of Legends Launcher
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [20. 3. 2013 15:13 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [20. 3. 2013 15:13 192352]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2. 2. 2013 19:16 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2. 2. 2013 19:16 414520]
R2 APNMCP;Ask Update Service;c:\program files\AskPartnerNetwork\Toolbar\apnmcp.exe [22. 6. 2014 0:00 165784]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [13. 7. 2014 17:48 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [20. 3. 2013 15:13 67824]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [8. 10. 2013 14:46 1739064]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [18. 9. 2013 12:14 12320]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [23. 10. 2013 8:15 172192]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [3. 2. 2013 0:55 100368]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-13 14:56 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-07-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-03 12:12]
.
2014-02-21 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57]
.
2014-07-18 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-13 15:48]
.
2014-07-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-06 23:28]
.
2014-07-18 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-06 23:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yandex.ru/?win=133&clid=1989595
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: Interfaces\{49404832-C616-4DF2-BC3D-3D4339BDD2C9}: NameServer = 213.215.108.1,195.168.1.2
DPF: {46D8BEE7-0B27-4466-ABA2-A5F1E157971C} - hxxp://192.168.5.13/RemoteWeb.cab
DPF: {542CB1D4-810D-4864-8F91-D530B50E89AE} - hxxp://192.168.5.13/Components.cab
DPF: {5FFDFC21-AE40-4C7C-955C-415A1ACE01C8} - hxxp://192.168.5.13/VideoViewer.cab
FF - ProfilePath - c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Mozilla\Firefox\Profiles\v69hs55f.default\
FF - prefs.js: browser.search.selectedEngine - Yandex
FF - prefs.js: browser.startup.homepage - about:home
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-{1B9604EE-B104-45C8-8551-5F63BA631E23} - c:\documents and settings\All Users\Data aplikací\{E0A9340B-C01B-42C1-9910-C307D7BE4756}\WeatherBugSetup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-18 17:58
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(568)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2014-07-18 18:00:42
ComboFix-quarantined-files.txt 2014-07-18 16:00
.
Pre-Run: Volných bajtů: 24 714 244 096
Post-Run: Volných bajtů: 25 998 569 472
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 76E36F2D8F5886BA64F2613CBEA2A9AB
413FC2A0C716421B3158746D63736515
Dakujem za kazdu radu a pomoc! (Janka)
vedel by mi prosim niekto poradit co s mojim PC? Je celkovo spomaleny, dlho sa zapina pri starte (cca 10 min) a hlavne akykolvek prehliadac je spomaleny (Mozilla, Chrome aj IE). Mam tusaka ze je v tom nejaky virus, ale moc na tie podozrile stranky nechodim (isto viete ktore myslim
).Spustila som ComboFix a vyplulo mi tento log:
ComboFix 14-07-17.03 - Bc. Jana Šufliarska . 07. 2014 17:47:12.1.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.421.1029.18.2046.1427 [GMT 2:00]
Running from: d:\presunutú dokumenty\Downloads\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
FW: avast! Antivirus *Disabled* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Administrator\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_laahodcomgjmbnifnjnkhbaohjpaoplg_0.localstorage-journal
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_laahodcomgjmbnifnjnkhbaohjpaoplg_0.localstorage
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pggbacoeeiigddnlocgkgigllpiennmd_0.localstorage-journal
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Local Storage\chrome-extension_pggbacoeeiigddnlocgkgigllpiennmd_0.localstorage
c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Preferences
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\Guest\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\HelpAssistant\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Comodo\Dragon\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome SxS\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Google\Chrome\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Chromatic Browser\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\background.html
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\content.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\HPVuPuXtWC70.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\lsdb.js
c:\documents and settings\SUPPORT_388945a0\Local Settings\Data aplikací\Torch\User Data\Default\Extensions\pcadkiidjngoifncjpingmkilhdnhpof\2.14\manifest.json
c:\windows\system32\SETEA.tmp
c:\windows\system32\SETEE.tmp
c:\windows\system32\SETEF.tmp
c:\windows\system32\SETF6.tmp
.
.
((((((((((((((((((((((((( Files Created from 2014-06-18 to 2014-07-18 )))))))))))))))))))))))))))))))
.
.
