VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Kontrola logu z Combofixu - zpomaleny pc

https://forum.viry.cz:443/viewtopic.php?t=147005

Stránka 1 z 1

Kontrola logu z Combofixu - zpomaleny pc

Napsal: 27 lis 2015 20:16
od obr4z
Dobrý den, prosím o kontrolu logu z Combofixu, mám podezření na nějakou havěť - pc je celkově zpomalený a včera se mi (samy od sebe) aktualizovaly ovladače ke GK a od té doby ovladač padá a nefungují 2 externí monitory.. Děkuji.

Kód: Vybrat vše

ComboFix 15-11-27.01 - Krusticka 27.11.2015  18:33:20.1.8 - x64
Microsoft Windows 7 Ultimate   6.1.7601.1.1250.420.1029.18.12279.9383 [GMT 1:00]
Spuštěný z: c:\users\Krusticka\Desktop\ComboFix.exe
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
(((((((((((((((((((((((((((((((((((((((   Ostatní výmazy   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Lucky Bright\Extensions\d47f39c7-2f7f-43e5-ba53-faffe2da42af.dll
c:\users\KRUSTI~1\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpa0mbbr.dll
c:\users\Krusticka\AppData\Local\dontouch.exe
c:\users\Krusticka\AppData\Local\Temp\dropbox_sqlite_ext.{5f3e3153-5bce-5766-8f84-3e3e7ecf0d81}.tmpa0mbbr.dll
c:\users\Krusticka\AppData\Roaming\poclbm
c:\users\Krusticka\AppData\Roaming\poclbm\poclbm.ini
c:\windows\svchost.exe
c:\windows\Tasks\DLL-files.com Fixer_MONTHLY.job
c:\windows\Tasks\DLL-files.com Fixer_UPDATES.job
D:\uninstall.exe
X:\Setup.exe
.
.
(((((((((((((((((((((((((((((((((((((((   Ovladače/Služby   )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_ehwnload
.
.
(((((((((((((((((((((((((   Soubory vytvořené od 2015-10-27 do 2015-11-27  )))))))))))))))))))))))))))))))
.
.
2015-11-27 17:53 . 2015-11-27 17:53	--------	d-----w-	c:\users\Default\AppData\Local\temp
2015-11-27 17:21 . 2015-11-27 17:21	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\driveridentifier
2015-11-27 17:21 . 2015-11-27 17:21	--------	d-----w-	c:\program files (x86)\Driver Identifier
2015-11-27 11:42 . 2015-11-27 11:42	--------	d-----w-	c:\programdata\Microsoft Toolkit
2015-11-25 10:04 . 2015-11-25 10:04	981744	----a-w-	c:\windows\system32\drivers\Rt64win7.sys
2015-11-25 10:04 . 2015-11-25 10:04	84072	----a-w-	c:\windows\system32\RtNicProp64.dll
2015-11-25 10:03 . 2015-11-25 10:03	123704	----a-w-	c:\windows\system32\drivers\jraid.sys
2015-11-25 09:41 . 2015-11-25 09:41	15416	----a-w-	c:\windows\system32\drivers\ASACPI.sys
2015-11-25 02:48 . 2015-11-17 06:43	11138400	----a-w-	c:\programdata\Microsoft\Windows Defender\Definition Updates\{9808BC88-2E55-4682-A7FF-7F6B7A34C047}\mpengine.dll
2015-11-24 22:43 . 2015-11-24 22:43	--------	d-----w-	c:\users\Krusticka\AppData\Local\AMD
2015-11-24 22:43 . 2015-11-24 22:43	--------	d-----w-	c:\program files (x86)\Common Files\ATI Technologies
2015-11-24 21:00 . 2015-11-24 22:41	--------	d-----w-	c:\program files\AMD
2015-11-24 20:58 . 2015-11-24 22:34	--------	d-----w-	C:\AMD
2015-11-24 02:59 . 2015-11-25 13:19	--------	d-----w-	c:\users\Krusticka\AppData\Local\PlutoTV
2015-11-24 02:58 . 2015-11-24 02:59	--------	d-----w-	c:\program files (x86)\Pluto TV
2015-11-21 04:13 . 2015-11-21 04:38	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\Box24
2015-11-21 04:13 . 2015-11-21 04:13	--------	d-----w-	c:\programdata\Box24
2015-11-21 04:13 . 2015-11-21 04:13	--------	d-----w-	c:\program files (x86)\Box24
2015-11-21 03:28 . 2015-11-21 03:28	2048	----a-w-	c:\windows\SysWow64\winver.exe
2015-11-21 03:28 . 2015-11-21 03:28	833024	----a-w-	c:\windows\SysWow64\user32.dll
2015-11-21 03:28 . 2015-11-21 03:28	410624	----a-w-	c:\windows\SysWow64\systemcpl.dll
2015-11-21 03:28 . 2015-11-21 03:28	113543	----a-w-	c:\windows\SysWow64\slmgr.vbs
2015-11-19 23:08 . 2015-11-27 17:13	--------	d-----w-	c:\program files (x86)\Common Files\9466af57-1f38-4973-ab1c-22f7e17e2d6a
2015-11-18 08:17 . 2015-11-18 08:17	296648	----a-w-	c:\windows\system32\drivers\amdacpksd.sys
2015-11-18 08:02 . 2015-11-25 02:47	39712768	----a-w-	c:\windows\SysWow64\amdocl.dll
2015-11-18 07:57 . 2015-11-25 02:47	59392	----a-w-	c:\windows\SysWow64\OpenCL.dll
2015-11-18 07:49 . 2015-11-25 02:47	22318592	----a-w-	c:\windows\SysWow64\amdocl12cl.dll
2015-11-18 05:50 . 2015-11-18 05:50	677888	----a-w-	c:\windows\system32\amdlvr64.dll
2015-11-18 05:48 . 2015-11-18 05:48	562688	----a-w-	c:\windows\SysWow64\amdlvr32.dll
