Dobrý den, Vlastní blbostí jsem si do notebooku přitáhl s jedním"prográmkem" nějakou havět.Zablokoval mně antivirus a přístup na net.Notebook se pouštěl a vypínal dlouho.Virus jsem SNAD odstranil, ale stále nemám přístup na net, k wifi připojen jsem, tedy signál je dobrý, ale k netu už ne, ani se nemůžu připojit k routeru.Můžete mi prosím poradit? Přikládám log z RSIT.
Logfile of random's system information tool 1.09 (written by random/random)
Run by Mirek at 2012-02-12 15:49:43
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 63 GB (63%) free of 100 GB
Total RAM: 4007 MB (48% free)
HijackThis download failed
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\ibmpmsvc.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\ThinkVantage Fingerprint Software\upeksvr.exe"
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\AVAST Software\Avast\AvastSvc.exe"
"taskhost.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe"
"C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe"
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlkd.exe
C:\PROGRA~1\Lenovo\HOTKEY\tpnumlk.exe
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" /rep_new
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe"
C:\Windows\system32\CxAudMsg64.exe
"C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe"
"C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe"
"C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe"
"C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe"
"C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe"
C:\PROGRA~1\LENOVO\VIRTSCRL\virtscrl.exe
"D:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe" -s "D:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.conf" wrapper.console.flush=true wrapper.internal.namedpipe=1615113206
\??\C:\Windows\system32\conhost.exe "-1754063073-908925978-18398067521695174974-10848098116208381411864081331-206548171
C:\Windows\SysWOW64\SAsrv.exe
"C:\Program Files\Soluto\SolutoService.exe"
"C:\Windows\SYSTEM32\java.exe" -Djava.encoding=UTF-8 -Djava.net.preferIPv4Stack=true -Dstart.service=true -Xmx768m -Djava.library.path="win32/service/" -classpath "win32/service/wrapper.jar;pms.jar" -Dwrapper.key="oGSBSWTXgigrj3x1" -Dwrapper.port=32000 -Dwrapper.jvm.port.min=31000 -Dwrapper.jvm.port.max=31999 -Dwrapper.pid=2360 -Dwrapper.version="3.5.9" -Dwrapper.native_library="wrapper" -Dwrapper.service="TRUE" -Dwrapper.cpu.timeout="10" -Dwrapper.jvmid=1 org.tanukisoftware.wrapper.WrapperSimpleApp net.pms.PMS
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\ThinkVantage Fingerprint Software\upeksrvc.exe"
taskeng.exe {3799F30C-296F-4E31-9D44-6873B0BC9848}
"C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe"
"C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\\SRORest.exe"
C:\Windows\SysWOW64\vmnat.exe
"C:\Windows\system32\Dwm.exe"
"C:\Program Files\Soluto\soluto.exe" /userinit
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
C:\Windows\Explorer.EXE
C:\Windows\SysWOW64\vmnetdhcp.exe
WLIDSvcM.exe 3412
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\rundll32.exe "C:\Program Files\LENOVO\HOTKEY\hotkey.dll",InstallAudioHotkeyHook
C:\PROGRA~1\Lenovo\HOTKEY\TPONSCR.EXE /UEFI\\.\pipe\{C6A9690C-33AE-4a55-8B65-9498CC0A7B34}.OnScreenDisplay
C:\Windows\system32\UI0Detect.exe
"C:\Program Files\Lenovo\AutoLock\ALCKRESI.exe"
"C:\Program Files\Synaptics\SynTP\SynTPEnh.exe"
"C:\Windows\System32\TpShocks.exe"
"C:\Program Files\Lenovo\Communications Utility\TpKnrres.exe"
"C:\Windows\System32\igfxtray.exe"
"C:\Windows\System32\hkcmd.exe"
"C:\Windows\System32\igfxpers.exe"
"C:\Program Files\CONEXANT\ForteConfig\fmapp.exe"
"C:\Program Files\Synaptics\SynTP\SynTPLpr.exe"
"C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe"
"C:\Program Files\Synaptics\SynTP\SynTPHelper.exe"
"C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe"
"C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe"
"C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe"
C:\Windows\system32\SearchIndexer.exe /Embedding
"D:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe"
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
"C:\Program Files\AVAST Software\Avast\AvastUI.exe" /nogui
"C:\Windows\System32\rundll32.exe" C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor
C:\PROGRA~2\ThinkPad\UTILIT~1\SCHTASK.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Windows\SysWOW64\RunDll32.exe" "C:\Program Files\ThinkPad\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe"
"C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\Lenovo\System Update\SUService.exe"
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe"
C:\Windows\system32\svchost.exe -k bthsvcs
"C:\Program Files\ThinkPad\Bluetooth Software\BtStackServer.exe" -Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
"D:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe"
"C:\Program Files\Intel\WiFi\bin\EvtEng.exe"
"C:\Program Files\Intel\WiFi\bin\ZCfgSvc7.exe"
"C:\Program Files\Common Files\Intel\WirelessCommon\ifrmewrk.exe" /tf Intel PROSet/Wireless
"C:\Program Files\Common Files\Intel\WirelessCommon\ifrmewrk.exe" /tf Intel PAN Tray
C:\Windows\system32\wbem\unsecapp.exe -Embedding
C:\Windows\system32\WLANExt.exe 106878896
\??\C:\Windows\system32\conhost.exe "390170690-11375212581292264123-19558670441568292507-589629243-1887253713-296233219
"C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe"
"C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe"
"C:\Windows\system32\cmd.exe"
\??\C:\Windows\system32\conhost.exe "-449114906-374745054-2046011264380001651814822672352312412-1463164252-2054560820
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-aed92fc3-e214-4d09-8689-2fcf56293abb -SystemEventPortName:HostProcess-b434d5f4-f05a-4b4a-9662-505603bb4b9f -IoCancelEventPortName:HostProcess-1de39fca-8ba1-4ade-a198-bf62a458261e -NonStateChangingEventPortName:HostProcess-8b2bf3de-fdbf-4403-8ee2-36d76a79848a -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:e351207c-f69b-4f03-9d57-2acdc543c962
"E:\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
C:\Windows\tasks\SystemToolsDailyTest.job
=========Mozilla firefox=========
ProfilePath - C:\Users\Mirek\AppData\Roaming\Mozilla\Firefox\Profiles\uqaqds8w.default
prefs.js - "browser.search.suggest.enabled" - false
prefs.js - "browser.startup.homepage" - "google"
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files (x86)\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/DTPlugin,version=10.2.1]
"Description"=
"Path"=C:\Windows\system32\npDeployJava1.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin,version=10.2.1]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\new_plugin\npjp2.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled
D:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
D:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
D:\Program Files (x86)\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Oracle\JavaFX 2.0 Runtime\bin\jp2ssv.dll [2011-11-08 79240]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-10-18 42272]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"PSQLLauncher"=C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [2010-12-07 85328]
"ALCKRESI.EXE"=C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [2011-07-13 281960]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-07-15 2814760]
"TpShocks"=C:\Windows\SYSTEM32\TpShocks.exe [2011-03-29 380776]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2011-04-26 310912]
"Služba Acronis Scheduler2"=C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2010-12-17 391144]
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2011-07-22 42344]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-10-21 167704]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-10-21 392472]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-10-21 416024]
"IntelPROSet"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-11-01 1935120]
"IntelPAN"=C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe [2011-11-01 1935120]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49056]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"=D:\Program Files (x86)\uTorrent\uTorrent.exe [2012-02-11 738680]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"=C:\Program Files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe [2008-10-30 55808]
"SAOB Monitor"=C:\Program Files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe [2010-11-16 2536752]
"TrueImageMonitor.exe"=D:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2010-12-17 5566176]
"PWMTRV"=rundll32 C:\PROGRA~2\ThinkPad\UTILIT~1\PWMTR64V.DLL,PwrMgrBkGndMonitor []
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-11-28 3744552]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
C:\Users\Mirek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Mozilla Thunderbird.lnk - C:\Program Files (x86)\Mozilla Thunderbird\thunderbird.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\SYSTEM32\igfxdev.dll [2011-10-21 390144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll [2010-12-07 135504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
ACGina
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MSIServer]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SolutoService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"EnableLinkedConnections"=1
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
"NoDriveTypeAutoRun"=255
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.lags"=lagarith.dll
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-02-12 15:49:43 ----D---- C:\Program Files\trend micro
2012-02-12 15:49:42 ----D---- C:\rsit
2012-02-12 13:26:17 ----A---- C:\Windows\system32\drivers\aswFsBlk.sys
2012-02-12 13:26:16 ----A---- C:\Windows\system32\drivers\aswSP.sys
2012-02-12 13:26:16 ----A---- C:\Windows\system32\drivers\aswRdr.sys
2012-02-12 13:26:15 ----A---- C:\Windows\system32\drivers\aswTdi.sys
2012-02-12 13:26:15 ----A---- C:\Windows\system32\drivers\aswSnx.sys
2012-02-12 13:26:14 ----A---- C:\Windows\system32\drivers\aswMonFlt.sys
2012-02-12 13:26:14 ----A---- C:\Windows\system32\aswBoot.exe
2012-02-12 11:15:29 ----D---- C:\Program Files (x86)\ESET
2012-02-12 11:11:46 ----D---- C:\ProgramData\MicroWorld
2012-02-12 11:09:08 ----A---- C:\Windows\ntbtlog.txt
2012-02-11 22:09:02 ----D---- C:\ProgramData\PassMark
2012-02-06 09:59:10 ----HD---- C:\Windows\system32\WLANProfiles
2012-02-06 09:58:27 ----D---- C:\ProgramData\Intel
2012-02-06 09:56:49 ----D---- C:\Program Files\Common Files\Intel
2012-02-06 09:56:48 ----D---- C:\Program Files (x86)\Cisco
2012-02-05 19:46:09 ----D---- C:\Users\Mirek\AppData\Roaming\Zoner
2012-02-05 19:46:08 ----D---- C:\ProgramData\Zoner
2012-01-26 10:45:56 ----A---- C:\Windows\system32\schannel.dll
2012-01-26 10:45:55 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-01-26 10:45:55 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-26 10:45:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-01-26 10:45:54 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-01-26 10:45:54 ----A---- C:\Windows\system32\lsass.exe
2012-01-26 10:45:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-26 10:45:54 ----A---- C:\Windows\system32\drivers\cng.sys
2012-01-26 10:45:53 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-01-26 10:45:53 ----A---- C:\Windows\system32\webio.dll