2014-07-17 16:14 . 2014-07-17 16:14 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\IsolatedStorage
2014-07-17 16:14 . 2014-07-17 16:14 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\AskPartnerNetwork
2014-07-17 16:02 . 2014-07-17 16:24 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Yandex
2014-07-17 16:00 . 2014-07-17 16:00 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Opera Software
2014-07-17 16:00 . 2014-07-17 17:12 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Yandex
2014-07-17 16:00 . 2014-07-18 15:15 -------- dc-h--w- c:\documents and settings\All Users\Data aplikací\{E0A9340B-C01B-42C1-9910-C307D7BE4756}
2014-07-17 15:59 . 2014-07-17 15:59 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\ImperiaOnline
2014-07-13 16:08 . 2014-07-13 16:08 -------- d-----w- c:\windows\jumpshot.com
2014-07-13 15:48 . 2014-07-13 15:48 24184 ----a-w- c:\windows\system32\drivers\aswHwid.sys
2014-07-13 15:48 . 2014-07-13 15:48 43152 ----a-w- c:\windows\avastSS.scr
2014-07-11 15:23 . 2014-07-11 15:23 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\AppData
2014-07-11 15:23 . 2014-07-17 13:35 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ExStrACouupon
2014-07-08 12:34 . 2014-07-08 12:34 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Adobe
2014-07-04 21:54 . 2014-07-05 01:23 -------- d-----w- c:\windows\system32\Adobe
2014-07-04 18:18 . 2014-07-04 18:18 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Teddy App
2014-07-04 18:18 . 2014-07-17 13:35 -------- d-----w- c:\program files\GS Supporter
2014-07-04 18:17 . 2014-07-11 15:24 -------- d-----w- c:\documents and settings\All Users\Data aplikací\a466aff2d8d557ec
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Torch
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Chromatic Browser
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\Comodo
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\SUPPORT_388945a0
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\HelpAssistant
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Guest
2014-07-04 18:17 . 2014-07-04 18:17 -------- d-----w- c:\documents and settings\Administrator
2014-07-04 18:16 . 2014-07-04 18:18 -------- d-----w- c:\documents and settings\All Users\Data aplikací\InstallMate
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2014-07-13 15:48 . 2013-02-02 17:16 414520 ----a-w- c:\windows\system32\drivers\aswsp.sys
2014-07-13 15:48 . 2013-03-20 13:13 49944 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2014-07-13 15:48 . 2013-03-20 13:13 192352 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2014-07-13 15:48 . 2013-02-02 17:16 57800 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2014-07-13 15:48 . 2013-02-02 17:16 779536 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2014-07-13 15:48 . 2013-03-20 13:13 67824 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2014-07-13 15:48 . 2013-02-02 17:16 55112 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2014-07-13 15:48 . 2013-02-02 17:15 276432 ----a-w- c:\windows\system32\aswBoot.exe
2014-07-09 12:12 . 2013-02-03 14:04 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-09 12:12 . 2013-02-03 14:04 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2014-06-10 18:59 . 2014-06-10 18:59 320120 ----a-w- c:\windows\system32\drivers\sptd.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2014-07-13 15:48 578240 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2013-09-11 02:09 131248 ----a-w- c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\DropboxExt.22.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"MyComGames"="c:\documents and settings\Bc. Jana Šufliarska\Local Settings\Data aplikací\MyComGames\MyComGames.exe" [2014-06-08 4268328]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"AvastUI.exe"="c:\program files\AVAST Software\Avast\AvastUI.exe" [2014-07-13 4086432]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-11-21 959904]
"ApnTBMon"="c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe" [2014-06-21 1956760]
"VNT"="c:\program files\VNT\vntldr.exe" [2014-06-14 196504]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Bc. Jana Šufliarska\Nabídka Start\Programy\Po spuštění\
Dropbox.lnk - c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Dropbox\bin\Dropbox.exe /systemstartup [2014-5-20 33322312]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2013-11-21 16:57 959904 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
2005-05-03 10:43 69632 ------r- c:\windows\Alcmtr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ApnTBMon]
2014-06-21 22:00 1956760 ----a-w- c:\program files\AskPartnerNetwork\Toolbar\Updater\TBNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2013-04-21 19:43 59720 ----a-w- c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2008-04-14 07:52 15360 ----a-w- c:\windows\system32\ctfmon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LWS]
2010-05-07 17:35 165208 ----a-w- c:\program files\Logitech\LWS\Webcam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OrderReminder]
2007-05-18 09:00 98304 ----a-r- c:\program files\Hewlett-Packard\OrderReminder\OrderReminder.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2013-05-01 01:59 421888 ----a-w- c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2006-01-11 09:23 15961088 ------r- c:\windows\RTHDCPL.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2013-07-02 07:16 254336 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VNT]
2014-06-14 20:06 196504 ----a-w- c:\program files\VNT\vntldr.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"FirewallOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Program Files\\Steam\\Steam.exe"=
"c:\\Program Files\\Ventrilo\\Ventrilo.exe"=
"c:\\Documents and Settings\\Bc. Jana Šufliarska\\Data aplikací\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"59136:TCP"= 59136:TCP:Pando Media Booster
"59136:UDP"= 59136:UDP:Pando Media Booster
"8395:TCP"= 8395:TCP:League of Legends Launcher
"8395:UDP"= 8395:UDP:League of Legends Launcher
"8370:TCP"= 8370:TCP:League of Legends Launcher
"8370:UDP"= 8370:UDP:League of Legends Launcher
.