2015-11-18 03:26 . 2015-11-25 02:47	442368	----a-w-	c:\windows\system32\atidemgy.dll
2015-11-18 03:26 . 2015-11-18 03:26	223744	----a-w-	c:\windows\system32\dgtrayicon.exe
2015-11-17 17:09 . 2015-11-19 22:53	--------	d-----w-	c:\users\Krusticka\AppData\Local\1E007B80-1447783745-B900-1F7C-90E6BA9D20DC
2015-11-17 15:56 . 2015-11-27 13:12	--------	d-----w-	c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a
2015-11-17 15:56 . 2015-11-19 23:08	--------	d-----w-	c:\program files (x86)\Lucky Bright
2015-11-17 15:03 . 2015-11-20 08:53	--------	d-----w-	c:\windows\rescache
2015-11-17 11:07 . 2015-11-19 22:53	--------	d-----w-	c:\programdata\vWMiniProv
2015-11-17 10:09 . 2015-11-19 22:53	--------	d-----w-	c:\programdata\SWMiniProS
2015-11-17 09:28 . 2015-11-19 22:54	--------	d-----w-	c:\users\Krusticka\AppData\Local\1E007B80-1447756113-B900-1F7C-90E6BA9D20DC
2015-11-17 08:59 . 2015-01-10 14:32	128288	----a-w-	c:\windows\SysWow64\IObitSmartDefragExtension.dll
2015-11-17 08:59 . 2015-01-10 14:32	128288	----a-w-	c:\windows\system32\IObitSmartDefragExtension.dll
2015-11-17 08:59 . 2014-06-04 14:17	34080	----a-w-	c:\windows\system32\SmartDefragBootTime.exe
2015-11-17 08:59 . 2015-11-17 08:59	--------	d-----w-	c:\programdata\{BAF091CA-86C4-4627-ADA1-897E2621C1B0}
2015-11-17 08:59 . 2014-06-04 14:17	21184	----a-w-	c:\windows\system32\drivers\SmartDefragDriver.sys
2015-11-17 08:58 . 2015-11-17 08:58	--------	d-----w-	c:\program files (x86)\Common Files\IObit
2015-11-17 08:57 . 2015-11-17 08:57	26528	----a-w-	c:\windows\SysWow64\drivers\HWiNFO64A.SYS
2015-11-17 08:56 . 2015-11-19 22:54	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\ProductData
2015-11-17 08:55 . 2015-11-24 22:56	--------	d-----w-	c:\programdata\ProductData
2015-11-17 08:55 . 2015-11-17 08:55	--------	d-----w-	c:\programdata\{3C5CBD7B-3D1D-411E-96C2-513FFCA84D2D}
2015-11-17 08:55 . 2015-11-19 22:53	--------	d-----w-	c:\programdata\IObit
2015-11-17 08:55 . 2015-11-17 09:44	--------	d-----w-	c:\program files (x86)\IObit
2015-11-17 08:54 . 2015-11-19 22:54	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\IObit
2015-11-17 03:27 . 2015-11-25 02:51	--------	d-----w-	c:\programdata\5WMiniPro5
2015-11-17 03:26 . 2015-11-17 09:11	--------	d-----w-	c:\program files (x86)\Feed Notifier
2015-11-16 22:58 . 2015-11-16 22:59	--------	d-----w-	c:\programdata\cWMiniProc
2015-11-16 07:08 . 2015-11-24 02:57	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\OpenCandy
2015-11-16 06:03 . 2015-11-27 17:59	--------	d-----w-	c:\programdata\Zitenop
2015-11-15 23:00 . 2015-11-15 23:02	--------	d-----w-	c:\programdata\BWMiniProB
2015-11-15 23:00 . 2015-11-15 23:00	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\istartpageing
2015-11-15 17:59 . 2015-11-15 18:00	--------	d-----w-	c:\programdata\DWMiniProD
2015-11-15 17:17 . 2015-11-15 17:17	--------	d-----w-	c:\programdata\ATI
2015-11-15 17:15 . 2015-11-15 17:15	0	----a-w-	c:\windows\ativpsrm.bin
2015-11-15 16:58 . 2015-11-25 02:47	166488	----a-w-	c:\windows\system32\atiuxp64.dll
2015-11-15 16:58 . 2010-09-28 19:51	450560	----a-w-	c:\windows\system32\ATIDEMGX.dll
2015-11-15 16:58 . 2010-09-28 19:49	421376	----a-w-	c:\windows\system32\atipdl64.dll
2015-11-15 16:58 . 2010-09-28 19:49	356352	----a-w-	c:\windows\SysWow64\atipdlxx.dll
2015-11-15 16:58 . 2010-09-28 19:49	278528	----a-w-	c:\windows\SysWow64\Oemdspif.dll
2015-11-15 16:58 . 2010-09-28 19:49	59392	----a-w-	c:\windows\system32\atiedu64.dll
2015-11-15 16:58 . 2010-09-28 19:49	43520	----a-w-	c:\windows\SysWow64\ati2edxx.dll
2015-11-15 16:58 . 2010-09-28 19:23	58880	----a-w-	c:\windows\system32\coinst.dll
2015-11-15 16:58 . 2010-08-27 12:33	332800	----a-w-	c:\windows\system32\ATIODE.exe
2015-11-15 16:58 . 2009-06-22 09:34	51200	----a-w-	c:\windows\system32\ATIODCLI.exe
2015-11-15 16:58 . 2009-05-11 15:35	118784	----a-w-	c:\windows\system32\atibtmon.exe
2015-11-15 16:48 . 2015-11-15 16:48	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\WarThunder
2015-11-15 16:48 . 2015-11-15 16:48	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\sparta111
2015-11-15 16:48 . 2015-11-15 16:48	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\StormFall
2015-11-15 16:48 . 2015-11-15 16:48	--------	d-----w-	c:\users\Krusticka\AppData\Local\Sparta
2015-11-15 16:48 . 2015-11-15 16:48	--------	d-----w-	c:\users\Krusticka\AppData\Local\StormFall
