Preventivní kontrola + blbne net

pompeus50 · Příspěvekod **pompeus50** » 27 črc 2011 16:38

Mužu se zeptat?.. proč bych měl odinstalovavat ESET? :idea:

ComboFix 11-07-26.03 - Jitka 27.07.2011 16:10:46.3.2 - x64
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1250.420.1029.18.3068.1600 [GMT 2:00]
Spuštěný z: c:\users\Jitka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Jitka\Desktop\CFScript.txt
AV: ESET Smart Security 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý
.
.
FILE ::
"c:\windows\system32\perfc005.dat"
"c:\windows\system32\perfc009.dat"
"c:\windows\system32\perfh005.dat"
"c:\windows\system32\perfh009.dat"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\MSN Toolbar
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Firefox\components\DomBridge.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Firefox\components\IDOMBridge.xpt
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Firefox\chrome.manifest
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Firefox\Chrome\msntoolbar.jar
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Firefox\install.rdf
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Firefox\Third Party Attribution.txt
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\mswinext.exe
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\appmgr.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\bingrewardsclient.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\highlander.xap
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\chameleon.xap
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\loader.xap
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\scextension.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\searchappextension.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\Applications\wlextension.dll
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\Toolbar\AppManager\cm.xml
c:\program files (x86)\MSN Toolbar\Platform\6.3.2322.0\xmllite.dll
c:\windows\system32\perfc005.dat
c:\windows\system32\perfh005.dat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-06-27 do 2011-07-27 )))))))))))))))))))))))))))))))
.
.
2011-07-27 14:23 . 2011-07-27 14:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-07-26 10:42 . 2011-07-26 10:42 -------- d-----w- c:\users\Jitka\AppData\Local\ESET
2011-07-26 10:39 . 2011-07-26 10:39 -------- d-----w- c:\program files\ESET
2011-07-26 10:24 . 2011-07-13 04:53 8578896 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{D815FE73-A8DE-4B03-A940-148C80827F6D}\mpengine.dll
2011-07-24 20:47 . 2011-07-24 20:47 -------- d-----w- c:\windows\cs
2011-07-24 20:41 . 2010-09-22 22:36 48488 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2011-07-24 20:37 . 2011-07-24 20:39 -------- d-----w- c:\program files (x86)\Bing Bar Installer
2011-07-24 20:36 . 2011-07-24 20:36 469256 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\6990b2fe1cc4a412d\InstallManager_WLE_WLE.exe
2011-07-24 20:36 . 2011-07-24 20:36 15712 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\55dbd69e1cc4a4122\MeshBetaRemover.exe
2011-07-24 20:35 . 2011-07-24 20:35 94040 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3bcd756e1cc4a411a\DSETUP.dll
2011-07-24 20:35 . 2011-07-24 20:35 525656 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3bcd756e1cc4a411a\DXSETUP.exe
2011-07-24 20:35 . 2011-07-24 20:35 1691480 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\3bcd756e1cc4a411a\dsetup32.dll
2011-07-24 20:35 . 2011-07-24 20:35 94040 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\38c5b3ae1cc4a4119\DSETUP.dll
2011-07-24 20:35 . 2011-07-24 20:35 525656 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\38c5b3ae1cc4a4119\DXSETUP.exe