R0 aswRvrt;avast! Revert;c:\windows\system32\drivers\aswRvrt.sys [20. 3. 2013 15:13 49944]
R0 aswVmm;avast! VM Monitor;c:\windows\system32\drivers\aswVmm.sys [20. 3. 2013 15:13 192352]
R0 sptd;sptd;\SystemRoot\\SystemRoot\System32\Drivers\sptd.sys --> \SystemRoot\\SystemRoot\System32\Drivers\sptd.sys [?]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2. 2. 2013 19:16 779536]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswsp.sys [2. 2. 2013 19:16 414520]
R2 APNMCP;Ask Update Service;c:\program files\AskPartnerNetwork\Toolbar\apnmcp.exe [22. 6. 2014 0:00 165784]
R2 aswHwid;avast! HardwareID;c:\windows\system32\drivers\aswHwid.sys [13. 7. 2014 17:48 24184]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [20. 3. 2013 15:13 67824]
R2 TuneUp.UtilitiesSvc;AVG PC TuneUp Service;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesService32.exe [8. 10. 2013 14:46 1739064]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\AVG\AVG PC TuneUp\TuneUpUtilitiesDriver32.sys [18. 9. 2013 12:14 12320]
S2 SkypeUpdate;Skype Updater;c:\program files\Skype\Updater\Updater.exe [23. 10. 2013 8:15 172192]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdXP3.sys [3. 2. 2013 0:55 100368]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\Garena Plus\Room\safedrv.sys --> c:\program files\Garena Plus\Room\safedrv.sys [?]
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{8A69D345-D564-463c-AFF1-A69D9E530F96}]
2014-06-13 14:56 1091912 ----a-w- c:\program files\Google\Chrome\Application\35.0.1916.153\Installer\chrmstp.exe
.
Contents of the 'Scheduled Tasks' folder
.
2014-07-18 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2013-02-03 12:12]
.
2014-02-21 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-01 16:57]
.
2014-07-18 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2014-07-13 15:48]
.
2014-07-08 c:\windows\Tasks\Měsíční oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-06 23:28]
.
2014-07-18 c:\windows\Tasks\Přihlášení k oznamování konce poskytování služeb pro Microsoft Windows XP.job
- c:\windows\system32\xp_eos.exe [2014-03-06 23:28]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yandex.ru/?win=133&clid=1989595
IE: E&xportovať do programu Microsoft Excel - c:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000
TCP: Interfaces\{49404832-C616-4DF2-BC3D-3D4339BDD2C9}: NameServer = 213.215.108.1,195.168.1.2
DPF: {46D8BEE7-0B27-4466-ABA2-A5F1E157971C} - hxxp://192.168.5.13/RemoteWeb.cab
DPF: {542CB1D4-810D-4864-8F91-D530B50E89AE} - hxxp://192.168.5.13/Components.cab
DPF: {5FFDFC21-AE40-4C7C-955C-415A1ACE01C8} - hxxp://192.168.5.13/VideoViewer.cab
FF - ProfilePath - c:\documents and settings\Bc. Jana Šufliarska\Data aplikací\Mozilla\Firefox\Profiles\v69hs55f.default\
FF - prefs.js: browser.search.selectedEngine - Yandex
FF - prefs.js: browser.startup.homepage - about:home
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
.
- - - - ORPHANS REMOVED - - - -
.
AddRemove-{1B9604EE-B104-45C8-8551-5F63BA631E23} - c:\documents and settings\All Users\Data aplikací\{E0A9340B-C01B-42C1-9910-C307D7BE4756}\WeatherBugSetup.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2014-07-18 17:58
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(568)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2014-07-18 18:00:42
ComboFix-quarantined-files.txt 2014-07-18 16:00
.
Pre-Run: Volných bajtů: 24 714 244 096
Post-Run: Volných bajtů: 25 998 569 472
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 76E36F2D8F5886BA64F2613CBEA2A9AB
413FC2A0C716421B3158746D63736515
Dakujem za kazdu radu a pomoc! (Janka)
