Nejspíše vir - mailbomber Vyřešeno

[Marwvek]

Dobry den, dneska kdyz mi nekolik lidi reklo ze jim posilam nejake nesmyslne emaily tak jsem se pozastavil a podival jsem se co ze to vlastne posilam a o nicem nevim, a opravdu jsou to odkazi na jine stranky ktere take nejspise maji v sobe viry (odkaz na video a po rozkliknuti to byl soubor exe) nestahoval jsem, potreboval bych zjistit jak se toho zbavit, a byl bych dovela rad kdyby to slo nejak rychle protoze se to za dnesek odeslalo asi 5krat



log z hjt

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:31:18, on 9.6.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
D:\Programy\Macro\WMPHotkeys.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
D:\Programy\Razer\Naga\RazerNagaSysTray.exe
D:\Programy\Razer\Lycosa\razerhid.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
D:\Programy\Razer\Lycosa\razertra.exe
D:\Programy\DAEMON Tools Lite\DTShellHlp.exe
D:\Programy\Mozilla Firefox\firefox.exe
D:\Programy\Mozilla Firefox\plugin-container.exe
D:\Programy\HJT\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files

\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin

\jp2ssv.dll
O3 - Toolbar: Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com

\GenericAskToolbar.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Razer Naga Driver] D:\Programy\Razer\Naga\RazerNagaSysTray.exe
O4 - HKLM\..\Run: [Lycosa] "D:\Programy\Razer\Lycosa\razerhid.exe"
O4 - HKLM\..\Run: [IR_SERVER] C:\Program Files (x86)\MSI\REALTEK DTV USB DEVICE\IR_SERVER.exe
O4 - HKLM\..\Run: [NI Background Service] D:\Programy\multisim\Shared\Update Service\BackgroundService.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [RESTART_STICKY_NOTES] C:\Windows\System32\StikyNot.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Lingea Update Center.lnk = C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
O4 - Global Startup: Workspace Macro Pro Hotkeys.lnk = D:\Programy\Macro\WMPHotkeys.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\Programy\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software

\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software

\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft

Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files

(x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files

(x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program

Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet

Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype

\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM

\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files

\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) -

http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars

\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft

Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software

\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - D:\Programy\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - D:\Programy\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management

\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file

missing)
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi

\hamachi-2.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel

\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows

\SysWOW64\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows

\SysWOW64\lktsrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file

missing)
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - D:\Programy

\multisim\Shared\Security\nidmsrv.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corporation - C:\Windows\SysWOW64\nisvcloc.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power

Management\ODDPWRSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe

(file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file

missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file

missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file

missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file

missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe

(file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file

missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VisualSVN Server (VisualSVNServer) - Apache Software Foundation - D:\Programy\visualSVN\bin

\VisualSVNServer.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat

\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file

missing)
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare

\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files (x86)\Western Digital\WD

SmartWare\Front Parlor\WDSC.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem

\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files

(x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 12438 bytes

[Reklama]

[memphisto]

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[Marwvek]

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Verze databáze: 6820

Windows 6.1.7600
Internet Explorer 9.0.8112.16421

9.6.2011 20:57:33
mbam-log-2011-06-09 (20-57-26).txt

Typ: Rychlá kontrola
Kontrolované objekty: 164641
Uplynulý čas: 3 minut, 28 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[Žbeky]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[Marwvek]