2011-07-24 20:35 . 2011-07-24 20:35 1691480 ----a-w- c:\program files (x86)\Common Files\Windows Live\.cache\38c5b3ae1cc4a4119\dsetup32.dll
2011-07-24 20:33 . 2011-07-24 20:33 -------- d-----w- c:\users\Jitka\AppData\Local\Windows Live
2011-07-24 20:32 . 2009-08-04 08:12 1103872 ----a-w- c:\windows\system32\webservices.dll
2011-07-24 20:32 . 2009-08-04 08:02 754688 ----a-w- c:\windows\SysWow64\webservices.dll
2011-07-24 19:50 . 2011-07-24 19:51 -------- d-----w- c:\users\Jitka\AppData\Local\Nokia
2011-07-24 18:57 . 2011-07-24 18:57 -------- d-----w- c:\program files (x86)\Common Files\PCSuite
2011-07-24 18:57 . 2011-07-26 10:09 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-07-24 18:56 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-07-24 18:55 . 2011-07-24 18:55 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-07-24 05:52 . 2011-07-24 05:52 -------- d-----w- c:\program files\Windows Portable Devices
2011-07-24 05:52 . 2011-07-24 05:52 -------- d-----w- c:\program files (x86)\Windows Portable Devices
2011-07-24 05:52 . 2011-07-24 05:52 -------- d-----w- c:\windows\system32\drivers\UMDF\sk-SK
2011-07-23 20:58 . 2011-02-22 14:47 479744 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-07-23 20:58 . 2011-02-22 14:13 288768 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-07-23 20:58 . 2011-02-22 13:53 1555968 ----a-w- c:\windows\system32\DWrite.dll
2011-07-23 20:58 . 2011-02-22 13:53 1149440 ----a-w- c:\windows\system32\FntCache.dll
2011-07-23 20:58 . 2011-02-22 13:33 1068544 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-07-23 20:58 . 2010-05-04 19:40 316928 ----a-w- c:\windows\system32\msshsq.dll
2011-07-23 20:58 . 2010-05-04 19:13 231424 ----a-w- c:\windows\SysWow64\msshsq.dll
2011-07-23 20:57 . 2011-04-21 14:17 695296 ----a-w- c:\windows\system32\drivers\bthport.sys
2011-07-23 20:57 . 2009-06-17 10:37 35328 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2011-07-23 20:56 . 2011-03-12 22:52 1653760 ----a-w- c:\windows\system32\XpsPrint.dll
2011-07-23 20:56 . 2011-03-12 21:55 876032 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-07-23 20:55 . 2009-10-08 21:07 4096 ----a-w- c:\windows\SysWow64\oleaccrc.dll
2011-07-23 20:55 . 2009-10-08 21:07 4096 ----a-w- c:\windows\system32\oleaccrc.dll
2011-07-23 20:55 . 2009-10-08 21:08 736256 ----a-w- c:\windows\system32\UIAutomationCore.dll
2011-07-23 20:55 . 2009-10-08 21:08 555520 ----a-w- c:\windows\SysWow64\UIAutomationCore.dll
2011-07-23 20:55 . 2009-10-08 21:08 234496 ----a-w- c:\windows\SysWow64\oleacc.dll
2011-07-23 20:55 . 2009-10-08 21:07 315904 ----a-w- c:\windows\system32\oleacc.dll
2011-07-23 20:54 . 2009-09-10 02:05 103424 ----a-w- c:\windows\system32\UIAnimation.dll
2011-07-23 20:54 . 2009-09-10 02:00 92672 ----a-w- c:\windows\SysWow64\UIAnimation.dll
2011-07-23 20:54 . 2009-09-10 02:07 3815424 ----a-w- c:\windows\system32\UIRibbon.dll
2011-07-23 20:54 . 2009-09-10 02:06 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2011-07-23 20:54 . 2009-09-10 02:00 1164800 ----a-w- c:\windows\SysWow64\UIRibbonRes.dll
2011-07-23 20:54 . 2009-09-10 02:01 3023360 ----a-w- c:\windows\SysWow64\UIRibbon.dll
2011-07-23 16:37 . 2011-07-23 16:37 979456 ----a-w- c:\windows\SysWow64\MFH264Dec.dll
2011-07-23 16:37 . 2011-07-23 16:37 428544 ----a-w- c:\windows\system32\MFHEAACdec.dll
2011-07-23 16:37 . 2011-07-23 16:37 357376 ----a-w- c:\windows\SysWow64\MFHEAACdec.dll
2011-07-23 16:37 . 2011-07-23 16:37 1257984 ----a-w- c:\windows\system32\MFH264Dec.dll
2011-07-23 16:37 . 2011-07-23 16:37 377344 ----a-w- c:\windows\system32\mfmp4src.dll
2011-07-23 16:37 . 2011-07-23 16:37 302592 ----a-w- c:\windows\SysWow64\mfmp4src.dll