2012-01-26 10:45:53 ----A---- C:\Windows\system32\sspisrv.dll
2012-01-26 10:45:53 ----A---- C:\Windows\system32\sspicli.dll
2012-01-26 10:45:53 ----A---- C:\Windows\system32\secur32.dll
2012-01-26 10:45:52 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-01-15 20:34:11 ----D---- C:\Windows\SYSWOW64\custom matrices
2012-01-15 20:34:07 ----D---- C:\Windows\SYSWOW64\C2MP
2012-01-15 14:08:16 ----A---- C:\Windows\SYSWOW64\dischandler.exe
2012-01-14 22:24:55 ----D---- C:\ProgramData\PMS
======List of files/folders modified in the last 1 month======
2012-02-12 18:08:46 ----D---- C:\Windows\Tasks
2012-02-12 18:08:46 ----D---- C:\Windows\system32\wfp
2012-02-12 18:08:46 ----D---- C:\Windows\system32\wbem
2012-02-12 18:08:46 ----D---- C:\Windows\system32\Tasks
2012-02-12 18:08:46 ----D---- C:\Windows\system32\DriverStore
2012-02-12 18:08:45 ----D---- C:\Windows\system32\drivers\etc
2012-02-12 18:08:45 ----D---- C:\Windows\system32\CodeIntegrity
2012-02-12 18:08:43 ----D---- C:\Users\Mirek\AppData\Roaming\vlc
2012-02-12 18:08:40 ----D---- C:\Windows\registration
2012-02-12 18:08:35 ----D---- C:\Users\Mirek\AppData\Roaming\Skype
2012-02-12 18:08:32 ----D---- C:\ProgramData\PCDr
2012-02-12 17:56:26 ----D---- C:\Windows\system32\LogFiles
2012-02-12 15:49:53 ----D---- C:\Windows\Temp
2012-02-12 15:49:43 ----RD---- C:\Program Files
2012-02-12 15:25:01 ----SHD---- C:\Windows\Installer
2012-02-12 15:24:42 ----D---- C:\Windows\System32
2012-02-12 15:24:07 ----D---- C:\Windows\system32\catroot
2012-02-12 15:21:26 ----D---- C:\Users\Mirek\AppData\Roaming\uTorrent
2012-02-12 15:20:02 ----D---- C:\Windows\system32\NDF
2012-02-12 15:11:22 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-02-12 15:11:21 ----D---- C:\Windows\inf
2012-02-12 14:57:32 ----A---- C:\Windows\SYSWOW64\log.txt
2012-02-12 14:55:16 ----D---- C:\ProgramData\VMware
2012-02-12 13:38:58 ----D---- C:\Windows\system32\config
2012-02-12 13:26:17 ----D---- C:\Windows\system32\drivers
2012-02-12 13:26:02 ----D---- C:\Windows\SysWOW64
2012-02-12 13:26:02 ----D---- C:\Windows
2012-02-12 13:25:55 ----D---- C:\Program Files\AVAST Software
2012-02-12 13:21:20 ----D---- C:\Windows\pss
2012-02-12 13:00:15 ----D---- C:\Windows\winsxs
2012-02-12 12:57:29 ----D---- C:\Windows\system32\catroot2
2012-02-12 11:15:29 ----RD---- C:\Program Files (x86)
2012-02-12 11:11:46 ----HD---- C:\ProgramData
2012-02-12 11:11:46 ----D---- C:\Program Files (x86)\Common Files
2012-02-12 09:29:54 ----SHD---- C:\System Volume Information
2012-02-11 22:40:42 ----D---- C:\Windows\Prefetch
2012-02-11 22:25:17 ----D---- C:\Users\Mirek\AppData\Roaming\.purple
2012-02-07 09:18:44 ----SD---- C:\Users\Mirek\AppData\Roaming\Microsoft
2012-02-06 09:56:49 ----D---- C:\Program Files\Intel
2012-02-06 09:56:49 ----D---- C:\Program Files\Common Files
2012-02-01 19:59:46 ----D---- C:\Program Files (x86)\Mozilla Thunderbird
2012-02-01 19:21:01 ----D---- C:\Windows\debug
2012-01-29 18:36:58 ----D---- C:\Windows\system32\spool
2012-01-27 00:52:58 ----A---- C:\Windows\system32\MpSigStub.exe
2012-01-17 18:17:03 ----D---- C:\Windows\system32\FxsTmp
2012-01-17 18:16:19 ----D---- C:\Users\Mirek\AppData\Roaming\VMware
2012-01-13 09:02:58 ----D---- C:\Windows\ehome
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 Shockprf;Shockprf; C:\Windows\System32\DRIVERS\Apsx64.sys [2011-03-29 139888]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-09-04 277088]
R0 Soluto;Soluto; C:\Windows\system32\DRIVERS\Soluto.sys [2011-11-24 54728]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys [2011-09-04 1263200]
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-09-04 970336]
R0 TPDIGIMN;TPDIGIMN; C:\Windows\System32\DRIVERS\ApsHM64.sys [2011-03-29 23664]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2011-11-28 42328]
R1 aswSnx;aswSnx; C:\Windows\system32\drivers\aswSnx.sys [2011-11-28 591192]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2011-11-28 304472]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2011-11-28 58712]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 HWiNFO32;HWiNFO32/64 Kernel Driver; \??\D:\Program Files\HWiNFO64\HWiNFO64A.SYS [2011-05-22 28032]
R1 lenovo.smi;Lenovo System Interface Driver; C:\Windows\system32\DRIVERS\smiifx64.sys [2010-09-07 15472]
R1 PHCORE;PHCORE; \??\C:\Program Files\Lenovo\RapidBoot\PHCORE64.SYS [2011-07-08 32104]
R1 TPPWRIF;TPPWRIF; C:\Windows\System32\drivers\Tppwr64v.sys [2011-10-04 14960]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2011-11-28 24408]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2011-11-28 66904]
R2 hcmon;VMware hcmon; \??\C:\Windows\system32\drivers\hcmon.sys [2011-03-25 38512]
R2 risdxc;risdxc; C:\Windows\system32\DRIVERS\risdxc64.sys [2011-05-25 101888]
R2 smihlp;SMI Helper Driver (smihlp); \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [2009-03-13 13840]
R2 vmci;VMware vmci; \??\C:\Windows\system32\drivers\vmci.sys [2011-03-25 81008]
R2 VMnetBridge;VMware Bridge Protocol; C:\Windows\system32\DRIVERS\vmnetbridge.sys [2011-03-25 45104]
R2 VMnetuserif;VMware Network Application Interface; \??\C:\Windows\system32\drivers\vmnetuserif.sys [2011-03-25 30320]
R2 vmx86;VMware vmx86; \??\C:\Windows\system32\drivers\vmx86.sys [2011-03-25 68720]
R2 vstor2-ws60;Vstor2 WS60 Virtual Storage Driver; \??\D:\Program Files (x86)\vm\vstor2-ws60.sys [2010-08-19 32816]
R3 5U877;USB Video Device; C:\Windows\system32\DRIVERS\5U877.sys [2011-03-04 166016]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2011-09-04 285280]
R3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed; C:\Windows\system32\DRIVERS\AMPPAL.sys [2011-10-19 195072]
R3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
R3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
R3 BTWAMPFL;btwampfl; C:\Windows\system32\DRIVERS\btwampfl.sys [2011-04-30 437288]
R3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2011-07-12 146984]
R3 btwavdt;Bluetooth AVDT; C:\Windows\system32\DRIVERS\btwavdt.sys [2011-07-12 164392]
R3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2011-02-22 39976]
R3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2011-07-12 21544]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\CHDRT64.sys [2011-03-24 1576064]
R3 IBMPMDRV;IBMPMDRV; C:\Windows\system32\DRIVERS\ibmpmdrv.sys [2011-08-11 39024]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-10-21 12310112]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
R3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit; C:\Windows\system32\DRIVERS\NETwNs64.sys [2011-10-31 8615936]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\Windows\system32\DRIVERS\psadd.sys [2011-08-28 40248]
R3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-06-10 539240]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2011-07-15 1453616]
R3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2009-12-08 64016]
R3 vmkbd;VMware kbd; \??\C:\Windows\system32\drivers\VMkbd.sys [2011-03-25 31856]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed; C:\Windows\system32\DRIVERS\amppal.sys [2011-10-19 195072]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 btusbflt;Bluetooth USB Filter; C:\Windows\system32\drivers\btusbflt.sys [2009-12-14 53800]
S3 cpuz135;cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys []
S3 CrystalSysInfo;CrystalSysInfo; \??\C:\Program Files\MediaCoder\SysInfoX64.sys [2007-09-25 18128]
S3 intaud_WaveExtensible;Intel WiDi Audio Device; C:\Windows\system32\drivers\intelaud.sys []
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2011-04-27 317440]
S3 iwdbus;IWD Bus Enumerator; C:\Windows\system32\DRIVERS\iwdbus.sys []
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S3 VMnetAdapter;VMware Virtual Ethernet Adapter Driver; C:\Windows\system32\DRIVERS\vmnetadapter.sys [2011-03-25 20016]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2010-12-17 1112664]
R2 afcdpsrv;Služba Acronis Nonstop Backup; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-09-04 3246040]
R2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service; C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-10-19 661504]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-11-28 44768]
R2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service; C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-10-20 135440]
R2 btwdins;Bluetooth Service; C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe [2011-07-27 970016]
R2 CxAudMsg;@C:\Windows\system32\CxAudMsg64.exe,-100; C:\Windows\system32\CxAudMsg64.exe [2010-12-17 198784]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-11-01 1518352]
R2 IBMPMSVC;ThinkPad PM Service; C:\Windows\system32\ibmpmsvc.exe [2011-08-11 45928]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2011-07-22 41832]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-07-22 60264]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-02-22 326168]
R2 PS3 Media Server;PS3 Media Server; D:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-11-01 844560]
R2 SAService;Conexant SmartAudio service; C:\Windows\system32\SAsrv.exe []
R2 SolutoService;Soluto PCGenome Core Service; C:\Program Files\Soluto\SolutoService.exe [2011-11-24 487456]
R2 SROSVC;Screen Reading Optimizer Service Program; C:\Program Files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2011-03-02 443240]
R2 SUService;System Update; C:\Program Files (x86)\Lenovo\System Update\SUService.exe [2011-07-25 28672]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
R2 UpekSrvc;Upek Service; C:\Program Files\ThinkVantage Fingerprint Software\upeksrvc.exe [2010-12-07 54608]
R2 VMnetDHCP;VMware DHCP Service; C:\Windows\syswow64\vmnetdhcp.exe [2011-03-25 334448]
R2 VMUSBArbService;VMware USB Arbitration Service; C:\Program Files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-03-25 539248]
R2 VMware NAT Service;VMware NAT Service; C:\Windows\syswow64\vmnat.exe [2011-03-25 404080]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 HyperW7Svc;HyperW7 Service; C:\Program Files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-07-08 144232]
S3 AcPrfMgrSvc;AcPrfMgrSvc; C:\Program Files (x86)\Lenovo\Access Connections\AcPrfMgrSvc.exe [2011-04-14 124264]
S3 AcSvc;AcSvc; C:\Program Files (x86)\Lenovo\Access Connections\AcSvc.exe [2011-04-14 263528]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S3 aspnet_state;ASP.NET State Service; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 MyWiFiDHCPDNS;Wireless PAN DHCP Server; C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe [2011-11-01 340240]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2011-10-04 89152]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2011-10-04 175168]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\Windows\System32\TPHDEXLG64.exe [2011-03-29 47728]
S3 ufad-ws60;VMware Agent Service; D:\Program Files (x86)\vm\vmware-ufad.exe [2010-08-19 191024]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 VMAuthdService;VMware Authorization Service; D:\Program Files (x86)\vm\vmware-authd.exe [2011-03-25 113264]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-08-01 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nefunkční internet
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nefunkční internet
Zdravím!
Poprosím o log ComboFix.
Poprosím o log ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se
jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine
aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,
pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k
nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nefunkční internet
Tak je tu kontrola měla trvat 10 minut, ale u mě no, dobré dvě hodiny, nemám žádný extra výkonný notebook, ale i na i3 je to podezřele dlouho.Nicméně je tu:
Zatím děkuji.
ComboFix 12-02-11.03 - Mirek 12.02.2012 19:16:14.7.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4007.1918 [GMT 1:00]
Spuštěný z: c:\users\Mirek\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\programdata\PCDr\5849\AddOnDownloaded\6caa3aae-ef7a-46e1-8cf0-de07c37a32af.dll
c:\programdata\PCDr\5849\AddOnDownloaded\7d08b206-22ae-4429-9e22-772698e3ca65.dll
c:\programdata\Roaming
c:\windows\system32\drivers\etc\hosts.ics
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-12 do 2012-02-12 )))))))))))))))))))))))))))))))
.
.
2012-02-12 18:58 . 2012-02-12 18:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-12 16:45 . 2012-02-12 16:45 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57B3C362-706E-4F68-AC24-9F51642A1111}\offreg.dll
2012-02-12 14:49 . 2012-02-12 14:49 -------- d-----w- c:\program files\trend micro
2012-02-12 14:49 . 2012-02-12 14:50 -------- d-----w- C:\rsit
2012-02-12 12:26 . 2011-11-28 17:51 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-02-12 12:26 . 2011-11-28 17:53 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-02-12 12:26 . 2011-11-28 17:52 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-02-12 12:26 . 2011-11-28 17:54 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-02-12 12:26 . 2011-11-28 17:52 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-02-12 12:26 . 2011-11-28 18:01 256960 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-12 12:26 . 2011-11-28 17:52 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-02-12 10:15 . 2012-02-12 10:15 -------- d-----w- c:\program files (x86)\ESET
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\programdata\MicroWorld
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2012-02-12 08:31 . 2012-01-06 05:15 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57B3C362-706E-4F68-AC24-9F51642A1111}\mpengine.dll
2012-02-11 21:09 . 2012-02-12 16:58 -------- d-----w- c:\programdata\PassMark
2012-02-06 08:59 . 2012-02-12 15:09 -------- d--h--w- c:\windows\system32\WLANProfiles
2012-02-06 08:58 . 2012-02-06 09:17 -------- d-----w- c:\programdata\Intel
2012-02-06 08:56 . 2012-02-06 08:56 -------- d-----w- c:\program files\Common Files\Intel
2012-02-06 08:56 . 2012-02-06 08:57 -------- d-----w- c:\program files (x86)\Cisco
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Roaming\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Local\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\programdata\Zoner
2012-01-30 19:54 . 2012-02-12 17:08 -------- d-----w- c:\users\Mirek\AppData\Local\MetaGeek,_LLC
2012-01-29 17:37 . 2006-09-12 19:00 80896 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP78.DLL
2012-01-29 17:37 . 2006-09-12 19:00 27136 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD78.DLL
2012-01-15 19:34 . 2012-01-15 19:34 -------- d-----w- c:\windows\SysWow64\custom matrices
2012-01-15 19:34 . 2012-01-15 19:38 -------- d-----w- c:\windows\SysWow64\C2MP
2012-01-15 13:08 . 2012-01-15 13:08 39864 ----a-w- c:\windows\SysWow64\dischandler.exe
2012-01-14 21:28 . 2012-01-14 21:28 -------- d-----w- c:\users\Mirek\AppData\Local\MPlayer
2012-01-14 21:24 . 2012-01-14 21:28 -------- d-----w- c:\programdata\PMS
2012-01-14 20:09 . 2012-01-14 20:09 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-01-14 20:09 . 2012-01-14 20:09 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-26 23:52 . 2011-08-02 16:11 279656 ----a-w- c:\windows\system32\MpSigStub.exe
2012-01-11 09:41 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-01-09 20:03 . 2012-01-09 20:03 3478016 ----a-w- c:\windows\SysWow64\ffdshow.ax
2012-01-09 20:00 . 2012-01-09 20:00 4346880 ----a-w- c:\windows\SysWow64\ffmpeg.dll
2012-01-07 22:24 . 2012-01-07 22:24 568320 ----a-w- c:\windows\system32\LAVVideo.ax
2012-01-07 22:24 . 2012-01-07 22:24 552448 ----a-w- c:\windows\system32\LAVSplitter.ax
2012-01-07 22:24 . 2012-01-07 22:24 243200 ----a-w- c:\windows\system32\LAVAudio.ax
2012-01-07 22:24 . 2012-01-07 22:24 202240 ----a-w- c:\windows\system32\libbluray.dll
2012-01-07 22:24 . 2012-01-07 22:24 6557838 ----a-w- c:\windows\system32\avcodec-lav-53.dll
2012-01-07 22:24 . 2012-01-07 22:24 379129 ----a-w- c:\windows\system32\swscale-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 209331 ----a-w- c:\windows\system32\avutil-lav-51.dll
2012-01-07 22:24 . 2012-01-07 22:24 125782 ----a-w- c:\windows\system32\avfilter-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 1020391 ----a-w- c:\windows\system32\avformat-lav-53.dll
2012-01-07 22:22 . 2012-01-07 22:22 460800 ----a-w- c:\windows\SysWow64\LAVSplitter.ax
2012-01-07 22:22 . 2012-01-07 22:22 448000 ----a-w- c:\windows\SysWow64\LAVVideo.ax
2012-01-07 22:22 . 2012-01-07 22:22 212992 ----a-w- c:\windows\SysWow64\LAVAudio.ax
2012-01-07 22:22 . 2012-01-07 22:22 172032 ----a-w- c:\windows\SysWow64\libbluray.dll
2012-01-07 22:21 . 2012-01-07 22:21 6366094 ----a-w- c:\windows\SysWow64\avcodec-lav-53.dll
2012-01-07 22:21 . 2012-01-07 22:21 354979 ----a-w- c:\windows\SysWow64\swscale-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 203306 ----a-w- c:\windows\SysWow64\avutil-lav-51.dll
2012-01-07 22:21 . 2012-01-07 22:21 138727 ----a-w- c:\windows\SysWow64\avfilter-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 1007151 ----a-w- c:\windows\SysWow64\avformat-lav-53.dll
2012-01-07 22:20 . 2012-01-07 22:20 142336 ----a-w- c:\windows\SysWow64\IntelQuickSyncDecoder.dll
2012-01-07 22:19 . 2012-01-07 22:19 169984 ----a-w- c:\windows\system32\IntelQuickSyncDecoder.dll
2012-01-05 18:23 . 2012-01-05 18:23 4369920 ----a-w- c:\windows\system32\ffdshow.ax
2012-01-05 18:19 . 2012-01-05 18:19 4431872 ----a-w- c:\windows\system32\ffmpeg.dll
2011-12-23 08:24 . 2011-08-01 17:23 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-12-20 18:53 . 2011-12-20 18:53 474624 ----a-w- c:\windows\system32\ff_kernelDeint.dll
2011-12-20 18:53 . 2011-12-20 18:53 631296 ----a-w- c:\windows\system32\TomsMoComp_ff.dll
2011-12-20 18:52 . 2011-12-20 18:52 114176 ----a-w- c:\windows\system32\ff_wmv9.dll
2011-12-20 18:52 . 2011-12-20 18:52 156672 ----a-w- c:\windows\system32\ff_libmad.dll
2011-12-20 18:52 . 2011-12-20 18:52 1532928 ----a-w- c:\windows\system32\ff_samplerate.dll
2011-12-20 18:52 . 2011-12-20 18:52 116224 ----a-w- c:\windows\system32\ff_liba52.dll
2011-12-20 18:52 . 2011-12-20 18:52 222720 ----a-w- c:\windows\system32\ff_libdts.dll
2011-12-20 18:52 . 2011-12-20 18:52 183808 ----a-w- c:\windows\system32\ff_unrar.dll
2011-12-20 18:51 . 2011-12-20 18:51 359424 ----a-w- c:\windows\system32\ff_libfaad2.dll
2011-12-20 18:51 . 2011-12-20 18:51 190464 ----a-w- c:\windows\system32\libmpeg2_ff.dll
2011-12-20 18:50 . 2011-12-20 18:50 79360 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-12-20 18:49 . 2011-12-20 18:49 99328 ----a-w- c:\windows\SysWow64\ff_wmv9.dll
2011-12-20 18:49 . 2011-12-20 18:49 158720 ----a-w- c:\windows\SysWow64\ff_unrar.dll
2011-12-20 18:49 . 2011-12-20 18:49 146944 ----a-w- c:\windows\SysWow64\ff_libmad.dll
2011-12-20 18:49 . 2011-12-20 18:49 212480 ----a-w- c:\windows\SysWow64\ff_libdts.dll
2011-12-20 18:49 . 2011-12-20 18:49 1525248 ----a-w- c:\windows\SysWow64\ff_samplerate.dll
2011-12-20 18:49 . 2011-12-20 18:49 115200 ----a-w- c:\windows\SysWow64\ff_liba52.dll
2011-12-20 18:49 . 2011-12-20 18:49 328704 ----a-w- c:\windows\SysWow64\ff_libfaad2.dll
2011-12-20 18:49 . 2011-12-20 18:49 260608 ----a-w- c:\windows\SysWow64\TomsMoComp_ff.dll
2011-12-20 18:49 . 2011-12-20 18:49 137728 ----a-w- c:\windows\SysWow64\libmpeg2_ff.dll
2011-12-07 19:37 . 2011-12-07 19:37 148992 ----a-w- c:\windows\system32\Lagarith.dll
2011-12-07 19:32 . 2011-12-07 19:32 216064 ----a-w- c:\windows\SysWow64\Lagarith.dll
2011-11-28 18:01 . 2011-07-31 21:04 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-07-31 21:04 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-11-24 11:03 . 2011-11-25 20:17 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2011-11-24 04:52 . 2011-12-14 21:41 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-11-19 14:58 . 2012-01-11 09:28 77312 ----a-w- c:\windows\system32\packager.dll
2011-11-19 14:01 . 2012-01-11 09:28 67072 ----a-w- c:\windows\SysWow64\packager.dll
2011-11-17 06:41 . 2012-01-11 09:28 1731920 ----a-w- c:\windows\system32\ntdll.dll
2011-11-17 06:35 . 2012-01-26 09:45 340992 ----a-w- c:\windows\system32\schannel.dll
2011-11-17 05:38 . 2012-01-11 09:28 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-11-17 05:34 . 2012-01-26 09:45 224768 ----a-w- c:\windows\SysWow64\schannel.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="d:\program files (x86)\uTorrent\uTorrent.exe" [2012-02-11 738680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"SAOB Monitor"="c:\program files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-11-16 2536752]
"TrueImageMonitor.exe"="d:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-17 5566176]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2011-10-04 1631296]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
.
c:\users\Mirek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Mozilla Thunderbird.lnk - c:\program files (x86)\Mozilla Thunderbird\thunderbird.exe [2011-8-6 399512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2011-7-27 1211680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"DisableCAD"= 1 (0x1)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HyperW7Svc;HyperW7 Service;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-07-08 144232]
R2 PS3 Media Server;PS3 Media Server;d:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-11-01 340240]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2011-10-04 89152]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2011-10-04 175168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;d:\program files\HWiNFO64\HWiNFO64A.SYS [2011-05-22 28032]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiifx64.sys [x]
S1 PHCORE;PHCORE;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS [2011-07-08 32104]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-09-04 3246040]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-10-19 661504]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-10-20 135440]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe [x]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [2011-07-22 41832]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-07-22 60264]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
S2 risdxc;risdxc;c:\windows\system32\DRIVERS\risdxc64.sys [x]
S2 smihlp;SMI Helper Driver (smihlp);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [2009-03-13 13840]
S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-11-24 487456]
S2 SROSVC;Screen Reading Optimizer Service Program;c:\program files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2011-03-02 443240]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
S2 UpekSrvc;Upek Service;c:\program files\ThinkVantage Fingerprint Software\upeksrvc.exe [2010-12-07 54608]
S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-03-25 539248]
S2 ZcfgSvc7;Intel(R) PROSet/Wireless ZeroConfig Service;c:\program files\Intel\WiFi\bin\ZCfgSvc7.exe [2011-11-01 994064]
S3 5U877;USB Video Device;c:\windows\system32\DRIVERS\5U877.sys [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-12 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
2012-02-12 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PSQLLauncher"="c:\program files\ThinkVantage Fingerprint Software\launcher.exe" [2010-12-07 85328]
"ALCKRESI.EXE"="c:\program files\Lenovo\AutoLock\ALCKRESI.EXE" [2011-07-13 281960]
"TpShocks"="TpShocks.exe" [2011-03-29 380776]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2011-04-26 310912]
"Služba Acronis Scheduler2"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-12-17 391144]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2011-07-22 42344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-10-21 416024]
"IntelPROSet"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"ForteConfig"="c:\program files\Conexant\ForteConfig\fmapp.exe" [2010-10-26 49056]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
LSP: d:\program files (x86)\vm\vsocklib.dll
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
TCP: Interfaces\{57DB78C8-502A-4E3C-BE85-CF890534C409}: NameServer = 0.0.0.0
DPF: {816BE035-1450-40D0-8A3B-BA7825A83A77} - hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
FF - ProfilePath - c:\users\Mirek\AppData\Roaming\Mozilla\Firefox\Profiles\uqaqds8w.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - google
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-12 20:02:18
ComboFix-quarantined-files.txt 2012-02-12 19:02
.
Před spuštěním: Volných bajtů: 66 479 833 088
Po spuštění: Volných bajtů: 66 425 552 896
.
- - End Of File - - A7B4C8CD5DD2354D2FE3C3EBFF767D8E
Zatím děkuji.
ComboFix 12-02-11.03 - Mirek 12.02.2012 19:16:14.7.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4007.1918 [GMT 1:00]
Spuštěný z: c:\users\Mirek\Desktop\ComboFix.exe
AV: avast! Antivirus *Enabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Enabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
---- Předchozí spuštění -------
.
c:\programdata\PCDr\5849\AddOnDownloaded\6caa3aae-ef7a-46e1-8cf0-de07c37a32af.dll
c:\programdata\PCDr\5849\AddOnDownloaded\7d08b206-22ae-4429-9e22-772698e3ca65.dll
c:\programdata\Roaming
c:\windows\system32\drivers\etc\hosts.ics
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-12 do 2012-02-12 )))))))))))))))))))))))))))))))
.
.
2012-02-12 18:58 . 2012-02-12 18:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-12 16:45 . 2012-02-12 16:45 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57B3C362-706E-4F68-AC24-9F51642A1111}\offreg.dll
2012-02-12 14:49 . 2012-02-12 14:49 -------- d-----w- c:\program files\trend micro
2012-02-12 14:49 . 2012-02-12 14:50 -------- d-----w- C:\rsit
2012-02-12 12:26 . 2011-11-28 17:51 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-02-12 12:26 . 2011-11-28 17:53 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-02-12 12:26 . 2011-11-28 17:52 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-02-12 12:26 . 2011-11-28 17:54 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-02-12 12:26 . 2011-11-28 17:52 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-02-12 12:26 . 2011-11-28 18:01 256960 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-12 12:26 . 2011-11-28 17:52 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-02-12 10:15 . 2012-02-12 10:15 -------- d-----w- c:\program files (x86)\ESET
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\programdata\MicroWorld
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2012-02-12 08:31 . 2012-01-06 05:15 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{57B3C362-706E-4F68-AC24-9F51642A1111}\mpengine.dll
2012-02-11 21:09 . 2012-02-12 16:58 -------- d-----w- c:\programdata\PassMark
2012-02-06 08:59 . 2012-02-12 15:09 -------- d--h--w- c:\windows\system32\WLANProfiles
2012-02-06 08:58 . 2012-02-06 09:17 -------- d-----w- c:\programdata\Intel
2012-02-06 08:56 . 2012-02-06 08:56 -------- d-----w- c:\program files\Common Files\Intel
2012-02-06 08:56 . 2012-02-06 08:57 -------- d-----w- c:\program files (x86)\Cisco
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Roaming\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Local\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\programdata\Zoner
2012-01-30 19:54 . 2012-02-12 17:08 -------- d-----w- c:\users\Mirek\AppData\Local\MetaGeek,_LLC
2012-01-29 17:37 . 2006-09-12 19:00 80896 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP78.DLL
2012-01-29 17:37 . 2006-09-12 19:00 27136 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD78.DLL
2012-01-15 19:34 . 2012-01-15 19:34 -------- d-----w- c:\windows\SysWow64\custom matrices
2012-01-15 19:34 . 2012-01-15 19:38 -------- d-----w- c:\windows\SysWow64\C2MP
2012-01-15 13:08 . 2012-01-15 13:08 39864 ----a-w- c:\windows\SysWow64\dischandler.exe
2012-01-14 21:28 . 2012-01-14 21:28 -------- d-----w- c:\users\Mirek\AppData\Local\MPlayer
2012-01-14 21:24 . 2012-01-14 21:28 -------- d-----w- c:\programdata\PMS
2012-01-14 20:09 . 2012-01-14 20:09 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-01-14 20:09 . 2012-01-14 20:09 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-26 23:52 . 2011-08-02 16:11 279656 ----a-w- c:\windows\system32\MpSigStub.exe
2012-01-11 09:41 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-01-09 20:03 . 2012-01-09 20:03 3478016 ----a-w- c:\windows\SysWow64\ffdshow.ax
2012-01-09 20:00 . 2012-01-09 20:00 4346880 ----a-w- c:\windows\SysWow64\ffmpeg.dll
2012-01-07 22:24 . 2012-01-07 22:24 568320 ----a-w- c:\windows\system32\LAVVideo.ax
2012-01-07 22:24 . 2012-01-07 22:24 552448 ----a-w- c:\windows\system32\LAVSplitter.ax
2012-01-07 22:24 . 2012-01-07 22:24 243200 ----a-w- c:\windows\system32\LAVAudio.ax
2012-01-07 22:24 . 2012-01-07 22:24 202240 ----a-w- c:\windows\system32\libbluray.dll
2012-01-07 22:24 . 2012-01-07 22:24 6557838 ----a-w- c:\windows\system32\avcodec-lav-53.dll
2012-01-07 22:24 . 2012-01-07 22:24 379129 ----a-w- c:\windows\system32\swscale-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 209331 ----a-w- c:\windows\system32\avutil-lav-51.dll
2012-01-07 22:24 . 2012-01-07 22:24 125782 ----a-w- c:\windows\system32\avfilter-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 1020391 ----a-w- c:\windows\system32\avformat-lav-53.dll
2012-01-07 22:22 . 2012-01-07 22:22 460800 ----a-w- c:\windows\SysWow64\LAVSplitter.ax
2012-01-07 22:22 . 2012-01-07 22:22 448000 ----a-w- c:\windows\SysWow64\LAVVideo.ax
2012-01-07 22:22 . 2012-01-07 22:22 212992 ----a-w- c:\windows\SysWow64\LAVAudio.ax
2012-01-07 22:22 . 2012-01-07 22:22 172032 ----a-w- c:\windows\SysWow64\libbluray.dll
2012-01-07 22:21 . 2012-01-07 22:21 6366094 ----a-w- c:\windows\SysWow64\avcodec-lav-53.dll
2012-01-07 22:21 . 2012-01-07 22:21 354979 ----a-w- c:\windows\SysWow64\swscale-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 203306 ----a-w- c:\windows\SysWow64\avutil-lav-51.dll
2012-01-07 22:21 . 2012-01-07 22:21 138727 ----a-w- c:\windows\SysWow64\avfilter-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 1007151 ----a-w- c:\windows\SysWow64\avformat-lav-53.dll
2012-01-07 22:20 . 2012-01-07 22:20 142336 ----a-w- c:\windows\SysWow64\IntelQuickSyncDecoder.dll
2012-01-07 22:19 . 2012-01-07 22:19 169984 ----a-w- c:\windows\system32\IntelQuickSyncDecoder.dll
2012-01-05 18:23 . 2012-01-05 18:23 4369920 ----a-w- c:\windows\system32\ffdshow.ax
2012-01-05 18:19 . 2012-01-05 18:19 4431872 ----a-w- c:\windows\system32\ffmpeg.dll
2011-12-23 08:24 . 2011-08-01 17:23 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-12-20 18:53 . 2011-12-20 18:53 474624 ----a-w- c:\windows\system32\ff_kernelDeint.dll
2011-12-20 18:53 . 2011-12-20 18:53 631296 ----a-w- c:\windows\system32\TomsMoComp_ff.dll
2011-12-20 18:52 . 2011-12-20 18:52 114176 ----a-w- c:\windows\system32\ff_wmv9.dll
2011-12-20 18:52 . 2011-12-20 18:52 156672 ----a-w- c:\windows\system32\ff_libmad.dll
2011-12-20 18:52 . 2011-12-20 18:52 1532928 ----a-w- c:\windows\system32\ff_samplerate.dll
2011-12-20 18:52 . 2011-12-20 18:52 116224 ----a-w- c:\windows\system32\ff_liba52.dll
2011-12-20 18:52 . 2011-12-20 18:52 222720 ----a-w- c:\windows\system32\ff_libdts.dll
2011-12-20 18:52 . 2011-12-20 18:52 183808 ----a-w- c:\windows\system32\ff_unrar.dll
2011-12-20 18:51 . 2011-12-20 18:51 359424 ----a-w- c:\windows\system32\ff_libfaad2.dll
2011-12-20 18:51 . 2011-12-20 18:51 190464 ----a-w- c:\windows\system32\libmpeg2_ff.dll
2011-12-20 18:50 . 2011-12-20 18:50 79360 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-12-20 18:49 . 2011-12-20 18:49 99328 ----a-w- c:\windows\SysWow64\ff_wmv9.dll
2011-12-20 18:49 . 2011-12-20 18:49 158720 ----a-w- c:\windows\SysWow64\ff_unrar.dll
2011-12-20 18:49 . 2011-12-20 18:49 146944 ----a-w- c:\windows\SysWow64\ff_libmad.dll
2011-12-20 18:49 . 2011-12-20 18:49 212480 ----a-w- c:\windows\SysWow64\ff_libdts.dll
2011-12-20 18:49 . 2011-12-20 18:49 1525248 ----a-w- c:\windows\SysWow64\ff_samplerate.dll
2011-12-20 18:49 . 2011-12-20 18:49 115200 ----a-w- c:\windows\SysWow64\ff_liba52.dll
2011-12-20 18:49 . 2011-12-20 18:49 328704 ----a-w- c:\windows\SysWow64\ff_libfaad2.dll
2011-12-20 18:49 . 2011-12-20 18:49 260608 ----a-w- c:\windows\SysWow64\TomsMoComp_ff.dll
2011-12-20 18:49 . 2011-12-20 18:49 137728 ----a-w- c:\windows\SysWow64\libmpeg2_ff.dll
2011-12-07 19:37 . 2011-12-07 19:37 148992 ----a-w- c:\windows\system32\Lagarith.dll
2011-12-07 19:32 . 2011-12-07 19:32 216064 ----a-w- c:\windows\SysWow64\Lagarith.dll
2011-11-28 18:01 . 2011-07-31 21:04 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-07-31 21:04 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-11-24 11:03 . 2011-11-25 20:17 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2011-11-24 04:52 . 2011-12-14 21:41 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-11-19 14:58 . 2012-01-11 09:28 77312 ----a-w- c:\windows\system32\packager.dll
2011-11-19 14:01 . 2012-01-11 09:28 67072 ----a-w- c:\windows\SysWow64\packager.dll
2011-11-17 06:41 . 2012-01-11 09:28 1731920 ----a-w- c:\windows\system32\ntdll.dll
2011-11-17 06:35 . 2012-01-26 09:45 340992 ----a-w- c:\windows\system32\schannel.dll
2011-11-17 05:38 . 2012-01-11 09:28 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2011-11-17 05:34 . 2012-01-26 09:45 224768 ----a-w- c:\windows\SysWow64\schannel.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="d:\program files (x86)\uTorrent\uTorrent.exe" [2012-02-11 738680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"SAOB Monitor"="c:\program files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-11-16 2536752]
"TrueImageMonitor.exe"="d:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-17 5566176]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2011-10-04 1631296]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
.
c:\users\Mirek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Mozilla Thunderbird.lnk - c:\program files (x86)\Mozilla Thunderbird\thunderbird.exe [2011-8-6 399512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2011-7-27 1211680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"DisableCAD"= 1 (0x1)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
@="Service"
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HyperW7Svc;HyperW7 Service;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-07-08 144232]
R2 PS3 Media Server;PS3 Media Server;d:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-11-01 340240]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2011-10-04 89152]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2011-10-04 175168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;d:\program files\HWiNFO64\HWiNFO64A.SYS [2011-05-22 28032]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiifx64.sys [x]
S1 PHCORE;PHCORE;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS [2011-07-08 32104]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-09-04 3246040]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-10-19 661504]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-10-20 135440]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe [x]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [2011-07-22 41832]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-07-22 60264]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
S2 risdxc;risdxc;c:\windows\system32\DRIVERS\risdxc64.sys [x]
S2 smihlp;SMI Helper Driver (smihlp);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [2009-03-13 13840]
S2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-11-24 487456]
S2 SROSVC;Screen Reading Optimizer Service Program;c:\program files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2011-03-02 443240]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
S2 UpekSrvc;Upek Service;c:\program files\ThinkVantage Fingerprint Software\upeksrvc.exe [2010-12-07 54608]
S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-03-25 539248]
S2 ZcfgSvc7;Intel(R) PROSet/Wireless ZeroConfig Service;c:\program files\Intel\WiFi\bin\ZCfgSvc7.exe [2011-11-01 994064]
S3 5U877;USB Video Device;c:\windows\system32\DRIVERS\5U877.sys [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [x]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-12 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
2012-02-12 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PSQLLauncher"="c:\program files\ThinkVantage Fingerprint Software\launcher.exe" [2010-12-07 85328]
"ALCKRESI.EXE"="c:\program files\Lenovo\AutoLock\ALCKRESI.EXE" [2011-07-13 281960]
"TpShocks"="TpShocks.exe" [2011-03-29 380776]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2011-04-26 310912]
"Služba Acronis Scheduler2"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-12-17 391144]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2011-07-22 42344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-10-21 416024]
"IntelPROSet"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"ForteConfig"="c:\program files\Conexant\ForteConfig\fmapp.exe" [2010-10-26 49056]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
LSP: d:\program files (x86)\vm\vsocklib.dll
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
TCP: Interfaces\{57DB78C8-502A-4E3C-BE85-CF890534C409}: NameServer = 0.0.0.0
DPF: {816BE035-1450-40D0-8A3B-BA7825A83A77} - hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
FF - ProfilePath - c:\users\Mirek\AppData\Roaming\Mozilla\Firefox\Profiles\uqaqds8w.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - google
FF - prefs.js: network.proxy.type - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-02-12 20:02:18
ComboFix-quarantined-files.txt 2012-02-12 19:02
.
Před spuštěním: Volných bajtů: 66 479 833 088
Po spuštění: Volných bajtů: 66 425 552 896
.
- - End Of File - - A7B4C8CD5DD2354D2FE3C3EBFF767D8E
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nefunkční internet
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.RegLock::
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤]
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤\OpenWithList]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nefunkční internet
Děkuji.ComboFix pracuje několik hodin je to v pořádku? Provedl jsem ten script a zde je výsledek.
ComboFix 12-02-11.03 - Mirek 15.02.2012 6:57.10.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4007.1641 [GMT 1:00]
Spuštěný z: c:\users\Mirek\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Mirek\Desktop\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\PCDr\5849\AddOnDownloaded\6caa3aae-ef7a-46e1-8cf0-de07c37a32af.dll
c:\programdata\PCDr\5849\AddOnDownloaded\7d08b206-22ae-4429-9e22-772698e3ca65.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-15 do 2012-02-15 )))))))))))))))))))))))))))))))
.
.
2012-02-15 09:21 . 2012-02-15 09:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-14 17:13 . 2012-01-06 05:15 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EA91B8FB-2F2E-4584-A147-12B33C44AB3B}\mpengine.dll
2012-02-12 14:49 . 2012-02-12 14:49 -------- d-----w- c:\program files\trend micro
2012-02-12 14:49 . 2012-02-12 14:50 -------- d-----w- C:\rsit
2012-02-12 12:26 . 2011-11-28 17:51 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-02-12 12:26 . 2011-11-28 17:53 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-02-12 12:26 . 2011-11-28 17:52 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-02-12 12:26 . 2011-11-28 17:54 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-02-12 12:26 . 2011-11-28 17:52 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-02-12 12:26 . 2011-11-28 18:01 256960 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-12 12:26 . 2011-11-28 17:52 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-02-12 10:15 . 2012-02-12 10:15 -------- d-----w- c:\program files (x86)\ESET
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\programdata\MicroWorld
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2012-02-11 21:09 . 2012-02-12 16:58 -------- d-----w- c:\programdata\PassMark
2012-02-06 08:59 . 2012-02-14 17:10 -------- d--h--w- c:\windows\system32\WLANProfiles
2012-02-06 08:58 . 2012-02-06 09:17 -------- d-----w- c:\programdata\Intel
2012-02-06 08:56 . 2012-02-06 08:56 -------- d-----w- c:\program files\Common Files\Intel
2012-02-06 08:56 . 2012-02-06 08:57 -------- d-----w- c:\program files (x86)\Cisco
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Roaming\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Local\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\programdata\Zoner
2012-01-30 19:54 . 2012-02-12 17:08 -------- d-----w- c:\users\Mirek\AppData\Local\MetaGeek,_LLC
2012-01-29 17:37 . 2006-09-12 19:00 80896 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP78.DLL
2012-01-29 17:37 . 2006-09-12 19:00 27136 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD78.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-26 23:52 . 2011-08-02 16:11 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-15 13:08 . 2012-01-15 13:08 39864 ----a-w- c:\windows\SysWow64\dischandler.exe
2012-01-14 20:09 . 2012-01-14 20:09 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-01-14 20:09 . 2012-01-14 20:09 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-11 09:41 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-01-09 20:03 . 2012-01-09 20:03 3478016 ----a-w- c:\windows\SysWow64\ffdshow.ax
2012-01-09 20:00 . 2012-01-09 20:00 4346880 ----a-w- c:\windows\SysWow64\ffmpeg.dll
2012-01-07 22:24 . 2012-01-07 22:24 568320 ----a-w- c:\windows\system32\LAVVideo.ax
2012-01-07 22:24 . 2012-01-07 22:24 552448 ----a-w- c:\windows\system32\LAVSplitter.ax
2012-01-07 22:24 . 2012-01-07 22:24 243200 ----a-w- c:\windows\system32\LAVAudio.ax
2012-01-07 22:24 . 2012-01-07 22:24 202240 ----a-w- c:\windows\system32\libbluray.dll
2012-01-07 22:24 . 2012-01-07 22:24 6557838 ----a-w- c:\windows\system32\avcodec-lav-53.dll
2012-01-07 22:24 . 2012-01-07 22:24 379129 ----a-w- c:\windows\system32\swscale-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 209331 ----a-w- c:\windows\system32\avutil-lav-51.dll
2012-01-07 22:24 . 2012-01-07 22:24 125782 ----a-w- c:\windows\system32\avfilter-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 1020391 ----a-w- c:\windows\system32\avformat-lav-53.dll
2012-01-07 22:22 . 2012-01-07 22:22 460800 ----a-w- c:\windows\SysWow64\LAVSplitter.ax
2012-01-07 22:22 . 2012-01-07 22:22 448000 ----a-w- c:\windows\SysWow64\LAVVideo.ax
2012-01-07 22:22 . 2012-01-07 22:22 212992 ----a-w- c:\windows\SysWow64\LAVAudio.ax
2012-01-07 22:22 . 2012-01-07 22:22 172032 ----a-w- c:\windows\SysWow64\libbluray.dll
2012-01-07 22:21 . 2012-01-07 22:21 6366094 ----a-w- c:\windows\SysWow64\avcodec-lav-53.dll
2012-01-07 22:21 . 2012-01-07 22:21 354979 ----a-w- c:\windows\SysWow64\swscale-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 203306 ----a-w- c:\windows\SysWow64\avutil-lav-51.dll
2012-01-07 22:21 . 2012-01-07 22:21 138727 ----a-w- c:\windows\SysWow64\avfilter-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 1007151 ----a-w- c:\windows\SysWow64\avformat-lav-53.dll
2012-01-07 22:20 . 2012-01-07 22:20 142336 ----a-w- c:\windows\SysWow64\IntelQuickSyncDecoder.dll
2012-01-07 22:19 . 2012-01-07 22:19 169984 ----a-w- c:\windows\system32\IntelQuickSyncDecoder.dll
2012-01-05 18:23 . 2012-01-05 18:23 4369920 ----a-w- c:\windows\system32\ffdshow.ax
2012-01-05 18:19 . 2012-01-05 18:19 4431872 ----a-w- c:\windows\system32\ffmpeg.dll
2011-12-23 08:24 . 2011-08-01 17:23 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-12-20 18:53 . 2011-12-20 18:53 474624 ----a-w- c:\windows\system32\ff_kernelDeint.dll
2011-12-20 18:53 . 2011-12-20 18:53 631296 ----a-w- c:\windows\system32\TomsMoComp_ff.dll
2011-12-20 18:52 . 2011-12-20 18:52 114176 ----a-w- c:\windows\system32\ff_wmv9.dll
2011-12-20 18:52 . 2011-12-20 18:52 156672 ----a-w- c:\windows\system32\ff_libmad.dll
2011-12-20 18:52 . 2011-12-20 18:52 1532928 ----a-w- c:\windows\system32\ff_samplerate.dll
2011-12-20 18:52 . 2011-12-20 18:52 116224 ----a-w- c:\windows\system32\ff_liba52.dll
2011-12-20 18:52 . 2011-12-20 18:52 222720 ----a-w- c:\windows\system32\ff_libdts.dll
2011-12-20 18:52 . 2011-12-20 18:52 183808 ----a-w- c:\windows\system32\ff_unrar.dll
2011-12-20 18:51 . 2011-12-20 18:51 359424 ----a-w- c:\windows\system32\ff_libfaad2.dll
2011-12-20 18:51 . 2011-12-20 18:51 190464 ----a-w- c:\windows\system32\libmpeg2_ff.dll
2011-12-20 18:50 . 2011-12-20 18:50 79360 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-12-20 18:49 . 2011-12-20 18:49 99328 ----a-w- c:\windows\SysWow64\ff_wmv9.dll
2011-12-20 18:49 . 2011-12-20 18:49 158720 ----a-w- c:\windows\SysWow64\ff_unrar.dll
2011-12-20 18:49 . 2011-12-20 18:49 146944 ----a-w- c:\windows\SysWow64\ff_libmad.dll
2011-12-20 18:49 . 2011-12-20 18:49 212480 ----a-w- c:\windows\SysWow64\ff_libdts.dll
2011-12-20 18:49 . 2011-12-20 18:49 1525248 ----a-w- c:\windows\SysWow64\ff_samplerate.dll
2011-12-20 18:49 . 2011-12-20 18:49 115200 ----a-w- c:\windows\SysWow64\ff_liba52.dll
2011-12-20 18:49 . 2011-12-20 18:49 328704 ----a-w- c:\windows\SysWow64\ff_libfaad2.dll
2011-12-20 18:49 . 2011-12-20 18:49 260608 ----a-w- c:\windows\SysWow64\TomsMoComp_ff.dll
2011-12-20 18:49 . 2011-12-20 18:49 137728 ----a-w- c:\windows\SysWow64\libmpeg2_ff.dll
2011-12-07 19:37 . 2011-12-07 19:37 148992 ----a-w- c:\windows\system32\Lagarith.dll
2011-12-07 19:32 . 2011-12-07 19:32 216064 ----a-w- c:\windows\SysWow64\Lagarith.dll
2011-11-28 18:01 . 2011-07-31 21:04 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-07-31 21:04 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-11-24 11:03 . 2011-11-25 20:17 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2011-11-24 04:52 . 2011-12-14 21:41 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-11-19 14:58 . 2012-01-11 09:28 77312 ----a-w- c:\windows\system32\packager.dll
2011-11-19 14:01 . 2012-01-11 09:28 67072 ----a-w- c:\windows\SysWow64\packager.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-12_18.58.30 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2012-02-12 16:35 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2012-02-15 05:49 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-02-12 16:35 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-15 05:49 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-02-12 16:35 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-15 05:49 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-07-31 20:50 . 2012-02-13 11:07 53282 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-02-14 17:12 32142 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2011-07-31 20:30 . 2012-02-12 16:37 10332 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-929336643-3941806804-3591378682-1000_UserData.bin
+ 2011-07-31 20:30 . 2012-02-14 17:12 10332 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-929336643-3941806804-3591378682-1000_UserData.bin
- 2011-07-31 19:47 . 2012-02-11 11:15 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-07-31 19:47 . 2012-02-14 17:14 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-31 19:47 . 2012-02-11 11:15 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-31 19:47 . 2012-02-14 17:14 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-02-11 11:15 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-14 17:14 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-08-01 09:14 . 2012-02-12 19:10 2190 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
- 2011-08-01 09:14 . 2012-02-12 16:34 2190 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2012-02-14 16:50 . 2012-02-14 16:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-02-12 16:34 . 2012-02-12 16:34 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-02-12 16:34 . 2012-02-12 16:34 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-02-14 16:50 . 2012-02-14 16:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-08-01 13:48 . 2012-02-15 05:49 305230 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:36 . 2012-02-14 16:55 655082 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-02-12 16:46 655082 c:\windows\system32\perfh009.dat
+ 2009-07-14 15:18 . 2012-02-14 16:55 669378 c:\windows\system32\perfh005.dat
- 2009-07-14 15:18 . 2012-02-12 16:46 669378 c:\windows\system32\perfh005.dat
+ 2009-07-14 02:36 . 2012-02-14 16:55 122540 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-02-12 16:46 122540 c:\windows\system32\perfc009.dat
- 2009-07-14 15:18 . 2012-02-12 16:46 141568 c:\windows\system32\perfc005.dat
+ 2009-07-14 15:18 . 2012-02-14 16:55 141568 c:\windows\system32\perfc005.dat
- 2009-07-14 05:01 . 2012-02-12 16:34 276452 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-02-14 16:49 276452 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2012-02-14 17:18 . 2012-01-04 17:02 54008112 c:\windows\system32\MRT.exe
- 2011-11-25 20:25 . 2012-02-12 16:34 12335040 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-11-25 20:25 . 2012-02-14 16:49 12335040 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2011-08-01 11:14 . 2012-02-12 16:34 37429716 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-929336643-3941806804-3591378682-1000-8192.dat
+ 2011-08-01 11:14 . 2012-02-14 16:49 37429716 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-929336643-3941806804-3591378682-1000-8192.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="d:\program files (x86)\uTorrent\uTorrent.exe" [2012-02-11 738680]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"SAOB Monitor"="c:\program files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-11-16 2536752]
"TrueImageMonitor.exe"="d:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-17 5566176]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2011-10-04 1631296]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
.
c:\users\Mirek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Mozilla Thunderbird.lnk - c:\program files (x86)\Mozilla Thunderbird\thunderbird.exe [2011-8-6 399512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2011-7-27 1211680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"DisableCAD"= 1 (0x1)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
@="Service"
.
R0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HyperW7Svc;HyperW7 Service;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-07-08 144232]
R2 PS3 Media Server;PS3 Media Server;d:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-11-24 487456]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-11-01 340240]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2011-10-04 89152]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2011-10-04 175168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;d:\program files\HWiNFO64\HWiNFO64A.SYS [2011-05-22 28032]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiifx64.sys [x]
S1 PHCORE;PHCORE;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS [2011-07-08 32104]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-09-04 3246040]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-10-19 661504]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-10-20 135440]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe [x]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [2011-07-22 41832]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-07-22 60264]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
S2 risdxc;risdxc;c:\windows\system32\DRIVERS\risdxc64.sys [x]
S2 smihlp;SMI Helper Driver (smihlp);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [2009-03-13 13840]
S2 SROSVC;Screen Reading Optimizer Service Program;c:\program files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2011-03-02 443240]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
S2 UpekSrvc;Upek Service;c:\program files\ThinkVantage Fingerprint Software\upeksrvc.exe [2010-12-07 54608]
S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-03-25 539248]
S2 ZcfgSvc7;Intel(R) PROSet/Wireless ZeroConfig Service;c:\program files\Intel\WiFi\bin\ZCfgSvc7.exe [2011-11-01 994064]
S3 5U877;USB Video Device;c:\windows\system32\DRIVERS\5U877.sys [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-15 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
2012-02-15 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PSQLLauncher"="c:\program files\ThinkVantage Fingerprint Software\launcher.exe" [2010-12-07 85328]
"ALCKRESI.EXE"="c:\program files\Lenovo\AutoLock\ALCKRESI.EXE" [2011-07-13 281960]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"TpShocks"="TpShocks.exe" [2011-03-29 380776]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2011-04-26 310912]
"Služba Acronis Scheduler2"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-12-17 391144]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2011-07-22 42344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-10-21 416024]
"IntelPROSet"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"ForteConfig"="c:\program files\Conexant\ForteConfig\fmapp.exe" [2010-10-26 49056]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
LSP: d:\program files (x86)\vm\vsocklib.dll
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
TCP: Interfaces\{57DB78C8-502A-4E3C-BE85-CF890534C409}: NameServer = 0.0.0.0
DPF: {816BE035-1450-40D0-8A3B-BA7825A83A77} - hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
FF - ProfilePath - c:\users\Mirek\AppData\Roaming\Mozilla\Firefox\Profiles\uqaqds8w.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - google
FF - prefs.js: network.proxy.type - 0
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
Celkový čas: 2012-02-15 12:29:33
ComboFix-quarantined-files.txt 2012-02-15 11:28
ComboFix2.txt 2012-02-13 11:59
ComboFix3.txt 2012-02-12 19:02
.
Před spuštěním: Volných bajtů: 64 951 926 784
Po spuštění: Volných bajtů: 64 766 791 680
.
- - End Of File - - 2976C2E2424A91C0398BDA0DBCF61684
ComboFix 12-02-11.03 - Mirek 15.02.2012 6:57.10.4 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4007.1641 [GMT 1:00]
Spuštěný z: c:\users\Mirek\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Mirek\Desktop\CFScript.txt.txt
AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\PCDr\5849\AddOnDownloaded\6caa3aae-ef7a-46e1-8cf0-de07c37a32af.dll
c:\programdata\PCDr\5849\AddOnDownloaded\7d08b206-22ae-4429-9e22-772698e3ca65.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-01-15 do 2012-02-15 )))))))))))))))))))))))))))))))
.
.
2012-02-15 09:21 . 2012-02-15 09:21 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-02-14 17:13 . 2012-01-06 05:15 8602168 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{EA91B8FB-2F2E-4584-A147-12B33C44AB3B}\mpengine.dll
2012-02-12 14:49 . 2012-02-12 14:49 -------- d-----w- c:\program files\trend micro
2012-02-12 14:49 . 2012-02-12 14:50 -------- d-----w- C:\rsit
2012-02-12 12:26 . 2011-11-28 17:51 24408 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-02-12 12:26 . 2011-11-28 17:53 304472 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-02-12 12:26 . 2011-11-28 17:52 42328 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-02-12 12:26 . 2011-11-28 17:54 591192 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-02-12 12:26 . 2011-11-28 17:52 58712 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-02-12 12:26 . 2011-11-28 18:01 256960 ----a-w- c:\windows\system32\aswBoot.exe
2012-02-12 12:26 . 2011-11-28 17:52 66904 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2012-02-12 10:15 . 2012-02-12 10:15 -------- d-----w- c:\program files (x86)\ESET
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\programdata\MicroWorld
2012-02-12 10:11 . 2012-02-12 10:11 -------- d-----w- c:\program files (x86)\Common Files\MicroWorld
2012-02-11 21:09 . 2012-02-12 16:58 -------- d-----w- c:\programdata\PassMark
2012-02-06 08:59 . 2012-02-14 17:10 -------- d--h--w- c:\windows\system32\WLANProfiles
2012-02-06 08:58 . 2012-02-06 09:17 -------- d-----w- c:\programdata\Intel
2012-02-06 08:56 . 2012-02-06 08:56 -------- d-----w- c:\program files\Common Files\Intel
2012-02-06 08:56 . 2012-02-06 08:57 -------- d-----w- c:\program files (x86)\Cisco
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Roaming\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\users\Mirek\AppData\Local\Zoner
2012-02-05 18:46 . 2012-02-05 18:46 -------- d-----w- c:\programdata\Zoner
2012-01-30 19:54 . 2012-02-12 17:08 -------- d-----w- c:\users\Mirek\AppData\Local\MetaGeek,_LLC
2012-01-29 17:37 . 2006-09-12 19:00 80896 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPP78.DLL
2012-01-29 17:37 . 2006-09-12 19:00 27136 ----a-w- c:\windows\system32\Spool\prtprocs\x64\CNMPD78.DLL
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-26 23:52 . 2011-08-02 16:11 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-15 13:08 . 2012-01-15 13:08 39864 ----a-w- c:\windows\SysWow64\dischandler.exe
2012-01-14 20:09 . 2012-01-14 20:09 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2012-01-14 20:09 . 2012-01-14 20:09 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-11 09:41 . 2010-06-24 10:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2012-01-09 20:03 . 2012-01-09 20:03 3478016 ----a-w- c:\windows\SysWow64\ffdshow.ax
2012-01-09 20:00 . 2012-01-09 20:00 4346880 ----a-w- c:\windows\SysWow64\ffmpeg.dll
2012-01-07 22:24 . 2012-01-07 22:24 568320 ----a-w- c:\windows\system32\LAVVideo.ax
2012-01-07 22:24 . 2012-01-07 22:24 552448 ----a-w- c:\windows\system32\LAVSplitter.ax
2012-01-07 22:24 . 2012-01-07 22:24 243200 ----a-w- c:\windows\system32\LAVAudio.ax
2012-01-07 22:24 . 2012-01-07 22:24 202240 ----a-w- c:\windows\system32\libbluray.dll
2012-01-07 22:24 . 2012-01-07 22:24 6557838 ----a-w- c:\windows\system32\avcodec-lav-53.dll
2012-01-07 22:24 . 2012-01-07 22:24 379129 ----a-w- c:\windows\system32\swscale-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 209331 ----a-w- c:\windows\system32\avutil-lav-51.dll
2012-01-07 22:24 . 2012-01-07 22:24 125782 ----a-w- c:\windows\system32\avfilter-lav-2.dll
2012-01-07 22:24 . 2012-01-07 22:24 1020391 ----a-w- c:\windows\system32\avformat-lav-53.dll
2012-01-07 22:22 . 2012-01-07 22:22 460800 ----a-w- c:\windows\SysWow64\LAVSplitter.ax
2012-01-07 22:22 . 2012-01-07 22:22 448000 ----a-w- c:\windows\SysWow64\LAVVideo.ax
2012-01-07 22:22 . 2012-01-07 22:22 212992 ----a-w- c:\windows\SysWow64\LAVAudio.ax
2012-01-07 22:22 . 2012-01-07 22:22 172032 ----a-w- c:\windows\SysWow64\libbluray.dll
2012-01-07 22:21 . 2012-01-07 22:21 6366094 ----a-w- c:\windows\SysWow64\avcodec-lav-53.dll
2012-01-07 22:21 . 2012-01-07 22:21 354979 ----a-w- c:\windows\SysWow64\swscale-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 203306 ----a-w- c:\windows\SysWow64\avutil-lav-51.dll
2012-01-07 22:21 . 2012-01-07 22:21 138727 ----a-w- c:\windows\SysWow64\avfilter-lav-2.dll
2012-01-07 22:21 . 2012-01-07 22:21 1007151 ----a-w- c:\windows\SysWow64\avformat-lav-53.dll
2012-01-07 22:20 . 2012-01-07 22:20 142336 ----a-w- c:\windows\SysWow64\IntelQuickSyncDecoder.dll
2012-01-07 22:19 . 2012-01-07 22:19 169984 ----a-w- c:\windows\system32\IntelQuickSyncDecoder.dll
2012-01-05 18:23 . 2012-01-05 18:23 4369920 ----a-w- c:\windows\system32\ffdshow.ax
2012-01-05 18:19 . 2012-01-05 18:19 4431872 ----a-w- c:\windows\system32\ffmpeg.dll
2011-12-23 08:24 . 2011-08-01 17:23 414368 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2011-12-20 18:53 . 2011-12-20 18:53 474624 ----a-w- c:\windows\system32\ff_kernelDeint.dll
2011-12-20 18:53 . 2011-12-20 18:53 631296 ----a-w- c:\windows\system32\TomsMoComp_ff.dll
2011-12-20 18:52 . 2011-12-20 18:52 114176 ----a-w- c:\windows\system32\ff_wmv9.dll
2011-12-20 18:52 . 2011-12-20 18:52 156672 ----a-w- c:\windows\system32\ff_libmad.dll
2011-12-20 18:52 . 2011-12-20 18:52 1532928 ----a-w- c:\windows\system32\ff_samplerate.dll
2011-12-20 18:52 . 2011-12-20 18:52 116224 ----a-w- c:\windows\system32\ff_liba52.dll
2011-12-20 18:52 . 2011-12-20 18:52 222720 ----a-w- c:\windows\system32\ff_libdts.dll
2011-12-20 18:52 . 2011-12-20 18:52 183808 ----a-w- c:\windows\system32\ff_unrar.dll
2011-12-20 18:51 . 2011-12-20 18:51 359424 ----a-w- c:\windows\system32\ff_libfaad2.dll
2011-12-20 18:51 . 2011-12-20 18:51 190464 ----a-w- c:\windows\system32\libmpeg2_ff.dll
2011-12-20 18:50 . 2011-12-20 18:50 79360 ----a-w- c:\windows\SysWow64\ff_vfw.dll
2011-12-20 18:49 . 2011-12-20 18:49 99328 ----a-w- c:\windows\SysWow64\ff_wmv9.dll
2011-12-20 18:49 . 2011-12-20 18:49 158720 ----a-w- c:\windows\SysWow64\ff_unrar.dll
2011-12-20 18:49 . 2011-12-20 18:49 146944 ----a-w- c:\windows\SysWow64\ff_libmad.dll
2011-12-20 18:49 . 2011-12-20 18:49 212480 ----a-w- c:\windows\SysWow64\ff_libdts.dll
2011-12-20 18:49 . 2011-12-20 18:49 1525248 ----a-w- c:\windows\SysWow64\ff_samplerate.dll
2011-12-20 18:49 . 2011-12-20 18:49 115200 ----a-w- c:\windows\SysWow64\ff_liba52.dll
2011-12-20 18:49 . 2011-12-20 18:49 328704 ----a-w- c:\windows\SysWow64\ff_libfaad2.dll
2011-12-20 18:49 . 2011-12-20 18:49 260608 ----a-w- c:\windows\SysWow64\TomsMoComp_ff.dll
2011-12-20 18:49 . 2011-12-20 18:49 137728 ----a-w- c:\windows\SysWow64\libmpeg2_ff.dll
2011-12-07 19:37 . 2011-12-07 19:37 148992 ----a-w- c:\windows\system32\Lagarith.dll
2011-12-07 19:32 . 2011-12-07 19:32 216064 ----a-w- c:\windows\SysWow64\Lagarith.dll
2011-11-28 18:01 . 2011-07-31 21:04 41184 ----a-w- c:\windows\avastSS.scr
2011-11-28 18:01 . 2011-07-31 21:04 199816 ----a-w- c:\windows\SysWow64\aswBoot.exe
2011-11-24 11:03 . 2011-11-25 20:17 54728 ----a-w- c:\windows\system32\drivers\Soluto.sys
2011-11-24 04:52 . 2011-12-14 21:41 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-11-19 14:58 . 2012-01-11 09:28 77312 ----a-w- c:\windows\system32\packager.dll
2011-11-19 14:01 . 2012-01-11 09:28 67072 ----a-w- c:\windows\SysWow64\packager.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-02-12_18.58.30 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2012-02-12 16:35 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2012-02-15 05:49 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2012-02-12 16:35 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-15 05:49 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-02-12 16:35 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-15 05:49 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-07-31 20:50 . 2012-02-13 11:07 53282 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-02-14 17:12 32142 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
- 2011-07-31 20:30 . 2012-02-12 16:37 10332 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-929336643-3941806804-3591378682-1000_UserData.bin
+ 2011-07-31 20:30 . 2012-02-14 17:12 10332 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-929336643-3941806804-3591378682-1000_UserData.bin
- 2011-07-31 19:47 . 2012-02-11 11:15 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-07-31 19:47 . 2012-02-14 17:14 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-31 19:47 . 2012-02-11 11:15 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-31 19:47 . 2012-02-14 17:14 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2012-02-11 11:15 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2012-02-14 17:14 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-08-01 09:14 . 2012-02-12 19:10 2190 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
- 2011-08-01 09:14 . 2012-02-12 16:34 2190 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2012-02-14 16:50 . 2012-02-14 16:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-02-12 16:34 . 2012-02-12 16:34 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-02-12 16:34 . 2012-02-12 16:34 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-02-14 16:50 . 2012-02-14 16:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-08-01 13:48 . 2012-02-15 05:49 305230 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:36 . 2012-02-14 16:55 655082 c:\windows\system32\perfh009.dat
- 2009-07-14 02:36 . 2012-02-12 16:46 655082 c:\windows\system32\perfh009.dat
+ 2009-07-14 15:18 . 2012-02-14 16:55 669378 c:\windows\system32\perfh005.dat
- 2009-07-14 15:18 . 2012-02-12 16:46 669378 c:\windows\system32\perfh005.dat
+ 2009-07-14 02:36 . 2012-02-14 16:55 122540 c:\windows\system32\perfc009.dat
- 2009-07-14 02:36 . 2012-02-12 16:46 122540 c:\windows\system32\perfc009.dat
- 2009-07-14 15:18 . 2012-02-12 16:46 141568 c:\windows\system32\perfc005.dat
+ 2009-07-14 15:18 . 2012-02-14 16:55 141568 c:\windows\system32\perfc005.dat
- 2009-07-14 05:01 . 2012-02-12 16:34 276452 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-02-14 16:49 276452 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2012-02-14 17:18 . 2012-01-04 17:02 54008112 c:\windows\system32\MRT.exe
- 2011-11-25 20:25 . 2012-02-12 16:34 12335040 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2011-11-25 20:25 . 2012-02-14 16:49 12335040 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2011-08-01 11:14 . 2012-02-12 16:34 37429716 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-929336643-3941806804-3591378682-1000-8192.dat
+ 2011-08-01 11:14 . 2012-02-14 16:49 37429716 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-929336643-3941806804-3591378682-1000-8192.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="d:\program files (x86)\uTorrent\uTorrent.exe" [2012-02-11 738680]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"RotateImage"="c:\program files (x86)\Integrated Camera Driver\X64\RCIMGDIR.exe" [2008-10-30 55808]
"SAOB Monitor"="c:\program files (x86)\Acronis\TrueImageHome\OnlineBackupStandalone\TrueImageMonitor.exe" [2010-11-16 2536752]
"TrueImageMonitor.exe"="d:\program files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe" [2010-12-17 5566176]
"PWMTRV"="c:\progra~2\ThinkPad\UTILIT~1\PWMTR64V.DLL" [2011-10-04 1631296]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
.
c:\users\Mirek\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Mozilla Thunderbird.lnk - c:\program files (x86)\Mozilla Thunderbird\thunderbird.exe [2011-8-6 399512]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\ThinkPad\Bluetooth Software\BTTray.exe [2011-7-27 1211680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
"DisableCAD"= 1 (0x1)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux1"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Notification Packages REG_MULTI_SZ scecli c:\program files\ThinkVantage Fingerprint Software\psqlpwd.dll
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MSIServer]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SolutoService]
@="Service"
.
R0 Soluto;Soluto;c:\windows\system32\DRIVERS\Soluto.sys [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HyperW7Svc;HyperW7 Service;c:\program files\Lenovo\RapidBoot\HyperW7Svc64.exe [2011-07-08 144232]
R2 PS3 Media Server;PS3 Media Server;d:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2011-11-24 487456]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\amppal.sys [x]
R3 btusbflt;Bluetooth USB Filter;c:\windows\system32\drivers\btusbflt.sys [x]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 cpuz135;cpuz135;c:\windows\TEMP\cpuz135\cpuz135_x64.sys [x]
R3 intaud_WaveExtensible;Intel WiDi Audio Device;c:\windows\system32\drivers\intelaud.sys [x]
R3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
R3 iwdbus;IWD Bus Enumerator;c:\windows\system32\DRIVERS\iwdbus.sys [x]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-11-01 340240]
R3 Power Manager DBC Service;Power Manager DBC Service;c:\program files (x86)\ThinkPad\Utilities\PWMDBSVC.EXE [2011-10-04 89152]
R3 PwmEWSvc;Cisco EnergyWise Enabler;c:\program files (x86)\ThinkPad\Utilities\PWMEWSVC.EXE [2011-10-04 175168]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S0 TPDIGIMN;TPDIGIMN;c:\windows\System32\DRIVERS\ApsHM64.sys [x]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 HWiNFO32;HWiNFO32/64 Kernel Driver;d:\program files\HWiNFO64\HWiNFO64A.SYS [2011-05-22 28032]
S1 lenovo.smi;Lenovo System Interface Driver;c:\windows\system32\DRIVERS\smiifx64.sys [x]
S1 PHCORE;PHCORE;c:\program files\Lenovo\RapidBoot\PHCORE64.SYS [2011-07-08 32104]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-09-04 3246040]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2011-10-19 661504]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [x]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) 3.0 + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2011-10-20 135440]
S2 CxAudMsg;Conexant Audio Message Service;c:\windows\system32\CxAudMsg64.exe [x]
S2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service;c:\program files (x86)\Intel\Services\IPT\jhi_service.exe [2011-02-23 212944]
S2 LENOVO.CAMMUTE;Lenovo Camera Mute;c:\program files\Lenovo\Communications Utility\CAMMUTE.exe [2011-07-22 41832]
S2 LENOVO.MICMUTE;Lenovo Microphone Mute;c:\program files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
S2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction;c:\program files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-07-22 60264]
S2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll;c:\program files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 133992]
S2 risdxc;risdxc;c:\windows\system32\DRIVERS\risdxc64.sys [x]
S2 smihlp;SMI Helper Driver (smihlp);c:\program files\ThinkVantage Fingerprint Software\smihlp.sys [2009-03-13 13840]
S2 SROSVC;Screen Reading Optimizer Service Program;c:\program files (x86)\Lenovo\Screen Reading Optimizer\SROSVC.exe [2011-03-02 443240]
S2 TPHKLOAD;Lenovo Hotkey Client Loader;c:\program files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 145256]
S2 TPHKSVC;On Screen Display;c:\program files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-02-22 2656280]
S2 UpekSrvc;Upek Service;c:\program files\ThinkVantage Fingerprint Software\upeksrvc.exe [2010-12-07 54608]
S2 vmci;VMware vmci;c:\windows\system32\drivers\vmci.sys [x]
S2 VMUSBArbService;VMware USB Arbitration Service;c:\program files (x86)\Common Files\VMware\USB\vmware-usbarbitrator.exe [2011-03-25 539248]
S2 ZcfgSvc7;Intel(R) PROSet/Wireless ZeroConfig Service;c:\program files\Intel\WiFi\bin\ZCfgSvc7.exe [2011-11-01 994064]
S3 5U877;USB Video Device;c:\windows\system32\DRIVERS\5U877.sys [x]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® 3.0 + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Ovladač adaptéru řady Intel(R) Wireless WiFi Link 5000 pro systém Windows 7 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-02-15 c:\windows\Tasks\PCDoctorBackgroundMonitorTask.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
2012-02-15 c:\windows\Tasks\SystemToolsDailyTest.job
- c:\program files\PC-Doctor\uaclauncher.exe [2011-03-31 15:06]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-11-28 18:01 134384 ----a-w- c:\program files\AVAST Software\Avast\ashShA64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"PSQLLauncher"="c:\program files\ThinkVantage Fingerprint Software\launcher.exe" [2010-12-07 85328]
"ALCKRESI.EXE"="c:\program files\Lenovo\AutoLock\ALCKRESI.EXE" [2011-07-13 281960]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"TpShocks"="TpShocks.exe" [2011-03-29 380776]
"SmartAudio"="c:\program files\CONEXANT\SAII\SAIICpl.exe" [2011-04-26 310912]
"Služba Acronis Scheduler2"="c:\program files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe" [2010-12-17 391144]
"LENOVO.TPKNRRES"="c:\program files\Lenovo\Communications Utility\TPKNRRES.exe" [2011-07-22 42344]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-10-21 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-10-21 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-10-21 416024]
"IntelPROSet"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-11-01 1935120]
"ForteConfig"="c:\program files\Conexant\ForteConfig\fmapp.exe" [2010-10-26 49056]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://www.google.cz/
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\ThinkPad\Bluetooth Software\btsendto_ie.htm
LSP: d:\program files (x86)\vm\vsocklib.dll
TCP: DhcpNameServer = 77.48.254.254 77.48.100.254
TCP: Interfaces\{57DB78C8-502A-4E3C-BE85-CF890534C409}: NameServer = 0.0.0.0
DPF: {816BE035-1450-40D0-8A3B-BA7825A83A77} - hxxp://support.lenovo.com/Resources/Lenovo/AutoDetect/Lenovo_AutoDetect2.cab
FF - ProfilePath - c:\users\Mirek\AppData\Roaming\Mozilla\Firefox\Profiles\uqaqds8w.default\
FF - prefs.js: browser.search.selectedEngine - Seznam
FF - prefs.js: browser.startup.homepage - google
FF - prefs.js: network.proxy.type - 0
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-929336643-3941806804-3591378682-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*bŤBfv*€Ä¤\OpenWithList]
@Class="Shell"
"a"="vlc.exe"
"MRUList"="a"
.
Celkový čas: 2012-02-15 12:29:33
ComboFix-quarantined-files.txt 2012-02-15 11:28
ComboFix2.txt 2012-02-13 11:59
ComboFix3.txt 2012-02-12 19:02
.
Před spuštěním: Volných bajtů: 64 951 926 784
Po spuštění: Volných bajtů: 64 766 791 680
.
- - End Of File - - 2976C2E2424A91C0398BDA0DBCF61684
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nefunkční internet
Log již vypadá OK. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Nefunkční internet
Mockrát děkuju internet běží jak má a i vše ostatní.Super ještě jednou díky. 
-
Rudy
- Site Admin
- Příspěvky: 119515
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nefunkční internet
Rádo se stalo!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?