ComboFix 11-06-09.04 - Macik 09.06.2011 21:37:44.1.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3767.1872 [GMT 2:00]
Spuštěný z: c:\users\Macik\Desktop\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
SP: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\SysWow64\system32
c:\windows\SysWow64\system32\DRIVERS\RTL2832U_IRHID.sys
c:\windows\SysWow64\system32\DRIVERS\RTL2832UBDA.sys
c:\windows\SysWow64\system32\DRIVERS\RTL2832UUSB.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-09 do 2011-06-09 )))))))))))))))))))))))))))))))
.
.
2011-06-09 19:42 . 2011-06-09 19:42 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-09 19:21 . 2011-06-09 19:21 -------- d-----w- c:\windows\LastGood
2011-06-09 19:18 . 2011-06-09 19:18 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-06-09 19:03 . 2011-06-09 19:03 -------- d-----w- c:\programdata\Nokia
2011-06-09 18:51 . 2011-06-09 18:51 -------- d-----w- c:\users\Macik\AppData\Roaming\Malwarebytes
2011-06-09 18:50 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-09 18:50 . 2011-06-09 18:50 -------- d-----w- c:\programdata\Malwarebytes
2011-06-09 18:50 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-06-09 16:30 . 2011-06-09 16:30 388096 ----a-r- c:\users\Macik\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-06-09 08:21 . 2011-06-09 08:21 -------- d-----w- c:\users\Macik\AppData\Local\The Witcher 2
2011-06-07 18:41 . 2011-06-07 18:41 -------- d-----w- c:\users\Macik\AppData\Roaming\Ice-pick Lodge
2011-06-07 18:03 . 2011-05-09 22:00 8718160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C144DC2E-DBA9-4573-876C-303605C395E3}\mpengine.dll
2011-06-06 21:04 . 2011-06-07 12:17 -------- d-----w- c:\program files (x86)\Workspace Macro 4.6
2011-06-06 20:50 . 2011-06-06 20:50 -------- d-----w- c:\program files (x86)\ARM Software
2011-06-06 08:14 . 2011-06-06 08:14 -------- d-----w- c:\users\Macik\AppData\Local\splash damage
2011-06-06 07:02 . 2011-06-06 07:02 -------- d-----w- c:\users\Macik\AppData\Roaming\Stardock
2011-06-06 07:02 . 2011-06-06 07:02 -------- dc-h--w- c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
2011-06-06 07:02 . 2011-06-06 07:02 -------- d-----w- c:\users\Macik\AppData\Local\PackageAware
2011-06-02 09:59 . 2011-06-02 09:59 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-06-02 09:58 . 2011-06-02 09:58 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-06-02 09:58 . 2011-06-02 09:58 -------- d-----w- c:\program files (x86)\Java
2011-06-01 15:05 . 2011-06-02 06:56 -------- d-----w- c:\users\Macik\AppData\Local\LogMeIn Hamachi
2011-06-01 15:05 . 2011-06-01 15:05 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2011-06-01 12:56 . 2011-06-01 15:03 -------- d-----w- c:\users\Macik\AppData\Roaming\Hamachi
2011-05-31 22:43 . 2011-06-02 06:54 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2011-05-31 22:40 . 2011-05-31 22:40 -------- d-----w- c:\users\Macik\AppData\Local\Windows Live
2011-05-31 22:40 . 2011-05-31 22:40 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2011-05-31 22:19 . 2011-05-31 22:19 -------- d-----w- c:\users\Macik\AppData\Roaming\Xilisoft
2011-05-31 22:16 . 2011-05-31 22:16 -------- d-----w- c:\programdata\Xilisoft
2011-05-31 20:26 . 2011-05-31 20:26 -------- d-----w- c:\programdata\ATI
2011-05-31 20:26 . 2011-05-31 20:26 -------- d-----w- c:\program files (x86)\AMD APP
2011-05-31 20:26 . 2011-05-31 20:26 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2011-05-31 20:25 . 2011-05-31 20:25 -------- d-----w- c:\program files\Common Files\ATI Technologies
2011-05-31 20:14 . 2011-05-31 20:14 -------- d-----w- C:\AMD
2011-05-31 19:23 . 2011-05-31 19:23 -------- d-sh--w- c:\programdata\DSS
2011-05-31 19:23 . 2011-06-08 14:20 -------- d-----w- c:\programdata\Codemasters
2011-05-31 19:20 . 2011-05-31 19:20 -------- d-----w- c:\users\Macik\AppData\Local\ESET
2011-05-31 19:13 . 2011-05-31 19:13 -------- d-----w- c:\windows\SysWow64\xlive
2011-05-31 19:13 . 2011-05-31 19:13 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2011-05-31 19:09 . 2011-05-31 19:09 -------- d-----w- c:\program files (x86)\BRS
2011-05-31 19:09 . 2011-03-19 13:16 1417216 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2011-05-31 19:09 . 2010-09-22 11:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2011-05-31 19:09 . 2011-05-31 19:09 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2011-05-31 19:09 . 2011-05-31 19:09 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-05-31 19:09 . 2011-05-31 19:09 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2011-05-31 19:09 . 2011-05-31 19:09 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-05-31 19:09 . 2011-05-31 19:09 -------- d-----w- c:\program files (x86)\OpenAL
2011-05-31 19:09 . 2011-04-15 23:40 809496 ----a-r- c:\windows\SysWow64\tmp6432.tmp
2011-05-30 21:07 . 2010-10-29 13:22 198144 ----a-w- c:\windows\system32\drivers\ew_juwwanecm.sys
2011-05-30 21:07 . 2010-09-03 15:35 30208 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2011-05-30 21:07 . 2010-08-24 20:53 91648 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2011-05-30 21:07 . 2010-07-27 13:26 86016 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2011-05-30 21:07 . 2010-07-27 13:26 54784 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2011-05-30 21:07 . 2010-05-04 14:50 22528 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
2011-05-30 21:07 . 2009-07-14 12:21 1721576 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01009.dll
2011-05-30 21:07 . 2010-05-10 12:22 999936 ----a-w- c:\windows\system32\drivers\mod7700.sys
2011-05-30 21:07 . 2010-03-20 10:06 13952 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2011-05-30 21:07 . 2010-07-27 07:52 117248 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2011-05-30 21:07 . 2011-05-30 21:07 -------- d-----w- C:\HUAWEI
2011-05-30 08:10 . 2011-05-30 08:10 -------- d-----w- c:\program files (x86)\Microsoft XNA
2011-05-29 17:32 . 2011-05-29 17:32 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-25 10:11 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-25 06:26 . 2011-05-25 06:26 9319936 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2011-05-25 04:45 . 2011-05-25 04:45 23385088 ----a-w- c:\windows\system32\atio6axx.dll
2011-05-25 04:20 . 2011-05-25 04:20 17940992 ----a-w- c:\windows\SysWow64\atioglxx.dll
2011-05-25 04:12 . 2011-05-25 04:12 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-05-25 04:12 . 2011-05-25 04:12 676864 ----a-w- c:\windows\SysWow64\aticfx32.dll
2011-05-25 04:11 . 2011-05-25 04:11 795648 ----a-w- c:\windows\system32\aticfx64.dll
2011-05-25 04:08 . 2011-05-25 04:08 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-05-25 04:08 . 2011-05-25 04:08 480256 ----a-w- c:\windows\system32\atieclxx.exe
2011-05-25 04:07 . 2011-05-25 04:07 203776 ----a-w- c:\windows\system32\atiesrxx.exe
2011-05-25 04:06 . 2011-05-25 04:06 120320 ----a-w- c:\windows\system32\atitmm64.dll
2011-05-25 04:05 . 2011-05-25 04:05 423424 ----a-w- c:\windows\system32\atipdl64.dll
2011-05-25 04:05 . 2011-05-25 04:05 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2011-05-25 04:05 . 2011-05-25 04:05 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2011-05-25 04:05 . 2011-05-25 04:05 16384 ----a-w- c:\windows\system32\atimuixx.dll
2011-05-25 04:05 . 2011-05-25 04:05 59392 ----a-w- c:\windows\system32\atiedu64.dll
2011-05-25 04:05 . 2011-05-25 04:05 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2011-05-25 04:03 . 2011-05-25 04:03 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2011-05-25 04:03 . 2011-05-25 04:03 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2011-05-25 04:03 . 2011-05-25 04:03 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2011-05-25 04:03 . 2011-05-25 04:03 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2011-05-25 04:03 . 2011-05-25 04:03 7768064 ----a-w- c:\windows\system32\aticaldd64.dll
2011-05-25 03:59 . 2011-05-25 03:59 6389760 ----a-w- c:\windows\SysWow64\aticaldd.dll
2011-05-25 03:33 . 2011-05-25 03:33 5441024 ----a-w- c:\windows\system32\atiumd64.dll
2011-05-25 03:25 . 2011-05-25 03:25 262144 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2011-05-25 03:25 . 2011-05-25 03:25 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 12800 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 39936 ----a-w- c:\windows\system32\atig6txx.dll