2011-07-23 16:37 . 2011-07-23 16:37 261632 ----a-w- c:\windows\SysWow64\mfreadwrite.dll
2011-07-23 16:37 . 2011-07-23 16:37 98816 ----a-w- c:\windows\SysWow64\mfps.dll
2011-07-23 16:37 . 2011-07-23 16:37 3548672 ----a-w- c:\windows\system32\mf.dll
2011-07-23 16:37 . 2011-07-23 16:37 345088 ----a-w- c:\windows\system32\mfreadwrite.dll
2011-07-23 16:37 . 2011-07-23 16:37 34304 ----a-w- c:\windows\system32\mfpmp.exe
2011-07-23 16:37 . 2011-07-23 16:37 2873344 ----a-w- c:\windows\SysWow64\mf.dll
2011-07-23 16:37 . 2011-07-23 16:37 195072 ----a-w- c:\windows\system32\mfps.dll
2011-07-23 16:32 . 2011-07-23 16:32 3584 ----a-w- c:\windows\system32\drivers\sk-SK\dxgkrnl.sys.mui
2011-07-23 15:36 . 2011-07-23 15:39 -------- d-----w- c:\windows\SysWow64\ca-ES
2011-07-23 15:36 . 2011-07-23 15:38 -------- d-----w- c:\windows\SysWow64\eu-ES
2011-07-23 15:36 . 2011-07-23 15:38 -------- d-----w- c:\windows\SysWow64\vi-VN
2011-07-23 15:36 . 2011-07-23 15:38 -------- d-----w- c:\windows\system32\ca-ES
2011-07-23 15:36 . 2011-07-23 15:37 -------- d-----w- c:\windows\system32\eu-ES
2011-07-23 15:36 . 2011-07-23 15:37 -------- d-----w- c:\windows\system32\vi-VN
2011-07-23 15:28 . 2011-07-23 15:28 -------- d-----w- c:\windows\system32\SPReview
2011-07-23 14:52 . 2009-04-10 22:11 946688 ----a-w- c:\windows\system32\scavenge.dll
2011-07-23 14:52 . 2009-04-10 22:10 56320 ----a-w- c:\windows\system32\compcln.exe
2011-07-23 14:52 . 2009-04-10 22:07 3584 ----a-w- c:\windows\system32\drivers\en-US\hdaudbus.sys.mui
2011-07-23 14:37 . 2009-04-11 08:27 3584 ----a-w- c:\windows\system32\drivers\cs-CZ\hdaudbus.sys.mui
2011-07-23 14:35 . 2009-04-10 22:11 980480 ----a-w- c:\windows\system32\printui.dll
2011-07-23 14:34 . 2009-04-10 22:10 859648 ----a-w- c:\windows\system32\Magnify.exe
2011-07-23 14:33 . 2009-04-10 22:09 475648 ----a-w- c:\windows\system32\sysmon.ocx
2011-07-23 14:32 . 2009-04-10 22:11 936448 ----a-w- c:\windows\system32\SmiEngine.dll
2011-07-22 21:56 . 2011-07-22 21:56 -------- d-----w- c:\users\Jitka\AppData\Roaming\Malwarebytes
2011-07-22 21:56 . 2011-07-22 21:56 -------- d-----w- c:\programdata\Malwarebytes
2011-07-22 21:56 . 2011-07-06 17:52 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-07-19 17:12 . 2011-07-19 17:12 -------- d-----w- c:\windows\system32\Macromed
2011-07-13 10:34 . 2011-06-02 13:50 2764288 ----a-w- c:\windows\system32\win32k.sys
2011-07-13 10:34 . 2011-04-20 16:03 451072 ----a-w- c:\windows\system32\winsrv.dll
2011-07-13 10:34 . 2011-04-20 15:58 85504 ----a-w- c:\windows\system32\csrsrv.dll
2011-07-06 16:14 . 2011-07-06 16:14 -------- d-----w- c:\program files\Recuva
2011-06-29 12:25 . 2011-04-29 16:15 344576 ----a-w- c:\windows\system32\schannel.dll
2011-06-29 12:25 . 2011-04-29 15:59 276992 ----a-w- c:\windows\SysWow64\schannel.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-07-24 20:41 . 2010-06-24 09:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-07-23 16:40 . 2011-07-23 16:40 203776 ----a-w- c:\windows\SysWow64\webcheck.dll
2011-07-23 16:40 . 2011-07-23 16:40 249344 ----a-w- c:\windows\system32\webcheck.dll
2011-05-24 17:14 . 2009-11-04 15:51 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-18 08:15 . 2011-05-18 08:15 166912 ----a-w- c:\windows\system32\ccdcmbwux64.dll
2011-05-18 08:15 . 2011-05-18 08:15 640000 ----a-w- c:\windows\system32\nmwcdcoclsx64.dll
2011-05-18 08:15 . 2008-05-02 09:58 57856 ----a-w- c:\windows\system32\nmwcdclsx64.dll
2011-05-18 08:14 . 2011-05-18 08:14 9216 ----a-w- c:\windows\system32\drivers\usbser_lowerfltjx64.sys
2011-05-18 08:14 . 2011-05-18 08:14 9216 ----a-w- c:\windows\system32\drivers\usbser_lowerfltx64.sys
2011-05-18 08:14 . 2011-05-18 08:14 27136 ----a-w- c:\windows\system32\drivers\ccdcmbox64.sys
2011-05-18 08:14 . 2011-05-18 08:14 19968 ----a-w- c:\windows\system32\drivers\ccdcmbx64.sys
2011-05-18 08:09 . 2011-05-18 08:09 1721576 ----a-w- c:\windows\system32\wdfcoinstaller01009.dll
2011-05-13 16:58 . 2011-05-13 16:58 17720 ----a-w- c:\windows\system32\HPMDPCoInst12.dll
2011-05-13 16:58 . 2008-03-27 10:10 30008 ----a-w- c:\windows\system32\drivers\hpdskflt.sys
2011-05-13 16:58 . 2008-03-18 14:25 30520 ----a-w- c:\windows\system32\hpservice.exe
2011-05-13 16:58 . 2008-04-17 07:58 20792 ----a-w- c:\windows\system32\accelerometerdll.DLL
2011-05-13 16:57 . 2011-05-13 16:57 43320 ----a-w- c:\windows\system32\drivers\Accelerometer.sys
2011-05-02 17:16 . 2011-06-17 18:17 739328 ----a-w- c:\windows\SysWow64\inetcomm.dll
2011-05-02 17:13 . 2011-06-17 18:17 975360 ----a-w- c:\windows\system32\inetcomm.dll
2011-04-29 13:41 . 2011-06-17 18:30 176128 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-04-29 13:40 . 2011-06-17 18:30 145920 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-04-29 13:39 . 2011-06-17 18:28 275456 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-04-29 13:39 . 2011-06-17 18:28 135680 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-04-29 13:39 . 2011-06-17 18:28 107008 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
.
.
((((((((((((((((((((((((((((( SnapShot_2011-07-26_19.21.44 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-01-21 02:23 . 2011-07-27 14:27 77476 c:\windows\system32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-11-01 18:52 . 2011-07-27 14:27 18576 c:\windows\system32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3416734063-1635780789-2204153844-1000_UserData.bin
+ 2006-11-02 12:40 . 2011-07-27 12:47 51200 c:\windows\inf\infpub.dat
- 2006-11-02 12:40 . 2011-07-26 17:53 51200 c:\windows\inf\infpub.dat
+ 2011-07-27 14:25 . 2011-07-27 14:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-07-26 19:20 . 2011-07-26 19:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-07-27 14:25 . 2011-07-27 14:25 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-07-26 19:20 . 2011-07-26 19:20 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2009-05-30 02:11 . 2011-07-26 19:19 2140 c:\windows\bthservsdp.dat
+ 2009-05-30 02:11 . 2011-07-27 14:24 2140 c:\windows\bthservsdp.dat
+ 2009-11-02 11:34 . 2011-07-27 12:47 965780 c:\windows\system32\WDI\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2006-11-02 15:45 . 2011-07-27 14:27 124888 c:\windows\system32\WDI\BootPerformanceDiagnostics_SystemData.bin
- 2011-07-23 18:22 . 2011-07-26 19:19 349040 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-07-23 18:22 . 2011-07-27 14:24 349040 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2006-11-02 12:40 . 2011-07-27 12:47 143360 c:\windows\inf\infstrng.dat
- 2006-11-02 12:40 . 2011-07-26 17:53 143360 c:\windows\inf\infstrng.dat
+ 2009-05-30 03:20 . 2011-07-27 14:24 1831400 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2009-05-30 03:20 . 2011-07-26 19:19 1831400 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-07-23 21:02 . 2011-07-26 21:25 1302872 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3416734063-1635780789-2204153844-1000-8192.dat
- 2011-07-23 21:02 . 2011-07-25 20:16 1302872 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3416734063-1635780789-2204153844-1000-8192.dat
+ 2011-07-23 18:22 . 2011-07-27 14:24 13924636 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3416734063-1635780789-2204153844-1000-4096.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LightScribe Control Panel"="c:\program files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe" [2008-06-09 2363392]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-21 138240]
"AlcoholAutomount"="c:\program files (x86)\Alcohol Soft\Alcohol 120\axcmd.exe" [2008-11-23 203720]
"PC Suite Tray"="c:\program files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe" [2011-06-16 1500160]
"WMPNSCFG"="c:\program files (x86)\Windows Media Player\WMPNSCFG.exe" [BU]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2008-08-29 61440]
"DVDAgent"="c:\program files (x86)\Hewlett-Packard\Media\DVD\DVDAgent.exe" [2008-11-28 1148200]
"TSMAgent"="c:\program files (x86)\Hewlett-Packard\TouchSmart\Media\TSMAgent.exe" [2008-12-25 1316136]
"CLMLServer for HP TouchSmart"="c:\program files (x86)\Hewlett-Packard\TouchSmart\Media\Kernel\CLML\CLMLSvc.exe" [2008-12-25 189736]
"TVAgent"="c:\program files (x86)\Hewlett-Packard\Media\TV\TVAgent.exe" [2009-01-21 210216]
"UCam_Menu"="c:\program files (x86)\Hewlett-Packard\Media\Webcam\MUITransfer\MUIStartMenu.exe" [2008-11-14 218408]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"UpdatePSTShortCut"="c:\program files (x86)\CyberLink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2008-11-26 210216]
"DpAgent"="c:\program files (x86)\DigitalPersona\Bin\dpagent.exe" [2008-12-10 842816]
"QlbCtrl.exe"="c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe" [2008-10-10 206128]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2008-10-30 210216]
"UpdatePDIRShortCut"="c:\program files (x86)\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe" [2008-06-13 210216]
"WirelessAssistant"="c:\program files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe" [2008-12-08 432432]
"AdobeCS4ServiceManager"="c:\program files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-03-30 937920]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-06-08 37296]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Aktualizovat ESET licenci.lnk - c:\program files (x86)\ESET\MiNODLogin\MiNODLogin.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WudfSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"HP Health Check Scheduler"="c:\program files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe"
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 FLEXnet Licensing Service 64;FLEXnet Licensing Service 64;c:\program files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe [2010-04-04 1038088]
R3 NETw3v64;Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit;c:\windows\system32\DRIVERS\NETw3v64.sys [x]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 1020768]
R3 yukonx64;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk60x64.sys [x]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S2 {55662437-DA8C-40c0-AADA-2C816A897A49};Power Control [2009/05/30 04:57];c:\program files (x86)\Hewlett-Packard\Media\DVD\000.fcl [2008-11-28 16:04 146928]
S2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt64.inf_6ef279c8\AESTSr64.exe [x]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-07-02 810144]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S2 ezSharedSvc;Easybits Shared Services for Windows;c:\windows\system32\svchost.exe [2008-01-21 27648]
S2 hpsrv;HP Service;c:\windows\system32\Hpservice.exe [x]
S2 Recovery Service for Windows;Recovery Service for Windows;c:\program files (x86)\SMINST\BLService.exe [2008-12-17 365952]
S2 TVCapSvc;TV Background Capture Service (TVBCS);c:\program files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe [2008-11-26 296320]
S2 TVSched;TV Task Scheduler (TVTS);c:\program files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe [2008-11-26 116096]
S2 vfsFPService;Validity Fingerprint Service;c:\windows\system32\vfsFPService.exe [2008-11-18 721712]
S3 AVerAF15;HP DVB-T TV Tuner;c:\windows\system32\Drivers\AVerAF15.sys [x]
S3 Com4QLBEx;Com4QLBEx;c:\program files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2008-11-19 222512]
S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
.
.
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
ezSharedSvc
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2008-06-09 08:14 451872 ----a-w- c:\program files (x86)\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
.
2011-07-09 c:\windows\Tasks\HPCeeScheduleForJitka.job
- c:\program files (x86)\hewlett-packard\sdp\ceement\HPCEE.exe [2009-02-23 10:34]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"SmartMenu"="c:\program files (x86)\Hewlett-Packard\HP MediaSmart\SmartMenu.exe" [BU]
"SysTrayApp"="c:\program files\IDT\WDM\sttray64.exe" [2009-06-03 442368]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-07-02 2903688]
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uLocal Page = %SystemRoot%\system32\blank.htm
mLocal Page = %SystemRoot%\system32\blank.htm
uSearchURL,(Default) = hxxp://search.qip.ru/search?query=%s&from=IE
IE: Send image to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: WikiKomentáře Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_43C348BC2E93EB2B.dll/cmsidewiki.html
TCP: DhcpNameServer = 192.168.100.100
CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\browseui.dll
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Services\{55662437-DA8C-40c0-AADA-2C816A897A49}]
"ImagePath"="\??\c:\program files (x86)\Hewlett-Packard\Media\DVD\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3416734063-1635780789-2204153844-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:00,79,f7,ed,9e,9b,01,f0,ad,44,4a,61,bb,11,ff,80,9f,ae,12,30,11,84,ef,
d0,d6,e6,4b,bc,9f,d4,d0,30,aa,fa,80,c4,b0,14,d4,1c,ff,87,5c,c0,40,e6,c1,88,\
"??"=hex:69,3e,43,58,9f,64,ba,75,fe,6b,77,07,2a,78,dd,74
.
[HKEY_USERS\S-1-5-21-3416734063-1635780789-2204153844-1000\Software\SecuROM\License information*]
"datasecu"=hex:db,6b,d0,2d,5d,7d,6e,16,aa,b7,06,67,31,49,fe,60,ee,71,5c,31,c8,
21,88,04,9f,a0,e0,52,f7,3f,36,a1,e1,5f,d2,74,ac,3f,87,f3,af,48,dd,66,51,33,\
"rkeysecu"=hex:c5,06,6c,2c,c1,76,2d,f5,85,0e,f2,3c,34,ba,0a,df
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\Classes]
"SymbolicLinkValue"=hex(6):5c,00,52,00,45,00,47,00,49,00,53,00,54,00,52,00,59,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\DigitalPersona\Bin\DpHostW.exe
c:\program files (x86)\Common Files\LightScribe\LSSrvc.exe
c:\program files (x86)\CyberLink\Shared files\RichVideo.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\program files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
c:\program files (x86)\PC Connectivity Solution\ServiceLayer.exe
c:\program files (x86)\PC Connectivity Solution\Transports\NclRSSrv.exe
c:\program files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
.
**************************************************************************
.
Celkový čas: 2011-07-27 16:34:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-07-27 14:34
ComboFix2.txt 2011-07-26 19:30
ComboFix3.txt 2011-07-23 18:34
.
Před spuštěním: Volných bajtů: 67 348 844 544
Po spuštění: Volných bajtů: 67 208 847 360
.
- - End Of File - - B0FE4470033120D75EC9A50110A1FCD1

Reklama

Příspěvekod **jaro3** » 27 črc 2011 16:42

Protože je ten ESET nelegální (věčný trial , hledání klíčů ap.).....to tady nevedeme!

Odinstaluj ho a pak udělej nový sken s Combofixem..

Preventivní kontrola + blbne net

Re: Preventivní kontrola + blbne net

Re: Preventivní kontrola + blbne net

Kdo je online