odinstalace eset smart security v 4

majel007 · Příspěvekod **majel007** » 21 kvě 2011 10:50

lidi mam problém cosi se mi jednou podělal v kompu a od některých instalací mi zmizely msi soubory. a když chci třeby ten eset odinstalovat nebo nainstalovat tak mi to vyhodí chybu.

http://www.facebook.com/media/set/?set= ... 1ea9be2cb0

foto

vždy sem to řešil že sem umazal složku a pak sem se pohrabal v registru.

u esetu je to trochu jiné je víc zakořeněný a navíc se mi ho nepodařilo vypnout. takže mi tam skáčou chyby nejde odstranit a podobně ví si s tím někdo rady pls. skoušel sem tam těch souborů strčit už několik ale vždy mě to odmítlo.

A neříkejte že mám přeinstalovat window

Reklama

guest · Příspěvekod **guest** » 21 kvě 2011 12:00

Pokud to budeš řešit tak, že budeš "umazávat složky" pak ti nejspíš žádná korektní odinstalace fungovat nebude. Zbývají ty registry.

majel007 · Příspěvekod **majel007** » 21 kvě 2011 12:20

já vím klíčem jsou registry ale jak mám vypnout eseta abych je mohl smazat. skoušel sem ať se nezapíná na začatku startu win nezap se ale i tak psal že je zaplý pod nějakým programem.

tady máš výpis z unlockeru.(řekne jake programy viužívají složku a tedy i klíče v registru

http://www.facebook.com/media/set/?set= ... 1ea9be2cb0

pls jak ho mam vypnout.

guest · Příspěvekod **guest** » 21 kvě 2011 12:25

Obrázky se vkládají sem, jako příloha a ne na FB! :evil:

Však v tom výpisu vidíš kde je!

majel007 · Příspěvekod **majel007** » 21 kvě 2011 12:44

no tak sorry :cry:

Jo to vidím ale když to vypnu tak se ta služba restartuje okamžitě nebo mi to vyhodí chybu

Příspěvekod **Žbeky** » 21 kvě 2011 12:51

To je taková blbost "odinstalovávat" mazáním složky, že bych za to ruky urážel...