2015-11-15 16:32 . 2015-11-15 16:32	--------	d-----w-	c:\program files\Common Files\ATI Technologies
2015-11-15 16:31 . 2015-11-15 16:31	--------	d-----w-	c:\program files\ATI
2015-11-15 16:22 . 2015-11-15 16:22	--------	d-----w-	c:\programdata\WarThunder
2015-11-15 15:48 . 2015-11-27 17:59	--------	d-----w-	c:\programdata\Bamcof
2015-11-15 15:48 . 2015-11-15 15:48	2813320	----a-w-	c:\program files\Common Files\psdp5fp2.exe
2015-11-15 15:45 . 2015-11-15 15:45	--------	d-----w-	c:\users\Krusticka\AppData\Local\Sony
2015-11-15 15:45 . 2015-11-15 15:45	--------	d-----w-	c:\program files\Common Files\2obqpd1w
2015-11-15 14:32 . 2015-11-15 17:04	--------	d-----w-	c:\program files (x86)\ATI Technologies
2015-11-15 14:32 . 2015-11-15 14:32	--------	d-----w-	C:\CIMTEMP
2015-11-15 14:32 . 2011-05-24 21:00	1113088	----a-w-	c:\windows\system32\atiumd6v.dll
2015-11-15 14:32 . 2011-05-24 20:59	1828864	----a-w-	c:\windows\SysWow64\atiumdmv.dll
2015-11-15 14:29 . 2015-11-15 14:29	--------	d-----w-	c:\program files\Microsoft Xbox 360 Accessories
2015-11-15 14:28 . 2015-11-15 14:29	--------	d-----w-	c:\programdata\MWMiniProM
2015-11-15 14:07 . 2015-11-15 14:08	--------	d-----w-	c:\programdata\lWMiniProl
2015-11-15 14:02 . 2015-11-15 15:02	--------	d-----w-	c:\program files\Dripkix
2015-11-15 14:00 . 2015-11-15 14:00	--------	d-----w-	c:\users\Krusticka\AppData\Local\Video Follow
2015-11-15 13:59 . 2015-11-15 14:00	--------	d-----w-	c:\program files (x86)\SavePass 1.1
2015-11-15 13:57 . 2015-11-15 13:57	--------	d-----w-	c:\program files (x86)\Microsoft Silverlight
2015-11-15 13:57 . 2015-11-27 11:18	--------	d-----w-	c:\users\Krusticka\AppData\Local\1E007B80-1447599461-B900-1F7C-90E6BA9D20DC
2015-11-15 13:56 . 2015-11-17 08:56	--------	d-----w-	c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC
2015-11-15 13:54 . 2015-11-15 13:54	--------	d-----w-	c:\programdata\LuckyBrowse
2015-11-15 13:54 . 2015-11-15 13:54	--------	d-----w-	c:\program files (x86)\LuckyBrowse
2015-11-15 13:53 . 2015-11-15 13:54	--------	d-----w-	c:\programdata\1WMiniPro1
2015-11-15 12:54 . 2015-11-15 13:01	1672	----a-w-	c:\windows\system32\ASOROSet.bin
2015-11-15 12:28 . 2015-11-15 12:28	--------	d-----w-	c:\users\Krusticka\AppData\Local\globalUpdate
2015-11-15 12:27 . 2015-11-15 12:29	--------	d-----w-	c:\program files (x86)\CinemaP-1.9cV09.11
2015-11-15 12:27 . 2015-11-15 13:06	--------	d-----w-	c:\program files (x86)\Seznam.cz
2015-11-15 12:26 . 2015-11-15 13:06	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\Seznam.cz
2015-11-15 12:18 . 2015-11-15 12:18	--------	d-----w-	c:\program files\Dll-Files.com Fixer
2015-11-15 12:14 . 2015-11-15 12:14	--------	d-----w-	c:\users\Krusticka\AppData\Roaming\dll-files.com
2015-11-15 12:14 . 2015-11-15 12:14	--------	d-----w-	c:\programdata\Logs
2015-11-15 12:14 . 2015-02-17 10:20	21040	----a-w-	c:\windows\system32\roboot64.exe
2015-11-15 12:13 . 2015-11-15 12:39	--------	d-----w-	c:\program files (x86)\Dll-Files.com Fixer
2015-11-15 12:00 . 2015-11-15 12:16	--------	d-----w-	c:\program files (x86)\Dll Suite
2015-11-15 11:53 . 2015-11-15 11:53	--------	d-----w-	c:\program files\iPod
2015-11-15 11:53 . 2015-11-15 11:53	--------	d-----w-	c:\program files (x86)\iTunes
2015-11-15 11:50 . 2015-11-15 11:50	--------	d-----w-	c:\program files (x86)\Apple Software Update
2015-11-15 11:47 . 2015-11-15 11:47	--------	d-----w-	c:\program files\Bonjour
2015-11-15 11:47 . 2015-11-15 11:47	--------	d-----w-	c:\program files (x86)\Bonjour
2015-11-15 08:02 . 2015-11-17 05:47	--------	d-----w-	c:\program files (x86)\Slot Madness Casino
2015-11-15 07:16 . 2015-11-22 20:47	--------	d-----w-	c:\users\Krusticka\AppData\Local\BetOnSoft
2015-11-15 06:32 . 2015-11-17 09:06	--------	d-----w-	c:\program files (x86)\Slotastic
2015-11-15 04:47 . 2015-11-17 09:06	--------	d-----w-	c:\program files (x86)\WinBig21
2015-11-14 22:29 . 2015-10-20 01:17	5550528	----a-w-	c:\windows\system32\ntoskrnl.exe
2015-11-14 22:28 . 2015-10-14 00:50	496128	----a-w-	c:\windows\system32\drivers\afd.sys
2015-11-14 22:12 . 2015-11-15 14:12	19387592	----a-w-	c:\windows\SysWow64\FlashPlayerInstaller.exe
2015-11-10 00:36 . 2015-11-10 00:36	--------	d-----w-	C:\Microgaming
2015-11-01 11:25 . 2015-11-01 11:25	--------	d-----w-	c:\program files (x86)\Common Files\Java
.