2011-05-25 03:25 . 2011-05-25 03:25 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 306176 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2011-05-25 03:24 . 2011-05-25 03:24 38912 ----a-w- c:\windows\system32\atiu9p64.dll
2011-05-25 03:23 . 2011-05-25 03:23 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-05-25 03:18 . 2011-05-25 03:18 1222656 ----a-w- c:\windows\system32\atiumd6v.dll
2011-05-25 03:18 . 2011-05-25 03:18 1923584 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2011-05-25 03:18 . 2011-05-25 03:18 3868672 ----a-w- c:\windows\system32\atiumd6a.dll
2011-05-25 02:58 . 2011-05-25 02:58 53760 ----a-w- c:\windows\system32\atimpc64.dll
2011-05-25 02:58 . 2011-05-25 02:58 53760 ----a-w- c:\windows\system32\amdpcom64.dll
2011-05-25 02:58 . 2011-05-25 02:58 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
2011-05-25 02:58 . 2011-05-25 02:58 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2011-05-24 22:04 . 2011-05-24 22:04 61952 ----a-w- c:\windows\system32\OVDecode64.dll
2011-05-24 22:04 . 2011-05-24 22:04 59904 ----a-w- c:\windows\SysWow64\OVDecode.dll
2011-05-24 22:04 . 2011-05-24 22:04 53760 ----a-w- c:\windows\system32\OpenCL.dll
2011-05-24 22:04 . 2011-05-24 22:04 51712 ----a-w- c:\windows\SysWow64\OpenCL.dll
2011-05-24 22:04 . 2011-05-24 22:04 16116224 ----a-w- c:\windows\system32\amdocl64.dll
2011-05-24 22:04 . 2011-05-24 22:04 12385280 ----a-w- c:\windows\SysWow64\amdocl.dll
2011-05-24 19:33 . 2011-05-24 19:33 -------- d-----w- c:\users\Macik\AppData\Roaming\National Instruments
2011-05-24 19:27 . 2011-05-24 19:27 -------- d-----w- c:\program files (x86)\HI-TECH Software
2011-05-24 19:26 . 2000-01-28 16:17 557328 ----a-w- c:\program files\Common Files\Microsoft Shared\dao\dao360.dll
2011-05-24 19:25 . 2011-05-24 19:25 -------- d-----w- c:\program files\National Instruments
2011-05-24 19:24 . 2011-05-24 19:27 -------- d-----w- c:\program files (x86)\Common Files\Merge Modules
2011-05-24 19:24 . 2011-05-24 19:24 -------- d-----w- c:\windows\SysWow64\cvirte
2011-05-24 19:22 . 2011-05-24 19:30 -------- d-----w- c:\programdata\National Instruments
2011-05-18 20:43 . 2011-05-31 22:12 -------- d-----w- c:\program files\CCleaner
2011-05-18 20:39 . 2011-05-18 20:39 -------- d-----w- c:\users\Macik\AppData\Local\Apps
2011-05-18 20:39 . 2011-05-18 20:53 -------- d-----w- c:\users\Macik\AppData\Local\Deployment
2011-05-18 20:32 . 2011-05-18 20:32 -------- d-----w- c:\users\Macik\dwhelper
2011-05-15 20:19 . 2007-09-20 11:04 114688 ----a-w- c:\windows\SysWow64\BTCamVideoSource.dll
2011-05-15 20:18 . 2004-03-18 16:36 401484 ----a-w- c:\windows\system32\msvcrtd.dll
2011-05-13 07:24 . 2003-09-03 00:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2011-05-13 07:24 . 2003-09-03 00:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2011-05-13 07:24 . 2003-09-03 00:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2011-05-13 07:24 . 2011-05-13 07:24 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2011-05-13 07:24 . 2011-05-13 07:24 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-09 14:52 . 2011-04-28 20:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-06-05 20:49 . 2011-05-01 10:50 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-06-05 20:49 . 2011-04-28 20:54 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-05-25 04:01 . 2010-10-21 03:21 4161536 ----a-w- c:\windows\SysWow64\atidxx32.dll
2011-05-25 03:52 . 2010-10-21 03:13 4951552 ----a-w- c:\windows\system32\atidxx64.dll
2011-05-25 03:40 . 2010-10-21 03:04 4286464 ----a-w- c:\windows\SysWow64\atiumdag.dll
2011-05-25 03:26 . 2010-10-21 03:02 58880 ----a-w- c:\windows\system32\coinst.dll
2011-05-25 03:25 . 2010-10-21 02:52 366080 ----a-w- c:\windows\system32\atiadlxx.dll
2011-05-25 03:24 . 2010-10-21 02:51 40960 ----a-w- c:\windows\system32\atiuxp64.dll
2011-05-25 03:24 . 2010-10-21 02:51 31232 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2011-05-25 03:24 . 2010-10-21 02:51 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2011-05-25 03:10 . 2010-10-21 02:46 4056576 ----a-w- c:\windows\SysWow64\atiumdva.dll
2011-05-24 17:14 . 2011-04-27 18:46 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-20 15:58 . 2011-05-05 16:30 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-05-06 07:42 . 2011-05-05 18:47 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-05-06 07:42 . 2011-05-03 18:52 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-05-03 18:52 . 2011-05-03 18:52 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-05-03 18:52 . 2011-05-03 18:52 2434856 ----a-w- c:\windows\SysWow64\pbsvc_bc2.exe
2011-04-27 20:21 . 2011-04-27 20:21 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-04-27 20:21 . 2011-04-27 20:21 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-04-27 20:21 . 2011-04-27 20:21 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-04-27 20:21 . 2011-04-27 20:21 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-04-27 20:21 . 2011-04-27 20:21 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-04-27 20:21 . 2011-04-27 20:21 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-04-27 20:21 . 2011-04-27 20:21 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-04-27 20:21 . 2011-04-27 20:21 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-04-27 20:21 . 2011-04-27 20:21 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-04-27 20:21 . 2011-04-27 20:21 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-04-27 20:21 . 2011-04-27 20:21 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-04-27 20:21 . 2011-04-27 20:21 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-04-27 20:21 . 2011-04-27 20:21 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-04-27 20:21 . 2011-04-27 20:21 448512 ----a-w- c:\windows\system32\html.iec
2011-04-27 20:21 . 2011-04-27 20:21 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-04-27 20:21 . 2011-04-27 20:21 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-04-27 20:21 . 2011-04-27 20:21 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-04-27 20:21 . 2011-04-27 20:21 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-27 20:21 . 2011-04-27 20:21 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-04-27 20:21 . 2011-04-27 20:21 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-04-27 20:21 . 2011-04-27 20:21 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-04-27 20:21 . 2011-04-27 20:21 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-04-27 20:21 . 2011-04-27 20:21 222208 ----a-w- c:\windows\system32\msls31.dll
2011-04-27 20:21 . 2011-04-27 20:21 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-04-27 20:21 . 2011-04-27 20:21 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-04-27 20:21 . 2011-04-27 20:21 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-04-27 20:21 . 2011-04-27 20:21 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-04-27 20:21 . 2011-04-27 20:21 160256 ----a-w- c:\windows\system32\wextract.exe
2011-04-27 20:21 . 2011-04-27 20:21 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-04-27 20:21 . 2011-04-27 20:21 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-04-27 20:21 . 2011-04-27 20:21 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-27 20:21 . 2011-04-27 20:21 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-04-27 20:21 . 2011-04-27 20:21 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-04-27 20:21 . 2011-04-27 20:21 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-04-27 20:21 . 2011-04-27 20:21 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-04-27 20:21 . 2011-04-27 20:21 12288 ----a-w- c:\windows\system32\mshta.exe
2011-04-27 20:21 . 2011-04-27 20:21 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-04-27 20:21 . 2011-04-27 20:21 114176 ----a-w- c:\windows\system32\admparse.dll
2011-04-27 20:21 . 2011-04-27 20:21 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-04-27 20:21 . 2011-04-27 20:21 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-04-27 20:21 . 2011-04-27 20:21 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-04-27 20:21 . 2011-04-27 20:21 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-04-27 19:37 . 2010-05-06 03:21 125456 ----a-w- c:\windows\system32\drivers\AtiHdmi.sys
2011-04-27 19:37 . 2011-02-11 16:46 61952 ----a-w- c:\windows\system32\igfxsrvc.dll
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrtrk.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrsve.lrc
2011-04-27 19:37 . 2010-10-21 03:10 870560 ----a-w- c:\windows\system32\igkrng575.bin
2011-04-27 19:37 . 2010-10-21 03:10 87040 ----a-w- c:\windows\system32\igfxrtha.lrc
2011-04-27 19:37 . 2010-10-21 03:10 508952 ----a-w- c:\windows\system32\igfxsrvc.exe
2011-04-27 19:37 . 2010-10-21 03:10 380416 ----a-w- c:\windows\system32\igfxTMM.dll
2011-04-27 19:37 . 2010-10-21 03:10 208896 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2011-04-27 19:37 . 2010-10-21 03:10 205824 ----a-w- c:\windows\system32\iglhsip64.dll
2011-04-27 19:37 . 2010-10-21 03:10 187392 ----a-w- c:\windows\system32\iglhcp64.dll
2011-04-27 19:37 . 2010-10-21 03:10 161304 ----a-w- c:\windows\system32\igfxtray.exe
2011-04-27 19:37 . 2010-10-21 03:10 143360 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2011-04-27 19:37 . 2010-10-21 03:10 88576 ----a-w- c:\windows\system32\igfxrfra.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88576 ----a-w- c:\windows\system32\igfxresn.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88576 ----a-w- c:\windows\system32\igfxrell.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrsky.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrrus.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrptg.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrplk.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrnld.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrita.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrdeu.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrslv.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrptb.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrnor.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrhun.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrfin.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrenu.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrcsy.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87040 ----a-w- c:\windows\system32\igfxrdan.lrc
2011-04-27 19:37 . 2010-10-21 03:10 86528 ----a-w- c:\windows\system32\igfxrheb.lrc
2011-04-27 19:37 . 2010-10-21 03:10 84992 ----a-w- c:\windows\system32\igfxrkor.lrc
2011-04-27 19:37 . 2010-10-21 03:10 84992 ----a-w- c:\windows\system32\igfxrjpn.lrc
2011-04-27 19:37 . 2010-10-21 03:10 830464 ----a-w- c:\windows\system32\igfxress.dll
2011-04-27 19:37 . 2010-10-21 03:10 83968 ----a-w- c:\windows\system32\igfxrcht.lrc
2011-04-27 19:37 . 2010-10-21 03:10 83968 ----a-w- c:\windows\system32\igfxrchs.lrc
2011-04-27 19:37 . 2011-02-11 16:46 243200 ----a-w- c:\windows\system32\igfxpph.dll
2011-04-27 19:37 . 2011-02-11 16:46 27648 ----a-w- c:\windows\system32\igfxexps.dll
2011-04-27 19:37 . 2010-10-21 03:10 86528 ----a-w- c:\windows\system32\igfxrara.lrc
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2011-02-01 17:17 1487240 ----a-w- c:\program files (x86)\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files (x86)\Ask.com\GenericAskToolbar.dll" [2011-02-01 1487240]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files (x86)\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-12-23 284696]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-04-27 1289296]
"Razer Naga Driver"="d:\programy\Razer\Naga\RazerNagaSysTray.exe" [2011-04-12 953232]
"Lycosa"="d:\programy\Razer\Lycosa\razerhid.exe" [2011-03-01 233984]
"NI Background Service"="d:\programy\multisim\Shared\Update Service\BackgroundService.exe" [2009-08-25 77824]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"Malwarebytes' Anti-Malware"="d:\programy\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"="d:\programy\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
c:\users\Macik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Lingea Update Center.lnk - c:\program files (x86)\Common Files\Lingea Shared\luc.exe [2011-4-21 275736]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-25 1129760]
WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2011-3-9 4236288]
Workspace Macro Pro Hotkeys.lnk - d:\programy\Macro\WMPHotkeys.exe [2007-3-4 65536]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;d:\programy\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 RTL2832U_IRHID;HID Infrared Remote Receiver;c:\windows\system32\DRIVERS\RTL2832U_IRHID.sys [2009-07-13 42912]
R3 RTL2832UBDA;REALTEK 2832U BDA Driver;c:\windows\system32\drivers\RTL2832UBDA.sys [2009-07-06 114080]
R3 RTL2832UUSB;REALTEK 2832U USB Driver;c:\windows\system32\Drivers\RTL2832UUSB.sys [2009-07-06 38944]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2011-04-27 325200]
S2 ekrn;ESET Service;d:\programy\ESET NOD32 Antivirus\x86\ekrn.exe [2009-05-14 731840]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-05 865824]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 2275720]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-23 13336]
S2 MBAMService;MBAMService;d:\programy\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 ODDPwrSvc;Acer ODD Power Service;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2010-04-22 171040]
S2 VisualSVNServer;VisualSVN Server;d:\programy\visualSVN\bin\VisualSVNServer.exe [2011-03-22 24424]
S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768]
S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896]
S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [x]
S3 Lycosa;Lycosa Keyboard;c:\windows\system32\drivers\Lycosa.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 RzSynapse;Razer Driver;c:\windows\system32\DRIVERS\RzSynapse.sys [x]
S3 VKbms;Virtual HID Minidriver;c:\windows\system32\DRIVERS\VKbms.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-04-27 10081312]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-04-27 877600]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-01-13 206208]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2011-04-27 320000]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-02-05 860192]
"ODDPwr"="c:\program files\Acer\Optical Drive Power Management\ODDPwr.exe" [2010-04-22 223264]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-27 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-27 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-27 414744]
"BCSSync"="d:\programy\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"egui"="d:\programy\ESET NOD32 Antivirus\egui.exe" [2009-05-14 2692520]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "d:\programy\Stardock\Fences\FencesMenu64.dll" [2009-10-02 134656]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - d:\programy\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\programy\MICROS~1\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\users\Macik\AppData\Roaming\Mozilla\Firefox\Profiles\1jzdy95g.default\
FF - prefs.js: browser.startup.homepage - www.google.cz
FF - prefs.js: network.proxy.http - proxy.spse.pilsedu.cz
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.type - 4
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Wow6432Node-HKLM-Run-IR_SERVER - c:\program files (x86)\MSI\REALTEK DTV USB DEVICE\IR_SERVER.exe
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc_bc2.exe
AddRemove-Xilisoft Video Converter Ultimate - d:\programy\Video Converter Ultimate\Uninstall.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3825520850-1127211931-1910604662-1000\Software\SecuROM\License information*]
"datasecu"=hex:f0,cd,d3,ea,b1,38,48,3d,98,f9,93,13,f8,44,e7,3a,37,63,e7,eb,f7,
9b,05,f4,f1,70,42,0d,4a,83,b5,7e,14,e4,ff,8f,1d,df,f7,c4,5d,19,36,6d,3f,02,\
"rkeysecu"=hex:a6,f0,4e,b5,69,3e,dd,d7,d6,c5,24,ae,8b,38,59,a9
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10p_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10p_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10p.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-06-09 21:44:25
ComboFix-quarantined-files.txt 2011-06-09 19:44
.
Před spuštěním: Volných bajtů: 61 902 934 016
Po spuštění: Volných bajtů: 66 240 057 344
.
- - End Of File - - E45867B1F593D613B2C7FDF4E8FF34C7

[Žbeky]

Je možné, že bude nutné znova nainstalovat ovladače k DVB-T, CF je smázl

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

File::
c:\windows\SysWow64\tmp6432.tmp

Folder::
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
c:\program files (x86)\Ask.com

Registry::
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[-HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[-HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=-
"ConsentPromptBehaviorUser"=-
"EnableUIADesktopToggle"=-

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

RegNull::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Marwvek]

Jen dodam, restartovalo to pc a zapl se antivirak, tak i pres varovani abych nic nepoustel tak jsem pustil okno antiviraku a vypl jsem ho

___________________________________________________________
ComboFix 11-06-09.04 - Macik 09.06.2011 22:22:50.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3767.1849 [GMT 2:00]
Spuštěný z: c:\users\Macik\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Macik\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
SP: ESET NOD32 Antivirus 4.0 *Disabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\SysWow64\tmp6432.tmp"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Ask.com
c:\program files (x86)\Ask.com\assets\oobe\b.png
c:\program files (x86)\Ask.com\assets\oobe\bl.png
c:\program files (x86)\Ask.com\assets\oobe\br.png
c:\program files (x86)\Ask.com\assets\oobe\l.png
c:\program files (x86)\Ask.com\assets\oobe\pointer.png
c:\program files (x86)\Ask.com\assets\oobe\r.png
c:\program files (x86)\Ask.com\assets\oobe\t.png
c:\program files (x86)\Ask.com\assets\oobe\tl.png
c:\program files (x86)\Ask.com\assets\oobe\tr.png
c:\program files (x86)\Ask.com\cb_e7df.ico
c:\program files (x86)\Ask.com\cobrand.ico
c:\program files (x86)\Ask.com\config.xml
c:\program files (x86)\Ask.com\favicon.ico
c:\program files (x86)\Ask.com\fv_e60a.ico
c:\program files (x86)\Ask.com\GenericAskToolbar.dll
c:\program files (x86)\Ask.com\mupcfg.xml
c:\program files (x86)\Ask.com\SaUpdate.exe
c:\program files (x86)\Ask.com\UpdateTask.exe
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.dat
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.lnk
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.msi
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.par
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.res
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\instance.dat
c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\mia.lib
c:\windows\SysWow64\tmp6432.tmp
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-09 do 2011-06-09 )))))))))))))))))))))))))))))))
.
.
2011-06-09 20:27 . 2011-06-09 20:27 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-09 19:21 . 2011-06-09 19:21 -------- d-----w- c:\windows\LastGood.Tmp
2011-06-09 19:18 . 2011-06-09 19:18 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-06-09 19:03 . 2011-06-09 19:03 -------- d-----w- c:\programdata\Nokia
2011-06-09 18:51 . 2011-06-09 18:51 -------- d-----w- c:\users\Macik\AppData\Roaming\Malwarebytes
2011-06-09 18:50 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-09 18:50 . 2011-06-09 18:50 -------- d-----w- c:\programdata\Malwarebytes
2011-06-09 18:50 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-06-09 16:30 . 2011-06-09 16:30 388096 ----a-r- c:\users\Macik\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-06-09 08:21 . 2011-06-09 08:21 -------- d-----w- c:\users\Macik\AppData\Local\The Witcher 2
2011-06-07 18:41 . 2011-06-07 18:41 -------- d-----w- c:\users\Macik\AppData\Roaming\Ice-pick Lodge
2011-06-07 18:03 . 2011-05-09 22:00 8718160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C144DC2E-DBA9-4573-876C-303605C395E3}\mpengine.dll
2011-06-06 21:04 . 2011-06-07 12:17 -------- d-----w- c:\program files (x86)\Workspace Macro 4.6
2011-06-06 20:50 . 2011-06-06 20:50 -------- d-----w- c:\program files (x86)\ARM Software
2011-06-06 08:14 . 2011-06-06 08:14 -------- d-----w- c:\users\Macik\AppData\Local\splash damage
2011-06-06 07:02 . 2011-06-06 07:02 -------- d-----w- c:\users\Macik\AppData\Roaming\Stardock
2011-06-06 07:02 . 2011-06-06 07:02 -------- d-----w- c:\users\Macik\AppData\Local\PackageAware
2011-06-02 09:59 . 2011-06-02 09:59 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-06-02 09:58 . 2011-06-02 09:58 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-06-02 09:58 . 2011-06-02 09:58 -------- d-----w- c:\program files (x86)\Java
2011-06-01 15:05 . 2011-06-02 06:56 -------- d-----w- c:\users\Macik\AppData\Local\LogMeIn Hamachi
2011-06-01 15:05 . 2011-06-01 15:05 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2011-06-01 12:56 . 2011-06-01 15:03 -------- d-----w- c:\users\Macik\AppData\Roaming\Hamachi
2011-05-31 22:43 . 2011-06-02 06:54 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
2011-05-31 22:40 . 2011-05-31 22:40 -------- d-----w- c:\users\Macik\AppData\Local\Windows Live
2011-05-31 22:40 . 2011-05-31 22:40 -------- d-----w- c:\program files (x86)\Common Files\Windows Live
2011-05-31 22:19 . 2011-05-31 22:19 -------- d-----w- c:\users\Macik\AppData\Roaming\Xilisoft
2011-05-31 22:16 . 2011-05-31 22:16 -------- d-----w- c:\programdata\Xilisoft
2011-05-31 20:26 . 2011-05-31 20:26 -------- d-----w- c:\programdata\ATI
2011-05-31 20:26 . 2011-05-31 20:26 -------- d-----w- c:\program files (x86)\AMD APP
2011-05-31 20:26 . 2011-05-31 20:26 -------- d-----w- c:\program files (x86)\Common Files\ATI Technologies
2011-05-31 20:25 . 2011-05-31 20:25 -------- d-----w- c:\program files\Common Files\ATI Technologies
2011-05-31 20:14 . 2011-05-31 20:14 -------- d-----w- C:\AMD
2011-05-31 19:23 . 2011-05-31 19:23 -------- d-sh--w- c:\programdata\DSS
2011-05-31 19:23 . 2011-06-08 14:20 -------- d-----w- c:\programdata\Codemasters
2011-05-31 19:20 . 2011-05-31 19:20 -------- d-----w- c:\users\Macik\AppData\Local\ESET
2011-05-31 19:13 . 2011-05-31 19:13 -------- d-----w- c:\windows\SysWow64\xlive
2011-05-31 19:13 . 2011-05-31 19:13 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2011-05-31 19:09 . 2011-05-31 19:09 -------- d-----w- c:\program files (x86)\BRS
2011-05-31 19:09 . 2011-03-19 13:16 1417216 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2011-05-31 19:09 . 2010-09-22 11:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2011-05-31 19:09 . 2011-05-31 19:09 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2011-05-31 19:09 . 2011-05-31 19:09 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-05-31 19:09 . 2011-05-31 19:09 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2011-05-31 19:09 . 2011-05-31 19:09 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-05-31 19:09 . 2011-05-31 19:09 -------- d-----w- c:\program files (x86)\OpenAL
2011-05-30 21:07 . 2010-10-29 13:22 198144 ----a-w- c:\windows\system32\drivers\ew_juwwanecm.sys
2011-05-30 21:07 . 2010-09-03 15:35 30208 ----a-w- c:\windows\system32\drivers\ew_juextctrl.sys
2011-05-30 21:07 . 2010-08-24 20:53 91648 ----a-w- c:\windows\system32\drivers\ew_jucdcacm.sys
2011-05-30 21:07 . 2010-07-27 13:26 86016 ----a-w- c:\windows\system32\drivers\ew_jubusenum.sys
2011-05-30 21:07 . 2010-07-27 13:26 54784 ----a-w- c:\windows\system32\drivers\ew_jucdcecm.sys
2011-05-30 21:07 . 2010-05-04 14:50 22528 ----a-w- c:\windows\system32\drivers\ew_hwupgrade.sys
2011-05-30 21:07 . 2009-07-14 12:21 1721576 ----a-w- c:\windows\system32\drivers\WdfCoInstaller01009.dll
2011-05-30 21:07 . 2010-05-10 12:22 999936 ----a-w- c:\windows\system32\drivers\mod7700.sys
2011-05-30 21:07 . 2010-03-20 10:06 13952 ----a-w- c:\windows\system32\drivers\ew_usbenumfilter.sys
2011-05-30 21:07 . 2010-07-27 07:52 117248 ----a-w- c:\windows\system32\drivers\ew_hwusbdev.sys
2011-05-30 21:07 . 2011-05-30 21:07 -------- d-----w- C:\HUAWEI
2011-05-30 08:10 . 2011-05-30 08:10 -------- d-----w- c:\program files (x86)\Microsoft XNA
2011-05-29 17:32 . 2011-05-29 17:32 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-25 10:11 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-25 06:26 . 2011-05-25 06:26 9319936 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2011-05-25 04:45 . 2011-05-25 04:45 23385088 ----a-w- c:\windows\system32\atio6axx.dll
2011-05-25 04:20 . 2011-05-25 04:20 17940992 ----a-w- c:\windows\SysWow64\atioglxx.dll
2011-05-25 04:12 . 2011-05-25 04:12 151552 ----a-w- c:\windows\system32\atiapfxx.exe
2011-05-25 04:12 . 2011-05-25 04:12 676864 ----a-w- c:\windows\SysWow64\aticfx32.dll
2011-05-25 04:11 . 2011-05-25 04:11 795648 ----a-w- c:\windows\system32\aticfx64.dll
2011-05-25 04:08 . 2011-05-25 04:08 462848 ----a-w- c:\windows\system32\ATIDEMGX.dll
2011-05-25 04:08 . 2011-05-25 04:08 480256 ----a-w- c:\windows\system32\atieclxx.exe
2011-05-25 04:07 . 2011-05-25 04:07 203776 ----a-w- c:\windows\system32\atiesrxx.exe
2011-05-25 04:06 . 2011-05-25 04:06 120320 ----a-w- c:\windows\system32\atitmm64.dll
2011-05-25 04:05 . 2011-05-25 04:05 423424 ----a-w- c:\windows\system32\atipdl64.dll
2011-05-25 04:05 . 2011-05-25 04:05 356352 ----a-w- c:\windows\SysWow64\atipdlxx.dll
2011-05-25 04:05 . 2011-05-25 04:05 278528 ----a-w- c:\windows\SysWow64\Oemdspif.dll
2011-05-25 04:05 . 2011-05-25 04:05 16384 ----a-w- c:\windows\system32\atimuixx.dll
2011-05-25 04:05 . 2011-05-25 04:05 59392 ----a-w- c:\windows\system32\atiedu64.dll
2011-05-25 04:05 . 2011-05-25 04:05 43520 ----a-w- c:\windows\SysWow64\ati2edxx.dll
2011-05-25 04:03 . 2011-05-25 04:03 51200 ----a-w- c:\windows\system32\aticalrt64.dll
2011-05-25 04:03 . 2011-05-25 04:03 46080 ----a-w- c:\windows\SysWow64\aticalrt.dll
2011-05-25 04:03 . 2011-05-25 04:03 44544 ----a-w- c:\windows\system32\aticalcl64.dll
2011-05-25 04:03 . 2011-05-25 04:03 44032 ----a-w- c:\windows\SysWow64\aticalcl.dll
2011-05-25 04:03 . 2011-05-25 04:03 7768064 ----a-w- c:\windows\system32\aticaldd64.dll
2011-05-25 03:59 . 2011-05-25 03:59 6389760 ----a-w- c:\windows\SysWow64\aticaldd.dll
2011-05-25 03:33 . 2011-05-25 03:33 5441024 ----a-w- c:\windows\system32\atiumd64.dll
2011-05-25 03:25 . 2011-05-25 03:25 262144 ----a-w- c:\windows\SysWow64\atiadlxy.dll
2011-05-25 03:25 . 2011-05-25 03:25 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 12800 ----a-w- c:\windows\SysWow64\atiglpxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 39936 ----a-w- c:\windows\system32\atig6txx.dll
2011-05-25 03:25 . 2011-05-25 03:25 32768 ----a-w- c:\windows\SysWow64\atigktxx.dll
2011-05-25 03:25 . 2011-05-25 03:25 306176 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2011-05-25 03:24 . 2011-05-25 03:24 38912 ----a-w- c:\windows\system32\atiu9p64.dll
2011-05-25 03:23 . 2011-05-25 03:23 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2011-05-25 03:18 . 2011-05-25 03:18 1222656 ----a-w- c:\windows\system32\atiumd6v.dll
2011-05-25 03:18 . 2011-05-25 03:18 1923584 ----a-w- c:\windows\SysWow64\atiumdmv.dll
2011-05-25 03:18 . 2011-05-25 03:18 3868672 ----a-w- c:\windows\system32\atiumd6a.dll
2011-05-25 02:58 . 2011-05-25 02:58 53760 ----a-w- c:\windows\system32\atimpc64.dll
2011-05-25 02:58 . 2011-05-25 02:58 53760 ----a-w- c:\windows\system32\amdpcom64.dll
2011-05-25 02:58 . 2011-05-25 02:58 52736 ----a-w- c:\windows\SysWow64\atimpc32.dll
2011-05-25 02:58 . 2011-05-25 02:58 52736 ----a-w- c:\windows\SysWow64\amdpcom32.dll
2011-05-24 22:04 . 2011-05-24 22:04 61952 ----a-w- c:\windows\system32\OVDecode64.dll
2011-05-24 22:04 . 2011-05-24 22:04 59904 ----a-w- c:\windows\SysWow64\OVDecode.dll
2011-05-24 22:04 . 2011-05-24 22:04 53760 ----a-w- c:\windows\system32\OpenCL.dll
2011-05-24 22:04 . 2011-05-24 22:04 51712 ----a-w- c:\windows\SysWow64\OpenCL.dll
2011-05-24 22:04 . 2011-05-24 22:04 16116224 ----a-w- c:\windows\system32\amdocl64.dll
2011-05-24 22:04 . 2011-05-24 22:04 12385280 ----a-w- c:\windows\SysWow64\amdocl.dll
2011-05-24 19:33 . 2011-05-24 19:33 -------- d-----w- c:\users\Macik\AppData\Roaming\National Instruments
2011-05-24 19:27 . 2011-05-24 19:27 -------- d-----w- c:\program files (x86)\HI-TECH Software
2011-05-24 19:26 . 2000-01-28 16:17 557328 ----a-w- c:\program files\Common Files\Microsoft Shared\dao\dao360.dll
2011-05-24 19:25 . 2011-05-24 19:25 -------- d-----w- c:\program files\National Instruments
2011-05-24 19:24 . 2011-05-24 19:27 -------- d-----w- c:\program files (x86)\Common Files\Merge Modules
2011-05-24 19:24 . 2011-05-24 19:24 -------- d-----w- c:\windows\SysWow64\cvirte
2011-05-24 19:22 . 2011-05-24 19:30 -------- d-----w- c:\programdata\National Instruments
2011-05-18 20:43 . 2011-05-31 22:12 -------- d-----w- c:\program files\CCleaner
2011-05-18 20:39 . 2011-05-18 20:39 -------- d-----w- c:\users\Macik\AppData\Local\Apps
2011-05-18 20:39 . 2011-05-18 20:53 -------- d-----w- c:\users\Macik\AppData\Local\Deployment
2011-05-18 20:32 . 2011-05-18 20:32 -------- d-----w- c:\users\Macik\dwhelper
2011-05-15 20:19 . 2007-09-20 11:04 114688 ----a-w- c:\windows\SysWow64\BTCamVideoSource.dll
2011-05-15 20:18 . 2004-03-18 16:36 401484 ----a-w- c:\windows\system32\msvcrtd.dll
2011-05-13 07:24 . 2003-09-03 00:27 69715 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\ctor.dll
2011-05-13 07:24 . 2003-09-03 00:26 266240 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iscript.dll
2011-05-13 07:24 . 2003-09-03 00:26 192512 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iuser.dll
2011-05-13 07:24 . 2011-05-13 07:24 311428 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\Setup.dll
2011-05-13 07:24 . 2011-05-13 07:24 184452 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iGdi.dll
2011-05-13 07:24 . 2003-09-03 00:28 724992 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\iKernel.dll
2011-05-13 07:24 . 2003-09-03 00:25 5632 ----a-w- c:\program files (x86)\Common Files\InstallShield\Professional\RunTime\09\00\Intel32\DotNetInstaller.exe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-09 14:52 . 2011-04-28 20:54 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-06-05 20:49 . 2011-05-01 10:50 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2011-06-05 20:49 . 2011-04-28 20:54 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-05-25 04:01 . 2010-10-21 03:21 4161536 ----a-w- c:\windows\SysWow64\atidxx32.dll
2011-05-25 03:52 . 2010-10-21 03:13 4951552 ----a-w- c:\windows\system32\atidxx64.dll
2011-05-25 03:40 . 2010-10-21 03:04 4286464 ----a-w- c:\windows\SysWow64\atiumdag.dll
2011-05-25 03:26 . 2010-10-21 03:02 58880 ----a-w- c:\windows\system32\coinst.dll
2011-05-25 03:25 . 2010-10-21 02:52 366080 ----a-w- c:\windows\system32\atiadlxx.dll
2011-05-25 03:24 . 2010-10-21 02:51 40960 ----a-w- c:\windows\system32\atiuxp64.dll
2011-05-25 03:24 . 2010-10-21 02:51 31232 ----a-w- c:\windows\SysWow64\atiuxpag.dll
2011-05-25 03:24 . 2010-10-21 02:51 29184 ----a-w- c:\windows\SysWow64\atiu9pag.dll
2011-05-25 03:10 . 2010-10-21 02:46 4056576 ----a-w- c:\windows\SysWow64\atiumdva.dll
2011-05-24 17:14 . 2011-04-27 18:46 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-20 15:58 . 2011-05-05 16:30 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-05-06 07:42 . 2011-05-05 18:47 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-05-06 07:42 . 2011-05-03 18:52 215128 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-05-03 18:52 . 2011-05-03 18:52 75064 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-05-03 18:52 . 2011-05-03 18:52 2434856 ----a-w- c:\windows\SysWow64\pbsvc_bc2.exe
2011-04-27 20:21 . 2011-04-27 20:21 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-04-27 20:21 . 2011-04-27 20:21 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-04-27 20:21 . 2011-04-27 20:21 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-04-27 20:21 . 2011-04-27 20:21 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-04-27 20:21 . 2011-04-27 20:21 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-04-27 20:21 . 2011-04-27 20:21 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-04-27 20:21 . 2011-04-27 20:21 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-04-27 20:21 . 2011-04-27 20:21 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-04-27 20:21 . 2011-04-27 20:21 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-04-27 20:21 . 2011-04-27 20:21 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-04-27 20:21 . 2011-04-27 20:21 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-04-27 20:21 . 2011-04-27 20:21 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-04-27 20:21 . 2011-04-27 20:21 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-04-27 20:21 . 2011-04-27 20:21 448512 ----a-w- c:\windows\system32\html.iec
2011-04-27 20:21 . 2011-04-27 20:21 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-04-27 20:21 . 2011-04-27 20:21 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-04-27 20:21 . 2011-04-27 20:21 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-04-27 20:21 . 2011-04-27 20:21 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-27 20:21 . 2011-04-27 20:21 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-04-27 20:21 . 2011-04-27 20:21 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-04-27 20:21 . 2011-04-27 20:21 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-04-27 20:21 . 2011-04-27 20:21 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-04-27 20:21 . 2011-04-27 20:21 222208 ----a-w- c:\windows\system32\msls31.dll
2011-04-27 20:21 . 2011-04-27 20:21 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-04-27 20:21 . 2011-04-27 20:21 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-04-27 20:21 . 2011-04-27 20:21 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-04-27 20:21 . 2011-04-27 20:21 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-04-27 20:21 . 2011-04-27 20:21 160256 ----a-w- c:\windows\system32\wextract.exe
2011-04-27 20:21 . 2011-04-27 20:21 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-04-27 20:21 . 2011-04-27 20:21 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-04-27 20:21 . 2011-04-27 20:21 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-27 20:21 . 2011-04-27 20:21 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-04-27 20:21 . 2011-04-27 20:21 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-04-27 20:21 . 2011-04-27 20:21 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-04-27 20:21 . 2011-04-27 20:21 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-04-27 20:21 . 2011-04-27 20:21 12288 ----a-w- c:\windows\system32\mshta.exe
2011-04-27 20:21 . 2011-04-27 20:21 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-04-27 20:21 . 2011-04-27 20:21 114176 ----a-w- c:\windows\system32\admparse.dll
2011-04-27 20:21 . 2011-04-27 20:21 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-04-27 20:21 . 2011-04-27 20:21 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-04-27 20:21 . 2011-04-27 20:21 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-04-27 20:21 . 2011-04-27 20:21 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-04-27 19:37 . 2010-05-06 03:21 125456 ----a-w- c:\windows\system32\drivers\AtiHdmi.sys
2011-04-27 19:37 . 2011-02-11 16:46 61952 ----a-w- c:\windows\system32\igfxsrvc.dll
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrtrk.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrsve.lrc
2011-04-27 19:37 . 2010-10-21 03:10 870560 ----a-w- c:\windows\system32\igkrng575.bin
2011-04-27 19:37 . 2010-10-21 03:10 87040 ----a-w- c:\windows\system32\igfxrtha.lrc
2011-04-27 19:37 . 2010-10-21 03:10 508952 ----a-w- c:\windows\system32\igfxsrvc.exe
2011-04-27 19:37 . 2010-10-21 03:10 380416 ----a-w- c:\windows\system32\igfxTMM.dll
2011-04-27 19:37 . 2010-10-21 03:10 208896 ----a-w- c:\windows\SysWow64\iglhsip32.dll
2011-04-27 19:37 . 2010-10-21 03:10 205824 ----a-w- c:\windows\system32\iglhsip64.dll
2011-04-27 19:37 . 2010-10-21 03:10 187392 ----a-w- c:\windows\system32\iglhcp64.dll
2011-04-27 19:37 . 2010-10-21 03:10 161304 ----a-w- c:\windows\system32\igfxtray.exe
2011-04-27 19:37 . 2010-10-21 03:10 143360 ----a-w- c:\windows\SysWow64\iglhcp32.dll
2011-04-27 19:37 . 2010-10-21 03:10 88576 ----a-w- c:\windows\system32\igfxrfra.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88576 ----a-w- c:\windows\system32\igfxresn.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88576 ----a-w- c:\windows\system32\igfxrell.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrsky.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrrus.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrptg.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrplk.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrnld.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrita.lrc
2011-04-27 19:37 . 2010-10-21 03:10 88064 ----a-w- c:\windows\system32\igfxrdeu.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrslv.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrptb.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrnor.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrhun.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrfin.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrenu.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87552 ----a-w- c:\windows\system32\igfxrcsy.lrc
2011-04-27 19:37 . 2010-10-21 03:10 87040 ----a-w- c:\windows\system32\igfxrdan.lrc
2011-04-27 19:37 . 2010-10-21 03:10 86528 ----a-w- c:\windows\system32\igfxrheb.lrc
2011-04-27 19:37 . 2010-10-21 03:10 84992 ----a-w- c:\windows\system32\igfxrkor.lrc
2011-04-27 19:37 . 2010-10-21 03:10 84992 ----a-w- c:\windows\system32\igfxrjpn.lrc
2011-04-27 19:37 . 2010-10-21 03:10 830464 ----a-w- c:\windows\system32\igfxress.dll
2011-04-27 19:37 . 2010-10-21 03:10 83968 ----a-w- c:\windows\system32\igfxrcht.lrc
2011-04-27 19:37 . 2010-10-21 03:10 83968 ----a-w- c:\windows\system32\igfxrchs.lrc
2011-04-27 19:37 . 2011-02-11 16:46 243200 ----a-w- c:\windows\system32\igfxpph.dll
2011-04-27 19:37 . 2011-02-11 16:46 27648 ----a-w- c:\windows\system32\igfxexps.dll
2011-04-27 19:37 . 2010-10-21 03:10 86528 ----a-w- c:\windows\system32\igfxrara.lrc
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-09_19.42.32 )))))))))))))))))))))))))))))))))))))))))
.
- 2011-04-27 22:08 . 2011-06-08 10:29 3155 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-04-27 22:08 . 2011-06-09 20:27 3155 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
- 2011-06-09 14:47 . 2011-06-09 14:47 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-09 20:28 . 2011-06-09 20:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-06-09 14:47 . 2011-06-09 14:47 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-06-09 20:28 . 2011-06-09 20:28 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-14 05:01 . 2011-06-09 20:27 468600 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2011-06-09 12:41 468600 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2011-04-27 22:08 . 2011-06-09 12:41 1429392 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-04-27 22:08 . 2011-06-09 20:27 1429392 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-04-27 22:08 . 2011-06-09 20:27 14386606 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-3825520850-1127211931-1910604662-1000-8192.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files (x86)\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NokiaMServer"="c:\program files (x86)\Common Files\Nokia\MPlatform\NokiaMServer" [X]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2009-12-23 284696]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2011-04-27 1289296]
"Razer Naga Driver"="d:\programy\Razer\Naga\RazerNagaSysTray.exe" [2011-04-12 953232]
"Lycosa"="d:\programy\Razer\Lycosa\razerhid.exe" [2011-03-01 233984]
"NI Background Service"="d:\programy\multisim\Shared\Update Service\BackgroundService.exe" [2009-08-25 77824]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-05-24 336384]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"Malwarebytes' Anti-Malware"="d:\programy\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
c:\users\Macik\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Lingea Update Center.lnk - c:\program files (x86)\Common Files\Lingea Shared\luc.exe [2011-4-21 275736]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-25 1129760]
WDDMStatus.lnk - c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe [2011-3-9 4236288]
Workspace Macro Pro Hotkeys.lnk - d:\programy\Macro\WMPHotkeys.exe [2007-3-4 65536]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;d:\programy\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 51456888]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 RTL2832U_IRHID;HID Infrared Remote Receiver;c:\windows\system32\DRIVERS\RTL2832U_IRHID.sys [2009-07-13 42912]
R3 RTL2832UBDA;REALTEK 2832U BDA Driver;c:\windows\system32\drivers\RTL2832UBDA.sys [2009-07-06 114080]
R3 RTL2832UUSB;REALTEK 2832U USB Driver;c:\windows\system32\Drivers\RTL2832UUSB.sys [2009-07-06 38944]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\DRIVERS\wdcsam64.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2011-04-27 325200]
S2 ekrn;ESET Service;d:\programy\ESET NOD32 Antivirus\x86\ekrn.exe [2009-05-14 731840]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-05 865824]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 2275720]
S2 IAStorDataMgrSvc;Úložná technologie Intel(R) Rapid;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2009-12-23 13336]
S2 MBAMService;MBAMService;d:\programy\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 ODDPwrSvc;Acer ODD Power Service;c:\program files\Acer\Optical Drive Power Management\ODDPWRSvc.exe [2010-04-22 171040]
S2 VisualSVNServer;VisualSVN Server;d:\programy\visualSVN\bin\VisualSVNServer.exe [2011-03-22 24424]
S2 WDDMService;WDDMService;c:\program files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [2011-03-09 288768]
S2 WDFME;WD File Management Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe [2011-03-09 1066896]
S2 WDSC;WD File Management Shadow Engine;c:\program files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe [2011-03-09 491920]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [x]
S3 Huawei;HUAWEI Mobile Connect - USB Smart Card Reader;c:\windows\system32\DRIVERS\ewdcsc.sys [x]
S3 huawei_enumerator;huawei_enumerator;c:\windows\system32\DRIVERS\ew_jubusenum.sys [x]
S3 Impcd;Impcd;c:\windows\system32\DRIVERS\Impcd.sys [x]
S3 intelkmd;intelkmd;c:\windows\system32\DRIVERS\igdpmd64.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [x]
S3 Lycosa;Lycosa Keyboard;c:\windows\system32\drivers\Lycosa.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 RzSynapse;Razer Driver;c:\windows\system32\DRIVERS\RzSynapse.sys [x]
S3 VKbms;Virtual HID Minidriver;c:\windows\system32\DRIVERS\VKbms.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\1TortoiseNormal]
@="{C5994560-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994560-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\2TortoiseModified]
@="{C5994561-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994561-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\3TortoiseConflict]
@="{C5994562-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994562-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\4TortoiseLocked]
@="{C5994563-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994563-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\5TortoiseReadOnly]
@="{C5994564-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994564-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\6TortoiseDeleted]
@="{C5994565-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994565-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\7TortoiseAdded]
@="{C5994566-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994566-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\8TortoiseIgnored]
@="{C5994567-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994567-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\9TortoiseUnversioned]
@="{C5994568-53D9-4125-87C9-F193FC689CB2}"
[HKEY_CLASSES_ROOT\CLSID\{C5994568-53D9-4125-87C9-F193FC689CB2}]
2010-03-21 06:55 99080 ----a-w- c:\program files\Common Files\TortoiseOverlays\TortoiseOverlays.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-04-27 10081312]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-04-27 877600]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-01-13 206208]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2011-04-27 320000]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-02-05 860192]
"ODDPwr"="c:\program files\Acer\Optical Drive Power Management\ODDPwr.exe" [2010-04-22 223264]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-04-27 161304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-04-27 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-04-27 414744]
"BCSSync"="d:\programy\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"egui"="d:\programy\ESET NOD32 Antivirus\egui.exe" [2009-05-14 2692520]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\SharedTaskScheduler]
"{1984DD45-52CF-49cd-AB77-18F378FEA264}"= "d:\programy\Stardock\Fences\FencesMenu64.dll" [2009-10-02 134656]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - d:\programy\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\programy\MICROS~1\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
FF - ProfilePath - c:\users\Macik\AppData\Roaming\Mozilla\Firefox\Profiles\1jzdy95g.default\
FF - prefs.js: browser.startup.homepage - www.google.cz
FF - prefs.js: network.proxy.http - proxy.spse.pilsedu.cz
FF - prefs.js: network.proxy.http_port - 3128
FF - prefs.js: network.proxy.type - 4
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Fences - c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe
AddRemove-{10CD364B-FFCC-48BE-B469-B9622A033075} - c:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-3825520850-1127211931-1910604662-1000\Software\SecuROM\License information*]
"datasecu"=hex:f0,cd,d3,ea,b1,38,48,3d,98,f9,93,13,f8,44,e7,3a,37,63,e7,eb,f7,
9b,05,f4,f1,70,42,0d,4a,83,b5,7e,14,e4,ff,8f,1d,df,f7,c4,5d,19,36,6d,3f,02,\
"rkeysecu"=hex:a6,f0,4e,b5,69,3e,dd,d7,d6,c5,24,ae,8b,38,59,a9
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\SysWOW64\lkads.exe
c:\windows\SysWOW64\lktsrv.exe
d:\programy\multisim\Shared\Security\nidmsrv.exe
c:\windows\SysWOW64\nisvcloc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\RunDll32.exe
c:\program files (x86)\Launch Manager\LMworker.exe
c:\program files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
d:\programy\Razer\Lycosa\razertra.exe
.
**************************************************************************
.
Celkový čas: 2011-06-09 22:33:41 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-09 20:33
ComboFix2.txt 2011-06-09 19:44
.
Před spuštěním: Volných bajtů: 66 339 389 440
Po spuštění: Volných bajtů: 66 162 532 352
.
- - End Of File - - D14D1D760BAB817399A976A3DB91EE28

[Žbeky]

Sakra práce, ono tro bylo fences...

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

DeQuarantine::
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}

Quit::


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[Marwvek]

ten malweres nebo jak se to pise ten program muzu uz odinstalovat?

________________________________
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.dat -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.dat
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.exe
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.lnk -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.lnk
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.msi -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.msi
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.par -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.par
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.res -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\Fences.res
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\instance.dat -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\instance.dat
C:\Qoobox\Quarantine\c\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\mia.lib -> C:\programdata\{A87EB928-0C6C-4071-AEF1-59E32BAEDF1B}\mia.lib
Zkopˇrovan‚ soubory: 8

[Žbeky]

Nůžeš a nemusíš, klidně to s ním jednou za čas projeď

ComboFix se odinstaluje takto:
Start-Spustit a zadej ComboFix /Uninstall

vyčisti systém CCleanerem

a použij i T-Cleaner
smaže vše po Combu,MWAVu atd.-stáhneš>spustíš

pozn. před stažením T-Cleaneru a po dobu čištění deaktivuj AVG , Avast,Avira či Microsoft Security Essentials následně T-Cleaner smaž a zapni si AVG , Avast, Avira či Microsoft Security Essentials

+ Nový log z HJT

Jak se chová PC?

[Marwvek]

PC asi nepoznam hned, doufam ze se jiz nebudou sami odesilat maily/spamy kdyz jo tak napisu


____________________
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 23:45:29, on 9.6.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Windows Sidebar\sidebar.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Launch Manager\LManager.exe
D:\Programy\Razer\Lycosa\razerhid.exe
D:\Programy\Macro\WMPHotkeys.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer.exe
C:\Program Files (x86)\Launch Manager\LMworker.exe
D:\Programy\Razer\Lycosa\razertra.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\HUAWEI\MP\Mobile Partner.exe
D:\Programy\Mozilla Firefox\firefox.exe
D:\Programy\Mozilla Firefox\plugin-container.exe
D:\Programy\HJT\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [Razer Naga Driver] D:\Programy\Razer\Naga\RazerNagaSysTray.exe
O4 - HKLM\..\Run: [Lycosa] "D:\Programy\Razer\Lycosa\razerhid.exe"
O4 - HKLM\..\Run: [NI Background Service] D:\Programy\multisim\Shared\Update Service\BackgroundService.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [NokiaMServer] C:\Program Files (x86)\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKCU\..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\sidebar.exe /autoRun
O4 - Startup: Lingea Update Center.lnk = C:\Program Files (x86)\Common Files\Lingea Shared\luc.exe
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: WDDMStatus.lnk = C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
O4 - Global Startup: Workspace Macro Pro Hotkeys.lnk = D:\Programy\Macro\WMPHotkeys.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://D:\Programy\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://D:\Programy\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Odeslat do zařízení Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Odeslat do zařízení &Bluetooth... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{D182E2C6-774F-4BE4-8423-67BECD4FBEA8}: NameServer = 194.228.211.33 160.218.167.5
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - D:\Programy\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - D:\Programy\ESET NOD32 Antivirus\x86\ekrn.exe
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Úložná technologie Intel(R) Rapid (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\Windows\SysWOW64\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments Corporation - C:\Windows\SysWOW64\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments Corporation - C:\Windows\SysWOW64\lktsrv.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments Corporation - D:\Programy\multisim\Shared\Security\nidmsrv.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corporation - C:\Windows\SysWOW64\nisvcloc.exe
O23 - Service: Acer ODD Power Service (ODDPwrSvc) - Acer Incorporated - C:\Program Files\Acer\Optical Drive Power Management\ODDPWRSvc.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: VisualSVN Server (VisualSVNServer) - Apache Software Foundation - D:\Programy\visualSVN\bin\VisualSVNServer.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: WDDMService - WDC - C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD File Management Engine (WDFME) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
O23 - Service: WD File Management Shadow Engine (WDSC) - Unknown owner - C:\Program Files (x86)\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11583 bytes

[Žbeky]

Ještě fixni:

Kód: Vybrat vše

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab