prosim o kontrolu logu Vyřešeno

[assuuss]

Zdravim
Mám nový notebook ( http://www.alza.cz/asus-k52je-ex172v-d192212.htm ) který se po startu treba jen mozilly ( ne vždy ) sekne na 5 min a nejde nic delat, ale většinou se sekne u wowka a to třeba 4x než to beží plynule s 50 fps.Byl bych rád kdyby jste mi pomohli :))

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:49:53, on 31.5.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16766)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe
C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMTray.exe
C:\Windows\AsScrPro.exe
C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe
C:\Program Files (x86)\Skype\Plugin Manager\skypePM.exe
C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
C:\Program Files\AVAST Software\Avast\AvastUI.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll
O2 - BHO: Partner BHO Class - {83FF80F4-8C74-4b80-B5BA-C8DDD434E5C4} - C:\ProgramData\Partner\Partner.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Windows Live Toolbar Helper - {E15A8DC0-8516-42A1-81EA-DC94EC1ACF10} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: &Windows Live Toolbar - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files (x86)\Windows Live\Toolbar\wltcore.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [UpdateLBPShortCut] "C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\LabelPrint" UpdateWithCreateOnce "Software\CyberLink\LabelPrint\2.5"
O4 - HKLM\..\Run: [UpdateP2GoShortCut] "C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\CyberLink\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\6.0"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [ATKOSD2] C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe
O4 - HKLM\..\Run: [ATKMEDIA] C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
O4 - HKLM\..\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe
O4 - HKLM\..\Run: [Wireless Console 3] C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Advanced SystemCare 4] "C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: FancyStart daemon.lnk = ?
O4 - Global Startup: SRS Premium Sound.lnk = ?
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - D:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - D:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ADSM Service (ADSMService) - ASUSTek Computer Inc. - C:\Program Files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCService.exe
O23 - Service: AFBAgent - Unknown owner - C:\Windows\system32\FBAgent.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: ASLDR Service (ASLDRService) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
O23 - Service: ATKGFNEX Service (ATKGFNEXSrv) - ASUS - C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Partner Service - Google Inc. - C:\ProgramData\Partner\Partner.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: Trend Micro Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management & Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 11366 bytes

[Reklama]

[Žbeky]

Odinstaluj:
Google Toolbar
DAEMON Tools Toolbar

Fixni:

Kód: Vybrat vše

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://asus.msn.com
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = my.daemon-search.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.2.4204.1700\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files (x86)\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 4] "C:\Program Files (x86)\IObit\Advanced SystemCare 4\ASCTray.exe"

Stáhni si ATF Cleaner
Poklepej na ATF Cleaner.exe, klikni na select all found, poté:
-Když používáš Firefox (Mozzila), klikni na Firefox nahoře a vyber: Select All, poté klikni na Empty Selected.
-Když používáš Operu, klikni nahoře na Operu a vyber: Select All, poté klikni na Empty Selected.
Po vyčištění klikni na Exit k zavření programu.
ATF-Cleaner je jednoduchý nástroj na odstranění historie z webového prohlížeče. Program dokáže odstranit cache, cookies, historii a další stopy po surfování na Internetu. Mezi podporované prohlížeče patří Internet Explorer, Firefox a Opera. Aplikace navíc umí odstranit dočasné soubory Windows, vysypat koš atd.

Stáhni si Malwarebytes' Anti-Malware
Nainstaluj a spusť ho
- na konci instalace se ujisti že máš zvoleny/zatrhnuty obě možnosti:
Update Malwarebytes' Anti-Malware (Aktualizace Malwarebytes' Anti-Malware) a Launch Malwarebytes' Anti-Malware (Spustit aplikaci Malwarebytes' Anti-Malware), pokud jo tak klikni na tlačítko Finish
- pokud bude nalezena aktualizace, tak se stáhne a nainstaluje
- program se po té spustí a nech vybranou možnost Perform Quick Scan (Provést rychlý sken) a klikni na tlačítko Scan (Skenovat)
- po proběhnutí programu se ti objeví hláška tak klikni na OK a pak na tlačítko Show Results
- pak zvol možnost Save Logfile a ulož si log na plochu
- po té klikni na tlačítko Exit, objeví se ti hláška tak zvol Ano
(zatím nic nemaž!).
Vlož sem pak obsah toho logu.

[assuuss]

Malwarebytes' Anti-Malware 1.51.0.1200
www.malwarebytes.org

Verze databáze: 6741

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

1.6.2011 7:24:56
mbam-log-2011-06-01 (07-24-56).txt

Typ: Rychlá kontrola
Kontrolované objekty: 160859
Uplynulý čas: 5 minut, 7 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[Žbeky]

Vypni rezidentní štít antiviru a antispywaru
Stáhni si ComboFix (by sUBs)
a ulož si ho na plochu.
Ukonči všechna aktivní okna a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah

[assuuss]

ComboFix 11-05-31.02 - Marek 01.06.2011 16:47:45.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.3949.2476 [GMT 2:00]
Spuštěný z: c:\users\Marek\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
AV: Trend Micro Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Trend Micro Internet Security *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\service
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-01 do 2011-06-01 )))))))))))))))))))))))))))))))
.
.
2011-06-01 14:52 . 2011-06-01 14:52 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-01 05:17 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\programdata\Malwarebytes
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-06-01 05:17 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-31 16:48 . 2011-05-31 16:48 -------- d-----w- c:\program files (x86)\Trend Micro
2011-05-25 13:06 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-23 12:27 . 2011-02-23 14:50 18232 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2011-05-23 12:27 . 2011-02-23 14:50 32136 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2011-05-23 12:24 . 2011-05-26 05:01 -------- d-----w- c:\programdata\IObit
2011-05-23 12:24 . 2011-05-23 12:27 -------- d-----w- c:\program files (x86)\IObit
2011-05-21 10:25 . 2011-05-21 10:43 -------- d-----w- c:\program files\City Life Super Deluxe
2011-05-19 04:40 . 2011-05-19 04:40 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-19 04:36 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-05-19 04:36 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-05-18 05:19 . 2011-05-18 05:19 -------- d-----w- c:\program files (x86)\WTFast
2011-05-17 17:47 . 2011-05-30 16:46 45056 ----a-w- c:\windows\system32\acovcnt.exe
2011-05-17 13:27 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-05-17 13:27 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-05-17 13:27 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-05-17 13:27 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-05-17 13:27 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-05-12 17:24 . 2011-05-12 17:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2011-05-11 18:36 . 2011-05-11 18:36 34064 ----a-w- c:\windows\SysWow64\lhacm.acm
2011-05-11 18:36 . 2011-05-11 18:37 -------- d-----w- c:\program files (x86)\Teamspeak2_RC2
2011-05-11 17:18 . 2011-04-09 06:45 5509504 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 17:18 . 2011-04-09 06:13 3957632 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-05-11 17:18 . 2011-04-09 06:13 3901824 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-05-09 18:43 . 2011-05-12 18:23 -------- d-s---w- c:\program files (x86)\HLSW
2011-05-07 08:54 . 2011-05-14 13:12 -------- d-----w- c:\program files (x86)\Microsoft Works
2011-05-07 08:51 . 2011-05-15 08:03 -------- d-----w- c:\programdata\Microsoft Help
2011-05-06 16:46 . 2011-05-06 16:46 -------- d-----w- c:\programdata\Conexant
2011-05-06 14:53 . 2011-05-13 19:39 271200 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-05-06 14:49 . 2011-05-21 20:23 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-05-06 14:49 . 2011-05-13 19:39 271200 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2011-05-06 14:49 . 2011-05-12 18:28 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-05-06 14:24 . 2011-05-06 14:24 -------- d-----w- c:\program files (x86)\EA Games
2011-05-06 12:20 . 2011-05-06 12:20 -------- d-----w- c:\program files (x86)\NirSoft
2011-05-05 14:20 . 2011-05-05 14:20 -------- d-----w- c:\programdata\Blizzard Entertainment
2011-05-05 13:58 . 2011-05-05 13:58 -------- d-----w- c:\windows\SysWow64\Wat
2011-05-05 13:58 . 2011-05-05 13:58 -------- d-----w- c:\windows\system32\Wat
2011-05-05 00:13 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-05-05 00:13 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-05-04 22:00 . 2009-11-25 10:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-05-04 22:00 . 2009-11-25 10:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-05-04 22:00 . 2009-11-25 10:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-05-04 22:00 . 2009-11-25 10:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-05-04 22:00 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-05-04 22:00 . 2009-11-25 10:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-05-04 22:00 . 2009-11-25 10:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-05-04 22:00 . 2009-11-25 10:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-05-04 22:00 . 2009-11-25 10:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-05-04 22:00 . 2009-11-25 10:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-05-04 21:55 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-05-04 19:51 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-05-04 19:51 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-05-04 08:12 . 2010-07-30 17:30 309840 ----a-w- c:\windows\system32\drivers\tmxpflt.sys
2011-05-04 08:12 . 2010-07-30 17:30 42576 ----a-w- c:\windows\system32\drivers\tmpreflt.sys
2011-05-04 08:12 . 2010-07-30 17:24 1988176 ----a-w- c:\windows\system32\drivers\vsapint.sys
2011-05-04 05:45 . 2010-08-31 04:32 954752 ----a-w- c:\windows\SysWow64\mfc40.dll
2011-05-04 05:45 . 2010-08-31 04:32 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll
2011-05-04 05:44 . 2010-10-27 05:06 2048 ----a-w- c:\windows\system32\tzres.dll
2011-05-04 05:44 . 2010-10-27 04:32 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-05-04 05:43 . 2010-12-23 06:07 961024 ----a-w- c:\windows\system32\CPFilters.dll
2011-05-04 05:43 . 2010-12-23 06:07 723968 ----a-w- c:\windows\system32\EncDec.dll
2011-05-04 05:43 . 2010-12-23 05:28 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll
2011-05-04 05:43 . 2010-12-23 06:07 1118720 ----a-w- c:\windows\system32\sbe.dll
2011-05-04 05:43 . 2010-12-23 06:02 259072 ----a-w- c:\windows\system32\mpg2splt.ax
2011-05-04 05:43 . 2010-12-23 05:28 850432 ----a-w- c:\windows\SysWow64\sbe.dll
2011-05-04 05:43 . 2010-12-23 05:28 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-05-04 05:43 . 2010-12-23 05:24 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2011-05-04 05:42 . 2010-11-02 05:16 1114624 ----a-w- c:\windows\system32\schedsvc.dll
2011-05-04 05:42 . 2010-11-02 05:18 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-05-04 05:42 . 2010-11-02 05:17 473600 ----a-w- c:\windows\system32\taskcomp.dll
2011-05-04 05:42 . 2010-11-02 05:17 1169408 ----a-w- c:\windows\system32\taskschd.dll
2011-05-04 05:42 . 2010-11-02 05:10 464384 ----a-w- c:\windows\system32\taskeng.exe
2011-05-04 05:42 . 2010-11-02 05:10 285696 ----a-w- c:\windows\system32\schtasks.exe
2011-05-04 05:42 . 2010-11-02 04:40 496128 ----a-w- c:\windows\SysWow64\taskschd.dll
2011-05-04 05:42 . 2010-11-02 04:40 305152 ----a-w- c:\windows\SysWow64\taskcomp.dll
2011-05-04 05:42 . 2010-11-02 04:34 192000 ----a-w- c:\windows\SysWow64\taskeng.exe
2011-05-04 05:42 . 2010-11-02 04:34 179712 ----a-w- c:\windows\SysWow64\schtasks.exe
2011-05-04 05:37 . 2011-03-11 06:23 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-05-04 05:37 . 2011-03-11 06:23 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-05-04 05:37 . 2011-03-11 06:23 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-05-04 05:37 . 2011-03-11 06:22 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-05-04 05:37 . 2011-03-11 06:18 2566144 ----a-w- c:\windows\system32\esent.dll
2011-05-04 05:37 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-05-04 05:37 . 2011-03-11 06:23 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-05-04 05:37 . 2011-03-11 06:23 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-05-04 05:37 . 2011-03-11 06:22 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-05-04 05:37 . 2011-03-11 06:15 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-05-04 05:37 . 2011-03-11 05:37 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2011-05-04 05:36 . 2010-12-18 06:11 714752 ----a-w- c:\windows\system32\kerberos.dll
2011-05-04 05:36 . 2010-12-18 05:29 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2011-05-04 05:36 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll
2011-05-04 05:36 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-05-04 05:36 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-05-04 05:36 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-05-04 05:36 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-05-04 05:36 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2011-05-04 05:36 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2011-05-04 05:36 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2011-05-04 05:36 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2011-05-04 05:36 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2011-05-04 05:33 . 2011-02-26 06:23 2870272 ----a-w- c:\windows\explorer.exe
2011-05-04 05:33 . 2011-02-26 05:33 2614784 ----a-w- c:\windows\SysWow64\explorer.exe
2011-05-04 05:32 . 2010-08-26 05:27 148992 ----a-w- c:\windows\system32\t2embed.dll
2011-05-04 05:32 . 2010-08-26 04:39 109056 ----a-w- c:\windows\SysWow64\t2embed.dll
2011-05-04 05:31 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-05-04 05:31 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2011-05-04 05:31 . 2010-06-29 05:39 2085376 ----a-w- c:\windows\system32\ole32.dll
2011-05-04 05:31 . 2010-06-29 05:35 4582912 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe
2011-05-04 05:31 . 2010-06-29 04:57 4247040 ----a-w- c:\program files (x86)\Windows NT\Accessories\wordpad.exe
2011-05-04 05:31 . 2010-06-29 05:02 1413632 ----a-w- c:\windows\SysWow64\ole32.dll
2011-05-04 05:31 . 2010-05-05 07:37 483840 ----a-w- c:\windows\system32\StructuredQuery.dll
2011-05-04 05:31 . 2010-05-05 06:46 363520 ----a-w- c:\windows\SysWow64\StructuredQuery.dll
2011-05-04 05:30 . 2010-03-04 07:57 2080256 ----a-w- c:\program files\Windows Mail\msoe.dll
2011-05-04 05:30 . 2010-03-04 07:33 1619968 ----a-w- c:\program files (x86)\Windows Mail\msoe.dll
2011-05-04 05:30 . 2010-08-04 07:07 552960 ----a-w- c:\windows\system32\msdri.dll
2011-05-04 05:30 . 2010-08-04 07:05 288256 ----a-w- c:\windows\system32\MSNP.ax
2011-05-04 05:30 . 2010-08-04 06:15 204288 ----a-w- c:\windows\SysWow64\MSNP.ax
2011-05-04 05:28 . 2010-06-14 06:37 1896832 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-05-04 05:28 . 2010-08-21 06:36 340992 ----a-w- c:\windows\system32\schannel.dll
2011-05-04 05:28 . 2010-08-21 05:36 224256 ----a-w- c:\windows\SysWow64\schannel.dll
2011-05-04 05:28 . 2010-08-21 06:31 633856 ----a-w- c:\windows\system32\comctl32.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-03-04 06:17 . 2011-05-05 14:23 135168 ----a-w- c:\windows\apppatch\AppPatch64\AcXtrnal.dll
2011-03-04 06:17 . 2011-05-05 14:23 347648 ----a-w- c:\windows\apppatch\AppPatch64\AcLayers.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-04-18 15146376]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-06-25 6806144]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-05-03 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-07-02 1597440]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-04-18 3460784]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-3-12 1083680]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-9-2 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-9-2 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 135664]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-04-21 352656]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 tmpreflt;tmpreflt;c:\windows\system32\DRIVERS\tmpreflt.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 TmProxy;Trend Micro Proxy Service;c:\program files\Trend Micro\Internet Security\TmProxy.exe [2010-02-23 917768]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
.
Obsah adresáře 'Naplánované úlohy'
.
2011-05-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 01:39]
.
2011-06-01 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 01:39]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-04-18 17:25 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2010-03-16 1754448]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]
"Setwallpaper"="c:\programdata\SetWallpaper.cmd" [BU]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.0.1.1
FF - ProfilePath - c:\users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\rma6w7d4.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search
FF - prefs.js: browser.startup.homepage - www.seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10d.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\FlashUtil10d.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWow64\\Macromed\\Flash\\Flash10d.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
@Denied: (A 2) (Everyone)
@="IFlashBroker3"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-06-01 16:53:52
ComboFix-quarantined-files.txt 2011-06-01 14:53
ComboFix2.txt 2011-06-01 14:46
.
Před spuštěním: Volných bajtů: 34 372 337 664
Po spuštění: Volných bajtů: 34 317 946 880
.
- - End Of File - - 61F33026C52CE59A95BE142CDCDB624C

[Žbeky]

Máš tam trend micro security a Avast - co z toho chceš nechat?

[assuuss]

Spíš ten trend micro

[Žbeky]

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

SecCenter::
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}

Folder::
c:\program files\AVAST Software

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"avast"=-
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=-
"ConsentPromptBehaviorUser"=-
"EnableUIADesktopToggle"=-

File::
c:\windows\system32\drivers\aswMonFlt.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Driver::
aswSnx
aswSP
aswFsBlk
aswMonFlt

Firefox::
FF - ProfilePath - c:\users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\rma6w7d4.default\
FF - prefs.js: browser.search.selectedEngine - DAEMON Search

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\Elevation]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\LocalServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{19114156-8E9A-4D4E-9EE9-17A0E48D3BBB}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{1D4C8A81-B7AC-460A-8C23-98713C41D6B3}\TypeLib]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[assuuss]

ComboFix 11-05-31.02 - Marek 02.06.2011 16:03:27.3.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.3949.2669 [GMT 2:00]
Spuštěný z: c:\users\Marek\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Marek\Desktop\CFScript.txt
AV: Trend Micro Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
SP: Trend Micro Internet Security *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\windows\system32\drivers\aswMonFlt.sys"
"c:\windows\Tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\Tasks\GoogleUpdateTaskMachineUA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\AVAST Software
c:\program files\AVAST Software\Avast\1029\aswClnTg.htm
c:\program files\AVAST Software\Avast\1029\aswClnTg.txt
c:\program files\AVAST Software\Avast\1029\aswInfTg.htm
c:\program files\AVAST Software\Avast\1029\aswInfTg.txt
c:\program files\AVAST Software\Avast\1029\Avast5_1029.chm
c:\program files\AVAST Software\Avast\1029\Base.dll
c:\program files\AVAST Software\Avast\1029\Boot.dll
c:\program files\AVAST Software\Avast\1029\uiLangRes.dll
c:\program files\AVAST Software\Avast\Aavm4h.dll
c:\program files\AVAST Software\Avast\AavmRpch.dll
c:\program files\AVAST Software\Avast\AavmRpch64.dll
c:\program files\AVAST Software\Avast\AhAScr.dll
c:\program files\AVAST Software\Avast\AhResBhv.dll
c:\program files\AVAST Software\Avast\AhResJs.dll
c:\program files\AVAST Software\Avast\AhResMai.dll
c:\program files\AVAST Software\Avast\AhResMes.dll
c:\program files\AVAST Software\Avast\AhResNS.dll
c:\program files\AVAST Software\Avast\AhResP2P.dll
c:\program files\AVAST Software\Avast\AhResStd.dll
c:\program files\AVAST Software\Avast\AhResWS.dll
c:\program files\AVAST Software\Avast\ashBase.dll
c:\program files\AVAST Software\Avast\ashMaiSv.dll
c:\program files\AVAST Software\Avast\ashOutXt.dll
c:\program files\AVAST Software\Avast\ashQuick.exe
c:\program files\AVAST Software\Avast\ashServ.dll
c:\program files\AVAST Software\Avast\ashShA64.dll
c:\program files\AVAST Software\Avast\ashShell.dll
c:\program files\AVAST Software\Avast\ashTask.dll
c:\program files\AVAST Software\Avast\ashTaskEx.dll
c:\program files\AVAST Software\Avast\ashUpd.exe
c:\program files\AVAST Software\Avast\ashWebSv.dll
c:\program files\AVAST Software\Avast\ashWsFtr.dll
c:\program files\AVAST Software\Avast\aswAux.dll
c:\program files\AVAST Software\Avast\aswCmnBS.dll
c:\program files\AVAST Software\Avast\aswCmnIS.dll
c:\program files\AVAST Software\Avast\aswCmnOS.dll
c:\program files\AVAST Software\Avast\aswData.dll
c:\program files\AVAST Software\Avast\aswDld.dll
c:\program files\AVAST Software\Avast\aswEngLdr.dll
c:\program files\AVAST Software\Avast\aswChLic.exe
c:\program files\AVAST Software\Avast\aswIdle.dll
c:\program files\AVAST Software\Avast\aswLog.dll
c:\program files\AVAST Software\Avast\aswMonDS.sys
c:\program files\AVAST Software\Avast\aswMonVD.dll
c:\program files\AVAST Software\Avast\aswProperty.dll
c:\program files\AVAST Software\Avast\aswRegSvr.exe
c:\program files\AVAST Software\Avast\aswRegSvr64.exe
c:\program files\AVAST Software\Avast\aswRunDll.exe
c:\program files\AVAST Software\Avast\aswSidebar.gadget
c:\program files\AVAST Software\Avast\aswSqLt.dll
c:\program files\AVAST Software\Avast\aswUtil.dll
c:\program files\AVAST Software\Avast\aswWebRepIE.dll
c:\program files\AVAST Software\Avast\aswWebRepIE64.dll
c:\program files\AVAST Software\Avast\AvastGUIProxy.dll
c:\program files\AVAST Software\Avast\AvastGUIProxy64.dll
c:\program files\AVAST Software\Avast\avastSS.dll
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\program files\AVAST Software\Avast\AvastUI.exe
c:\program files\AVAST Software\Avast\AvSSHook.dll
c:\program files\AVAST Software\Avast\CommonRes.dll
c:\program files\AVAST Software\Avast\defs\11060101\acshort.map
c:\program files\AVAST Software\Avast\defs\11060101\algo.dll
c:\program files\AVAST Software\Avast\defs\11060101\algo64.dll
c:\program files\AVAST Software\Avast\defs\11060101\ArPot.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswAR.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswBoot.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswBoot64.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswCleanerDLL.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswCmnBS.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswCmnIS.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswCmnIS64.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswCmnOS.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswEngin.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswRawFS.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswRawFS64.dll
c:\program files\AVAST Software\Avast\defs\11060101\aswScan.dll
c:\program files\AVAST Software\Avast\defs\11060101\certs.map
c:\program files\AVAST Software\Avast\defs\11060101\db_el.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_java.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_java.map
c:\program files\AVAST Software\Avast\defs\11060101\db_js.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_js.map
c:\program files\AVAST Software\Avast\defs\11060101\db_mx4.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_mx4.map
c:\program files\AVAST Software\Avast\defs\11060101\db_mx95.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_mx95.map
c:\program files\AVAST Software\Avast\defs\11060101\db_o7.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_o7.map
c:\program files\AVAST Software\Avast\defs\11060101\db_ob.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_pe2.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_swf.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_swf.map
c:\program files\AVAST Software\Avast\defs\11060101\db_tx.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_u.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_w6.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_w6.map
c:\program files\AVAST Software\Avast\defs\11060101\db_wh.dat
c:\program files\AVAST Software\Avast\defs\11060101\db_xtn.map
c:\program files\AVAST Software\Avast\defs\11060101\def.ini
c:\program files\AVAST Software\Avast\defs\11060101\dllcc.dat
c:\program files\AVAST Software\Avast\defs\11060101\exts.dll
c:\program files\AVAST Software\Avast\defs\11060101\fwAux.dll
c:\program files\AVAST Software\Avast\defs\11060101\l_idx.map
c:\program files\AVAST Software\Avast\defs\11060101\l_nmp.map
c:\program files\AVAST Software\Avast\defs\11060101\list_d.txt
c:\program files\AVAST Software\Avast\defs\11060101\list_i.txt
c:\program files\AVAST Software\Avast\defs\11060101\lshe3.map
c:\program files\AVAST Software\Avast\defs\11060101\s_idx.map
c:\program files\AVAST Software\Avast\defs\11060101\s_nmp.map
c:\program files\AVAST Software\Avast\defs\11060101\Sf.bin
c:\program files\AVAST Software\Avast\defs\11060101\sl_idx.map
c:\program files\AVAST Software\Avast\defs\11060101\sl_nmp.map
c:\program files\AVAST Software\Avast\defs\11060101\whitelist.db
c:\program files\AVAST Software\Avast\defs\aswdefs.ini
c:\program files\AVAST Software\Avast\flash\amcharts_key.txt
c:\program files\AVAST Software\Avast\flash\amline.swf
c:\program files\AVAST Software\Avast\flash\ammap\ammap.swf
c:\program files\AVAST Software\Avast\flash\ammap\ammap_key.txt
c:\program files\AVAST Software\Avast\flash\ammap\ammap_settings_summary.xml
c:\program files\AVAST Software\Avast\flash\ammap\ammap_settings_tracert.xml
c:\program files\AVAST Software\Avast\flash\ammap\empty_map.xml
c:\program files\AVAST Software\Avast\flash\ammap\icons\arrow.swf
c:\program files\AVAST Software\Avast\flash\ammap\icons\bubble.swf
c:\program files\AVAST Software\Avast\flash\ammap\icons\cross.swf
c:\program files\AVAST Software\Avast\flash\ammap\icons\flag.swf
c:\program files\AVAST Software\Avast\flash\ammap\icons\pin.swf
c:\program files\AVAST Software\Avast\flash\ammap\icons\zoom_out.swf
c:\program files\AVAST Software\Avast\flash\ammap\maps\world.swf
c:\program files\AVAST Software\Avast\License\EULA_Avast_Free.txt
c:\program files\AVAST Software\Avast\Setup\ais_core-358.vpx
c:\program files\AVAST Software\Avast\Setup\ais_dll_cze-385.vpx
c:\program files\AVAST Software\Avast\Setup\ais_res-29d.vpx
c:\program files\AVAST Software\Avast\Setup\ais_x64-3ff.vpx
c:\program files\AVAST Software\Avast\Setup\Components.ini
c:\program files\AVAST Software\Avast\Setup\INF\Aavmker4.sys
c:\program files\AVAST Software\Avast\Setup\INF\aswFsBlk.sys
c:\program files\AVAST Software\Avast\Setup\INF\aswMon.sys
c:\program files\AVAST Software\Avast\Setup\INF\aswMon2.sys
c:\program files\AVAST Software\Avast\Setup\INF\aswMonFlt.sys
c:\program files\AVAST Software\Avast\Setup\INF\AswRdr.sys
c:\program files\AVAST Software\Avast\Setup\INF\aswSnx.sys
c:\program files\AVAST Software\Avast\Setup\INF\aswSP.sys
c:\program files\AVAST Software\Avast\Setup\INF\AswTdi.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\Aavmker4.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswBoot.exe
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswFsBlk.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswMon2.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswMonFlt.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswRdr.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswSnx.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswSP.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\aswTdi.sys
c:\program files\AVAST Software\Avast\Setup\INF\x64\netcfg_x64.exe
c:\program files\AVAST Software\Avast\Setup\jrog-a7.vpx
c:\program files\AVAST Software\Avast\Setup\jrog2-223.vpx
c:\program files\AVAST Software\Avast\Setup\part-jrog-a7.vpx
c:\program files\AVAST Software\Avast\Setup\part-jrog2-223.vpx
c:\program files\AVAST Software\Avast\Setup\part-prg_ais-443.vpx
c:\program files\AVAST Software\Avast\Setup\part-setup_ais-443.vpx
c:\program files\AVAST Software\Avast\Setup\part-vps_win32-11060201.vpx
c:\program files\AVAST Software\Avast\Setup\prod-ais.vpx
c:\program files\AVAST Software\Avast\Setup\servers.def
c:\program files\AVAST Software\Avast\Setup\servers.def.lkg
c:\program files\AVAST Software\Avast\Setup\servers.def.vpx
c:\program files\AVAST Software\Avast\Setup\setif_ais-443.vpx
c:\program files\AVAST Software\Avast\Setup\setiface.dll
c:\program files\AVAST Software\Avast\Setup\setiface.ovr
c:\program files\AVAST Software\Avast\Setup\settings.ori
c:\program files\AVAST Software\Avast\Setup\setup.ini
c:\program files\AVAST Software\Avast\Setup\setup.log
c:\program files\AVAST Software\Avast\Setup\setup.ovr
c:\program files\AVAST Software\Avast\Setup\setup_ais-443.vpx
c:\program files\AVAST Software\Avast\Setup\summary.txt
c:\program files\AVAST Software\Avast\Setup\vps_32-4d7.vpx
c:\program files\AVAST Software\Avast\Setup\vps_win32-4eb.vpx
c:\program files\AVAST Software\Avast\Setup\vps_win64-17b.vpx
c:\program files\AVAST Software\Avast\Setup\winsys-4.vpx
c:\program files\AVAST Software\Avast\sched.exe
c:\program files\AVAST Software\Avast\snxhk.dll
c:\program files\AVAST Software\Avast\snxhk64.dll
c:\program files\AVAST Software\Avast\VisthAux.exe
c:\program files\AVAST Software\Avast\WebRep\FF\content\about.xul
c:\program files\AVAST Software\Avast\WebRep\FF\content\dateFormat.js
c:\program files\AVAST Software\Avast\WebRep\FF\content\install.js
c:\program files\AVAST Software\Avast\WebRep\FF\content\log.js
c:\program files\AVAST Software\Avast\WebRep\FF\content\overlay.js
c:\program files\AVAST Software\Avast\WebRep\FF\content\overlay.xul
c:\program files\AVAST Software\Avast\WebRep\FF\content\query.js
c:\program files\AVAST Software\Avast\WebRep\FF\content\ratings.js
c:\program files\AVAST Software\Avast\WebRep\FF\content\rules.js
c:\program files\AVAST Software\Avast\WebRep\FF\defaults\preferences\pref.js
c:\program files\AVAST Software\Avast\WebRep\FF\dump.html
c:\program files\AVAST Software\Avast\WebRep\FF\chrome.manifest
c:\program files\AVAST Software\Avast\WebRep\FF\install.rdf
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ar-SA\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ar-SA\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\be-BY\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\be-BY\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\bg-BG\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\bg-BG\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ca-ES\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ca-ES\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\cs-CZ\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\cs-CZ\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\da-DK\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\da-DK\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\de-DE\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\de-DE\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\el-GR\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\el-GR\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\en-GB\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\en-GB\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\en-US\about.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\en-US\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\en-US\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\es-ES\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\es-ES\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\et-EE\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\et-EE\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\fi-FI\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\fi-FI\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\fr-FR\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\fr-FR\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\he-IL\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\he-IL\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\hr-HR\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\hr-HR\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\hu-HU\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\hu-HU\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\id-ID\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\id-ID\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\it-IT\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\it-IT\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ja-JP\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ja-JP\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ko-KR\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ko-KR\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\nb-NO\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\nb-NO\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\nl-NL\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\nl-NL\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\pl-PL\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\pl-PL\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\pt-BR\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\pt-BR\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\pt-PT\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\pt-PT\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ro-RO\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ro-RO\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ru-RU\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ru-RU\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\sk-SK\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\sk-SK\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\sl-SI\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\sl-SI\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\sv-SE\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\sv-SE\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\tr-TR\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\tr-TR\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\uk-UA\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\uk-UA\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ur-PK\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\ur-PK\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\vi-VN\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\vi-VN\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\zh-CN\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\zh-CN\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\locale\zh-TW\wrc.dtd
c:\program files\AVAST Software\Avast\WebRep\FF\locale\zh-TW\wrc.properties
c:\program files\AVAST Software\Avast\WebRep\FF\skin\background-body.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\close.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\close.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\green1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\green2.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\green3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\grey.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\check-priority.jp
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\check-priority.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\orange1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\orange2.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\orange3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\red1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\red2.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\red3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\shop-icon-big.jp
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\shop-icon-big.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\shop-icon-small.jp
c:\program files\AVAST Software\Avast\WebRep\FF\skin\icons\shop-icon-small.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\logo.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\overlay.css
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\background-body.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\background-body.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\background-header.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\background-right.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\bg-window.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\Button-1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\button-middle.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\close-hover.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\close.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corner-left-bottom.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corner-left-top.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corner-right-bottom.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corner-right-top.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corporate-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corporate-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\corporate.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\drugs-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\drugs-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\drugs.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\gambling-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\gambling-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\gambling.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green-1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green-2.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green-3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green-hover.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green1-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green1-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green1-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green2-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green2-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green2-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green3-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green3-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\green3-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey-0.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey-3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey0-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey0-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey3-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\grey3-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\horizontal-line-white.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\horizontal-line.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\illegal-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\illegal-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\illegal.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\it-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\it-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\it.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\kenny.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\limet-hover.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\limet-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\limet.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\line-dark-horizontal.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\line-light-horizontal.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\logo.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\news-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\news-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\news.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\orange-hover.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\orange-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\orange.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\pornography-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\pornography-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\pornography.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red-1-108.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red-1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red-2.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red-3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red-hover.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red1-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red1-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red1-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red2-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red2-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red2-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red3-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red3-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\red3-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\shopping-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\shopping-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\shopping.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\social-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\social-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\social.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\vertical-line.jpg
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\violence-small-disable.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\violence-small-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\violence.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\Warning.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\window-wrc.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow-1.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow-2.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow-3.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow-hover.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow-selected.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow1-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow1-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow1-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow2-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow2-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow2-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow3-16.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow3-24.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\png\yellow3-small.png
c:\program files\AVAST Software\Avast\WebRep\FF\skin\wrc ico 16x16px a 24x24px.zip
c:\program files\AVAST Software\Avast\WebRep\FF\test.html
c:\program files\AVAST Software\Avast\WebRep\Chrome\AswWebRepChrome.crx
c:\program files\AVAST Software\Avast\WebRep\Chrome\AswWebRepChrome.ver
c:\windows\system32\drivers\aswMonFlt.sys
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_ASWFSBLK
-------\Legacy_ASWMONFLT
-------\Legacy_ASWSNX
-------\Legacy_ASWSP
-------\Service_aswFsBlk
-------\Service_aswMonFlt
-------\Service_aswSnx
-------\Service_aswSP
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-02 do 2011-06-02 )))))))))))))))))))))))))))))))
.
.
2011-06-02 14:13 . 2011-06-02 14:13 -------- d-----w- c:\users\Marek\AppData\Local\Broadcom
2011-06-02 14:09 . 2011-06-02 14:09 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-02 14:01 . 2011-06-02 14:01 -------- d-----w- C:\## aswSnx private storage
2011-06-02 14:01 . 2011-06-02 14:02 -------- d-----w- C:\32788R22FWJFW
2011-06-01 14:11 . 2011-06-01 14:11 -------- d-----w- c:\users\Marek\AppData\Local\ATI
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\users\Marek\AppData\Roaming\Malwarebytes
2011-06-01 05:17 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\programdata\Malwarebytes
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-06-01 05:17 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-31 16:48 . 2011-05-31 16:48 388096 ----a-r- c:\users\Marek\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-31 16:48 . 2011-05-31 16:48 -------- d-----w- c:\program files (x86)\Trend Micro
2011-05-25 13:06 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-23 12:27 . 2011-02-23 14:50 18232 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2011-05-23 12:27 . 2011-02-23 14:50 32136 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2011-05-23 12:27 . 2011-05-23 12:27 -------- d-----w- c:\users\Marek\AppData\Roaming\IObit
2011-05-23 12:24 . 2011-05-26 05:01 -------- d-----w- c:\programdata\IObit
2011-05-23 12:24 . 2011-05-23 12:27 -------- d-----w- c:\program files (x86)\IObit
2011-05-21 10:25 . 2011-05-21 10:43 -------- d-----w- c:\program files\City Life Super Deluxe
2011-05-21 06:53 . 2011-05-21 06:53 -------- d-----w- c:\users\Marek\AppData\Roaming\GoBoingo
2011-05-19 04:40 . 2011-05-19 04:40 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-19 04:36 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-05-19 04:36 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-05-18 05:19 . 2011-05-18 05:19 -------- d-----w- c:\users\Marek\AppData\Local\WTFast
2011-05-18 05:19 . 2011-05-18 05:19 -------- d-----w- c:\program files (x86)\WTFast
2011-05-17 17:47 . 2011-05-30 16:46 45056 ----a-w- c:\windows\system32\acovcnt.exe
2011-05-17 13:27 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-05-17 13:27 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-05-17 13:27 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-05-17 13:27 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-05-17 13:27 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-05-15 13:52 . 2011-05-15 13:52 -------- d-----w- c:\users\Marek\AppData\Roaming\Leadertech
2011-05-12 18:23 . 2011-06-01 18:31 -------- d-----w- c:\users\Marek\AppData\Roaming\HLSW
2011-05-12 17:24 . 2011-05-12 17:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2011-05-11 18:37 . 2011-05-11 18:37 -------- d-----w- c:\users\Marek\AppData\Roaming\teamspeak2
2011-05-11 18:36 . 2011-05-11 18:36 34064 ----a-w- c:\windows\SysWow64\lhacm.acm
2011-05-11 18:36 . 2011-05-11 18:37 -------- d-----w- c:\program files (x86)\Teamspeak2_RC2
2011-05-11 17:18 . 2011-04-09 06:45 5509504 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 17:18 . 2011-04-09 06:13 3957632 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-05-11 17:18 . 2011-04-09 06:13 3901824 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-05-09 18:43 . 2011-05-12 18:23 -------- d-s---w- c:\program files (x86)\HLSW
2011-05-07 08:54 . 2011-05-14 13:12 -------- d-----w- c:\program files (x86)\Microsoft Works
2011-05-07 08:51 . 2011-05-07 08:51 -------- d-----w- c:\users\Marek\AppData\Local\Microsoft Help
2011-05-07 08:51 . 2011-05-15 08:03 -------- d-----w- c:\programdata\Microsoft Help
2011-05-06 16:46 . 2011-05-06 16:46 -------- d-----w- c:\programdata\Conexant
2011-05-06 14:53 . 2011-06-01 15:05 271200 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-05-06 14:52 . 2011-05-07 09:17 -------- d-----w- c:\users\Marek\AppData\Local\PunkBuster
2011-05-06 14:49 . 2011-06-01 15:05 271200 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-05-06 14:49 . 2011-06-01 15:04 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2011-05-06 14:49 . 2011-05-12 18:28 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-05-06 14:24 . 2011-05-06 14:24 -------- d-----w- c:\program files (x86)\EA Games
2011-05-06 12:20 . 2011-05-06 12:20 -------- d-----w- c:\program files (x86)\NirSoft
2011-05-05 14:20 . 2011-05-05 14:20 -------- d-----w- c:\programdata\Blizzard Entertainment
2011-05-05 14:12 . 2011-05-07 08:54 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-05-05 13:58 . 2011-05-05 13:58 -------- d-----w- c:\windows\SysWow64\Wat
2011-05-05 13:58 . 2011-05-05 13:58 -------- d-----w- c:\windows\system32\Wat
2011-05-05 00:13 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-05-05 00:13 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-05-04 22:00 . 2009-11-25 10:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-05-04 22:00 . 2009-11-25 10:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-05-04 22:00 . 2009-11-25 10:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-05-04 22:00 . 2009-11-25 10:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-05-04 22:00 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-05-04 22:00 . 2009-11-25 10:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-05-04 22:00 . 2009-11-25 10:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-05-04 22:00 . 2009-11-25 10:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-05-04 22:00 . 2009-11-25 10:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-05-04 22:00 . 2009-11-25 10:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-05-04 21:55 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-05-04 19:51 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-05-04 19:51 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-05-04 08:12 . 2010-07-30 17:30 309840 ----a-w- c:\windows\system32\drivers\tmxpflt.sys
2011-05-04 08:12 . 2010-07-30 17:30 42576 ----a-w- c:\windows\system32\drivers\tmpreflt.sys
2011-05-04 08:12 . 2010-07-30 17:24 1988176 ----a-w- c:\windows\system32\drivers\vsapint.sys
2011-05-04 05:45 . 2010-08-31 04:32 954752 ----a-w- c:\windows\SysWow64\mfc40.dll
2011-05-04 05:45 . 2010-08-31 04:32 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll
2011-05-04 05:44 . 2010-10-27 05:06 2048 ----a-w- c:\windows\system32\tzres.dll
2011-05-04 05:44 . 2010-10-27 04:32 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-05-04 05:43 . 2010-12-23 06:07 961024 ----a-w- c:\windows\system32\CPFilters.dll
2011-05-04 05:43 . 2010-12-23 06:07 723968 ----a-w- c:\windows\system32\EncDec.dll
2011-05-04 05:43 . 2010-12-23 05:28 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll
2011-05-04 05:43 . 2010-12-23 06:07 1118720 ----a-w- c:\windows\system32\sbe.dll
2011-05-04 05:43 . 2010-12-23 06:02 259072 ----a-w- c:\windows\system32\mpg2splt.ax
2011-05-04 05:43 . 2010-12-23 05:28 850432 ----a-w- c:\windows\SysWow64\sbe.dll
2011-05-04 05:43 . 2010-12-23 05:28 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-05-04 05:43 . 2010-12-23 05:24 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2011-05-04 05:42 . 2010-11-02 05:16 1114624 ----a-w- c:\windows\system32\schedsvc.dll
2011-05-04 05:42 . 2010-11-02 05:18 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-05-04 05:42 . 2010-11-02 05:17 473600 ----a-w- c:\windows\system32\taskcomp.dll
2011-05-04 05:42 . 2010-11-02 05:17 1169408 ----a-w- c:\windows\system32\taskschd.dll
2011-05-04 05:42 . 2010-11-02 05:10 464384 ----a-w- c:\windows\system32\taskeng.exe
2011-05-04 05:42 . 2010-11-02 05:10 285696 ----a-w- c:\windows\system32\schtasks.exe
2011-05-04 05:42 . 2010-11-02 04:40 496128 ----a-w- c:\windows\SysWow64\taskschd.dll
2011-05-04 05:42 . 2010-11-02 04:40 305152 ----a-w- c:\windows\SysWow64\taskcomp.dll
2011-05-04 05:42 . 2010-11-02 04:34 192000 ----a-w- c:\windows\SysWow64\taskeng.exe
2011-05-04 05:42 . 2010-11-02 04:34 179712 ----a-w- c:\windows\SysWow64\schtasks.exe
2011-05-04 05:37 . 2011-03-11 06:23 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-05-04 05:37 . 2011-03-11 06:23 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-05-04 05:37 . 2011-03-11 06:23 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-05-04 05:37 . 2011-03-11 06:22 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-05-04 05:37 . 2011-03-11 06:18 2566144 ----a-w- c:\windows\system32\esent.dll
2011-05-04 05:37 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-05-04 05:37 . 2011-03-11 06:23 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-05-04 05:37 . 2011-03-11 06:23 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-05-04 05:37 . 2011-03-11 06:22 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-05-04 05:37 . 2011-03-11 06:15 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-05-04 05:37 . 2011-03-11 05:37 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2011-05-04 05:36 . 2010-12-18 06:11 714752 ----a-w- c:\windows\system32\kerberos.dll
2011-05-04 05:36 . 2010-12-18 05:29 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2011-05-04 05:36 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll
2011-05-04 05:36 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-05-04 05:36 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-05-04 05:36 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-05-04 05:36 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-05-04 05:36 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2011-05-04 05:36 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2011-05-04 05:36 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2011-05-04 05:36 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2011-05-04 05:36 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2011-05-04 05:33 . 2011-02-26 06:23 2870272 ----a-w- c:\windows\explorer.exe
2011-05-04 05:33 . 2011-02-26 05:33 2614784 ----a-w- c:\windows\SysWow64\explorer.exe
2011-05-04 05:32 . 2010-08-26 05:27 148992 ----a-w- c:\windows\system32\t2embed.dll
2011-05-04 05:32 . 2010-08-26 04:39 109056 ----a-w- c:\windows\SysWow64\t2embed.dll
2011-05-04 05:31 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-05-04 05:31 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-03 13:50 . 2011-05-03 13:50 254528 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-04-18 17:25 . 2011-05-03 13:01 40112 ----a-w- c:\windows\avastSS.scr
2011-04-18 17:25 . 2011-05-03 13:01 199304 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-04-18 17:25 . 2011-05-03 13:02 253888 ----a-w- c:\windows\system32\aswBoot.exe
2011-04-18 17:18 . 2011-05-03 13:02 287064 ----a-w- c:\windows\system32\drivers\aswSP.sys
2011-04-18 17:17 . 2011-05-03 13:02 600920 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2011-04-18 17:16 . 2011-05-03 13:02 53592 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2011-04-18 17:13 . 2011-05-03 13:02 31064 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2011-04-18 17:13 . 2011-05-03 13:02 22360 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2011-03-29 07:08 . 2011-05-03 13:54 80896 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-01_14.44.20 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2011-05-30 16:46 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-06-02 14:11 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2011-05-30 16:46 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-02 14:11 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-05-30 16:46 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-02 14:11 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 05:10 . 2011-06-02 14:13 38022 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-05-03 13:45 . 2011-06-02 14:13 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-05-03 13:45 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-05-03 13:45 . 2011-06-02 14:13 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-05-03 13:45 . 2011-06-01 14:23 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-05-03 13:45 . 2011-06-02 14:13 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-05-03 13:45 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-05-03 12:28 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-05-03 12:28 . 2011-06-02 14:13 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-05-03 12:28 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-05-03 12:28 . 2011-06-02 14:13 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-05-03 12:39 . 2011-06-02 14:13 4788 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-745207079-966053636-362273748-1001_UserData.bin
- 2011-05-30 16:46 . 2011-05-30 16:46 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-02 14:10 . 2011-06-02 14:10 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-05-30 16:46 . 2011-05-30 16:46 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-06-02 14:10 . 2011-06-02 14:10 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-05-03 13:06 . 2011-06-02 13:57 262232 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
- 2010-09-02 02:02 . 2011-05-26 20:52 996744 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-09-02 02:02 . 2011-06-02 14:10 996744 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2009-07-14 05:01 . 2011-06-01 14:19 274028 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-06-02 14:10 274028 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2011-05-03 14:24 . 2011-06-01 14:19 547780 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-745207079-966053636-362273748-1001-8192.dat
+ 2011-05-03 14:24 . 2011-06-02 14:10 547780 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-745207079-966053636-362273748-1001-8192.dat
- 2009-07-14 02:34 . 2011-06-01 14:31 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-07-14 02:34 . 2011-06-01 16:01 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-04-18 15146376]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-06-25 6806144]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-05-03 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-07-02 1597440]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-3-12 1083680]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-9-2 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-9-2 156952]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 135664]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-04-21 352656]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 tmpreflt;tmpreflt;c:\windows\system32\DRIVERS\tmpreflt.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 TmProxy;Trend Micro Proxy Service;c:\program files\Trend Micro\Internet Security\TmProxy.exe [2010-02-23 917768]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"combofix"="c:\combofix\CF25175.cfxxe" [X]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2010-03-16 1754448]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]
"Setwallpaper"="c:\programdata\SetWallpaper.cmd" [BU]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.0.1.1
FF - ProfilePath - c:\users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\rma6w7d4.default\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - c:\program files\AVAST Software\Avast\ashShA64.dll
AddRemove-avast - c:\program files\AVAST Software\Avast\aswRunDll.exe
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files (x86)\IObit\Advanced SystemCare 4\PMonitor.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\windows\AsScrPro.exe
c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\program files (x86)\Skype\Plugin Manager\skypePM.exe
c:\program files (x86)\ASUS\ControlDeck\ControlDeck.exe
.
**************************************************************************
.
Celkový čas: 2011-06-02 16:16:49 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-02 14:16
ComboFix2.txt 2011-06-01 14:53
ComboFix3.txt 2011-06-01 14:46
.
Před spuštěním: Volných bajtů: 35 093 598 208
Po spuštění: Volných bajtů: 34 722 512 896
.
- - End Of File - - 9900D993F831A99815C56DF147FF163D

[Žbeky]

Znáš c:\programdata\SetWallpaper.cmd?

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

KillAll::

Folder::
C:\## aswSnx private storage
C:\32788R22FWJFW

File::
c:\windows\avastSS.scr
c:\windows\SysWow64\aswBoot.exe
c:\windows\system32\aswBoot.exe
c:\windows\system32\drivers\aswSP.sys
c:\windows\system32\drivers\aswSnx.sys
c:\windows\system32\drivers\aswTdi.sys
c:\windows\system32\drivers\aswRdr.sys
c:\windows\system32\drivers\aswFsBlk.sys


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu

[assuuss]

c:\programdata\SetWallpaper.cmd neznam



ComboFix 11-05-31.02 - Marek 03.06.2011 7:16.4.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.3949.2552 [GMT 2:00]
Spuštěný z: c:\users\Marek\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Marek\Desktop\CFScript.txt
AV: Trend Micro Internet Security *Disabled/Outdated* {68F968AC-2AA0-091D-848C-803E83E35902}
SP: Trend Micro Internet Security *Disabled/Updated* {D3988948-0C9A-0693-BE3C-BB4CF86413BF}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\windows\avastSS.scr"
"c:\windows\system32\aswBoot.exe"
"c:\windows\system32\drivers\aswFsBlk.sys"
"c:\windows\system32\drivers\aswRdr.sys"
"c:\windows\system32\drivers\aswSnx.sys"
"c:\windows\system32\drivers\aswSP.sys"
"c:\windows\system32\drivers\aswTdi.sys"
"c:\windows\SysWow64\aswBoot.exe"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\## aswSnx private storage
c:\## aswsnx private storage\snx_rhive
c:\## aswsnx private storage\snx_rhive.LOG1
c:\## aswsnx private storage\snx_rhive.LOG2
c:\## aswsnx private storage\snx_rhive{4fd7edf8-8adc-11e0-a3a0-1c4bd61c90ef}.TM.blf
c:\## aswsnx private storage\snx_rhive{4fd7edf8-8adc-11e0-a3a0-1c4bd61c90ef}.TMContainer00000000000000000001.regtrans-ms
c:\## aswsnx private storage\snx_rhive{4fd7edf8-8adc-11e0-a3a0-1c4bd61c90ef}.TMContainer00000000000000000002.regtrans-ms
c:\## aswsnx private storage\webStorage\snx_fs.dat
c:\windows\avastSS.scr
c:\windows\system32\aswBoot.exe
c:\windows\system32\drivers\aswFsBlk.sys
c:\windows\system32\drivers\aswRdr.sys
c:\windows\system32\drivers\aswSnx.sys
c:\windows\system32\drivers\aswSP.sys
c:\windows\system32\drivers\aswTdi.sys
c:\windows\SysWow64\aswBoot.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-03 do 2011-06-03 )))))))))))))))))))))))))))))))
.
.
2011-06-03 05:21 . 2011-06-03 05:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-02 14:13 . 2011-06-02 14:13 -------- d-----w- c:\users\Marek\AppData\Local\Broadcom
2011-06-01 14:11 . 2011-06-01 14:11 -------- d-----w- c:\users\Marek\AppData\Local\ATI
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\users\Marek\AppData\Roaming\Malwarebytes
2011-06-01 05:17 . 2011-05-29 07:11 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\programdata\Malwarebytes
2011-06-01 05:17 . 2011-06-01 05:17 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-06-01 05:17 . 2011-05-29 07:11 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-31 16:48 . 2011-05-31 16:48 388096 ----a-r- c:\users\Marek\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-05-31 16:48 . 2011-05-31 16:48 -------- d-----w- c:\program files (x86)\Trend Micro
2011-05-25 13:06 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-23 12:27 . 2011-02-23 14:50 18232 ----a-w- c:\windows\system32\drivers\SmartDefragDriver.sys
2011-05-23 12:27 . 2011-02-23 14:50 32136 ----a-w- c:\windows\system32\SmartDefragBootTime.exe
2011-05-23 12:27 . 2011-05-23 12:27 -------- d-----w- c:\users\Marek\AppData\Roaming\IObit
2011-05-23 12:24 . 2011-05-26 05:01 -------- d-----w- c:\programdata\IObit
2011-05-23 12:24 . 2011-05-23 12:27 -------- d-----w- c:\program files (x86)\IObit
2011-05-21 10:25 . 2011-05-21 10:43 -------- d-----w- c:\program files\City Life Super Deluxe
2011-05-21 06:53 . 2011-05-21 06:53 -------- d-----w- c:\users\Marek\AppData\Roaming\GoBoingo
2011-05-19 04:40 . 2011-05-19 04:40 404640 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-05-19 04:36 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-05-19 04:36 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-05-18 05:19 . 2011-05-18 05:19 -------- d-----w- c:\users\Marek\AppData\Local\WTFast
2011-05-18 05:19 . 2011-05-18 05:19 -------- d-----w- c:\program files (x86)\WTFast
2011-05-17 17:47 . 2011-06-03 05:05 45056 ----a-w- c:\windows\system32\acovcnt.exe
2011-05-17 13:27 . 2011-02-19 06:37 1135104 ----a-w- c:\windows\system32\FntCache.dll
2011-05-17 13:27 . 2011-02-19 05:32 1074176 ----a-w- c:\windows\SysWow64\DWrite.dll
2011-05-17 13:27 . 2011-02-19 06:37 1540608 ----a-w- c:\windows\system32\DWrite.dll
2011-05-17 13:27 . 2011-02-19 06:36 902656 ----a-w- c:\windows\system32\d2d1.dll
2011-05-17 13:27 . 2011-02-19 05:32 739840 ----a-w- c:\windows\SysWow64\d2d1.dll
2011-05-15 13:52 . 2011-05-15 13:52 -------- d-----w- c:\users\Marek\AppData\Roaming\Leadertech
2011-05-12 18:23 . 2011-06-01 18:31 -------- d-----w- c:\users\Marek\AppData\Roaming\HLSW
2011-05-12 17:24 . 2011-05-12 17:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2011-05-11 18:37 . 2011-05-11 18:37 -------- d-----w- c:\users\Marek\AppData\Roaming\teamspeak2
2011-05-11 18:36 . 2011-05-11 18:36 34064 ----a-w- c:\windows\SysWow64\lhacm.acm
2011-05-11 18:36 . 2011-05-11 18:37 -------- d-----w- c:\program files (x86)\Teamspeak2_RC2
2011-05-11 17:18 . 2011-04-09 06:45 5509504 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 17:18 . 2011-04-09 06:13 3957632 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-05-11 17:18 . 2011-04-09 06:13 3901824 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-05-09 18:43 . 2011-05-12 18:23 -------- d-s---w- c:\program files (x86)\HLSW
2011-05-07 08:54 . 2011-05-14 13:12 -------- d-----w- c:\program files (x86)\Microsoft Works
2011-05-07 08:51 . 2011-05-07 08:51 -------- d-----w- c:\users\Marek\AppData\Local\Microsoft Help
2011-05-07 08:51 . 2011-05-15 08:03 -------- d-----w- c:\programdata\Microsoft Help
2011-05-06 16:46 . 2011-05-06 16:46 -------- d-----w- c:\programdata\Conexant
2011-05-06 14:53 . 2011-06-01 15:05 271200 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-05-06 14:52 . 2011-05-07 09:17 -------- d-----w- c:\users\Marek\AppData\Local\PunkBuster
2011-05-06 14:49 . 2011-06-01 15:05 271200 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-05-06 14:49 . 2011-06-01 15:04 103736 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2011-05-06 14:49 . 2011-05-12 18:28 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-05-06 14:24 . 2011-05-06 14:24 -------- d-----w- c:\program files (x86)\EA Games
2011-05-06 12:20 . 2011-05-06 12:20 -------- d-----w- c:\program files (x86)\NirSoft
2011-05-05 14:20 . 2011-05-05 14:20 -------- d-----w- c:\programdata\Blizzard Entertainment
2011-05-05 14:12 . 2011-05-07 08:54 -------- d-----w- c:\program files (x86)\Microsoft.NET
2011-05-05 13:58 . 2011-05-05 13:58 -------- d-----w- c:\windows\SysWow64\Wat
2011-05-05 13:58 . 2011-05-05 13:58 -------- d-----w- c:\windows\system32\Wat
2011-05-05 00:13 . 2010-09-14 06:45 367104 ----a-w- c:\windows\system32\wcncsvc.dll
2011-05-05 00:13 . 2010-09-14 06:07 276992 ----a-w- c:\windows\SysWow64\wcncsvc.dll
2011-05-04 22:00 . 2009-11-25 10:47 99176 ----a-w- c:\windows\SysWow64\PresentationHostProxy.dll
2011-05-04 22:00 . 2009-11-25 10:47 49472 ----a-w- c:\windows\SysWow64\netfxperf.dll
2011-05-04 22:00 . 2009-11-25 10:47 297808 ----a-w- c:\windows\SysWow64\mscoree.dll
2011-05-04 22:00 . 2009-11-25 10:47 295264 ----a-w- c:\windows\SysWow64\PresentationHost.exe
2011-05-04 22:00 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\SysWow64\dfshim.dll
2011-05-04 22:00 . 2009-11-25 10:47 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2011-05-04 22:00 . 2009-11-25 10:47 444752 ----a-w- c:\windows\system32\mscoree.dll
2011-05-04 22:00 . 2009-11-25 10:47 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2011-05-04 22:00 . 2009-11-25 10:47 48960 ----a-w- c:\windows\system32\netfxperf.dll
2011-05-04 22:00 . 2009-11-25 10:47 1942856 ----a-w- c:\windows\system32\dfshim.dll
2011-05-04 21:55 . 2010-02-23 08:16 294912 ----a-w- c:\windows\system32\browserchoice.exe
2011-05-04 19:51 . 2010-03-04 04:40 184832 ----a-w- c:\windows\system32\drivers\usbvideo.sys
2011-05-04 19:51 . 2010-03-04 04:32 243712 ----a-w- c:\windows\system32\drivers\ks.sys
2011-05-04 08:12 . 2010-07-30 17:30 309840 ----a-w- c:\windows\system32\drivers\tmxpflt.sys
2011-05-04 08:12 . 2010-07-30 17:30 42576 ----a-w- c:\windows\system32\drivers\tmpreflt.sys
2011-05-04 08:12 . 2010-07-30 17:24 1988176 ----a-w- c:\windows\system32\drivers\vsapint.sys
2011-05-04 05:45 . 2010-08-31 04:32 954752 ----a-w- c:\windows\SysWow64\mfc40.dll
2011-05-04 05:45 . 2010-08-31 04:32 954288 ----a-w- c:\windows\SysWow64\mfc40u.dll
2011-05-04 05:44 . 2010-10-27 05:06 2048 ----a-w- c:\windows\system32\tzres.dll
2011-05-04 05:44 . 2010-10-27 04:32 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-05-04 05:43 . 2010-12-23 06:07 961024 ----a-w- c:\windows\system32\CPFilters.dll
2011-05-04 05:43 . 2010-12-23 06:07 723968 ----a-w- c:\windows\system32\EncDec.dll
2011-05-04 05:43 . 2010-12-23 05:28 642048 ----a-w- c:\windows\SysWow64\CPFilters.dll
2011-05-04 05:43 . 2010-12-23 06:07 1118720 ----a-w- c:\windows\system32\sbe.dll
2011-05-04 05:43 . 2010-12-23 06:02 259072 ----a-w- c:\windows\system32\mpg2splt.ax
2011-05-04 05:43 . 2010-12-23 05:28 850432 ----a-w- c:\windows\SysWow64\sbe.dll
2011-05-04 05:43 . 2010-12-23 05:28 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-05-04 05:43 . 2010-12-23 05:24 199680 ----a-w- c:\windows\SysWow64\mpg2splt.ax
2011-05-04 05:42 . 2010-11-02 05:16 1114624 ----a-w- c:\windows\system32\schedsvc.dll
2011-05-04 05:42 . 2010-11-02 05:18 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2011-05-04 05:42 . 2010-11-02 05:17 473600 ----a-w- c:\windows\system32\taskcomp.dll
2011-05-04 05:42 . 2010-11-02 05:17 1169408 ----a-w- c:\windows\system32\taskschd.dll
2011-05-04 05:42 . 2010-11-02 05:10 464384 ----a-w- c:\windows\system32\taskeng.exe
2011-05-04 05:42 . 2010-11-02 05:10 285696 ----a-w- c:\windows\system32\schtasks.exe
2011-05-04 05:42 . 2010-11-02 04:40 496128 ----a-w- c:\windows\SysWow64\taskschd.dll
2011-05-04 05:42 . 2010-11-02 04:40 305152 ----a-w- c:\windows\SysWow64\taskcomp.dll
2011-05-04 05:42 . 2010-11-02 04:34 192000 ----a-w- c:\windows\SysWow64\taskeng.exe
2011-05-04 05:42 . 2010-11-02 04:34 179712 ----a-w- c:\windows\SysWow64\schtasks.exe
2011-05-04 05:37 . 2011-03-11 06:23 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-05-04 05:37 . 2011-03-11 06:23 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-05-04 05:37 . 2011-03-11 06:23 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-05-04 05:37 . 2011-03-11 06:22 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-05-04 05:37 . 2011-03-11 06:18 2566144 ----a-w- c:\windows\system32\esent.dll
2011-05-04 05:37 . 2011-03-11 05:39 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-05-04 05:37 . 2011-03-11 06:23 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-05-04 05:37 . 2011-03-11 06:23 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-05-04 05:37 . 2011-03-11 06:22 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-05-04 05:37 . 2011-03-11 06:15 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-05-04 05:37 . 2011-03-11 05:37 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2011-05-04 05:36 . 2010-12-18 06:11 714752 ----a-w- c:\windows\system32\kerberos.dll
2011-05-04 05:36 . 2010-12-18 05:29 541184 ----a-w- c:\windows\SysWow64\kerberos.dll
2011-05-04 05:36 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll
2011-05-04 05:36 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-05-04 05:36 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-05-04 05:36 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-05-04 05:36 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-05-04 05:36 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2011-05-04 05:36 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2011-05-04 05:36 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2011-05-04 05:36 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2011-05-04 05:36 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2011-05-04 05:33 . 2011-02-26 06:23 2870272 ----a-w- c:\windows\explorer.exe
2011-05-04 05:33 . 2011-02-26 05:33 2614784 ----a-w- c:\windows\SysWow64\explorer.exe
2011-05-04 05:32 . 2010-08-26 05:27 148992 ----a-w- c:\windows\system32\t2embed.dll
2011-05-04 05:32 . 2010-08-26 04:39 109056 ----a-w- c:\windows\SysWow64\t2embed.dll
2011-05-04 05:31 . 2010-10-19 08:47 7680 ----a-w- c:\program files\Internet Explorer\iecompat.dll
2011-05-04 05:31 . 2010-10-19 08:10 7680 ----a-w- c:\program files (x86)\Internet Explorer\iecompat.dll
2011-05-04 05:31 . 2010-06-29 05:39 2085376 ----a-w- c:\windows\system32\ole32.dll
2011-05-04 05:31 . 2010-06-29 05:35 4582912 ----a-w- c:\program files\Windows NT\Accessories\wordpad.exe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-05-03 13:50 . 2011-05-03 13:50 254528 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-03-29 07:08 . 2011-05-03 13:54 80896 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-03-11 06:19 . 2011-05-04 05:22 1395712 ----a-w- c:\windows\system32\mfc42.dll
2011-03-11 06:19 . 2011-05-04 05:22 1359872 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-11 05:40 . 2011-05-04 05:22 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll
2011-03-11 05:40 . 2011-05-04 05:22 1137664 ----a-w- c:\windows\SysWow64\mfc42.dll
2011-03-08 06:14 . 2011-05-04 05:11 976896 ----a-w- c:\windows\system32\inetcomm.dll
2011-03-08 05:38 . 2011-05-04 05:11 740864 ----a-w- c:\windows\SysWow64\inetcomm.dll
2009-04-08 17:31 . 2009-04-08 17:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 04:45 . 2008-08-12 04:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-06-01_14.44.20 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2011-05-30 16:46 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-06-03 05:21 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2011-05-30 16:46 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-03 05:21 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-03 05:21 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2011-05-30 16:46 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-09-02 01:54 . 2011-06-03 05:07 33578 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-06-03 05:07 38070 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2011-05-03 13:45 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-05-03 13:45 . 2011-06-03 05:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:46 . 2011-06-02 14:19 80352 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2011-05-03 13:45 . 2011-06-03 05:23 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2011-05-03 13:45 . 2011-06-01 14:23 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-05-03 13:45 . 2011-06-03 05:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-05-03 13:45 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-05-03 12:28 . 2011-06-03 05:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-05-03 12:28 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-05-03 12:28 . 2011-06-03 05:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-05-03 12:28 . 2011-06-01 14:23 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-05-03 12:39 . 2011-06-03 05:07 4900 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-745207079-966053636-362273748-1001_UserData.bin
+ 2011-06-03 05:21 . 2011-06-03 05:21 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-05-30 16:46 . 2011-05-30 16:46 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-03 05:21 . 2011-06-03 05:21 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-05-30 16:46 . 2011-05-30 16:46 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-05-03 13:06 . 2011-06-02 13:57 262232 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin
- 2010-09-02 02:02 . 2011-05-26 20:52 996744 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-09-02 02:02 . 2011-06-03 05:21 996744 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2009-07-14 05:01 . 2011-06-03 05:21 274028 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2011-06-01 14:19 274028 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-05-03 14:24 . 2011-06-03 05:21 547780 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-745207079-966053636-362273748-1001-8192.dat
- 2011-05-03 14:24 . 2011-06-01 14:19 547780 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-745207079-966053636-362273748-1001-8192.dat
+ 2011-05-03 14:24 . 2011-06-02 14:28 274796 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-745207079-966053636-362273748-1001-12288.dat
- 2009-07-14 02:34 . 2011-06-01 14:31 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
+ 2009-07-14 02:34 . 2011-06-03 05:18 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2011-04-18 15146376]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-01-22 98304]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-06-25 6806144]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-05-03 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-07-02 1597440]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-21 932288]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2011-01-31 35760]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-05-29 449584]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-3-12 1083680]
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-9-2 12862]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-9-2 156952]
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-09-02 135664]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files (x86)\IObit\Advanced SystemCare 4\ASCService.exe [2011-04-21 352656]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-03 15416]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 tmpreflt;tmpreflt;c:\windows\system32\DRIVERS\tmpreflt.sys [x]
S2 UNS;Intel(R) Management & Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2009-10-01 2314240]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atipmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 HECIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 JME;JMicron Ethernet Adapter NDIS6.20 Driver (Amd64 Bits);c:\windows\system32\DRIVERS\JME.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 TmProxy;Trend Micro Proxy Service;c:\program files\Trend Micro\Internet Security\TmProxy.exe [2010-02-23 917768]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
c:\program files\AVAST Software\Avast\ashShA64.dll [BU]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-01 23:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"ASUS WebStorage"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2010-03-16 1754448]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2009-11-19 307768]
"Setwallpaper"="c:\programdata\SetWallpaper.cmd" [BU]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SysWOW64\blank.htm
TCP: DhcpNameServer = 10.0.1.1
FF - ProfilePath - c:\users\Marek\AppData\Roaming\Mozilla\Firefox\Profiles\rma6w7d4.default\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\IObit\Smart Defrag 2\SmartDefrag.exe
c:\program files (x86)\ASUS\ASUS Live Update\ALU.exe
c:\program files (x86)\IObit\Advanced SystemCare 4\PMonitor.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
c:\windows\AsScrPro.exe
c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe
c:\program files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
c:\program files (x86)\Skype\Plugin Manager\skypePM.exe
c:\program files (x86)\ASUS\ControlDeck\ControlDeck.exe
.
**************************************************************************
.
Celkový čas: 2011-06-03 07:27:17 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-03 05:27
ComboFix2.txt 2011-06-02 14:16
ComboFix3.txt 2011-06-01 14:53
ComboFix4.txt 2011-06-01 14:46
.
Před spuštěním: Volných bajtů: 34 373 980 160
Po spuštění: Volných bajtů: 34 291 752 960
.
- - End Of File - - 4E717177D23C98EC357D53E52141F861

[Žbeky]

OK, takže snad poslední script

Otevři si Poznámkový blok (Start -> Spustit... a napiš do okna Notepad a dej Ok.
Zkopíruj do něj následující celý text označený zeleně:
Poznámka: Nepoužij k označení skriptu funkci VYBRAT VŠE

Kód: Vybrat vše

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Setwallpaper"=-

File::
c:\programdata\SetWallpaper.cmd


Zvol možnost Soubor -> Uložit jako... a nastav tyto parametry:
Název souboru: zde napiš: CFScript.txt
Uložit jako typ: tak tam vyber Všechny soubory
Ulož soubor na plochu.
Ukonči všechna aktivní okna.

Uchop myší vytvořený skript CFScript.txt, přemísti ho nad stažený program ComboFix.exe a když se oba soubory překryjí, skript upusť.
- Automaticky se spustí ComboFix
- Vlož sem log, který vyběhne v závěru čistícího procesu