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

majel007 · Příspěvekod **majel007** » 21 kvě 2011 15:04

žbeky prosím

ComboFix 11-05-19.02 - PC 21.05.2011 14:36:00.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2046.1387 [GMT 2:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
AV: ESET Smart Security 4.2 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: ESET personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.2 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ESET\MiNODLogin
c:\users\PC\AppData\Roaming\inst.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\7249907A.lnk
c:\users\PC\AppData\Roaming\PClog.dat
c:\users\PC\AppData\Roaming\pcouffin.sys
c:\windows\7Loader.TAG
c:\windows\system32\drivers\hwinterface.sys
c:\windows\system32\logs
c:\windows\system32\logs\emuLog.txt
c:\windows\system32\winupdatex\svchost.exe
c:\windows\XSxS
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_hwinterface
-------\Service_hwinterface
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-04-21 do 2011-05-21 )))))))))))))))))))))))))))))))
.
.
2011-05-21 12:47 . 2011-05-21 12:47 -------- d-----w- c:\users\Luděk\AppData\Local\temp
2011-05-21 12:47 . 2011-05-21 12:47 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-21 12:47 . 2011-05-21 12:47 -------- d-----w- c:\users\Katka\AppData\Local\temp
2011-05-21 12:10 . 2011-05-21 12:10 -------- d-----w- c:\users\PC\AppData\Roaming\DisneyInteractiveStudios
2011-05-21 08:05 . 2011-05-21 08:05 -------- dc----w- c:\program files\Microsoft Games for Windows - LIVE
2011-05-20 11:52 . 2011-05-20 11:52 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-19 13:41 . 2011-05-19 13:43 -------- d-----w- c:\users\PC\AppData\Roaming\Aegisub
2011-05-18 17:10 . 2011-05-18 17:10 -------- d-----w- c:\users\PC\AppData\Roaming\mkvtoolnix
2011-05-18 15:25 . 2011-05-18 15:25 -------- d-----w- c:\programdata\xml_param
2011-05-18 15:23 . 2010-11-19 16:02 892928 ----a-w- c:\windows\system32\iconv.dll
2011-05-18 15:23 . 2010-11-19 16:02 675840 ----a-w- c:\windows\system32\ac3filter.ax
2011-05-13 19:42 . 2011-05-13 19:43 -------- d-----w- c:\users\PC\AppData\Roaming\SPORE
2011-05-13 12:01 . 2011-04-11 07:04 7071056 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1BC951AB-AB5D-4445-AEB2-E8F9BEACDDD1}\mpengine.dll
2011-05-12 13:45 . 2009-08-19 21:50 22872 ----a-r- c:\windows\system32\AdobePDFUI.dll
2011-05-11 16:50 . 2009-08-19 21:50 46928 ----a-w- c:\windows\system32\AdobePDF.dll
2011-05-11 12:54 . 2011-03-25 02:58 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-05-11 12:54 . 2011-03-25 02:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-05-11 12:54 . 2011-03-25 02:57 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-11 12:54 . 2011-03-25 02:57 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-05-11 12:54 . 2011-03-25 02:57 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-05-11 12:54 . 2011-03-25 02:58 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-05-11 12:54 . 2011-04-09 06:02 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-05-11 12:54 . 2011-04-09 06:02 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 12:53 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-05-10 15:21 . 2011-05-10 15:21 -------- dc----w- c:\program files\EA
2011-05-10 15:06 . 2011-05-10 15:21 -------- dc----w- C:\Program FilesEABulletstorm
2011-05-10 14:34 . 2011-05-10 14:34 -------- dc----w- c:\program files\NVIDIA Corporation
2011-05-10 12:16 . 2011-05-10 12:16 -------- d-----w- c:\users\PC\AppData\Roaming\Ace
2011-05-08 14:44 . 2011-05-08 14:44 -------- d-----w- c:\users\PC\AppData\Roaming\Codemasters
2011-05-08 14:44 . 2011-05-08 14:44 -------- d-----w- c:\windows\85EBB28365AF4C539EBE7C0A232762F7.TMP
2011-05-08 13:35 . 2011-05-08 13:35 -------- d-----w- c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
2011-05-08 11:14 . 2011-05-08 14:35 -------- dc----w- c:\program files\Microsoft
2011-05-08 09:01 . 2011-05-08 09:01 -------- d-----w- c:\users\PC\AppData\Local\Google
2011-05-08 09:01 . 2011-05-08 09:01 -------- dc----w- c:\program files\Google
2011-04-27 16:52 . 2011-04-27 16:52 -------- d-----w- c:\program files\Common Files\Java
2011-04-24 19:50 . 2011-04-24 19:50 -------- d-----w- c:\users\PC\AppData\Roaming\AVS4YOU
2011-04-24 19:49 . 2011-05-19 17:21 -------- dc----w- c:\program files\AVS4YOU
2011-04-24 19:49 . 2011-04-24 19:52 -------- d-----w- c:\program files\Common Files\AVSMedia
2011-04-24 19:49 . 2010-09-14 15:38 1700352 ----a-w- c:\windows\system32\GdiPlus.dll
2011-04-24 19:49 . 2011-04-24 19:50 -------- d-----w- c:\programdata\AVS4YOU
2011-04-24 19:49 . 2010-09-14 15:38 24576 ----a-w- c:\windows\system32\msxml3a.dll
2011-04-24 19:33 . 2011-04-24 19:33 -------- d-----w- c:\users\PC\AppData\Local\SKIDROW
2011-04-24 19:08 . 2007-04-12 12:19 129024 ----a-w- c:\windows\system32\AVERM.dll
2011-04-24 19:08 . 2006-09-26 11:57 28672 ----a-w- c:\windows\system32\AVEQT.dll
2011-04-24 19:08 . 2004-01-11 06:02 258048 ----a-w- c:\windows\system32\GplMpgDec.ax
2011-04-24 19:08 . 2002-10-07 00:42 237568 ----a-w- c:\windows\system32\OggDS.dll
2011-04-24 19:08 . 2002-10-05 05:04 921600 ----a-w- c:\windows\system32\vorbisenc.dll
2011-04-24 19:08 . 2002-10-05 05:04 188416 ----a-w- c:\windows\system32\vorbis.dll
2011-04-24 19:08 . 2002-10-05 05:04 45056 ----a-w- c:\windows\system32\ogg.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-05 20:38 . 2010-10-20 16:15 5642 --sha-w- c:\programdata\KGyGaAvL.sys
2011-04-27 16:51 . 2010-05-25 04:29 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-04-27 16:48 . 2010-05-22 20:38 15600 ----a-w- c:\windows\gdrv.sys
2011-04-15 16:52 . 2011-04-15 16:52 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-04-15 16:52 . 2011-04-15 16:52 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-04-15 16:52 . 2011-04-15 16:52 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-04-15 16:52 . 2011-04-15 16:52 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-04-15 16:52 . 2011-04-15 16:52 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-04-15 16:52 . 2011-04-15 16:52 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-04-15 16:52 . 2011-04-15 16:52 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-04-15 16:52 . 2011-04-15 16:52 367104 ----a-w- c:\windows\system32\html.iec
2011-04-15 16:52 . 2011-04-15 16:52 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-04-15 16:52 . 2011-04-15 16:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-04-15 16:52 . 2011-04-15 16:52 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-15 16:52 . 2011-04-15 16:52 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-04-15 16:52 . 2011-04-15 16:52 161792 ----a-w- c:\windows\system32\msls31.dll
2011-04-15 16:52 . 2011-04-15 16:52 152064 ----a-w- c:\windows\system32\wextract.exe
2011-04-15 16:52 . 2011-04-15 16:52 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-04-15 16:52 . 2011-04-15 16:52 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-04-15 16:52 . 2011-04-15 16:52 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-15 16:52 . 2011-04-15 16:52 11776 ----a-w- c:\windows\system32\mshta.exe
2011-04-15 16:52 . 2011-04-15 16:52 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-04-15 16:52 . 2011-04-15 16:52 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-04-15 16:52 . 2011-04-15 16:52 101888 ----a-w- c:\windows\system32\admparse.dll
2011-04-14 18:39 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-04-09 17:16 . 2011-04-09 17:17 720896 ----a-w- c:\windows\iun6002.exe
2011-04-09 16:55 . 2011-04-09 16:55 15453336 ----a-w- c:\windows\system32\xlive.dll
2011-04-09 16:55 . 2011-04-09 16:55 13642904 ----a-w- c:\windows\system32\xlivefnt.dll
2011-03-31 15:53 . 2009-08-18 10:30 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-03-31 15:53 . 2009-08-18 10:24 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-11 05:33 . 2011-04-13 16:56 1137664 ----a-w- c:\windows\system32\mfc42.dll
2011-03-11 05:33 . 2011-04-13 16:56 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-08 05:28 . 2011-04-13 16:55 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-05 12:28 . 2011-03-05 12:28 455905 ----a-w- c:\windows\Natura Sound Therapy Uninstaller.exe