.
((((((((((((((((((((((((((((((((((((((((   Find3M výpis   ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2015-11-25 10:04 . 2011-06-10 05:34	117824	----a-w-	c:\windows\system32\RTNUninst64.dll
2015-11-15 14:12 . 2015-03-01 23:54	816840	----a-w-	c:\windows\SysWow64\FlashPlayerApp.exe
2015-11-15 14:12 . 2015-03-01 23:54	142536	----a-w-	c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2015-11-15 02:13 . 2015-03-01 02:36	145617392	----a-w-	c:\windows\system32\MRT.exe
2015-11-01 11:23 . 2015-03-01 01:46	97888	----a-w-	c:\windows\SysWow64\WindowsAccessBridge-32.dll
2015-10-21 22:32 . 2015-10-15 21:51	28984	----a-w-	c:\windows\SysWow64\drivers\TS888x64.sys
2015-10-20 01:11 . 2015-11-14 22:29	344064	----a-w-	c:\windows\system32\schannel.dll
2015-10-20 01:11 . 2015-11-14 22:29	190464	----a-w-	c:\windows\system32\rpchttp.dll
2015-10-20 00:47 . 2015-11-14 22:29	251392	----a-w-	c:\windows\SysWow64\schannel.dll
2015-10-20 00:47 . 2015-11-14 22:29	141312	----a-w-	c:\windows\SysWow64\rpchttp.dll
2015-10-20 00:46 . 2015-11-14 22:29	44032	----a-w-	c:\windows\apppatch\acwow64.dll
2015-10-13 00:29 . 2015-10-13 00:29	875720	----a-w-	c:\windows\SysWow64\msvcr120_clr0400.dll
2015-10-13 00:22 . 2015-10-13 00:22	869568	----a-w-	c:\windows\system32\msvcr120_clr0400.dll
2015-10-02 13:16 . 2012-01-25 16:33	237872	----a-w-	c:\windows\SysWow64\DeltaIITray.exe
2015-10-01 00:48 . 2015-10-01 00:49	38200	----a-w-	c:\windows\system32\drivers\TSSKX64.sys
2015-10-01 00:48 . 2015-10-01 00:49	87864	----a-w-	c:\windows\system32\drivers\TFsFltX64.sys
2015-09-23 00:35 . 2015-09-23 00:35	1423680	----a-w-	c:\windows\system32\cpm.exe
2015-09-18 00:38 . 2015-09-18 00:38	96256	----a-w-	c:\windows\system32\drivers\AtihdW76.sys
2015-09-18 00:37 . 2015-09-18 00:37	103424	----a-w-	c:\windows\system32\DelayAPO.dll
2015-09-14 21:40 . 2015-10-15 22:15	634432	----a-w-	c:\windows\system32\winload.exe
2015-09-02 03:04 . 2015-09-09 13:35	41984	----a-w-	c:\windows\system32\lpk.dll
2015-09-02 03:04 . 2015-09-09 13:35	100864	----a-w-	c:\windows\system32\fontsub.dll
2015-09-02 03:04 . 2015-09-09 13:35	14336	----a-w-	c:\windows\system32\dciman32.dll
2015-09-02 03:04 . 2015-09-09 13:35	46080	----a-w-	c:\windows\system32\atmlib.dll
2015-09-02 02:48 . 2015-09-09 13:35	70656	----a-w-	c:\windows\SysWow64\fontsub.dll
2015-09-02 02:48 . 2015-09-09 13:35	10240	----a-w-	c:\windows\SysWow64\dciman32.dll
2015-09-02 02:48 . 2015-09-09 13:35	34304	----a-w-	c:\windows\SysWow64\atmlib.dll
2015-09-02 02:47 . 2015-09-09 13:35	25600	----a-w-	c:\windows\SysWow64\lpk.dll
2015-09-02 01:47 . 2015-09-09 13:35	372736	----a-w-	c:\windows\system32\atmfd.dll
2015-09-02 01:33 . 2015-09-09 13:35	299520	----a-w-	c:\windows\SysWow64\atmfd.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2010-11-21 . FE70103391A64039A921DBFFF9C7AB1B . 1008128 . . [6.1.7601.17514] .. c:\windows\winsxs\amd64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_2b5e71b083fc0973\user32.dll
[-] 2010-11-21 . E573BD9AB55C8E333C202B9E255F972E . 1008640 . . [6.1.7601.17514] .. c:\windows\system32\user32.dll
.
[-] 2015-11-21 . 2C9CC9F492CA596B1B9FC1AE5E916356 . 833024 . . [6.1.7601.17514] .. c:\windows\SysWOW64\user32.dll
[7] 2010-11-21 . 5E0DB2D8B2750543CD2EBB9EA8E6CDD3 . 833024 . . [6.1.7601.17514] .. c:\windows\winsxs\wow64_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_35b31c02b85ccb6e\user32.dll
.
((((((((((((((((((((((((((((((((((   Spouštěcí body v registru   )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny. 
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	198464	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt.28.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Akamai NetSession Interface"="c:\users\Krusticka\AppData\Local\Akamai\netsession_win.exe" [2014-10-29 4673432]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2015-02-26 5583120]
"Advanced SystemCare 8"="c:\program files (x86)\IObit\Advanced SystemCare 8\ASCTray.exe" [2015-04-08 2429728]
"uTorrent"="c:\users\Krusticka\AppData\Roaming\uTorrent\uTorrent.exe" [2015-11-21 2026520]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Raptr"="c:\program files (x86)\Raptr\raptrstub.exe" [2015-11-20 56080]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"M-Audio Taskbar Icon"="c:\windows\system32\DeltaIITray.exe" [2015-10-02 237872]
"Dropbox"="c:\program files (x86)\Dropbox\Client\Dropbox.exe" [2015-11-04 36713096]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2015-10-06 633392]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-09-30 98304]
"IObit Malware Fighter"="c:\program files (x86)\IObit\IObit Malware Fighter\IMF.exe" [2015-07-28 5889824]
.
c:\users\Krusticka\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
CurseClientStartup.ccip [2015-10-9 0]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
PlutoTV.lnk - c:\program files (x86)\Pluto TV\PlutoTV.exe [2015-11-24 93077896]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\programdata\Bamcof\SilverSonstrong.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute	REG_MULTI_SZ   	autocheck autochk *\0SmartDefragBootTime.exe
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
R1 QMUdisk;tencent QMUdisk; [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [x]
R2 dbupdate;Dropbox Update Service (dbupdate);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R2 ginoquci;Desktop Upload;c:\users\KRUSTI~1\AppData\Local\Temp\nsj8633.tmp;c:\users\KRUSTI~1\AppData\Local\Temp\nsj8633.tmp [x]
R2 hidekoqe;Normal Blind Carbon Copy;c:\users\Krusticka\AppData\Local\1E007B80-1447756113-B900-1F7C-90E6BA9D20DC\qnsvC52B.tmp;c:\users\Krusticka\AppData\Local\1E007B80-1447756113-B900-1F7C-90E6BA9D20DC\qnsvC52B.tmp [x]
R2 LiveUpdateSvc;LiveUpdate;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe;c:\program files (x86)\IObit\LiveUpdate\LiveUpdate.exe [x]
R2 qyrytoke;Browse Equals Sign;c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\jnsqB9CE.tmp;c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\jnsqB9CE.tmp [x]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe;c:\program files (x86)\Skype\Updater\Updater.exe [x]
R2 tyrobuve;Wheel Mouse Dial-up;c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\knsyAC.tmp;c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\knsyAC.tmp [x]
R2 zifotyki;Printer Backward Slash;c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\hnsaD442.tmp;c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\hnsaD442.tmp [x]
R3 androidusb;SAMSUNG Android Composite ADB Interface Driver;c:\windows\system32\Drivers\ssadadb.sys;c:\windows\SYSNATIVE\Drivers\ssadadb.sys [x]
R3 dbupdatem;Dropbox Update Service (dbupdatem);c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe;c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [x]
R3 DELTAII;Service for M-Audio Delta Driver (WDM);c:\windows\system32\DRIVERS\MAudioDelta.sys;c:\windows\SYSNATIVE\DRIVERS\MAudioDelta.sys [x]
R3 Disc Soft Lite Bus Service;Disc Soft Lite Bus Service;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe;c:\program files\DAEMON Tools Lite\DiscSoftBusService.exe [x]
R3 dmvsc;dmvsc;c:\windows\system32\drivers\dmvsc.sys;c:\windows\SYSNATIVE\drivers\dmvsc.sys [x]
R3 IEEtwCollectorService;Internet Explorer ETW Collector Service;c:\windows\system32\IEEtwCollector.exe;c:\windows\SYSNATIVE\IEEtwCollector.exe [x]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys;c:\windows\SYSNATIVE\Drivers\IT9135BDA.sys [x]
R3 MotioninJoyXFilter;MotioninJoy Virtual Xinput device Filter Driver;c:\windows\system32\DRIVERS\MijXfilt.sys;c:\windows\SYSNATIVE\DRIVERS\MijXfilt.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys;c:\windows\SYSNATIVE\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [x]
R3 ssadbus;SAMSUNG Android USB Composite Device driver (WDM);c:\windows\system32\DRIVERS\ssadbus.sys;c:\windows\SYSNATIVE\DRIVERS\ssadbus.sys [x]
R3 ssadmdfl;SAMSUNG Android USB Modem (Filter);c:\windows\system32\DRIVERS\ssadmdfl.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdfl.sys [x]
R3 ssadmdm;SAMSUNG Android USB Modem Drivers;c:\windows\system32\DRIVERS\ssadmdm.sys;c:\windows\SYSNATIVE\DRIVERS\ssadmdm.sys [x]
R3 ssadserd;SAMSUNG Android USB Diagnostic Serial Port (WDM);c:\windows\system32\DRIVERS\ssadserd.sys;c:\windows\SYSNATIVE\DRIVERS\ssadserd.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys;c:\windows\SYSNATIVE\drivers\synth3dvsc.sys [x]
R3 terminpt;Microsoft Remote Desktop Input Driver;c:\windows\system32\drivers\terminpt.sys;c:\windows\SYSNATIVE\drivers\terminpt.sys [x]
R3 TS888x64;TS888x64; [x]
R3 TSSKX64;TSSKX64;c:\windows\system32\drivers\tsskx64.sys;c:\windows\SYSNATIVE\drivers\tsskx64.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys;c:\windows\SYSNATIVE\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys;c:\windows\SYSNATIVE\drivers\TsUsbGD.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys;c:\windows\SYSNATIVE\drivers\tsusbhub.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [x]
R3 USBAAPL64;Apple Mobile USB Driver;c:\windows\system32\Drivers\usbaapl64.sys;c:\windows\SYSNATIVE\Drivers\usbaapl64.sys [x]
R3 USER_ESRV_SVC_WILLAMETTE;User Energy Server Service WILLAMETTE;c:\program files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe;c:\program files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys;c:\windows\SYSNATIVE\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe;c:\windows\SYSNATIVE\Wat\WatAdminSvc.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys;c:\windows\SYSNATIVE\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS;c:\windows\SysWOW64\drivers\HWiNFO64A.SYS [x]
S2 AdAppMgrSvc;Autodesk Application Manager Service;c:\program files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe ;c:\program files (x86)\Common Files\Autodesk Shared\AppManager\R1\AdAppMgrSvc.exe  [x]
S2 AdvancedSystemCareService8;Advanced SystemCare Service 8;c:\program files (x86)\IObit\Advanced SystemCare 8\ASCService.exe;c:\program files (x86)\IObit\Advanced SystemCare 8\ASCService.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe;c:\windows\SYSNATIVE\atiesrxx.exe [x]
S2 Apple Mobile Device Service;Apple Mobile Device Service;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe;c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [x]
S2 Bamcof;Bamcof;c:\programdata\\Bamcof\\Bamcof.exe;c:\programdata\\Bamcof\\Bamcof.exe [x]
S2 cegucudi;Print-head Browse;c:\users\Krusticka\AppData\Local\1E007B80-1447599461-B900-1F7C-90E6BA9D20DC\snsl3A83.tmp;c:\users\Krusticka\AppData\Local\1E007B80-1447599461-B900-1F7C-90E6BA9D20DC\snsl3A83.tmp [x]
S2 DiagTrack;Diagnostics Tracking Service;c:\windows\System32\svchost.exe;c:\windows\SYSNATIVE\svchost.exe [x]
S2 Dripkix;Dripkix Service;c:\program files\Dripkix\Dripkix.exe;c:\program files\Dripkix\Dripkix.exe [x]
S2 ESRV_SVC_WILLAMETTE;Energy Server Service WILLAMETTE;c:\program files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe --AUTO_START --start --address 127.0.0.1;c:\program files\Intel\SUR\WILLAMETTE\ESRV\esrv_svc.exe --AUTO_START --start --address 127.0.0.1 [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [x]
S2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [x]
S2 Razer Game Scanner Service;Razer Game Scanner;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe;c:\program files (x86)\Razer\Razer Services\GSS\GameScannerService.exe [x]
S2 rzpmgrk;rzpmgrk;c:\windows\system32\drivers\rzpmgrk.sys;c:\windows\SYSNATIVE\drivers\rzpmgrk.sys [x]
S2 rzpnk;rzpnk;c:\windows\system32\drivers\rzpnk.sys;c:\windows\SYSNATIVE\drivers\rzpnk.sys [x]
S2 Service Mgr LuckyBright;Service Mgr LuckyBright;c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugincontainer.exe;c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugincontainer.exe [x]
S2 SystemUsageReportSvc_WILLAMETTE;Intel(R) System Usage Report Service SystemUsageReportSvc_WILLAMETTE;c:\program files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe;c:\program files (x86)\Intel Driver Update Utility\SUR\SurSvc.exe [x]
S2 Update Mgr LuckyBright;Update Mgr LuckyBright;c:\program files (x86)\Common Files\9466af57-1f38-4973-ab1c-22f7e17e2d6a\updater.exe;c:\program files (x86)\Common Files\9466af57-1f38-4973-ab1c-22f7e17e2d6a\updater.exe [x]
S2 Zitenop;Zitenop;c:\programdata\\Zitenop\\Zitenop.exe;c:\programdata\\Zitenop\\Zitenop.exe [x]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys;c:\windows\SYSNATIVE\drivers\AtihdW76.sys [x]
S3 dtlitescsibus;DAEMON Tools Lite Virtual SCSI Bus;c:\windows\system32\DRIVERS\dtlitescsibus.sys;c:\windows\SYSNATIVE\DRIVERS\dtlitescsibus.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys;c:\windows\SYSNATIVE\DRIVERS\Rt64win7.sys [x]
S3 rzjstk;Razer Virtual Joystick Driver;c:\windows\system32\DRIVERS\rzjstk.sys;c:\windows\SYSNATIVE\DRIVERS\rzjstk.sys [x]
S3 rzkeypadendpt;Razer Keypad Endpoint;c:\windows\system32\DRIVERS\rzkeypadendpt.sys;c:\windows\SYSNATIVE\DRIVERS\rzkeypadendpt.sys [x]
S3 rzp1endpt;Razer platform 1 end point;c:\windows\system32\DRIVERS\rzp1endpt.sys;c:\windows\SYSNATIVE\DRIVERS\rzp1endpt.sys [x]
S3 rzudd;Razer Keyboard Driver;c:\windows\system32\DRIVERS\rzudd.sys;c:\windows\SYSNATIVE\DRIVERS\rzudd.sys [x]
S3 rzvmouse;Razer Virtual Mouse;c:\windows\system32\DRIVERS\rzvmouse.sys;c:\windows\SYSNATIVE\DRIVERS\rzvmouse.sys [x]
S3 semav6msr64;semav6msr64;c:\windows\system32\drivers\semav6msr64.sys;c:\windows\SYSNATIVE\drivers\semav6msr64.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2015-11-27 c:\windows\Tasks\0874eb88-4f08-483e-9f72-066716dd5fe2-1-6.job
- c:\program files (x86)\SavePass 1.1\0874eb88-4f08-483e-9f72-066716dd5fe2-1-6.exe [2015-11-15 13:59]
.