2011-03-03 13:18 . 2011-03-03 13:15 15823872 ----a-w- c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2011-03-03 13:18 . 2011-03-03 13:15 786492 ----a-w- c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2011-03-03 13:18 . 2011-03-03 13:15 107008 ----a-w- c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2011-03-03 05:38 . 2011-04-13 16:56 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-03-03 05:36 . 2011-04-13 16:56 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-03-03 03:42 . 2011-04-13 16:56 2333184 ----a-w- c:\windows\system32\win32k.sys
2011-02-24 05:38 . 2011-04-15 16:41 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-02-23 04:48 . 2011-04-13 16:56 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-02-23 04:48 . 2011-04-13 16:56 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-02-23 04:47 . 2011-04-13 16:56 114176 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-02-23 04:47 . 2011-04-13 16:55 223232 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-02-23 04:47 . 2011-04-13 16:55 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-02-23 04:47 . 2011-04-13 16:55 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-02-23 04:47 . 2011-04-13 16:55 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
.
.
------- Sigcheck -------
.
[-] 2010-11-20 . 8626F0C30D4E3564FFDD25C90F4426F1 . 811520 . . [6.1.7601.17514] . . c:\windows\System32\user32.dll
[7] 2010-11-20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
[7] 2009-07-14 . 34B7E222E81FAFA885F0C5F2CFA56861 . 811520 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="d:\programy\utorrent\uTorrent.exe" [2010-12-11 394616]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"RocketDock"="d:\programy\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Seznam Postak"="c:\users\PC\AppData\Local\Seznam.cz\postak.exe" [2010-10-06 488728]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EEventManager"="c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe" [2008-12-04 665424]
"SQ931STI"="c:\windows\SQ931STI.EXE" [2007-01-24 151552]
"Monitor"="c:\windows\PixArt\PAC7311\Monitor.exe" [2006-11-03 319488]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2011-01-30 38840]
"UnlockerAssistant"="d:\programy\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
"Kernel and Hardware Abstraction Layer"="KHALMNPR.EXE" [2009-06-17 55824]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-01-04 336384]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2011-01-07 253672]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2010-09-22 640440]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-04-07 2145000]
.
c:\users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-5-10 800032]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-6-16 813584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 10:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\fsproflt]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
R2 AODService;AODService;c:\program files\AMD\OverDrive\AODAssist.exe [2010-04-23 136616]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\appliand.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2010-05-28 45736]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-05-28 29472]
R3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;d:\hry\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
R3 EagleXNt;EagleXNt;c:\windows\system32\drivers\EagleXNt.sys [x]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2010-12-29 13224]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-06 34064]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-04-19 189784]
R3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-02-10 150528]
R3 SQ931;USB 2.0 Video Camera;c:\windows\system32\Drivers\Capt931a.sys [2007-03-27 519040]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;WatAdminSvc;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-23 1343400]
S0 FSProFilter;FSPro File Filter;c:\windows\System32\Drivers\FSPFltd.sys [2008-06-05 43792]
S0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\System32\drivers\sfdrv01a.sys [2009-02-03 63096]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-05-29 691696]
S1 archlp;archlp;c:\windows\system32\drivers\archlp.sys [2010-01-13 89728]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2010-04-07 114984]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-01-05 176128]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-01-04 284672]
S2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 140224]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2010-04-07 133512]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2010-04-07 810120]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2010-04-07 41312]
S2 fsproflt;FSPro Filter Service;c:\windows\system32\fsproflt.exe [2009-11-30 136192]
S2 NAUpdate;Aktualizace Nero;c:\program files\Nero\Update\NASvc.exe [2010-02-18 462632]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S3 ALSysIO;ALSysIO;c:\users\PC\AppData\Local\Temp\ALSysIO.sys [x]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-01-05 6789120]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-01-05 235520]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2010-11-17 101392]
S3 PAC7311;VGA SoC PC-Camera;c:\windows\system32\DRIVERS\PA707UCM.SYS [2006-11-08 530304]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-01-21 328808]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - ALSYSIO
.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://start.icq.com/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Prevést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
IE: {{0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - {E601996F-E400-41CA-804B-CD6373A7EEE2} - c:\program files\kikin\ie_kikin.dll
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\hwjp346a.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: browser.startup.homepage - google.cz
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.1.9&q=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{E601996F-E400-41CA-804B-CD6373A7EEE2} - c:\program files\kikin\ie_kikin.dll
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-ISUSPM Startup - c:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe
HKCU-Run-cfweatherStation - c:\weather\Weather.exe
HKCU-Run-BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA} - c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe
HKLM-Run-NBAgent - c:\program files\Nero\Nero 10\Nero BackItUp\NBAgent.exe
HKLM-Run-PCSpeedUp - c:\program files\Zrychleni Pocitace\PCSpeedUp.exe
MSConfigStartUp-UVS11 Preload - d:\programy\Upleader video\uvPL.exe
AddRemove-{7353BAE6-5E49-46C4-A9B5-8A269A313789} - c:\users\PC\AppData\Local\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}\setup.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1003538935-3052354813-57187859-1000\Software\SecuROM\License information*]
"datasecu"=hex:25,41,c8,d7,83,a7,9a,cb,d2,e5,3d,23,5c,5a,c7,f3,19,a2,20,ad,5a,
c7,ff,54,5c,7f,67,36,d7,70,32,a1,81,1e,3d,6a,d7,8f,7d,6b,73,f5,94,46,4b,2f,\
"rkeysecu"=hex:4a,18,4c,4d,1f,18,14,d9,13,b9,f6,1e,bf,84,69,89
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(2844)
d:\programy\RocketDock\RocketDock.dll
c:\program files\Logitech\SetPoint\GameHook.dll
c:\program files\Logitech\SetPoint\lgscroll.dll
c:\program files\WIDCOMM\Bluetooth Software\btmmhook.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\InterVideo\DeviceService\DevSvc.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\taskhost.exe
c:\program files\Core Temp\Core Temp.exe
c:\windows\system32\conhost.exe
c:\program files\Epson Software\Event Manager\EEventManager.exe
c:\program files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\WUDFHost.exe
c:\windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\system32\sppsvc.exe
c:\users\PC\AppData\Local\Seznam.cz\MiniBrowser.exe
c:\windows\system32\AUDIODG.EXE
.
**************************************************************************
.
Celkový čas: 2011-05-21 15:00:55 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-05-21 13:00
.
Před spuštěním: Volných bajtů: 11 856 355 328
Po spuštění: Volných bajtů: 16 913 571 840
.
- - End Of File - - EF0EB216503BD906D841531A34AF7C18

Příspěvekod **Žbeky** » 21 kvě 2011 17:00

A ještě k tomu byl cracklý... stejně jako win... :roll:

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

SecCenter::
AV: ESET Smart Security 4.2 *Enabled/Updated* {CB0F8167-5331-BA19-698E-64816B6801A5}
FW: ESET personal firewall *Enabled* {F3340042-195E-BB41-42D1-CDB495BB46DE}
SP: ESET Smart Security 4.2 *Enabled/Updated* {706E6083-750B-B597-533E-5FF310EF4B18}

Folder::
c:\windows\85EBB28365AF4C539EBE7C0A232762F7.TMP
c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
c:\program files\ESET\ESET Smart Security

File::
c:\programdata\KGyGaAvL.sys
c:\windows\system32\drivers\EagleXNt.sys
c:\windows\system32\DRIVERS\ehdrv.sys
c:\windows\system32\DRIVERS\eamonm.sys
c:\windows\system32\DRIVERS\epfwwfp.sys
c:\users\PC\AppData\Local\Temp\ALSysIO.sys

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Adobe Acrobat Speed Launcher"=-
"Kernel and Hardware Abstraction Layer"=-
"QuickTime Task"=-
"SunJavaUpdateSched"=-
"Adobe ARM"=-
"DivXUpdate"=-
"egui"=-
HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=-
"ConsentPromptBehaviorUser"=-
"EnableLUA"=-
"PromptOnSecureDesktop"=-
"EnableLinkedConnections"=-

Driver::
EagleXNt
ehdrv
eamonm
ekrn
epfwwfp
ALSysIO

DDS::
uStart Page = hxxp://start.icq.com/

Firefox::
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\hwjp346a.default\
FF - prefs.js: browser.search.selectedEngine - ICQ Search
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_result ... r=1.1.9&q=

RegLock::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

RegNull::
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

Toto otestuj na Virustotal
c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe

Klikni vpravo od okénka na Vybrat a v Exploreru najdi požadovaný soubor v Tvém PC. Označ ho myší a klikni na Otevřít , poté klikni na Send File. Pokud už byl soubor testován , objeví se okno ve kterém klikni na Reanalyze. Soubor se začne postupně testovat více antivirovými programy. Až skončí test posledního antiviru , objeví se nahoře result a červeně počet nákaz , např. 0/40 , nebo 1/40. Pak zkopíruj myší odkaz na tuto stránku a vlož ji do svého příspěvku.

majel007 · Příspěvekod **majel007** » 21 kvě 2011 17:18

JO ale počkat proč tohle všechno ?? já nemám problém s viry.

a navíc se pleteš já eset nemám cracklý

Příspěvekod **Žbeky** » 21 kvě 2011 17:36

A minodlogin jsi tam měl jen z testovacích důvodů, že? Stejně tak 7Loader... Buď chceš ESET odstranit a budeš dělat věci podle návodů nebo se ho zbavit nechceš a klidně to zafajkuj... :roll:

majel007 · Příspěvekod **majel007** » 21 kvě 2011 18:46

no kdyby ses koukl na obsah té složky zjistil bys že už je dávno odinstalovaný nebo deaktivovaný. win mam to přiznávám mě se nevyplatí něco kupovat když to nevydrží ani rok a spadne to, upřímně nejsem jediný.

dobře udělám jak říkáš zítra ti napíšu co a jak.

majel007 · Příspěvekod **majel007** » 22 kvě 2011 10:59

cryptedcybertoirrent

http://www.virustotal.com/file-scan/rep ... 1306054214

Office 2010 Toolkit

http://www.virustotal.com/file-scan/rep ... 1306054421

Torrant

http://www.virustotal.com/file-scan/rep ... 1306053964

ComboFIx

ComboFix 11-05-19.02 - PC 22.05.2011 10:22:45.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.2046.1009 [GMT 2:00]
Spuštěný z: c:\users\PC\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\PC\Desktop\CFScript.txt
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\programdata\KGyGaAvL.sys"
"c:\users\PC\AppData\Local\Temp\ALSysIO.sys"
"c:\windows\system32\drivers\EagleXNt.sys"
"c:\windows\system32\DRIVERS\eamonm.sys"
"c:\windows\system32\DRIVERS\ehdrv.sys"
"c:\windows\system32\DRIVERS\epfwwfp.sys"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\ESET\ESET Smart Security
c:\program files\ESET\ESET Smart Security\callmsi.exe
c:\program files\ESET\ESET Smart Security\DMON.dll
c:\program files\ESET\ESET Smart Security\Drivers\eamonm\eamonm.cat
c:\program files\ESET\ESET Smart Security\Drivers\eamonm\eamonm.inf
c:\program files\ESET\ESET Smart Security\Drivers\eamonm\eamonm.sys
c:\program files\ESET\ESET Smart Security\Drivers\ehdrv\ehdrv.cat
c:\program files\ESET\ESET Smart Security\Drivers\ehdrv\ehdrv.inf
c:\program files\ESET\ESET Smart Security\Drivers\ehdrv\ehdrv.sys
c:\program files\ESET\ESET Smart Security\Drivers\epfw\epfw.cat
c:\program files\ESET\ESET Smart Security\Drivers\epfw\epfw.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfw\epfw.sys
c:\program files\ESET\ESET Smart Security\Drivers\epfwndis\epfwnd_m.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfwndis\epfwndis.cat
c:\program files\ESET\ESET Smart Security\Drivers\epfwndis\epfwndis.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfwndis\epfwndis.sys
c:\program files\ESET\ESET Smart Security\Drivers\epfwwfp\epfwwfp.cat
c:\program files\ESET\ESET Smart Security\Drivers\epfwwfp\EpfwWfp.inf
c:\program files\ESET\ESET Smart Security\Drivers\epfwwfp\EpfwWfp.sys
c:\program files\ESET\ESET Smart Security\ecls.exe
c:\program files\ESET\ESET Smart Security\eclsLang.dll
c:\program files\ESET\ESET Smart Security\ecmd.exe
c:\program files\ESET\ESET Smart Security\eeclnt.exe
c:\program files\ESET\ESET Smart Security\egui.exe
c:\program files\ESET\ESET Smart Security\eguiAmon.dll
c:\program files\ESET\ESET Smart Security\eguiAmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiDmon.dll
c:\program files\ESET\ESET Smart Security\eguiDmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiEmon.dll
c:\program files\ESET\ESET Smart Security\eguiEmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiEpfw.dll
c:\program files\ESET\ESET Smart Security\eguiEpfwLang.dll
c:\program files\ESET\ESET Smart Security\eguiLang.dll
c:\program files\ESET\ESET Smart Security\eguiMailPlugins.dll
c:\program files\ESET\ESET Smart Security\eguiMailPluginsLang.dll
c:\program files\ESET\ESET Smart Security\eguiProduct.dll
c:\program files\ESET\ESET Smart Security\eguiProductRcd.dll
c:\program files\ESET\ESET Smart Security\eguiScan.dll
c:\program files\ESET\ESET Smart Security\eguiScanLang.dll
c:\program files\ESET\ESET Smart Security\eguiSmon.dll
c:\program files\ESET\ESET Smart Security\eguiSmonLang.dll
c:\program files\ESET\ESET Smart Security\eguiUpdate.dll
c:\program files\ESET\ESET Smart Security\eguiUpdateLang.dll
c:\program files\ESET\ESET Smart Security\EHttpSrv.exe
c:\program files\ESET\ESET Smart Security\ekrn.exe
c:\program files\ESET\ESET Smart Security\ekrnAmon.dll
c:\program files\ESET\ESET Smart Security\ekrnDmon.dll
c:\program files\ESET\ESET Smart Security\ekrnDmonLang.dll
c:\program files\ESET\ESET Smart Security\ekrnEmon.dll
c:\program files\ESET\ESET Smart Security\ekrnEpfw.dll
c:\program files\ESET\ESET Smart Security\ekrnEpfwLang.dll
c:\program files\ESET\ESET Smart Security\ekrnLang.dll
c:\program files\ESET\ESET Smart Security\ekrnMailPlugins.dll
c:\program files\ESET\ESET Smart Security\ekrnMailPluginsLang.dll
c:\program files\ESET\ESET Smart Security\ekrnScan.dll
c:\program files\ESET\ESET Smart Security\ekrnScanLang.dll
c:\program files\ESET\ESET Smart Security\ekrnSmon.dll
c:\program files\ESET\ESET Smart Security\ekrnSmonEngine.dll
c:\program files\ESET\ESET Smart Security\ekrnSmonLang.dll
c:\program files\ESET\ESET Smart Security\ekrnUpdate.dll
c:\program files\ESET\ESET Smart Security\ekrnUpdateLang.dll
c:\program files\ESET\ESET Smart Security\em000_32.dat
c:\program files\ESET\ESET Smart Security\em001_32.dat
c:\program files\ESET\ESET Smart Security\em002_32.dat
c:\program files\ESET\ESET Smart Security\em003_32.dat
c:\program files\ESET\ESET Smart Security\em004_32.dat
c:\program files\ESET\ESET Smart Security\em005_32.dat
c:\program files\ESET\ESET Smart Security\em006_32.dat
c:\program files\ESET\ESET Smart Security\em008_32.dat
c:\program files\ESET\ESET Smart Security\em009_32.dat
c:\program files\ESET\ESET Smart Security\em010_32.dat
c:\program files\ESET\ESET Smart Security\em013_32.dat
c:\program files\ESET\ESET Smart Security\em015_32.dat
c:\program files\ESET\ESET Smart Security\eplgHooks.dll
c:\program files\ESET\ESET Smart Security\eplgOE.dll
c:\program files\ESET\ESET Smart Security\eplgOEEmon.dll
c:\program files\ESET\ESET Smart Security\eplgOELang.dll
c:\program files\ESET\ESET Smart Security\eplgOESmon.dll
c:\program files\ESET\ESET Smart Security\eplgOESmonLang.dll
c:\program files\ESET\ESET Smart Security\eplgOutlook.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookEmon.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookEmonLang.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookLang.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookSmon.dll
c:\program files\ESET\ESET Smart Security\eplgOutlookSmonLang.dll
c:\program files\ESET\ESET Smart Security\eplgTbEmon.dll
c:\program files\ESET\ESET Smart Security\eplgTbLang.dll
c:\program files\ESET\ESET Smart Security\eplgTbSmon.dll
c:\program files\ESET\ESET Smart Security\eplgTbSmonLang.dll
c:\program files\ESET\ESET Smart Security\eset.chm
c:\program files\ESET\ESET Smart Security\eula.rtf
c:\program files\ESET\ESET Smart Security\http_dll.dll
c:\program files\ESET\ESET Smart Security\mfc80.dll
c:\program files\ESET\ESET Smart Security\mfc80u.dll
c:\program files\ESET\ESET Smart Security\Microsoft.VC80.CRT.manifest
c:\program files\ESET\ESET Smart Security\Microsoft.VC80.MFC.manifest
c:\program files\ESET\ESET Smart Security\Microsoft.VC80.MFCLOC.manifest
c:\program files\ESET\ESET Smart Security\Mozilla Thunderbird\Components\eplgTb.dll
c:\program files\ESET\ESET Smart Security\Mozilla Thunderbird\chrome.manifest
c:\program files\ESET\ESET Smart Security\Mozilla Thunderbird\install.rdf
c:\program files\ESET\ESET Smart Security\msvcp80.dll
c:\program files\ESET\ESET Smart Security\msvcr80.dll
c:\program files\ESET\ESET Smart Security\PPESET.dll
c:\program files\ESET\ESET Smart Security\PPEset.inf
c:\program files\ESET\ESET Smart Security\shellExt.dll
c:\program files\ESET\ESET Smart Security\ShellExtLang.dll
c:\program files\ESET\ESET Smart Security\SysInspector.exe
c:\program files\ESET\ESET Smart Security\SysInspectorLang.dll
c:\program files\ESET\ESET Smart Security\SysRescue.exe
c:\program files\ESET\ESET Smart Security\SysRescueLang.dll
c:\program files\ESET\ESET Smart Security\updater.dll
c:\programdata\KGyGaAvL.sys
c:\windows\85EBB28365AF4C539EBE7C0A232762F7.TMP
c:\windows\85EBB28365AF4C539EBE7C0A232762F7.TMP\WiseCustomCalla.dll
c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP
c:\windows\8A809006C25A4A3A9DAB94659BCDB107.TMP\WiseCustomCalla.dll
c:\windows\system32\DRIVERS\eamonm.sys
c:\windows\system32\DRIVERS\ehdrv.sys
c:\windows\system32\DRIVERS\epfwwfp.sys
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ALSYSIO
-------\Legacy_EAGLEXNT
-------\Legacy_EAMONM
-------\Legacy_EHDRV
-------\Legacy_EPFWWFP
-------\Service_ALSysIO
-------\Service_EagleXNt
-------\Service_eamonm
-------\Service_ehdrv
-------\Service_ekrn
-------\Service_epfwwfp
-------\Service_EhttpSrv
-------\Service_EhttpSrv
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-04-22 do 2011-05-22 )))))))))))))))))))))))))))))))
.
.
2011-05-22 08:35 . 2011-05-22 08:35 -------- d-----w- c:\users\Marie\AppData\Local\temp
2011-05-22 08:35 . 2011-05-22 08:35 -------- d-----w- c:\users\Luděk\AppData\Local\temp
2011-05-22 08:35 . 2011-05-22 08:35 -------- d-----w- c:\users\Katka\AppData\Local\temp
2011-05-22 08:35 . 2011-05-22 08:35 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-05-21 15:24 . 2011-05-21 15:24 -------- d-sh--w- c:\programdata\DSS
2011-05-21 15:22 . 2011-05-21 15:22 -------- d-----w- c:\users\PC\AppData\Roaming\Lionhead Studios
2011-05-21 12:10 . 2011-05-21 12:10 -------- d-----w- c:\users\PC\AppData\Roaming\DisneyInteractiveStudios
2011-05-21 08:05 . 2011-05-21 08:05 -------- dc----w- c:\program files\Microsoft Games for Windows - LIVE
2011-05-20 11:52 . 2011-05-20 11:52 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-05-19 13:41 . 2011-05-19 13:43 -------- d-----w- c:\users\PC\AppData\Roaming\Aegisub
2011-05-18 17:10 . 2011-05-18 17:10 -------- d-----w- c:\users\PC\AppData\Roaming\mkvtoolnix
2011-05-18 15:25 . 2011-05-18 15:25 -------- d-----w- c:\programdata\xml_param
2011-05-18 15:23 . 2010-11-19 16:02 892928 ----a-w- c:\windows\system32\iconv.dll
2011-05-18 15:23 . 2010-11-19 16:02 675840 ----a-w- c:\windows\system32\ac3filter.ax
2011-05-13 19:42 . 2011-05-13 19:43 -------- d-----w- c:\users\PC\AppData\Roaming\SPORE
2011-05-13 12:01 . 2011-04-11 07:04 7071056 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{1BC951AB-AB5D-4445-AEB2-E8F9BEACDDD1}\mpengine.dll
2011-05-12 13:45 . 2009-08-19 21:50 22872 ----a-r- c:\windows\system32\AdobePDFUI.dll
2011-05-11 16:50 . 2009-08-19 21:50 46928 ----a-w- c:\windows\system32\AdobePDF.dll
2011-05-11 12:54 . 2011-03-25 02:58 258560 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-05-11 12:54 . 2011-03-25 02:58 284672 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-05-11 12:54 . 2011-03-25 02:57 43008 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-11 12:54 . 2011-03-25 02:57 20480 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-05-11 12:54 . 2011-03-25 02:57 5888 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-05-11 12:54 . 2011-03-25 02:58 75776 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-05-11 12:54 . 2011-04-09 06:02 3967872 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-05-11 12:54 . 2011-04-09 06:02 3912576 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 12:53 . 2011-04-09 05:56 123904 ----a-w- c:\windows\system32\poqexec.exe
2011-05-10 15:21 . 2011-05-10 15:21 -------- dc----w- c:\program files\EA
2011-05-10 15:06 . 2011-05-10 15:21 -------- dc----w- C:\Program FilesEABulletstorm
2011-05-10 14:34 . 2011-05-10 14:34 -------- dc----w- c:\program files\NVIDIA Corporation
2011-05-10 12:16 . 2011-05-10 12:16 -------- d-----w- c:\users\PC\AppData\Roaming\Ace
2011-05-08 14:44 . 2011-05-08 14:44 -------- d-----w- c:\users\PC\AppData\Roaming\Codemasters
2011-05-08 11:14 . 2011-05-08 14:35 -------- dc----w- c:\program files\Microsoft
2011-05-08 09:01 . 2011-05-08 09:01 -------- d-----w- c:\users\PC\AppData\Local\Google
2011-05-08 09:01 . 2011-05-08 09:01 -------- dc----w- c:\program files\Google
2011-04-27 16:52 . 2011-04-27 16:52 -------- d-----w- c:\program files\Common Files\Java
2011-04-24 19:50 . 2011-04-24 19:50 -------- d-----w- c:\users\PC\AppData\Roaming\AVS4YOU
2011-04-24 19:49 . 2011-05-19 17:21 -------- dc----w- c:\program files\AVS4YOU
2011-04-24 19:49 . 2011-04-24 19:52 -------- d-----w- c:\program files\Common Files\AVSMedia
2011-04-24 19:49 . 2010-09-14 15:38 1700352 ----a-w- c:\windows\system32\GdiPlus.dll
2011-04-24 19:49 . 2011-04-24 19:50 -------- d-----w- c:\programdata\AVS4YOU
2011-04-24 19:49 . 2010-09-14 15:38 24576 ----a-w- c:\windows\system32\msxml3a.dll
2011-04-24 19:33 . 2011-04-24 19:33 -------- d-----w- c:\users\PC\AppData\Local\SKIDROW
2011-04-24 19:08 . 2007-04-12 12:19 129024 ----a-w- c:\windows\system32\AVERM.dll
2011-04-24 19:08 . 2006-09-26 11:57 28672 ----a-w- c:\windows\system32\AVEQT.dll
2011-04-24 19:08 . 2004-01-11 06:02 258048 ----a-w- c:\windows\system32\GplMpgDec.ax
2011-04-24 19:08 . 2002-10-07 00:42 237568 ----a-w- c:\windows\system32\OggDS.dll
2011-04-24 19:08 . 2002-10-05 05:04 921600 ----a-w- c:\windows\system32\vorbisenc.dll
2011-04-24 19:08 . 2002-10-05 05:04 188416 ----a-w- c:\windows\system32\vorbis.dll
2011-04-24 19:08 . 2002-10-05 05:04 45056 ----a-w- c:\windows\system32\ogg.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-04-27 16:51 . 2010-05-25 04:29 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-04-27 16:48 . 2010-05-22 20:38 15600 ----a-w- c:\windows\gdrv.sys
2011-04-15 16:52 . 2011-04-15 16:52 86528 ----a-w- c:\windows\system32\iesysprep.dll
2011-04-15 16:52 . 2011-04-15 16:52 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-04-15 16:52 . 2011-04-15 16:52 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-04-15 16:52 . 2011-04-15 16:52 74752 ----a-w- c:\windows\system32\iesetup.dll
2011-04-15 16:52 . 2011-04-15 16:52 63488 ----a-w- c:\windows\system32\tdc.ocx
2011-04-15 16:52 . 2011-04-15 16:52 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-04-15 16:52 . 2011-04-15 16:52 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-04-15 16:52 . 2011-04-15 16:52 367104 ----a-w- c:\windows\system32\html.iec
2011-04-15 16:52 . 2011-04-15 16:52 35840 ----a-w- c:\windows\system32\imgutil.dll
2011-04-15 16:52 . 2011-04-15 16:52 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-04-15 16:52 . 2011-04-15 16:52 23552 ----a-w- c:\windows\system32\licmgr10.dll
2011-04-15 16:52 . 2011-04-15 16:52 1797632 ----a-w- c:\windows\system32\jscript9.dll
2011-04-15 16:52 . 2011-04-15 16:52 161792 ----a-w- c:\windows\system32\msls31.dll
2011-04-15 16:52 . 2011-04-15 16:52 152064 ----a-w- c:\windows\system32\wextract.exe
2011-04-15 16:52 . 2011-04-15 16:52 150528 ----a-w- c:\windows\system32\iexpress.exe
2011-04-15 16:52 . 2011-04-15 16:52 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2011-04-15 16:52 . 2011-04-15 16:52 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-04-15 16:52 . 2011-04-15 16:52 11776 ----a-w- c:\windows\system32\mshta.exe
2011-04-15 16:52 . 2011-04-15 16:52 1126912 ----a-w- c:\windows\system32\wininet.dll
2011-04-15 16:52 . 2011-04-15 16:52 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-04-15 16:52 . 2011-04-15 16:52 101888 ----a-w- c:\windows\system32\admparse.dll
2011-04-14 18:39 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2011-04-09 17:16 . 2011-04-09 17:17 720896 ----a-w- c:\windows\iun6002.exe
2011-04-09 16:55 . 2011-04-09 16:55 15453336 ----a-w- c:\windows\system32\xlive.dll
2011-04-09 16:55 . 2011-04-09 16:55 13642904 ----a-w- c:\windows\system32\xlivefnt.dll
2011-03-31 15:53 . 2009-08-18 10:30 564632 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\wlidui.dll
2011-03-31 15:53 . 2009-08-18 10:24 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-03-11 05:33 . 2011-04-13 16:56 1137664 ----a-w- c:\windows\system32\mfc42.dll
2011-03-11 05:33 . 2011-04-13 16:56 1164288 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-08 05:28 . 2011-04-13 16:55 741376 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-05 12:28 . 2011-03-05 12:28 455905 ----a-w- c:\windows\Natura Sound Therapy Uninstaller.exe
2011-03-03 13:18 . 2011-03-03 13:15 15823872 ----a-w- c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2011-03-03 13:18 . 2011-03-03 13:15 786492 ----a-w- c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2011-03-03 13:18 . 2011-03-03 13:15 107008 ----a-w- c:\users\PC\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2011-03-03 05:38 . 2011-04-13 16:56 132608 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-03-03 05:36 . 2011-04-13 16:56 28672 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-03-03 03:42 . 2011-04-13 16:56 2333184 ----a-w- c:\windows\system32\win32k.sys
2011-02-24 05:38 . 2011-04-15 16:41 288256 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-02-23 04:48 . 2011-04-13 16:56 311808 ----a-w- c:\windows\system32\drivers\srv.sys
2011-02-23 04:48 . 2011-04-13 16:56 310272 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-02-23 04:47 . 2011-04-13 16:56 114176 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-02-23 04:47 . 2011-04-13 16:55 223232 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2011-02-23 04:47 . 2011-04-13 16:55 96768 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-02-23 04:47 . 2011-04-13 16:55 123904 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-02-23 04:47 . 2011-04-13 16:55 69632 ----a-w- c:\windows\system32\drivers\bowser.sys
.
.
------- Sigcheck -------
.
[-] 2010-11-20 . 8626F0C30D4E3564FFDD25C90F4426F1 . 811520 . . [6.1.7601.17514] . . c:\windows\System32\user32.dll
[7] 2010-11-20 . F1DD3ACAEE5E6B4BBC69BC6DF75CEF66 . 811520 . . [6.1.7601.17514] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7601.17514_none_cf3fd62ccb9e983d\user32.dll
[7] 2009-07-14 . 34B7E222E81FAFA885F0C5F2CFA56861 . 811520 . . [6.1.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-user32_31bf3856ad364e35_6.1.7600.16385_none_cd0ec264ceb014a3\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="d:\programy\utorrent\uTorrent.exe" [2010-12-11 394616]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
"RocketDock"="d:\programy\RocketDock\RocketDock.exe" [2007-09-02 495616]
"Seznam Postak"="c:\users\PC\AppData\Local\Seznam.cz\postak.exe" [2010-10-06 488728]
"OfficeSyncProcess"="c:\program files\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 718208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EEventManager"="c:\progra~1\EPSONS~1\EVENTM~1\EEventManager.exe" [2008-12-04 665424]
"SQ931STI"="c:\windows\SQ931STI.EXE" [2007-01-24 151552]
"Monitor"="c:\windows\PixArt\PAC7311\Monitor.exe" [2006-11-03 319488]
"ATICustomerCare"="c:\program files\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"amd_dc_opt"="c:\program files\AMD\Dual-Core Optimizer\amd_dc_opt.exe" [2008-07-22 77824]
"UnlockerAssistant"="d:\programy\Unlocker\UnlockerAssistant.exe" [2010-07-04 17408]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2011-01-04 336384]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 91520]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2010-09-22 640440]
.
c:\users\Marie\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Věýezy obrazovky a spuçtŘnˇ aplikace OneNote 2007.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-5-10 800032]
Logitech SetPoint.lnk - c:\program files\Logitech\SetPoint\SetPoint.exe [2010-6-16 813584]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2009-07-20 10:28 72208 ----a-w- c:\program files\Common Files\Logishrd\Bluetooth\LBTWLgn.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\fsproflt]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
R2 AODService;AODService;c:\program files\AMD\OverDrive\AODAssist.exe [2010-04-23 136616]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\appliand.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [2010-05-28 45736]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-05-28 29472]
R3 CFcatchme;CFcatchme;c:\users\PC\AppData\Local\Temp\CFcatchme.sys [x]
R3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;d:\hry\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
R3 ggflt;SEMC USB Flash Driver Filter;c:\windows\system32\DRIVERS\ggflt.sys [2010-12-29 13224]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
R3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2007-11-06 34064]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2010-04-19 189784]
R3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-02-10 150528]
R3 SQ931;USB 2.0 Video Camera;c:\windows\system32\Drivers\Capt931a.sys [2007-03-27 519040]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;WatAdminSvc;c:\windows\system32\Wat\WatAdminSvc.exe [2010-05-23 1343400]
S0 FSProFilter;FSPro File Filter;c:\windows\System32\Drivers\FSPFltd.sys [2008-06-05 43792]
S0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\System32\drivers\sfdrv01a.sys [2009-02-03 63096]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-05-29 691696]
S1 archlp;archlp;c:\windows\system32\drivers\archlp.sys [2010-01-13 89728]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2011-01-05 176128]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2011-01-04 284672]
S2 AMD Reservation Manager;AMD Reservation Manager;c:\program files\ATI Technologies\ATI.ACE\Reservation Manager\AMD Reservation Manager.exe [2010-06-17 140224]
S2 fsproflt;FSPro Filter Service;c:\windows\system32\fsproflt.exe [2009-11-30 136192]
S2 NAUpdate;Aktualizace Nero;c:\program files\Nero\Update\NASvc.exe [2010-02-18 462632]
S2 TeamViewer6;TeamViewer 6;c:\program files\TeamViewer\Version6\TeamViewer_Service.exe [2011-01-27 2253688]
S3 amdiox86;AMD IO Driver;c:\windows\system32\DRIVERS\amdiox86.sys [2010-02-18 37944]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2011-01-05 6789120]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2011-01-05 235520]
S3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2010-11-17 101392]
S3 PAC7311;VGA SoC PC-Camera;c:\windows\system32\DRIVERS\PA707UCM.SYS [2006-11-08 530304]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-01-21 328808]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - ALSYSIO
.
.
------- Doplňkový sken -------
.
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Prevést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Převést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Převést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Připojit cíl vazby k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Připojit k existujícímu PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: {{73C6DCFB-B606-47F3-BDFA-9A4FBF931E37} - c:\program files\ICQ7.4\ICQ.exe
IE: {{0F7195C2-6713-4d93-A1BC-DA5FA33F0A65} - {E601996F-E400-41CA-804B-CD6373A7EEE2} -
FF - ProfilePath - c:\users\PC\AppData\Roaming\Mozilla\Firefox\Profiles\hwjp346a.default\
FF - prefs.js: browser.startup.homepage - google.cz
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1003538935-3052354813-57187859-1000\Software\SecuROM\License information*]
"datasecu"=hex:25,41,c8,d7,83,a7,9a,cb,d2,e5,3d,23,5c,5a,c7,f3,19,a2,20,ad,5a,
c7,ff,54,5c,7f,67,36,d7,70,32,a1,81,1e,3d,6a,d7,8f,7d,6b,73,f5,94,46,4b,2f,\
"rkeysecu"=hex:4a,18,4c,4d,1f,18,14,d9,13,b9,f6,1e,bf,84,69,89
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'Explorer.exe'(3648)
d:\programy\RocketDock\RocketDock.dll
c:\program files\Logitech\SetPoint\GameHook.dll
c:\program files\Logitech\SetPoint\lgscroll.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\WIDCOMM\Bluetooth Software\btwdins.exe
c:\program files\Common Files\InterVideo\DeviceService\DevSvc.exe
c:\program files\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\system32\taskhost.exe
c:\program files\Core Temp\Core Temp.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\conhost.exe
c:\program files\Epson Software\Event Manager\EEventManager.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\Opera\opera.exe
c:\windows\system32\AUDIODG.EXE
.
**************************************************************************
.
Celkový čas: 2011-05-22 10:45:50 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-05-22 08:45
ComboFix2.txt 2011-05-21 13:00
.
Před spuštěním: Volných bajtů: 18 260 799 488
Po spuštění: Volných bajtů: 18 135 220 224
.
- - End Of File - - 4297547F4E456E7FA782A39DCFB09789

ČOVEČE ALE PŘÍDE MI TO JAKO ŠÍLENOST ,,,, A CO DÁL ?? ,,,,

odinstalace eset smart security v 4 Vyřešeno

odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Re: odinstalace eset smart security v 4

Kdo je online