2015-11-27 c:\windows\Tasks\0874eb88-4f08-483e-9f72-066716dd5fe2-1-7.job
- c:\program files (x86)\SavePass 1.1\0874eb88-4f08-483e-9f72-066716dd5fe2-1-7.exe [2015-11-15 13:59]
.
2015-11-27 c:\windows\Tasks\0874eb88-4f08-483e-9f72-066716dd5fe2-10_user.job
- c:\program files (x86)\SavePass 1.1\0874eb88-4f08-483e-9f72-066716dd5fe2-10.exe [2015-11-15 13:59]
.
2015-11-27 c:\windows\Tasks\0874eb88-4f08-483e-9f72-066716dd5fe2-11.job
- c:\program files (x86)\SavePass 1.1\0874eb88-4f08-483e-9f72-066716dd5fe2-11.exe [2015-11-15 13:59]
.
2015-11-27 c:\windows\Tasks\0874eb88-4f08-483e-9f72-066716dd5fe2-5.job
- c:\program files (x86)\SavePass 1.1\0874eb88-4f08-483e-9f72-066716dd5fe2-5.exe [2015-11-15 14:00]
.
2015-11-27 c:\windows\Tasks\0874eb88-4f08-483e-9f72-066716dd5fe2-5_user.job
- c:\program files (x86)\SavePass 1.1\0874eb88-4f08-483e-9f72-066716dd5fe2-5.exe [2015-11-15 14:00]
.
2015-11-27 c:\windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-6.job
- c:\program files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-6.exe [2015-11-15 12:29]
.
2015-11-27 c:\windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-1-7.job
- c:\program files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-1-7.exe [2015-11-15 12:29]
.
2015-11-27 c:\windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-10_user.job
- c:\program files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-10.exe [2015-11-15 12:28]
.
2015-11-27 c:\windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-11.job
- c:\program files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-11.exe [2015-11-15 12:28]
.
2015-11-27 c:\windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5.job
- c:\program files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe [2015-11-15 12:29]
.
2015-11-27 c:\windows\Tasks\40db1533-f551-4998-8bca-934da85073e3-5_user.job
- c:\program files (x86)\CinemaP-1.9cV09.11\40db1533-f551-4998-8bca-934da85073e3-5.exe [2015-11-15 12:29]
.
2015-11-27 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2015-03-01 14:12]
.
2015-11-27 c:\windows\Tasks\DropboxUpdateTaskMachineCore.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-23 12:52]
.
2015-11-27 c:\windows\Tasks\DropboxUpdateTaskMachineUA.job
- c:\program files (x86)\Dropbox\Update\DropboxUpdate.exe [2015-07-23 12:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{10921475-03CE-4E04-90CE-E2E7EF20C814}]
2015-09-21 09:49	2472224	----a-w-	c:\program files (x86)\IObit\IObit Uninstaller\UninstallExplorer.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt3]
@="{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDD-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt4]
@="{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDE-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt5]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt6]
@="{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDF-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt7]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ DropboxExt8]
@="{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EE0-A251-47B7-93E1-CDD82E34AF8B}]
2015-11-04 23:46	236352	----a-w-	c:\program files (x86)\Dropbox\Client\DropboxExt64.28.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"="d:\itunes\iTunesHelper.exe" [2015-10-16 170256]
"XboxStat"="c:\program files\Microsoft Xbox 360 Accessories\XboxStat.exe" [2009-09-30 825184]
"StartCN"="c:\program files\AMD\CNext\CNext\cnext.exe" [2015-11-18 4859592]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\programdata\Bamcof\StrongQuois.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://%66%65%65%64.%73%6E%61%70%64%6F.%63%6F%6D/?p=mKO_AwFzXIpYRaHdGKBUTxkij9_BzVqASLW90uzABld1JJwzJXPSf4IPiu9Fa2B8XvqyyuS4awmGJJd1zYq8duAE7wp2akI7LnVf4atpGphcKY28zLFmiP94GWW-V2hsncy7g0LdBXTP9vw3MqAJlbeZN1XM4GUuRrOtg5FvniGCMBMQom_SKa-6
mDefault_Search_URL = hxxp://www.istartsurf.com/web/?type=ds&ts=1447596146&z=ee8d2796b082c7284f8516ag1zbzfmfwbteq1g6zbq&from=obw&uid=toshibaxmk2565gsxn_31mot8dbtxx31mot8dbt&q={searchTerms}
mLocal Page = c:\windows\SysWOW64\blank.htm
mSearch Page = hxxp://www.istartsurf.com/web/?type=ds&ts=1447596146&z=ee8d2796b082c7284f8516ag1zbzfmfwbteq1g6zbq&from=obw&uid=toshibaxmk2565gsxn_31mot8dbtxx31mot8dbt&q={searchTerms}
uInternet Settings,ProxyOverride = <local>;*.local
TCP: DhcpNameServer = 192.168.1.254
.
.
------- Asociace souborů -------
.
JSEFile=%SystemRoot%\SysWow64\CScript.exe "%1" %*
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{d47f39c7-2f7f-43e5-ba53-faffe2da42af} - c:\program files (x86)\Lucky Bright\Extensions\d47f39c7-2f7f-43e5-ba53-faffe2da42af.dll
Wow6432Node-HKLM-Run-volstep - c:\users\KRUSTI~1\AppData\Local\Temp\Rar$DIa0.650\volstep.exe
SafeBoot-QQPCRTP
AddRemove-IT9130 DriverInstaller_12.2.3.1 - c:\users\KRUSTI~1\AppData\Local\Temp\\DriverInstall64.exe
AddRemove-Resident Evil Revelations 2. Episode 1 - Box Set_is1 - d:\program files (x86)\Resident Evil Revelations 2. Episode 1 - Box Set\unins000.exe
.
.
Binary file temp00 matches
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\cegucudi]
"ImagePath"="c:\users\Krusticka\AppData\Local\1E007B80-1447599461-B900-1F7C-90E6BA9D20DC\snsl3A83.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\ginoquci]
"ImagePath"="c:\users\KRUSTI~1\AppData\Local\Temp\nsj8633.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\hidekoqe]
"ImagePath"="c:\users\Krusticka\AppData\Local\1E007B80-1447756113-B900-1F7C-90E6BA9D20DC\qnsvC52B.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\qyrytoke]
"ImagePath"="c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\jnsqB9CE.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\tyrobuve]
"ImagePath"="c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\knsyAC.tmp"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\zifotyki]
"ImagePath"="c:\program files (x86)\1E007B80-1447595819-B900-1F7C-90E6BA9D20DC\hnsaD442.tmp"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,69,43,93,f5,88,40,c8,49,97,2b,4e,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
   d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,69,43,93,f5,88,40,c8,49,97,2b,4e,\
.
[HKEY_USERS\S-1-5-21-407976028-3291181428-2861913668-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*
]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-407976028-3291181428-2861913668-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*
\OpenWithList]
@Class="Shell"
"a"="Maxthon.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_19_0_0_245_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_19_0_0_245_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_19_0_0_245_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_19_0_0_245_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{B019E3BF-E7E5-453C-A2E4-D2C18CA0866F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.19"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_19_0_0_245.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}]
@Denied: (A 2) (Everyone)
@="IFlashBroker6"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{299817DA-1FAC-4CE2-8F48-A108237013BD}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\IObit\Advanced SystemCare 8\Monitor.exe
c:\program files (x86)\IObit\Smart Defrag 4\SmartDefrag.exe
c:\programdata\Bamcof\Bamcof.exe
c:\programdata\Zitenop\Zitenop.exe
c:\program files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
c:\program files (x86)\IObit\IObit Uninstaller\UninstallMonitor.exe
c:\programdata\Bamcof\Bamcof.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\10\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\7\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\5\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\7\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\3\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\8\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\2\plugin.exe
c:\programdata\9466af57-1f38-4973-ab1c-22f7e17e2d6a\plugins\12\plugin.exe
.
**************************************************************************
.
Celkový čas: 2015-11-27  19:16:15 - počítač byl restartován
ComboFix-quarantined-files.txt  2015-11-27 18:16
.
Před spuštěním: 2 603 806 720
Po spuštění: 3 366 457 344
.
- - End Of File - - C51E0AB6B7E7E30F717871C4B8932EA7
A36C5E4F47E84449FF07ED3517B43A31

Re: Kontrola logu z Combofixu - zpomaleny pc

Napsal: 27 lis 2015 20:26
od Rudy
Zdravím!
Proč spouštíte ComboFix, utilitu určenou pouze profesionálům? Hodláte si nabořit systém? Ještě jedna otázka: jak je na tom váš oper. systém s legalitou?

Re: Kontrola logu z Combofixu - zpomaleny pc

Napsal: 27 lis 2015 20:33
od obr4z
Omlouvám se, pamatoval jsem si z dřívějška tento postup, ale už je to nějakou dobu.. Příště tedy použiju raději RSIT..(?)
Windows jsou cracknuté (nejedná se o můj pc)..

Re: Kontrola logu z Combofixu - zpomaleny pc

Napsal: 27 lis 2015 21:30
od Rudy
V tom případě lituji, ale pomoci vám nemohu. Viz pravidla: http://forum.viry.cz/viewtopic.php?f=12&t=115512 .

Re: Kontrola logu z Combofixu - zpomaleny pc

Napsal: 27 lis 2015 21:44
od obr4z
Rozumím, v pořádku.
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz