samovolné vypínání notebooku.

Zpráva

Vasek2 · #1 Příspěvek od **Vasek2** » 08 bře 2012 17:20

Ahoj, potřeboval bych poradit. Nedávno jsem zakoupil nový notebook acer ferrari one. Šlape jako hodinky, ale občas se mi stane, že mi prostě vypne. Prostě se přehřeje, a vypne. Děkuji

Logfile of random's system information tool 1.09 (written by random/random)
Run by Vasek at 2012-03-08 17:08:15
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 194 GB (42%) free of 464 GB
Total RAM: 3838 MB (66% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 17:08:22, on 8.3.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v8.00 (8.00.7601.17514)
Boot mode: Normal

Running processes:
C:\Windows\PLFSetI.exe
C:\Program Files (x86)\Skype\Phone\Skype.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\SPB Backup\SPBBackupSync.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe
C:\Acer\WallPaper\FerrariWP\FerrariWP.exe
C:\Program Files (x86)\Launch Manager\LManager.EXE
C:\Windows\SysWOW64\RunDll32.exe
C:\Windows\SysWOW64\DVAPTray.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ArcCon.ac
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files\totalcmd\TOTALCMD.EXE
C:\Program Files\trend micro\Vasek.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 6j5871i42n
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://homepage.acer.com/rdr.aspx?b=ACA ... 6j5871i42n
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
F2 - REG:system.ini: UserInit=userinit.exe,
O2 - BHO: IEPlugin Class - {11222041-111B-46E3-BD29-EFB2449479B1} - C:\PROGRA~2\ArcSoft\VIDEOD~1\ARCURL~1.DLL
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: LinkAirBrowserHelper HistoryTriggerBHO - {21A88CB9-84D2-4020-A2D1-B25A21034884} - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: ToolbarBHO Class - {9519AF7E-638D-4933-BAD6-D33D23C79FE5} - C:\PROGRA~2\ArcSoft\RAWTHU~1\EXIFToolBar.dll
O2 - BHO: FaceCons - {B2A44031-7EAD-434C-AC9E-7F1DA176BA8C} - C:\Program Files (x86)\Facecons\facecons.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: Spb Wallet - {2913D3DD-9363-4C21-B205-C19A584A0674} - C:\Program Files (x86)\Spb Wallet\SpbWalletToolbar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
O3 - Toolbar: RAW Thumbnail Viewer - {F301665A-12F8-4331-804A-5BCBD379668C} - C:\PROGRA~2\ArcSoft\RAWTHU~1\EXIFToolBar.dll
O4 - HKLM\..\Run: [NortonOnlineBackupReminder] "C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" UNATTENDED
O4 - HKLM\..\Run: [FerrariWP] C:\Acer\WallPaper\FerrariWP\FerrariWP.exe
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [LManager] C:\Program Files (x86)\Launch Manager\LManager.exe
O4 - HKLM\..\Run: [facemoods] "C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe" /md I
O4 - HKLM\..\Run: [DVAPTray] C:\Windows\System32\DVAPTray.exe
O4 - HKLM\..\Run: [ArcSoft Connection Service] C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Vasek\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Facebook Update] "C:\Users\Vasek\AppData\Local\Facebook\Update\FacebookUpdate.exe" /c /nocrashserver
O4 - HKCU\..\Run: [Xvid] C:\Program Files (x86)\Xvid\CheckUpdate.exe
O4 - HKCU\..\Run: [PCSpeedUp] C:\Program Files (x86)\Zrychleni Pocitace\PCSpeedUp.lnk
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: SPB Backup Sync.lnk = C:\Program Files (x86)\SPB Backup\SPBBackupSync.exe
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files (x86)\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~2\MICROS~1\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O8 - Extra context menu item: Read EXIF - C:\Program Files (x86)\ArcSoft\RAW Thumbnail Viewer\ArcEXIFM.htm
O8 - Extra context menu item: Search the Web - C:\Program Files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
O8 - Extra context menu item: WikiKomentáře Google... - res://C:\Program Files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIE.dll
O9 - Extra button: @C:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: (no name) - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra 'Tools' menuitem: @C:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\Windows\WindowsMobile\INetRepl.dll
O9 - Extra button: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra 'Tools' menuitem: P&ropojené poznámky aplikace OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files (x86)\Microsoft Office\Office14\ONBttnIELinkedNotes.dll
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll/206 (file missing)
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Acer\Acer VCM\Skype4COM.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: BitComet Disk Boost Service (BITCOMET_HELPER_SERVICE) - www.BitComet.com - C:\Program Files (x86)\BitComet\tools\BitCometService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: Dritek WMI Service (DsiWMIService) - Dritek System Inc. - C:\Program Files (x86)\Launch Manager\dsiwmis.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: Acer ePower Service (ePowerSvc) - Acer Incorporated - C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GREGService - Acer Incorporated - C:\Program Files (x86)\Acer\Registration\GREGsvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: IviRegMgr - InterVideo - C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: KMService - Unknown owner - C:\Windows\system32\srvany.exe
O23 - Service: LicCtrl Service (LicCtrlService) - Unknown owner - C:\Windows\runservice.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Internet Pass-Through Service (PassThru Service) - Unknown owner - C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: Raw Socket Service (RS_Service) - Acer Incorporated - C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: Updater Service - Acer Group - C:\Program Files\Acer\Acer Updater\UpdaterService.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 16099 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
"c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe"
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe"
"C:\Program Files\Bonjour\mDNSResponder.exe"
"C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe"
"C:\Program Files (x86)\Launch Manager\dsiwmis.exe"
"C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\Acer\Registration\GREGsvc.exe"
C:\Windows\runservice.exe
"C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe"
"C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe"
"c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe"
"c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe"
C:\Windows\system32\svchost.exe -k imgsvc
"C:\Program Files\Acer\Acer Updater\UpdaterService.exe"
"c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe"
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe"
"C:\Program Files\Apoint2K\Apoint.exe"
"C:\Program Files\Apoint2K\ApMsgFwd.exe" -s{05FA8492-C047-4207-BE65-780D8591C113}
"Apntex.exe"
\??\C:\Windows\system32\conhost.exe "1035640034-604390655137821583234456607-588861482-1278994473-240013598273015165
"C:\Windows\PLFSetI.exe"
"C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
"C:\Windows\WindowsMobile\wmdc.exe"
"C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
C:\Windows\system32\svchost.exe -k WindowsMobile
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" -tray
"C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe"
"C:\Program Files (x86)\SPB Backup\SPBBackupSync.exe" /minimized
"C:\Program Files (x86)\DAEMON Tools Lite\DTShellHlp.exe"
"C:\Acer\WallPaper\FerrariWP\FerrariWP.exe"
"C:\Program Files (x86)\Launch Manager\LManager.EXE"
C:\Windows\SysWOW64\RunDll32.exe "C:\Program Files\WIDCOMM\Bluetooth Software\SysWOW64\BtMmHook.dll",SetAndWaitBtMmHook
"C:\Windows\System32\DVAPTray.exe"
"C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe"
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
C:\Windows\system32\wbem\unsecapp.exe -Embedding
"C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
ArcCon.ac 66270 0
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe"
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe"
{7530948C-FA99-432A-BB26-9B4987786596}
{525230EE-8360-4E2F-B400-09A4CFD08814}
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
taskmgr.exe /3
"C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe"
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\wuauclt.exe"
"C:\Program Files\totalcmd\TOTALCMD.EXE"
"C:\Windows\system32\SearchFilterHost.exe" 0 516 520 528 65536 524
"C:\Users\Vasek\Downloads\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001Core.job
C:\Windows\tasks\FacebookUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001UA.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001UA.job
C:\Windows\tasks\SUPERAntiSpyware Scheduled Task b85c029a-74f6-4a3b-b298-55f0a174eea2.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{11222041-111B-46E3-BD29-EFB2449479B1}]
IEPlugin Class - C:\PROGRA~2\ArcSoft\VIDEOD~1\ARCURL~1.DLL [2008-12-19 145920]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{21A88CB9-84D2-4020-A2D1-B25A21034884}]
HistoryTriggerBHO Class - C:\Program Files (x86)\LG Electronics\LG PC Suite IV\LinkAir\LinkAirBrowserHelper.dll [2011-09-27 36208]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.5.4.11.dll [2011-04-11 767280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll [2010-10-26 262144]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9519AF7E-638D-4933-BAD6-D33D23C79FE5}]
ToolbarBHO Class - C:\PROGRA~2\ArcSoft\RAWTHU~1\EXIFToolBar.dll [2009-07-10 65536]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
FACECONS Class - C:\Program Files (x86)\Facecons\facecons.dll [2011-08-01 167424]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-10-07 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2011-04-21 1535808]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2011-04-21 1000768]
{2913D3DD-9363-4C21-B205-C19A584A0674} - Spb Wallet - C:\Program Files (x86)\Spb Wallet\SpbWalletToolbar.dll [2010-02-08 114688]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll [2010-10-26 217088]
{F301665A-12F8-4331-804A-5BCBD379668C} - RAW Thumbnail Viewer - C:\PROGRA~2\ArcSoft\RAWTHU~1\EXIFToolBar.dll [2009-07-10 65536]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-13 11046504]
"Acer ePower Management"=C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe [2010-02-26 818720]
"Apoint"=C:\Program Files\Apoint2K\Apoint.exe [2009-05-21 295936]
"PLFSetI"=C:\Windows\PLFSetI.exe [2010-06-10 206208]
"MSC"=c:\Program Files\Microsoft Security Client\msseces.exe [2011-06-15 1436736]
"Windows Mobile Device Center"=C:\Windows\WindowsMobile\wmdc.exe [2007-05-31 660360]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]
"AdobeAAMUpdater-1.0"=C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Vasek\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-15 136176]
"Skype"=C:\Program Files (x86)\Skype\Phone\Skype.exe [2009-10-09 25623336]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]
"Facebook Update"=C:\Users\Vasek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-03 137536]
"Xvid"=C:\Program Files (x86)\Xvid\CheckUpdate.exe [2011-01-17 8192]
"PCSpeedUp"=C:\Program Files (x86)\Zrychleni Pocitace\PCSpeedUp.lnk [2011-11-15 2415]
"LG LinkAir"= []
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2011-11-10 3514176]
""= []
"NokiaSuite.exe"=C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe [2012-01-10 1083264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe /background []

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"NortonOnlineBackupReminder"=C:\Program Files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe [2009-07-25 588648]
"FerrariWP"=C:\Acer\WallPaper\FerrariWP\FerrariWP.exe [2009-09-15 145952]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-27 102400]
"LManager"=C:\Program Files (x86)\Launch Manager\LManager.exe [2009-11-26 830032]
"facemoods"=C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe [2010-10-26 323584]
"DVAPTray"=C:\Windows\System32\DVAPTray.exe []
"ArcSoft Connection Service"=C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe [2010-10-27 207424]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"DivXUpdate"=C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-07-29 1259376]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]
"Malwarebytes' Anti-Malware"=C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe [2012-01-13 460872]
"APSDaemon"=C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe [2011-11-01 59240]
"MyScreenCam"= []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
SPB Backup Sync.lnk - C:\Program Files (x86)\SPB Backup\SPBBackupSync.exe
WinZip Quick Pick.lnk - C:\Program Files (x86)\WinZip\WZQKPICK.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"VIDC.I420"=MSH263.DRV
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"VIDC.SP54"=SP5X_32.DLL
"VIDC.SP55"=SP5X_32.DLL
"VIDC.SP56"=SP5X_32.DLL
"VIDC.SP57"=SP5X_32.DLL
"VIDC.SP58"=SP5X_32.DLL
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv
"vidc.XVID"=xvidvfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux2"=wdmaud.drv
"vidc.pDAD"=prodad-codec.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-03-08 17:08:15 ----D---- C:\rsit
2012-03-08 17:08:15 ----D---- C:\Program Files\trend micro
2012-03-06 20:48:13 ----D---- C:\Program Files (x86)\My Screen Cam
2012-03-03 23:29:44 ----D---- C:\Users\Vasek\AppData\Roaming\SUPERAntiSpyware.com
2012-03-03 23:28:15 ----D---- C:\ProgramData\!SASCORE
2012-03-03 23:12:38 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2012-03-03 23:12:25 ----D---- C:\Program Files\SUPERAntiSpyware
2012-03-03 09:31:52 ----D---- C:\Program Files (x86)\Bptkfgttnbfwr
2012-02-26 16:12:35 ----A---- C:\Windows\SYSWOW64\XAudio2_7.dll
2012-02-26 16:12:35 ----A---- C:\Windows\SYSWOW64\XAPOFX1_5.dll
2012-02-26 16:12:35 ----A---- C:\Windows\system32\XAudio2_7.dll
2012-02-26 16:12:35 ----A---- C:\Windows\system32\XAPOFX1_5.dll
2012-02-26 16:12:34 ----A---- C:\Windows\SYSWOW64\xactengine3_7.dll
2012-02-26 16:12:34 ----A---- C:\Windows\system32\xactengine3_7.dll
2012-02-26 16:12:33 ----A---- C:\Windows\SYSWOW64\D3DCompiler_43.dll
2012-02-26 16:12:33 ----A---- C:\Windows\system32\D3DCompiler_43.dll
2012-02-26 16:12:31 ----A---- C:\Windows\SYSWOW64\d3dcsx_43.dll
2012-02-26 16:12:31 ----A---- C:\Windows\system32\d3dcsx_43.dll
2012-02-26 16:12:30 ----A---- C:\Windows\SYSWOW64\d3dx11_43.dll
2012-02-26 16:12:30 ----A---- C:\Windows\system32\d3dx11_43.dll
2012-02-26 16:12:29 ----A---- C:\Windows\SYSWOW64\d3dx10_43.dll
2012-02-26 16:12:29 ----A---- C:\Windows\system32\d3dx10_43.dll
2012-02-26 16:12:27 ----A---- C:\Windows\SYSWOW64\D3DX9_43.dll
2012-02-26 16:12:27 ----A---- C:\Windows\system32\D3DX9_43.dll
2012-02-26 16:12:26 ----A---- C:\Windows\SYSWOW64\XAPOFX1_4.dll
2012-02-26 16:12:26 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2012-02-26 16:12:25 ----A---- C:\Windows\SYSWOW64\XAudio2_6.dll
2012-02-26 16:12:25 ----A---- C:\Windows\system32\XAudio2_6.dll
2012-02-26 16:12:24 ----A---- C:\Windows\SYSWOW64\xactengine3_6.dll
2012-02-26 16:12:24 ----A---- C:\Windows\system32\xactengine3_6.dll
2012-02-26 16:12:23 ----A---- C:\Windows\SYSWOW64\X3DAudio1_7.dll
2012-02-26 16:12:23 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2012-02-26 16:12:21 ----A---- C:\Windows\SYSWOW64\XAudio2_5.dll
2012-02-26 16:12:21 ----A---- C:\Windows\system32\XAudio2_5.dll
2012-02-26 16:12:19 ----A---- C:\Windows\SYSWOW64\xactengine3_5.dll
2012-02-26 16:12:19 ----A---- C:\Windows\system32\xactengine3_5.dll
2012-02-26 16:12:17 ----A---- C:\Windows\SYSWOW64\D3DCompiler_42.dll
2012-02-26 16:12:17 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2012-02-26 16:12:14 ----A---- C:\Windows\SYSWOW64\d3dcsx_42.dll
2012-02-26 16:12:14 ----A---- C:\Windows\system32\d3dcsx_42.dll
2012-02-26 16:12:13 ----A---- C:\Windows\SYSWOW64\d3dx11_42.dll
2012-02-26 16:12:13 ----A---- C:\Windows\system32\d3dx11_42.dll
2012-02-26 16:12:12 ----A---- C:\Windows\SYSWOW64\d3dx10_42.dll
2012-02-26 16:12:12 ----A---- C:\Windows\system32\d3dx10_42.dll
2012-02-26 16:12:10 ----A---- C:\Windows\SYSWOW64\D3DX9_42.dll
2012-02-26 16:12:10 ----A---- C:\Windows\system32\D3DX9_42.dll
2012-02-26 16:12:07 ----A---- C:\Windows\SYSWOW64\d3dx10_41.dll
2012-02-26 16:12:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_41.dll
2012-02-26 16:12:07 ----A---- C:\Windows\system32\d3dx10_41.dll
2012-02-26 16:12:07 ----A---- C:\Windows\system32\D3DCompiler_41.dll
2012-02-26 16:12:03 ----A---- C:\Windows\SYSWOW64\D3DX9_41.dll
2012-02-26 16:12:03 ----A---- C:\Windows\system32\D3DX9_41.dll
2012-02-26 16:12:02 ----A---- C:\Windows\SYSWOW64\XAPOFX1_3.dll
2012-02-26 16:12:02 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2012-02-26 16:12:01 ----A---- C:\Windows\SYSWOW64\XAudio2_4.dll
2012-02-26 16:12:01 ----A---- C:\Windows\system32\XAudio2_4.dll
2012-02-26 16:12:00 ----A---- C:\Windows\SYSWOW64\xactengine3_4.dll
2012-02-26 16:12:00 ----A---- C:\Windows\system32\xactengine3_4.dll
2012-02-26 16:11:59 ----A---- C:\Windows\SYSWOW64\X3DAudio1_6.dll
2012-02-26 16:11:59 ----A---- C:\Windows\system32\X3DAudio1_6.dll
2012-02-26 16:11:57 ----A---- C:\Windows\SYSWOW64\d3dx10_40.dll
2012-02-26 16:11:57 ----A---- C:\Windows\SYSWOW64\D3DCompiler_40.dll
2012-02-26 16:11:57 ----A---- C:\Windows\system32\d3dx10_40.dll
2012-02-26 16:11:57 ----A---- C:\Windows\system32\D3DCompiler_40.dll
2012-02-26 16:11:54 ----A---- C:\Windows\SYSWOW64\D3DX9_40.dll
2012-02-26 16:11:54 ----A---- C:\Windows\system32\D3DX9_40.dll
2012-02-26 16:11:52 ----A---- C:\Windows\SYSWOW64\XAudio2_3.dll
2012-02-26 16:11:52 ----A---- C:\Windows\SYSWOW64\XAPOFX1_2.dll
2012-02-26 16:11:52 ----A---- C:\Windows\system32\XAudio2_3.dll
2012-02-26 16:11:52 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2012-02-26 16:11:51 ----A---- C:\Windows\SYSWOW64\xactengine3_3.dll
2012-02-26 16:11:51 ----A---- C:\Windows\system32\xactengine3_3.dll
2012-02-26 16:11:50 ----A---- C:\Windows\SYSWOW64\X3DAudio1_5.dll
2012-02-26 16:11:50 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2012-02-26 16:11:49 ----A---- C:\Windows\SYSWOW64\XAudio2_2.dll
2012-02-26 16:11:49 ----A---- C:\Windows\SYSWOW64\XAPOFX1_1.dll
2012-02-26 16:11:49 ----A---- C:\Windows\system32\XAudio2_2.dll
2012-02-26 16:11:49 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2012-02-26 16:11:47 ----A---- C:\Windows\SYSWOW64\xactengine3_2.dll
2012-02-26 16:11:47 ----A---- C:\Windows\system32\xactengine3_2.dll
2012-02-26 16:11:45 ----A---- C:\Windows\SYSWOW64\d3dx10_39.dll
2012-02-26 16:11:45 ----A---- C:\Windows\SYSWOW64\D3DCompiler_39.dll
2012-02-26 16:11:45 ----A---- C:\Windows\system32\d3dx10_39.dll
2012-02-26 16:11:45 ----A---- C:\Windows\system32\D3DCompiler_39.dll
2012-02-26 16:11:43 ----A---- C:\Windows\SYSWOW64\D3DX9_39.dll
2012-02-26 16:11:43 ----A---- C:\Windows\system32\D3DX9_39.dll
2012-02-26 16:11:41 ----A---- C:\Windows\SYSWOW64\XAudio2_1.dll
2012-02-26 16:11:41 ----A---- C:\Windows\SYSWOW64\XAPOFX1_0.dll
2012-02-26 16:11:41 ----A---- C:\Windows\system32\XAudio2_1.dll
2012-02-26 16:11:41 ----A---- C:\Windows\system32\XAPOFX1_0.dll
2012-02-26 16:11:40 ----A---- C:\Windows\SYSWOW64\xactengine3_1.dll
2012-02-26 16:11:40 ----A---- C:\Windows\system32\xactengine3_1.dll
2012-02-26 16:11:39 ----A---- C:\Windows\SYSWOW64\X3DAudio1_4.dll
2012-02-26 16:11:39 ----A---- C:\Windows\system32\X3DAudio1_4.dll
2012-02-26 16:11:37 ----A---- C:\Windows\SYSWOW64\d3dx10_38.dll
2012-02-26 16:11:37 ----A---- C:\Windows\SYSWOW64\D3DCompiler_38.dll
2012-02-26 16:11:37 ----A---- C:\Windows\system32\d3dx10_38.dll
2012-02-26 16:11:37 ----A---- C:\Windows\system32\D3DCompiler_38.dll
2012-02-26 16:11:33 ----A---- C:\Windows\SYSWOW64\D3DX9_38.dll
2012-02-26 16:11:33 ----A---- C:\Windows\system32\D3DX9_38.dll
2012-02-26 16:11:32 ----A---- C:\Windows\SYSWOW64\XAudio2_0.dll
2012-02-26 16:11:32 ----A---- C:\Windows\system32\XAudio2_0.dll
2012-02-26 16:11:30 ----A---- C:\Windows\SYSWOW64\xactengine3_0.dll
2012-02-26 16:11:30 ----A---- C:\Windows\system32\xactengine3_0.dll
2012-02-26 16:11:29 ----A---- C:\Windows\SYSWOW64\X3DAudio1_3.dll
2012-02-26 16:11:29 ----A---- C:\Windows\system32\X3DAudio1_3.dll
2012-02-26 16:11:27 ----A---- C:\Windows\SYSWOW64\d3dx10_37.dll
2012-02-26 16:11:27 ----A---- C:\Windows\SYSWOW64\D3DCompiler_37.dll
2012-02-26 16:11:27 ----A---- C:\Windows\system32\d3dx10_37.dll
2012-02-26 16:11:27 ----A---- C:\Windows\system32\D3DCompiler_37.dll
2012-02-26 16:11:24 ----A---- C:\Windows\SYSWOW64\D3DX9_37.dll
2012-02-26 16:11:24 ----A---- C:\Windows\system32\D3DX9_37.dll
2012-02-26 16:11:23 ----A---- C:\Windows\SYSWOW64\xactengine2_10.dll
2012-02-26 16:11:23 ----A---- C:\Windows\system32\xactengine2_10.dll
2012-02-26 16:11:20 ----A---- C:\Windows\SYSWOW64\d3dx10_36.dll
2012-02-26 16:11:20 ----A---- C:\Windows\SYSWOW64\D3DCompiler_36.dll
2012-02-26 16:11:20 ----A---- C:\Windows\system32\d3dx10_36.dll
2012-02-26 16:11:20 ----A---- C:\Windows\system32\D3DCompiler_36.dll
2012-02-26 16:11:17 ----A---- C:\Windows\SYSWOW64\d3dx9_36.dll
2012-02-26 16:11:17 ----A---- C:\Windows\system32\d3dx9_36.dll
2012-02-26 16:11:16 ----A---- C:\Windows\SYSWOW64\xactengine2_9.dll
2012-02-26 16:11:16 ----A---- C:\Windows\system32\xactengine2_9.dll
2012-02-26 16:11:14 ----A---- C:\Windows\SYSWOW64\d3dx10_35.dll
2012-02-26 16:11:14 ----A---- C:\Windows\system32\d3dx10_35.dll
2012-02-26 16:11:13 ----A---- C:\Windows\SYSWOW64\D3DCompiler_35.dll
2012-02-26 16:11:13 ----A---- C:\Windows\system32\D3DCompiler_35.dll
2012-02-26 16:11:11 ----A---- C:\Windows\SYSWOW64\d3dx9_35.dll
2012-02-26 16:11:11 ----A---- C:\Windows\system32\d3dx9_35.dll
2012-02-26 16:11:09 ----A---- C:\Windows\SYSWOW64\xactengine2_8.dll
2012-02-26 16:11:09 ----A---- C:\Windows\SYSWOW64\X3DAudio1_2.dll
2012-02-26 16:11:09 ----A---- C:\Windows\system32\xactengine2_8.dll
2012-02-26 16:11:09 ----A---- C:\Windows\system32\X3DAudio1_2.dll
2012-02-26 16:11:07 ----A---- C:\Windows\SYSWOW64\d3dx10_34.dll
2012-02-26 16:11:07 ----A---- C:\Windows\SYSWOW64\D3DCompiler_34.dll
2012-02-26 16:11:07 ----A---- C:\Windows\system32\d3dx10_34.dll
2012-02-26 16:11:07 ----A---- C:\Windows\system32\D3DCompiler_34.dll
2012-02-26 16:11:04 ----A---- C:\Windows\SYSWOW64\d3dx9_34.dll
2012-02-26 16:11:04 ----A---- C:\Windows\system32\d3dx9_34.dll
2012-02-26 16:11:03 ----A---- C:\Windows\SYSWOW64\xinput1_3.dll
2012-02-26 16:11:03 ----A---- C:\Windows\system32\xinput1_3.dll
2012-02-26 16:11:02 ----A---- C:\Windows\SYSWOW64\xactengine2_7.dll
2012-02-26 16:11:02 ----A---- C:\Windows\system32\xactengine2_7.dll
2012-02-26 16:10:59 ----A---- C:\Windows\SYSWOW64\d3dx10_33.dll
2012-02-26 16:10:59 ----A---- C:\Windows\SYSWOW64\D3DCompiler_33.dll
2012-02-26 16:10:59 ----A---- C:\Windows\system32\d3dx10_33.dll
2012-02-26 16:10:59 ----A---- C:\Windows\system32\D3DCompiler_33.dll
2012-02-26 16:10:57 ----A---- C:\Windows\SYSWOW64\d3dx9_33.dll
2012-02-26 16:10:57 ----A---- C:\Windows\system32\d3dx9_33.dll
2012-02-26 16:10:50 ----A---- C:\Windows\SYSWOW64\x3daudio1_1.dll
2012-02-26 16:10:50 ----A---- C:\Windows\system32\x3daudio1_1.dll
2012-02-26 16:07:44 ----N---- C:\Windows\SYSWOW64\drivers\CLBUDFR.sys
2012-02-26 16:07:44 ----N---- C:\Windows\SYSWOW64\drivers\CLBStor.sys
2012-02-23 19:37:42 ----D---- C:\Program Files (x86)\Lame For Audacity
2012-02-23 19:27:32 ----D---- C:\Users\Vasek\AppData\Roaming\Audacity
2012-02-23 19:26:53 ----D---- C:\Program Files (x86)\Audacity 1.3 Beta (Unicode)
2012-02-23 18:43:42 ----D---- C:\Users\Vasek\AppData\Roaming\Apple Computer
2012-02-23 18:41:45 ----D---- C:\ProgramData\Apple Computer
2012-02-23 18:41:45 ----D---- C:\ProgramData\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-02-23 18:39:19 ----D---- C:\Program Files\Common Files\Apple
2012-02-23 18:37:13 ----D---- C:\Program Files (x86)\Apple Software Update
2012-02-23 18:35:14 ----D---- C:\ProgramData\Apple
2012-02-23 18:35:14 ----D---- C:\Program Files\Bonjour
2012-02-23 18:35:14 ----D---- C:\Program Files (x86)\Bonjour
2012-02-20 15:55:56 ----D---- C:\Users\Vasek\AppData\Roaming\Nokia
2012-02-20 15:55:54 ----D---- C:\ProgramData\PC Suite
2012-02-20 15:55:53 ----D---- C:\Users\Vasek\AppData\Roaming\PC Suite
2012-02-20 15:53:39 ----D---- C:\ProgramData\Nokia
2012-02-20 15:52:40 ----A---- C:\Windows\system32\drivers\pccsmcfdx64.sys
2012-02-20 15:52:16 ----D---- C:\Program Files (x86)\PC Connectivity Solution
2012-02-20 15:51:29 ----A---- C:\Windows\system32\nmwcdclsX64.dll
2012-02-20 15:49:20 ----D---- C:\ProgramData\NokiaInstallerCache
2012-02-20 15:49:20 ----D---- C:\Program Files (x86)\Nokia
2012-02-19 19:14:03 ----A---- C:\Users\Vasek\AppData\Roaming\GPU Monitor_GPU0_Settings.ini
2012-02-19 16:14:59 ----D---- C:\Program Files\WMV9_VCM
2012-02-19 15:32:26 ----D---- C:\ProgramData\Studio 15
2012-02-19 15:32:26 ----D---- C:\ProgramData\Pinnacle Studio Plus
2012-02-19 08:40:12 ----A---- C:\Windows\system32\adorage-protocol.txt
2012-02-19 08:14:54 ----N---- C:\Windows\SYSWOW64\proDAD-PA-Support.dll
2012-02-19 08:14:54 ----N---- C:\Windows\SYSWOW64\prodad-codec.dll
2012-02-19 08:14:54 ----D---- C:\Program Files (x86)\AdorageI-SAL
2012-02-19 08:13:53 ----A---- C:\adorage-protocol.txt
2012-02-19 08:13:39 ----D---- C:\Users\Vasek\AppData\Roaming\proDAD
2012-02-19 08:13:39 ----A---- C:\Windows\system32\prodad-codec.dll
2012-02-19 08:13:38 ----D---- C:\ProgramData\proDAD
2012-02-15 18:31:04 ----A---- C:\Windows\system32\shell32.dll
2012-02-15 18:31:01 ----A---- C:\Windows\SYSWOW64\shell32.dll
2012-02-15 18:30:59 ----A---- C:\Windows\SYSWOW64\ntshrui.dll
2012-02-15 18:30:59 ----A---- C:\Windows\system32\ntshrui.dll
2012-02-15 18:30:52 ----A---- C:\Windows\system32\win32k.sys
2012-02-15 18:30:51 ----A---- C:\Windows\system32\drivers\afd.sys
2012-02-15 18:30:45 ----A---- C:\Windows\SYSWOW64\msvcrt.dll
2012-02-15 18:30:45 ----A---- C:\Windows\system32\msvcrt.dll
2012-02-15 18:30:33 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-02-15 18:30:32 ----A---- C:\Windows\system32\mshtml.dll
2012-02-15 18:30:26 ----A---- C:\Windows\system32\ieframe.dll
2012-02-15 18:30:22 ----A---- C:\Windows\system32\urlmon.dll
2012-02-15 18:30:20 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-02-15 18:30:19 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-02-15 18:30:17 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-02-15 18:30:17 ----A---- C:\Windows\system32\wininet.dll
2012-02-15 18:30:16 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2012-02-15 18:30:16 ----A---- C:\Windows\system32\msfeeds.dll
2012-02-15 18:30:14 ----A---- C:\Windows\system32\ieui.dll
2012-02-15 18:30:13 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-02-15 18:30:12 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-02-15 18:30:12 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-02-15 18:30:12 ----A---- C:\Windows\system32\mshtmled.dll
2012-02-15 18:30:12 ----A---- C:\Windows\system32\iertutil.dll
2012-02-15 18:30:10 ----A---- C:\Windows\SYSWOW64\url.dll
2012-02-15 18:30:10 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-02-15 18:30:10 ----A---- C:\Windows\system32\url.dll
2012-02-15 18:30:10 ----A---- C:\Windows\system32\jsproxy.dll
2012-02-13 20:55:27 ----D---- C:\Users\Vasek\AppData\Roaming\Publish Providers
2012-02-13 20:15:35 ----D---- C:\ProgramData\Sony
2012-02-13 18:50:26 ----D---- C:\Windows\SYSWOW64\spool
2012-02-13 16:56:48 ----D---- C:\Users\Vasek\AppData\Roaming\Sony
2012-02-09 18:45:22 ----A---- C:\Windows\OverlayXP.ini
2012-02-09 18:26:51 ----D---- C:\ProgramData\webcamXP 5

======List of files/folders modified in the last 1 month======

2012-03-08 17:08:15 ----RD---- C:\Program Files
2012-03-08 17:04:51 ----D---- C:\Windows
2012-03-08 17:04:50 ----D---- C:\Windows\Temp
2012-03-08 16:56:16 ----D---- C:\Users\Vasek\AppData\Roaming\Skype
2012-03-08 16:54:10 ----D---- C:\Windows\tracing
2012-03-08 16:49:22 ----D---- C:\ProgramData\boost_interprocess
2012-03-08 16:41:23 ----D---- C:\Windows\system32\config
2012-03-08 16:32:58 ----D---- C:\Windows\Tasks
2012-03-08 16:32:58 ----D---- C:\Windows\system32\Tasks
2012-03-08 16:23:30 ----D---- C:\Windows\System32
2012-03-08 16:23:30 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-03-08 16:23:29 ----D---- C:\Windows\inf
2012-03-08 16:10:26 ----D---- C:\Windows\Microsoft.NET
2012-03-07 23:43:32 ----SHD---- C:\System Volume Information
2012-03-07 20:31:48 ----RSD---- C:\Windows\assembly
2012-03-07 16:02:18 ----SHD---- C:\Windows\Installer
2012-03-07 16:02:12 ----SHD---- C:\Config.Msi
2012-03-07 16:01:34 ----D---- C:\Windows\SysWOW64
2012-03-07 16:01:34 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2012-03-06 21:48:45 ----D---- C:\Downloads
2012-03-06 20:48:13 ----RD---- C:\Program Files (x86)
2012-03-05 21:47:50 ----D---- C:\Windows\Prefetch
2012-03-03 23:37:22 ----D---- C:\Windows\SYSWOW64\drivers
2012-03-03 23:29:44 ----HD---- C:\ProgramData
2012-03-03 14:33:34 ----D---- C:\Windows\system32\catroot2
2012-03-03 14:30:15 ----AD---- C:\ProgramData\TEMP
2012-02-28 19:02:37 ----D---- C:\Users\Vasek\AppData\Roaming\Vso
2012-02-28 19:02:29 ----D---- C:\Windows\ModemLogs
2012-02-28 19:01:39 ----D---- C:\Program Files\CCleaner
2012-02-28 15:59:07 ----D---- C:\Windows\system32\catroot
2012-02-27 06:16:50 ----D---- C:\Users\Vasek\AppData\Roaming\DAEMON Tools Lite
2012-02-27 06:16:44 ----D---- C:\Windows\Logs
2012-02-26 16:07:44 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-02-23 18:59:47 ----DC---- C:\Windows\system32\DRVSTORE
2012-02-23 18:59:47 ----D---- C:\Windows\system32\drivers
2012-02-23 18:39:30 ----D---- C:\Windows\system32\DriverStore
2012-02-23 18:39:19 ----D---- C:\Program Files\Common Files
2012-02-23 18:38:33 ----D---- C:\Program Files (x86)\Common Files
2012-02-23 17:35:08 ----SHD---- C:\$Recycle.Bin
2012-02-23 17:34:52 ----RD---- C:\Users
2012-02-20 15:52:42 ----D---- C:\Program Files\DIFX
2012-02-20 15:15:45 ----D---- C:\Windows\system32\drivers\UMDF
2012-02-19 15:42:44 ----D---- C:\Program Files (x86)\Pinnacle
2012-02-19 15:38:39 ----D---- C:\Windows\winsxs
2012-02-19 15:32:26 ----D---- C:\ProgramData\Pinnacle
2012-02-18 15:19:06 ----D---- C:\Program Files (x86)\WinZip
2012-02-18 15:17:48 ----D---- C:\ProgramData\WinZip
2012-02-17 21:35:31 ----D---- C:\Windows\debug
2012-02-17 16:29:13 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2012-02-17 16:26:48 ----D---- C:\Windows\SYSWOW64\migration
2012-02-17 16:26:48 ----D---- C:\Program Files\Internet Explorer
2012-02-17 16:26:48 ----D---- C:\Program Files (x86)\Internet Explorer
2012-02-17 16:26:47 ----D---- C:\Windows\system32\migration
2012-02-17 15:56:27 ----D---- C:\ProgramData\Pinnacle Studio Ultimate Collection
2012-02-17 12:07:01 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-02-17 11:56:37 ----D---- C:\ProgramData\Microsoft Help
2012-02-17 11:41:53 ----A---- C:\Windows\system32\MRT.exe
2012-02-17 11:40:34 ----D---- C:\ProgramData\DivX
2012-02-17 11:40:34 ----D---- C:\Program Files (x86)\DivX
2012-02-17 11:37:24 ----D---- C:\Program Files\DivX
2012-02-13 20:16:32 ----D---- C:\Users\Vasek\AppData\Roaming\BitComet

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\Windows\system32\DRIVERS\AtiPcie.sys [2009-08-23 16440]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2011-04-18 189440]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2010-01-27 47632]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-26 6658048]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-26 195584]
R3 ApfiltrService;Alps Pointing-device Filter Driver; C:\Windows\system32\DRIVERS\Apfiltr.sys [2009-05-24 243760]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-07-15 2350952]
R3 DKbFltr;Dritek Keyboard Filter Driver (64-bit); C:\Windows\SysWOW64\Drivers\DKbFltr.sys [2009-03-26 25608]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-22 279616]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-13 2424040]
R3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1C62x64.sys [2010-06-25 76912]
R3 LgBttPort;LGE Bluetooth TransPort; C:\Windows\system32\DRIVERS\lgbtpt64.sys [2009-09-29 16384]
R3 lgbusenum;LG Bluetooth Bus Enumerator; C:\Windows\system32\DRIVERS\lgbtbs64.sys [2009-09-29 14848]
R3 LGVMODEM;LGE Virtual Modem; C:\Windows\system32\DRIVERS\lgvmdm64.sys [2009-09-29 17408]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-12-10 23152]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2011-04-18 40832]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2011-04-27 84864]
R3 usbfilter;AMD USB Filter Driver; C:\Windows\system32\DRIVERS\usbfilter.sys [2010-04-28 38528]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 17920]
S0 CLBStor;CyberLink InstantBurn UDF Reader Help Driver; C:\Windows\system32\drivers\CLBStor.sys []
S1 rawoiupe;rawoiupe; \??\C:\Windows\system32\drivers\rawoiupe.sys []
S2 Ca1528av;SPCA1528 Video Camera Service; C:\Windows\System32\Drivers\Ca1528av.sys [2008-12-17 533760]
S2 CLBUDFR;CyberLink UDF Filesystem; C:\Windows\system32\drivers\CLBUDFR.sys []
S3 Afc;PPdus ASPI Shell; C:\Windows\SysWOW64\drivers\Afc.sys [2006-11-14 22784]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-26 6658048]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2011-04-28 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 btwampfl;Bluetooth AMP USB Filter; C:\Windows\system32\drivers\btwampfl.sys [2010-06-25 342056]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2010-06-25 102952]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2010-06-25 135720]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2010-06-25 39464]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2010-06-25 21544]
S3 Bulk1528;SPCA1528 Still Camera Service; C:\Windows\System32\Drivers\Bulk1528.sys [2008-06-28 14848]
S3 epmntdrv;epmntdrv; \??\C:\Windows\syswow64\epmntdrv.sys [2011-03-24 14216]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\syswow64\EuGdiDrv.sys [2011-03-24 8456]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 48488]
S3 htcnprot;HTC NDIS Protocol Driver; C:\Windows\system32\DRIVERS\htcnprot.sys [2010-06-25 36928]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-11-01 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-11-01 27136]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RkHit;RkHit; \??\C:\Windows\system32\drivers\RKHit.sys []
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-06-24 216576]
S3 RtsUIR;Realtek IR Driver; C:\Windows\system32\DRIVERS\Rts516xIR.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-11-01 9216]
S3 usb_rndisx;Adaptér USB RNDIS; C:\Windows\system32\DRIVERS\usb8023x.sys [2009-07-14 19968]
S3 usbbus;LGE Mobile Composite USB Device; C:\Windows\system32\DRIVERS\lgx64bus.sys [2011-04-27 17920]
S3 USBCCID;Realtek Smartcard Reader Driver; C:\Windows\system32\DRIVERS\RtsUCcid.sys []
S3 UsbDiag;LGE Mobile USB Serial Port; C:\Windows\system32\DRIVERS\lgx64diag.sys [2011-04-27 28160]
S3 USBModem;LGE Mobile USB Modem; C:\Windows\system32\DRIVERS\lgx64modem.sys [2011-04-27 34816]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-11-01 9216]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2012-03-03 140672]
R2 ACDaemon;ArcSoft Connect Daemon; C:\Program Files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [2010-03-18 113152]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-05-26 202752]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-10-24 55144]
R2 BcmSqlStartupSvc;Služba spouštění serveru SQL Server aplikace Business Contact Manager; C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe [2008-01-16 30312]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-30 462184]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2010-06-25 952096]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 DsiWMIService;Dritek WMI Service; C:\Program Files (x86)\Launch Manager\dsiwmis.exe [2009-10-26 117328]
R2 ePowerSvc;Acer ePower Service; C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-26 841248]
R2 GREGService;GREGService; C:\Program Files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
R2 IviRegMgr;IviRegMgr; C:\Program Files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe [2007-01-05 112152]
R2 LicCtrlService;LicCtrl Service; C:\Windows\runservice.exe [2011-07-21 2560]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
R2 MsMpSvc;Microsoft Antimalware Service; c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2011-04-27 12784]
R2 PassThru Service;Internet Pass-Through Service; C:\Program Files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2011-07-20 75064]
R2 PSI_SVC_2;Protexis Licensing V2; C:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 RapiMgr;@%windir%\WindowsMobile\rapimgr.dll,-104; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R2 RS_Service;Raw Socket Service; C:\Program Files (x86)\Acer\Acer VCM\RS_Service.exe [2010-01-30 260640]
R2 SQLBrowser;SQL Server Browser; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-12-10 238944]
R2 SQLWriter;SQL Server VSS Writer; c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-12-10 153440]
R2 Updater Service;Updater Service; C:\Program Files\Acer\Acer Updater\UpdaterService.exe [2010-01-29 243232]
R2 WcesComm;@%windir%\WindowsMobile\wcescomm.dll,-40079; C:\Windows\system32\svchost.exe [2009-07-14 27136]
R3 NisSrv;@c:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]
R3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2012-01-04 718888]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-07-15 135664]
S2 KMService;KMService; C:\Windows\syswow64\srvany.exe [2011-09-11 8192]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service; C:\Program Files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-07-15 135664]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
S3 MSSQL$MSSMLBIZ;SQL Server (MSSMLBIZ); c:\Program Files (x86)\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe [2010-12-10 29293408]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2011-07-16 1255736]
S4 MSSQLServerADHelper;SQL Server Active Directory Helper; c:\Program Files (x86)\Microsoft SQL Server\90\Shared\sqladhlp90.exe [2010-12-10 44384]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

#2 Příspěvek od **Rudy** » 08 bře 2012 18:56

Zdravím!
Dejte log ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Vasek2 · #3 Příspěvek od **Vasek2** » 08 bře 2012 22:37

ComboFix 12-03-08.04 - Vasek 08.03.2012 22:04:20.1.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3838.2120 [GMT 1:00]
Spuštěný z: c:\users\Vasek\Desktop\ComboFix.exe
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\facemoods.com
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\bh\facemoods.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoods.crx
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoods.png
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsApp.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsEng.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodsTlbr.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe
c:\program files (x86)\facemoods.com\sqlite3.dll
c:\program files (x86)\WinZip\Icon_1.ico
c:\programdata\FullRemove.exe
c:\windows\SysWow64\Packet.dll
c:\windows\SysWow64\pthreadVC.dll
c:\windows\SysWow64\wpcap.dll
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_npf
-------\Service_RkHit
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-08 do 2012-03-08 )))))))))))))))))))))))))))))))
.
.
2012-03-08 21:16 . 2012-03-08 21:16 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-08 19:04 . 2012-02-08 07:13 8643640 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{230EB09A-31EE-4889-ACD0-E0FF115444E3}\mpengine.dll
2012-03-08 18:34 . 2012-03-08 19:25 -------- d-----w- c:\program files (x86)\VS Revo Group
2012-03-08 16:08 . 2012-03-08 16:08 -------- d-----w- C:\rsit
2012-03-08 16:08 . 2012-03-08 16:08 -------- d-----w- c:\program files\trend micro
2012-03-06 19:48 . 2002-05-08 05:47 147728 ----a-w- c:\windows\SysWow64\temp.005
2012-03-06 19:48 . 2004-02-23 19:42 1386496 ----a-w- c:\windows\SysWow64\temp.004
2012-03-06 19:48 . 2002-05-08 05:47 22288 ----a-w- c:\windows\SysWow64\temp.003
2012-03-06 19:48 . 2001-03-13 14:49 140288 ----a-w- c:\windows\SysWow64\Comdlg32.ocx
2012-03-06 19:48 . 2001-03-13 14:47 164112 ----a-w- c:\windows\SysWow64\temp.001
2012-03-06 19:48 . 2000-04-12 12:00 598288 ----a-w- c:\windows\SysWow64\temp.002
2012-03-06 19:48 . 2002-05-08 05:47 17920 ----a-w- c:\windows\SysWow64\temp.000
2012-03-06 19:48 . 2006-02-01 21:14 770048 ----a-w- c:\windows\SysWow64\videocapx.ocx
2012-03-06 19:48 . 2012-03-06 19:48 -------- d-----w- c:\program files (x86)\My Screen Cam
2012-03-03 22:29 . 2012-03-03 22:29 -------- d-----w- c:\users\Vasek\AppData\Roaming\SUPERAntiSpyware.com
2012-03-03 22:28 . 2012-03-03 22:28 -------- d-----w- c:\programdata\!SASCORE
2012-03-03 22:12 . 2012-03-03 22:12 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-03-03 22:12 . 2012-03-04 06:43 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-03-03 08:31 . 2012-03-03 08:31 -------- d-----w- c:\program files (x86)\Bptkfgttnbfwr
2012-02-28 19:29 . 2012-02-28 19:29 162664 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10140.bin
2012-02-26 15:11 . 2009-03-16 13:18 24920 ----a-w- c:\windows\system32\X3DAudio1_6.dll
2012-02-26 15:10 . 2007-03-15 15:57 506728 ----a-w- c:\windows\system32\d3dx10_33.dll
2012-02-26 15:10 . 2007-03-15 15:57 443752 ----a-w- c:\windows\SysWow64\d3dx10_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 1400176 ----a-w- c:\windows\system32\D3DCompiler_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 1123696 ----a-w- c:\windows\SysWow64\D3DCompiler_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 4494184 ----a-w- c:\windows\system32\d3dx9_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 3495784 ----a-w- c:\windows\SysWow64\d3dx9_33.dll
2012-02-26 15:10 . 2007-03-05 11:42 15128 ----a-w- c:\windows\SysWow64\x3daudio1_1.dll
2012-02-26 15:10 . 2007-03-05 11:42 17688 ----a-w- c:\windows\system32\x3daudio1_1.dll
2012-02-26 15:07 . 2006-07-31 18:45 180352 ------w- c:\windows\SysWow64\drivers\CLBUDFR.sys
2012-02-26 15:07 . 2006-07-31 18:45 10368 ------w- c:\windows\SysWow64\drivers\CLBStor.sys
2012-02-23 18:37 . 2012-02-23 18:37 -------- d-----w- c:\program files (x86)\Lame For Audacity
2012-02-23 18:27 . 2012-02-23 18:47 -------- d-----w- c:\users\Vasek\AppData\Roaming\Audacity
2012-02-23 18:26 . 2012-02-23 18:27 -------- d-----w- c:\program files (x86)\Audacity 1.3 Beta (Unicode)
2012-02-23 17:43 . 2012-02-23 17:43 -------- d-----w- c:\users\Vasek\AppData\Local\Apple Computer
2012-02-23 17:43 . 2012-02-23 17:48 -------- d-----w- c:\users\Vasek\AppData\Roaming\Apple Computer
2012-02-23 17:41 . 2012-02-23 18:00 -------- d-----w- c:\programdata\Apple Computer
2012-02-23 17:41 . 2012-02-23 17:43 -------- d-----w- c:\programdata\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-02-23 17:39 . 2012-02-23 17:39 -------- d-----w- c:\program files\Common Files\Apple
2012-02-23 17:38 . 2012-02-23 18:00 -------- d-----w- c:\program files (x86)\Common Files\Apple
2012-02-23 17:37 . 2012-02-23 17:37 -------- d-----w- c:\users\Vasek\AppData\Local\Apple
2012-02-23 17:37 . 2012-02-23 17:37 -------- d-----w- c:\program files (x86)\Apple Software Update
2012-02-23 17:35 . 2012-02-23 17:39 -------- d-----w- c:\programdata\Apple
2012-02-23 17:35 . 2012-02-23 17:35 -------- d-----w- c:\program files\Bonjour
2012-02-23 17:35 . 2012-02-23 17:35 -------- d-----w- c:\program files (x86)\Bonjour
2012-02-23 16:34 . 2012-02-23 16:35 -------- d-----w- c:\users\Video
2012-02-20 14:55 . 2012-02-20 14:55 -------- d-----w- c:\users\Vasek\AppData\Roaming\Nokia
2012-02-20 14:55 . 2012-02-20 14:58 -------- d-----w- c:\users\Vasek\AppData\Local\Nokia
2012-02-20 14:55 . 2012-02-20 14:55 -------- d-----w- c:\programdata\PC Suite
2012-02-20 14:55 . 2012-02-20 15:14 -------- d-----w- c:\users\Vasek\AppData\Roaming\PC Suite
2012-02-20 14:53 . 2012-02-20 14:53 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2012-02-20 14:53 . 2012-02-20 14:53 -------- d-----w- c:\programdata\Nokia
2012-02-20 14:52 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2012-02-20 14:52 . 2012-02-20 14:52 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-02-20 14:51 . 2011-11-01 09:07 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2012-02-20 14:49 . 2012-02-20 14:53 -------- d-----w- c:\program files (x86)\Nokia
2012-02-19 15:14 . 2012-02-19 15:15 -------- d-----w- c:\program files\WMV9_VCM
2012-02-19 14:56 . 2012-02-19 14:56 -------- d-----w- c:\users\Vasek\AppData\Local\LooksBuilder
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\programdata\Studio 15
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\programdata\Pinnacle Studio Plus
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\program files (x86)\Common Files\Yahoo!
2012-02-19 07:14 . 2012-02-19 09:18 -------- d-----w- c:\program files (x86)\AdorageI-SAL
2012-02-19 07:14 . 2010-10-27 10:10 520192 ------w- c:\windows\SysWow64\prodad-codec.dll
2012-02-19 07:14 . 2010-10-27 09:26 321088 ------w- c:\windows\SysWow64\proDAD-PA-Support.dll
2012-02-19 07:13 . 2012-02-19 07:13 -------- d-----w- c:\users\Vasek\AppData\Roaming\proDAD
2012-02-19 07:13 . 2010-11-25 08:10 607688 ----a-w- c:\windows\system32\prodad-codec.dll
2012-02-19 07:13 . 2012-02-19 07:13 -------- d-----w- c:\programdata\proDAD
2012-02-18 14:17 . 2012-02-18 14:17 -------- d-----w- c:\users\Vasek\AppData\Local\WinZip
2012-02-17 10:45 . 2012-02-17 10:45 -------- d-----w- c:\users\Vasek\AppData\Local\DDMSettings
2012-02-13 19:55 . 2012-02-13 19:55 -------- d-----w- c:\users\Vasek\AppData\Roaming\Publish Providers
2012-02-13 19:15 . 2012-02-13 22:35 -------- d-----w- c:\programdata\Sony
2012-02-13 17:50 . 2012-02-13 17:50 -------- d-----w- c:\windows\SysWow64\spool
2012-02-13 16:14 . 2012-02-13 17:52 -------- d-----w- c:\users\Vasek\AppData\Local\Sony
2012-02-13 15:56 . 2012-02-13 21:35 -------- d-----w- c:\users\Vasek\AppData\Roaming\Sony
2012-02-10 11:27 . 2012-02-10 11:26 927800 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{745A3FA4-2D1F-4E81-9C4A-43EED0832DCE}\gapaengine.dll
2012-02-09 17:26 . 2012-02-09 17:40 -------- d-----w- c:\programdata\webcamXP 5
2012-02-08 18:57 . 2012-02-08 18:57 -------- d-----w- c:\users\Public\videokamera
2012-02-08 16:50 . 2012-02-08 16:50 -------- d-----w- C:\download
2012-02-08 16:13 . 2012-02-08 16:13 -------- d-----w- c:\programdata\LockItTight
2012-02-08 16:13 . 2012-02-08 16:13 -------- d-----w- c:\program files (x86)\LockItTight
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-27 04:49 . 2011-10-02 17:11 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-02-27 04:48 . 2011-08-07 10:33 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-02-08 07:13 . 2011-08-25 03:59 8643640 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-02-05 05:23 . 2012-02-04 18:14 29 ------w- c:\windows\SysWow64\TempWmicBatchFile.bat
2012-01-31 12:44 . 2011-07-15 11:42 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-04 00:48 . 2012-01-04 00:48 354176 ------w- c:\windows\SysWow64\DivXControlPanelApplet.cpl
2011-12-22 19:22 . 2011-12-22 19:22 279616 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-12-16 11:29 . 2011-10-02 17:11 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-12-10 14:24 . 2012-01-12 21:07 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-09-16 14:12 . 2011-11-15 06:50 3623592 ----a-w- c:\program files (x86)\Common Files\ApnToolbarInstaller.exe
2011-09-16 14:12 . 2011-11-15 06:50 143240 ----a-w- c:\program files (x86)\Common Files\ApnStub.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
2011-08-01 12:51 167424 ----a-w- c:\program files (x86)\Facecons\Facecons.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2009-10-09 25623336]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Facebook Update"="c:\users\Vasek\AppData\Local\Facebook\Update\FacebookUpdate.exe" [2011-09-03 137536]
"Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
"PCSpeedUp"="c:\program files (x86)\Zrychleni Pocitace\PCSpeedUp.lnk" [2011-11-15 2415]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-11-10 3514176]
"NokiaSuite.exe"="c:\program files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" [2012-01-10 1083264]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-24 588648]
"FerrariWP"="c:\acer\WallPaper\FerrariWP\FerrariWP.exe" [2009-09-15 145952]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-27 102400]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-11-26 830032]
"DVAPTray"="c:\windows\System32\DVAPTray.exe" [2009-10-30 188416]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-25 1129760]
SPB Backup Sync.lnk - c:\program files (x86)\SPB Backup\SPBBackupSync.exe [2011-7-29 610304]
WinZip Quick Pick.lnk - c:\program files (x86)\WinZip\WZQKPICK.EXE [2009-5-11 525664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R0 CLBStor;CyberLink InstantBurn UDF Reader Help Driver; [x]
R1 rawoiupe;rawoiupe;c:\windows\system32\drivers\rawoiupe.sys [x]
R2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\Drivers\Ca1528av.sys [x]
R2 CLBUDFR;CyberLink UDF Filesystem; [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Služba Google Update (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-07-15 135664]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\Drivers\Bulk1528.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-03-24 16776]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-03-24 9096]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-07-15 135664]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-03-03 140672]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2009-10-26 117328]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-26 841248]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 LicCtrlService;LicCtrl Service;c:\windows\runservice.exe [2011-07-21 2560]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [2010-01-29 260640]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [x]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [x]
S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [x]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-08 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001Core.job
- c:\users\Vasek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-03 04:51]
.
2012-03-08 c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001UA.job
- c:\users\Vasek\AppData\Local\Facebook\Update\FacebookUpdate.exe [2011-09-03 04:51]
.
2012-03-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-07-15 11:38]
.
2012-03-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-07-15 11:38]
.
2012-03-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001Core.job
- c:\users\Vasek\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-15 11:36]
.
2012-03-08 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001UA.job
- c:\users\Vasek\AppData\Local\Google\Update\GoogleUpdate.exe [2011-07-15 11:36]
.
2012-03-08 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task b85c029a-74f6-4a3b-b298-55f0a174eea2.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-13 11046504]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-02-26 818720]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2009-05-21 295936]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-06-10 206208]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
"combofix"="c:\combofix\CF5999.3XE" [2010-11-20 345088]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://home.sweetim.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Read EXIF - c:\program files (x86)\ArcSoft\RAW Thumbnail Viewer\ArcEXIFM.htm
IE: Search the Web - c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
IE: Stáhnout odkaz s použitím BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: WikiKomentáře Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 10.1.1.3 10.10.1.3
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{ba14329e-9550-4989-b3f2-9732e92d17cc} - (no file)
Toolbar-Locked - (no file)
Wow6432Node-HKCU-Run-LG LinkAir - (no file)
Wow6432Node-HKLM-Run-facemoods - c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\facemoodssrv.exe
Wow6432Node-HKLM-Run-MyScreenCam - (no file)
Toolbar-Locked - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
AddRemove-facemoods - c:\program files (x86)\facemoods.com\facemoods\1.4.17.7\uninstall.exe
AddRemove-PunkBusterSvc - c:\windows\system32\pbsvc.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1754209203-3230957330-971758541-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
@Denied: (2) (S-1-5-21-1754209203-3230957330-971758541-1001)
@Denied: (2) (LocalSystem)
"Progid"="Outlook.File.eml.14"
.
[HKEY_USERS\S-1-5-21-1754209203-3230957330-971758541-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (S-1-5-21-1754209203-3230957330-971758541-1001)
@Denied: (2) (LocalSystem)
"Progid"="Outlook.File.vcf.14"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \D25BC253F035D347]
"1"=hex:6a,0b,56,13,c1,93,dc,9c,fb,61,a2,a0,e4,ff,91,20,60,bf,2f,c2,35,91,ae,
25
"2"=hex:fb,e6,50,7f,41,f4,51,a7,7f,ec,2d,f9,42,45,3a,02,3a,b7,45,15,3f,9d,8b,
c3
"3"=hex:6a,0b,56,13,c1,93,dc,9c,fb,61,a2,a0,e4,ff,91,20,5d,f5,58,d1,21,e0,48,
8b,38,57,44,9c,4e,8d,78,88,fd,f1,01,9d,86,d8,b5,cb,d9,bf,23,55,4a,bb,31,1f
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \D25BC253F035D347\CF5A76C0F6C2981F786388D07A007CED]
"1"=hex:b0,57,4a,e6,b6,28,dc,b1,c7,47,8a,c4,80,0d,73,fa,b6,aa,88,ab,a1,2d,c7,
8d,a1,70,b2,9c,4e,a1,a9,b9
"2"=hex:14,ce,87,8d,79,74,ee,b2
"3"=hex:81,20,8f,ab,28,6a,52,9c
"4"=hex:2f,ad,a2,e7,8a,bf,05,5e
"5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
"6"=hex:bf,e5,23,7b,b0,66,d6,fc,bc,64,22,fb,7e,d3,39,3e,a3,00,33,13,c0,21,f4,
51,6c,4e,0c,96,e2,dd,ad,8a,b6,c4,05,e8,5a,bd,9a,e9,d4,1a,3d,68,9d,00,32,20
"7"=hex:97,e4,84,cd,95,83,bf,82,66,bb,1b,76,ec,7c,06,9a,0e,0b,6d,a2,47,37,9f,
b6,d4,bb,5e,31,68,e2,cb,1a,ee,af,25,28,3c,06,fa,02,cf,94,9f,2c,18,df,5b,c1,\
"8"=hex:9d,9e,b2,b9,a7,a5,f4,ae,4d,29,c2,a3,c0,78,c4,c5,43,69,70,4c,7e,7f,7c,
de,a0,46,ee,d1,e1,d8,58,7c,45,1d,89,e1,9a,5a,0b,e0,9e,29,11,a8,24,d0,3a,33,\
"9"=hex:81,20,8f,ab,28,6a,52,9c
"18"=hex:b6,dd,00,4d,9d,38,11,d1
"10"=hex:81,20,8f,ab,28,6a,52,9c
"11"=hex:81,20,8f,ab,28,6a,52,9c
"12"=hex:81,20,8f,ab,28,6a,52,9c
"13"=hex:81,20,8f,ab,28,6a,52,9c
"14"=hex:81,20,8f,ab,28,6a,52,9c
"24"=hex:81,20,8f,ab,28,6a,52,9c
"26"=hex:81,20,8f,ab,28,6a,52,9c
"27"=hex:81,20,8f,ab,28,6a,52,9c
"19"=hex:81,20,8f,ab,28,6a,52,9c
"22"=hex:81,20,8f,ab,28,6a,52,9c
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
@Denied: (A) (Everyone)
"Solution"="{15727DE6-F92D-4E46-ACB4-0E2C58B31A18}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
@Denied: (A) (Everyone)
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
"Key"="ActionsPane3"
"Location"="c:\\Program Files (x86)\\Common Files\\Microsoft Shared\\VSTO\\ActionsPane3.xsd"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files (x86)\PC Connectivity Solution\ServiceLayer.exe
c:\program files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
c:\program files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
.
**************************************************************************
.
Celkový čas: 2012-03-08 22:31:13 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-03-08 21:31
.
Před spuštěním: Volných bajtů: 201 510 432 768
Po spuštění: Volných bajtů: 200 858 443 776
.
- - End Of File - - 4D86EA6735FA110B1A52FB540CD6198D

#4 Příspěvek od **Rudy** » 08 bře 2012 23:05

Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:

KillAll::

Collect::
c:\windows\SysWow64\temp.005
c:\windows\SysWow64\temp.004
c:\windows\SysWow64\temp.003
c:\windows\SysWow64\temp.001
c:\windows\SysWow64\temp.002
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001Core.job
c:\windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001UA.job
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1754209203-3230957330-971758541-1001UA.job

Folder::
c:\program files (x86)\Facecons
c:\program files (x86)\Google\Update
c:\users\Vasek\AppData\Local\Facebook\Update
c:\users\Vasek\AppData\Local\Google\Update

Driver::
gupdate
gupdatem

Registry::
[-HKEY_LOCAL_MACHINE\Wow6432Node\~\Browser Helper Objects\{B2A44031-7EAD-434C-AC9E-7F1DA176BA8C}]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Facebook Update"=-

RegLock::
[HKEY_USERS\S-1-5-21-1754209203-3230957330-971758541-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eml\UserChoice]
[HKEY_USERS\S-1-5-21-1754209203-3230957330-971758541-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \D25BC253F035D347]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \D25BC253F035D347\CF5A76C0F6C2981F786388D07A007CED]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Office\Common\Smart Tag\Actions\{B7EFF951-E52F-45CC-9EF7-57124F2177CC}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Schema Library\ActionsPane3\0]
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

Vasek2 · #5 Příspěvek od **Vasek2** » 10 bře 2012 05:17

ComboFix 12-03-08.04 - Vasek 10.03.2012 4:46.2.2 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.3838.2438 [GMT 1:00]
SpuÜtýnř z: c:\users\Vasek\Desktop\ComboFix.exe
Pou×itÚ ovlßdacÝ p°epÝnaŔe :: c:\users\Vasek\Desktop\CFScript.txt
AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}
SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvo°en novř Bod ObnovenÝ
.
.
.
((((((((((((((((((((((((((((((((((((((( OstatnÝ vřmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Facecons
c:\program files (x86)\Facecons\facecons.crx
c:\program files (x86)\Facecons\Facecons.dll
c:\program files (x86)\Facecons\onload.js
c:\program files (x86)\Facecons\uninstall.exe
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.99\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.99\GoogleCrashHandler64.exe
c:\program files (x86)\Google\Update\1.3.21.99\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.99\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.99\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.99\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.99\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.99\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.99\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.99\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.99\psuser.dll
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.99\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-6.1.0.5001.exe
c:\program files (x86)\Google\Update\Download\{F69EABDD-A4BB-4555-BE7E-1EA5F59BBA24}\7.2.2318.1946\GoogleToolbarInstaller_updater_signed.exe
c:\program files (x86)\Google\Update\Download\{FF96EEB8-8321-4400-BC8F-CD4BA5C27106}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\users\Vasek\AppData\Local\Facebook\Update
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\FacebookCrashHandler.exe
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\FacebookUpdate.exe
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\FacebookUpdateHelper.msi
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdate.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ar.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_bg.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_bn.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ca.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_cs.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_da.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_de.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_el.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_en-GB.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_en.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_es-419.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_es.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_et.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_fa.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_fi.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_fil.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_fr.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_gu.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_hi.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_hr.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_hu.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_id.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_is.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_it.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_iw.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ja.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_kn.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ko.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_lt.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_lv.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ml.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_mr.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ms.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_nl.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_no.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_or.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_pl.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_pt-BR.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_pt-PT.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ro.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ru.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_sk.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_sl.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_sr.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_sv.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ta.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_te.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_th.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_tr.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_uk.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_ur.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_vi.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_zh-CN.dll
c:\users\Vasek\AppData\Local\Facebook\Update\1.2.203.0\goopdateres_zh-TW.dll
c:\users\Vasek\AppData\Local\Facebook\Update\FacebookUpdate.exe
c:\users\Vasek\AppData\Local\Google\Update
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler.exe
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\GoogleCrashHandler64.exe
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\GoogleUpdate.exe
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\GoogleUpdateBroker.exe
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\GoogleUpdateHelper.msi
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\GoogleUpdateOnDemand.exe
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdate.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_am.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ar.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_bg.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_bn.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ca.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_cs.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_da.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_de.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_el.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_en-GB.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_en.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_es-419.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_es.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_et.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_fa.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_fi.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_fil.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_fr.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_gu.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_hi.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_hr.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_hu.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_id.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_is.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_it.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_iw.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ja.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_kn.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ko.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_lt.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_lv.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ml.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_mr.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ms.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_nl.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_no.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_pl.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_pt-BR.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_pt-PT.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ro.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ru.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_sk.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_sl.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_sr.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_sv.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_sw.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ta.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_te.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_th.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_tr.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_uk.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_ur.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_vi.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_zh-CN.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\goopdateres_zh-TW.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\npGoogleUpdate3.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\psmachine.dll
c:\users\Vasek\AppData\Local\Google\Update\1.3.21.99\psuser.dll
c:\users\Vasek\AppData\Local\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.99\GoogleUpdateSetup.exe
c:\users\Vasek\AppData\Local\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\17.0.963.78\chrome_updater.exe
c:\users\Vasek\AppData\Local\Google\Update\GoogleUpdate.exe
.
.
((((((((((((((((((((((((((((((((((((((( OvladaŔe/Slu×by )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
.
.
((((((((((((((((((((((((( Soubory vytvo°enÚ od 2012-02-10 do 2012-03-10 )))))))))))))))))))))))))))))))
.
.
2012-03-08 18:34 . 2012-03-08 19:25 -------- d-----w- c:\program files (x86)\VS Revo Group
2012-03-08 16:08 . 2012-03-08 16:08 -------- d-----w- C:\rsit
2012-03-08 16:08 . 2012-03-08 16:08 -------- d-----w- c:\program files\trend micro
2012-03-06 19:48 . 2002-05-08 05:47 147728 ------w- c:\windows\SysWow64\temp.005
2012-03-06 19:48 . 2004-02-23 19:42 1386496 ------w- c:\windows\SysWow64\temp.004
2012-03-06 19:48 . 2002-05-08 05:47 22288 ------w- c:\windows\SysWow64\temp.003
2012-03-06 19:48 . 2001-03-13 14:49 140288 ----a-w- c:\windows\SysWow64\Comdlg32.ocx
2012-03-06 19:48 . 2001-03-13 14:47 164112 ------w- c:\windows\SysWow64\temp.001
2012-03-06 19:48 . 2000-04-12 12:00 598288 ------w- c:\windows\SysWow64\temp.002
2012-03-06 19:48 . 2002-05-08 05:47 17920 ----a-w- c:\windows\SysWow64\temp.000
2012-03-06 19:48 . 2006-02-01 21:14 770048 ----a-w- c:\windows\SysWow64\videocapx.ocx
2012-03-06 19:48 . 2012-03-06 19:48 -------- d-----w- c:\program files (x86)\My Screen Cam
2012-03-03 22:29 . 2012-03-03 22:29 -------- d-----w- c:\users\Vasek\AppData\Roaming\SUPERAntiSpyware.com
2012-03-03 22:28 . 2012-03-03 22:28 -------- d-----w- c:\programdata\!SASCORE
2012-03-03 22:12 . 2012-03-03 22:12 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-03-03 22:12 . 2012-03-04 06:43 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-03-03 08:31 . 2012-03-03 08:31 -------- d-----w- c:\program files (x86)\Bptkfgttnbfwr
2012-02-28 19:29 . 2012-02-28 19:29 162664 ----a-w- c:\programdata\Microsoft\Windows\Sqm\Manifest\Sqm10140.bin
2012-02-26 15:11 . 2009-03-16 13:18 24920 ----a-w- c:\windows\system32\X3DAudio1_6.dll
2012-02-26 15:10 . 2007-03-15 15:57 506728 ----a-w- c:\windows\system32\d3dx10_33.dll
2012-02-26 15:10 . 2007-03-15 15:57 443752 ----a-w- c:\windows\SysWow64\d3dx10_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 1400176 ----a-w- c:\windows\system32\D3DCompiler_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 1123696 ----a-w- c:\windows\SysWow64\D3DCompiler_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 4494184 ----a-w- c:\windows\system32\d3dx9_33.dll
2012-02-26 15:10 . 2007-03-12 15:42 3495784 ----a-w- c:\windows\SysWow64\d3dx9_33.dll
2012-02-26 15:10 . 2007-03-05 11:42 15128 ----a-w- c:\windows\SysWow64\x3daudio1_1.dll
2012-02-26 15:10 . 2007-03-05 11:42 17688 ----a-w- c:\windows\system32\x3daudio1_1.dll
2012-02-26 15:07 . 2006-07-31 18:45 180352 ------w- c:\windows\SysWow64\drivers\CLBUDFR.sys
2012-02-26 15:07 . 2006-07-31 18:45 10368 ------w- c:\windows\SysWow64\drivers\CLBStor.sys
2012-02-23 18:37 . 2012-02-23 18:37 -------- d-----w- c:\program files (x86)\Lame For Audacity
2012-02-23 18:27 . 2012-02-23 18:47 -------- d-----w- c:\users\Vasek\AppData\Roaming\Audacity
2012-02-23 18:26 . 2012-02-23 18:27 -------- d-----w- c:\program files (x86)\Audacity 1.3 Beta (Unicode)
2012-02-23 17:43 . 2012-02-23 17:43 -------- d-----w- c:\users\Vasek\AppData\Local\Apple Computer
2012-02-23 17:43 . 2012-02-23 17:48 -------- d-----w- c:\users\Vasek\AppData\Roaming\Apple Computer
2012-02-23 17:41 . 2012-02-23 18:00 -------- d-----w- c:\programdata\Apple Computer
2012-02-23 17:41 . 2012-02-23 17:43 -------- d-----w- c:\programdata\{93E26451-CD9A-43A5-A2FA-C42392EA4001}
2012-02-23 17:39 . 2012-02-23 17:39 -------- d-----w- c:\program files\Common Files\Apple
2012-02-23 17:38 . 2012-02-23 18:00 -------- d-----w- c:\program files (x86)\Common Files\Apple
2012-02-23 17:37 . 2012-02-23 17:37 -------- d-----w- c:\users\Vasek\AppData\Local\Apple
2012-02-23 17:37 . 2012-02-23 17:37 -------- d-----w- c:\program files (x86)\Apple Software Update
2012-02-23 17:35 . 2012-02-23 17:39 -------- d-----w- c:\programdata\Apple
2012-02-23 17:35 . 2012-02-23 17:35 -------- d-----w- c:\program files\Bonjour
2012-02-23 17:35 . 2012-02-23 17:35 -------- d-----w- c:\program files (x86)\Bonjour
2012-02-23 16:34 . 2012-02-23 16:35 -------- d-----w- c:\users\Video
2012-02-20 14:55 . 2012-02-20 14:55 -------- d-----w- c:\users\Vasek\AppData\Roaming\Nokia
2012-02-20 14:55 . 2012-02-20 14:58 -------- d-----w- c:\users\Vasek\AppData\Local\Nokia
2012-02-20 14:55 . 2012-02-20 14:55 -------- d-----w- c:\programdata\PC Suite
2012-02-20 14:55 . 2012-02-20 15:14 -------- d-----w- c:\users\Vasek\AppData\Roaming\PC Suite
2012-02-20 14:53 . 2012-02-20 14:53 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2012-02-20 14:53 . 2012-02-20 14:53 -------- d-----w- c:\programdata\Nokia
2012-02-20 14:52 . 2008-08-28 10:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2012-02-20 14:52 . 2012-02-20 14:52 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2012-02-20 14:51 . 2011-11-01 09:07 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2012-02-20 14:49 . 2012-02-20 14:53 -------- d-----w- c:\program files (x86)\Nokia
2012-02-19 15:14 . 2012-02-19 15:15 -------- d-----w- c:\program files\WMV9_VCM
2012-02-19 14:56 . 2012-02-19 14:56 -------- d-----w- c:\users\Vasek\AppData\Local\LooksBuilder
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\program files (x86)\Common Files\Pegasus Imaging
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\programdata\Studio 15
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\programdata\Pinnacle Studio Plus
2012-02-19 14:32 . 2012-02-19 14:32 -------- d-----w- c:\program files (x86)\Common Files\Yahoo!
2012-02-19 07:14 . 2012-02-19 09:18 -------- d-----w- c:\program files (x86)\AdorageI-SAL
2012-02-19 07:14 . 2010-10-27 10:10 520192 ------w- c:\windows\SysWow64\prodad-codec.dll
2012-02-19 07:14 . 2010-10-27 09:26 321088 ------w- c:\windows\SysWow64\proDAD-PA-Support.dll
2012-02-19 07:13 . 2012-02-19 07:13 -------- d-----w- c:\users\Vasek\AppData\Roaming\proDAD
2012-02-19 07:13 . 2010-11-25 08:10 607688 ----a-w- c:\windows\system32\prodad-codec.dll
2012-02-19 07:13 . 2012-02-19 07:13 -------- d-----w- c:\programdata\proDAD
2012-02-18 14:17 . 2012-02-18 14:17 -------- d-----w- c:\users\Vasek\AppData\Local\WinZip
2012-02-17 10:45 . 2012-02-17 10:45 -------- d-----w- c:\users\Vasek\AppData\Local\DDMSettings
2012-02-13 19:55 . 2012-02-13 19:55 -------- d-----w- c:\users\Vasek\AppData\Roaming\Publish Providers
2012-02-13 19:15 . 2012-02-13 22:35 -------- d-----w- c:\programdata\Sony
2012-02-13 17:50 . 2012-02-13 17:50 -------- d-----w- c:\windows\SysWow64\spool
2012-02-13 16:14 . 2012-02-13 17:52 -------- d-----w- c:\users\Vasek\AppData\Local\Sony
2012-02-13 15:56 . 2012-02-13 21:35 -------- d-----w- c:\users\Vasek\AppData\Roaming\Sony
2012-02-10 11:27 . 2012-02-10 11:26 927800 ------w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{745A3FA4-2D1F-4E81-9C4A-43EED0832DCE}\gapaengine.dll
2012-02-09 17:26 . 2012-02-09 17:40 -------- d-----w- c:\programdata\webcamXP 5
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M vřpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-02-27 04:49 . 2011-10-02 17:11 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2012-02-27 04:48 . 2011-08-07 10:33 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-02-08 07:13 . 2011-08-25 03:59 8643640 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-02-05 05:23 . 2012-02-04 18:14 29 ------w- c:\windows\SysWow64\TempWmicBatchFile.bat
2012-01-31 12:44 . 2011-07-15 11:42 279656 ------w- c:\windows\system32\MpSigStub.exe
2012-01-04 00:48 . 2012-01-04 00:48 354176 ------w- c:\windows\SysWow64\DivXControlPanelApplet.cpl
2011-12-22 19:22 . 2011-12-22 19:22 279616 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-12-16 11:29 . 2011-10-02 17:11 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2011-09-16 14:12 . 2011-11-15 06:50 3623592 ----a-w- c:\program files (x86)\Common Files\ApnToolbarInstaller.exe
2011-09-16 14:12 . 2011-11-15 06:50 143240 ----a-w- c:\program files (x86)\Common Files\ApnStub.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2012-03-08_21.22.31 )))))))))))))))))))))))))))))))))))))))))
.
+ 2009-07-14 05:10 . 2012-03-10 04:05 45480 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2011-07-15 11:06 . 2012-03-10 04:05 11398 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1754209203-3230957330-971758541-1001_UserData.bin
+ 2009-01-01 09:09 . 2012-03-08 21:45 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-01-01 09:09 . 2012-03-08 21:18 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-01-01 09:09 . 2012-03-08 21:45 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-01-01 09:09 . 2012-03-08 21:18 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2012-03-08 21:45 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2012-03-08 21:18 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2011-07-15 11:13 . 2012-03-10 04:02 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-15 11:13 . 2012-03-08 21:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2011-07-15 11:13 . 2012-03-08 21:25 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-15 11:13 . 2012-03-10 04:02 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2011-07-15 11:13 . 2012-03-10 04:02 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-07-15 11:13 . 2012-03-08 21:25 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-07-15 11:13 . 2012-03-08 21:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-07-15 11:13 . 2012-03-10 04:05 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-07-15 11:13 . 2012-03-10 04:05 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2011-07-15 11:13 . 2012-03-08 21:25 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2012-03-10 03:59 . 2012-03-10 03:59 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-03-08 21:21 . 2012-03-08 21:21 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-03-10 03:59 . 2012-03-10 03:59 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-03-08 21:21 . 2012-03-08 21:21 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-07-16 09:07 . 2012-03-07 01:30 331596 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2011-07-16 09:07 . 2012-03-09 01:15 331596 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
- 2009-07-14 05:12 . 2012-03-08 19:45 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2009-07-14 05:12 . 2012-03-08 21:45 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:01 . 2012-03-08 21:20 505896 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-03-10 03:59 505896 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
.
(((((((((((((((((((((((((((((((((( SpouÜtýcÝ body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznßmka* prßzdnÚ zßznamy a legitimnÝ vřchozÝ ˙daje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2009-10-09 25623336]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-11-20 1475584]
"Xvid"="c:\program files (x86)\Xvid\CheckUpdate.exe" [2011-01-17 8192]
"PCSpeedUp"="c:\program files (x86)\Zrychleni Pocitace\PCSpeedUp.lnk" [2011-11-15 2415]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2011-11-10 3514176]
"NokiaSuite.exe"="c:\program files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" [2012-01-10 1083264]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NortonOnlineBackupReminder"="c:\program files (x86)\Symantec\Norton Online Backup\Activation\NobuActivation.exe" [2009-07-24 588648]
"FerrariWP"="c:\acer\WallPaper\FerrariWP\FerrariWP.exe" [2009-09-15 145952]
"StartCCC"="c:\program files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-05-27 102400]
"LManager"="c:\program files (x86)\Launch Manager\LManager.exe" [2009-11-26 830032]
"DVAPTray"="c:\windows\System32\DVAPTray.exe" [2009-10-30 188416]
"ArcSoft Connection Service"="c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe" [2010-10-27 207424]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2012-01-13 460872]
"APSDaemon"="c:\program files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-11-01 59240]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2010-6-25 1129760]
SPB Backup Sync.lnk - c:\program files (x86)\SPB Backup\SPBBackupSync.exe [2011-7-29 610304]
WinZip Quick Pick.lnk - c:\program files (x86)\WinZip\WZQKPICK.EXE [2009-5-11 525664]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
R0 CLBStor;CyberLink InstantBurn UDF Reader Help Driver; [x]
R1 rawoiupe;rawoiupe;c:\windows\system32\drivers\rawoiupe.sys [x]
R2 Ca1528av;SPCA1528 Video Camera Service;c:\windows\system32\Drivers\Ca1528av.sys [x]
R2 CLBUDFR;CyberLink UDF Filesystem; [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
R3 btwampfl;Bluetooth AMP USB Filter;c:\windows\system32\drivers\btwampfl.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 Bulk1528;SPCA1528 Still Camera Service;c:\windows\system32\Drivers\Bulk1528.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-03-24 16776]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-03-24 9096]
R3 htcnprot;HTC NDIS Protocol Driver;c:\windows\system32\DRIVERS\htcnprot.sys [x]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-04-27 288272]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [x]
R3 RtsUIR;Realtek IR Driver;c:\windows\system32\DRIVERS\Rts516xIR.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 WatAdminSvc;Slu×ba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-03-03 140672]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [x]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 DsiWMIService;Dritek WMI Service;c:\program files (x86)\Launch Manager\dsiwmis.exe [2009-10-26 117328]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [2010-02-26 841248]
S2 GREGService;GREGService;c:\program files (x86)\Acer\Registration\GREGsvc.exe [2010-01-08 23584]
S2 LicCtrlService;LicCtrl Service;c:\windows\runservice.exe [2011-07-21 2560]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-01-13 652360]
S2 PassThru Service;Internet Pass-Through Service;c:\program files (x86)\HTC\Internet Pass-Through\PassThruSvr.exe [2011-03-31 80896]
S2 RS_Service;Raw Socket Service;c:\program files (x86)\Acer\Acer VCM\RS_Service.exe [2010-01-29 260640]
S2 Updater Service;Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [2010-01-28 243232]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [x]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [x]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [x]
S3 L1C;NDIS Miniport Driver for Atheros AR813x/AR815x PCI-E Ethernet Controller;c:\windows\system32\DRIVERS\L1C62x64.sys [x]
S3 LgBttPort;LGE Bluetooth TransPort;c:\windows\system32\DRIVERS\lgbtpt64.sys [x]
S3 lgbusenum;LG Bluetooth Bus Enumerator;c:\windows\system32\DRIVERS\lgbtbs64.sys [x]
S3 LGVMODEM;LGE Virtual Modem;c:\windows\system32\DRIVERS\lgvmdm64.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
Obsah adresß°e 'NaplßnovanÚ ˙lohy'
.
2012-03-10 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task b85c029a-74f6-4a3b-b298-55f0a174eea2.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-13 11046504]
"Acer ePower Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2010-02-26 818720]
"Apoint"="c:\program files\Apoint2K\Apoint.exe" [2009-05-21 295936]
"PLFSetI"="c:\windows\PLFSetI.exe" [2010-06-10 206208]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2011-06-15 1436736]
"BCSSync"="c:\program files\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"Windows Mobile Device Center"="c:\windows\WindowsMobile\wmdc.exe" [2007-05-31 660360]
"combofix"="c:\combofix\CF6408.3XE" [2010-11-20 345088]
.
------- Dopl˛kovř sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mStart Page = hxxp://home.sweetim.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xport to Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~2\MICROS~1\Office14\ONBttnIE.dll/105
IE: Odeslat obrßzek do za°ÝzenÝ &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat strßnku do za°ÝzenÝ &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Read EXIF - c:\program files (x86)\ArcSoft\RAW Thumbnail Viewer\ArcEXIFM.htm
IE: Search the Web - c:\program files (x86)\SweetIM\Toolbars\Internet Explorer\resources\menuext.html
IE: Stßhnout odkaz s pou×itÝm BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: Stßhnout vÜechny odkazy s pou×itÝm BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: WikiKomentß°e Google... - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
TCP: DhcpNameServer = 10.1.1.3 10.10.1.3
.
- - - - NEPLATN╔ POLOÄKY ODSTRAN╠N╔ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
WebBrowser-{EEE6C35B-6118-11DC-9C72-001320C79847} - (no file)
AddRemove-Facecons - c:\program files (x86)\Facecons\uninstall.exe
.
.
.
--------------------- ZAMKNUT╔ KL═╚E V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \D25BC253F035D347]
"1"=hex:6a,0b,56,13,c1,93,dc,9c,fb,61,a2,a0,e4,ff,91,20,60,bf,2f,c2,35,91,ae,
25
"2"=hex:fb,e6,50,7f,41,f4,51,a7,7f,ec,2d,f9,42,45,3a,02,3a,b7,45,15,3f,9d,8b,
c3
"3"=hex:6a,0b,56,13,c1,93,dc,9c,fb,61,a2,a0,e4,ff,91,20,5d,f5,58,d1,21,e0,48,
8b,38,57,44,9c,4e,8d,78,88,fd,f1,01,9d,86,d8,b5,cb,d9,bf,23,55,4a,bb,31,1f
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\LicCtrl\LicCtrl\LicCtrl\LicCtrl*lkzs$i&#&y@^t! #^$ g9^$&pgb SDB36o \D25BC253F035D347\CF5A76C0F6C2981F786388D07A007CED]
"1"=hex:b0,57,4a,e6,b6,28,dc,b1,c7,47,8a,c4,80,0d,73,fa,b6,aa,88,ab,a1,2d,c7,
8d,a1,70,b2,9c,4e,a1,a9,b9
"2"=hex:14,ce,87,8d,79,74,ee,b2
"3"=hex:81,20,8f,ab,28,6a,52,9c
"4"=hex:2f,ad,a2,e7,8a,bf,05,5e
"5"=hex:bf,e5,23,7b,b0,66,d6,fc,b8,e8,6b,a0,96,52,f7,32,80,09,8f,24,b7,b3,55,
1a,98,d1,47,16,02,43,61,1c,b9,d5,8f,2a,7b,81,b1,fb,95,22,f8,b3,2c,53,9d,ae,\
"6"=hex:bf,e5,23,7b,b0,66,d6,fc,bc,64,22,fb,7e,d3,39,3e,a3,00,33,13,c0,21,f4,
51,6c,4e,0c,96,e2,dd,ad,8a,b6,c4,05,e8,5a,bd,9a,e9,d4,1a,3d,68,9d,00,32,20
"7"=hex:97,e4,84,cd,95,83,bf,82,66,bb,1b,76,ec,7c,06,9a,0e,0b,6d,a2,47,37,9f,
b6,d4,bb,5e,31,68,e2,cb,1a,ee,af,25,28,3c,06,fa,02,cf,94,9f,2c,18,df,5b,c1,\
"8"=hex:9d,9e,b2,b9,a7,a5,f4,ae,4d,29,c2,a3,c0,78,c4,c5,43,69,70,4c,7e,7f,7c,
de,a0,46,ee,d1,e1,d8,58,7c,45,1d,89,e1,9a,5a,0b,e0,9e,29,11,a8,24,d0,3a,33,\
"9"=hex:81,20,8f,ab,28,6a,52,9c
"18"=hex:b6,dd,00,4d,9d,38,11,d1
"10"=hex:81,20,8f,ab,28,6a,52,9c
"11"=hex:81,20,8f,ab,28,6a,52,9c
"12"=hex:81,20,8f,ab,28,6a,52,9c
"13"=hex:81,20,8f,ab,28,6a,52,9c
"14"=hex:81,20,8f,ab,28,6a,52,9c
"24"=hex:81,20,8f,ab,28,6a,52,9c
"26"=hex:81,20,8f,ab,28,6a,52,9c
"27"=hex:81,20,8f,ab,28,6a,52,9c
"19"=hex:81,20,8f,ab,28,6a,52,9c
"22"=hex:81,20,8f,ab,28,6a,52,9c
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows CE Services]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,4d,00,41,00,43,00,48,00,49,00,4e,00,45,00,5c,00,53,00,4f,00,46,00,\
.
------------------------ JinÚ spuÜtenÚ procesy ------------------------
.
c:\program files (x86)\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Microsoft Small Business\Business Contact Manager\BcmSqlStartupSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
c:\program files (x86)\Microsoft SQL Server\90\Shared\sqlbrowser.exe
c:\program files (x86)\Common Files\InterVideo\RegMgr\iviRegMgr.exe
c:\program files (x86)\PC Connectivity Solution\ServiceLayer.exe
c:\program files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
.
**************************************************************************
.
Celkovř Ŕas: 2012-03-10 05:11:29 - poŔÝtaŔ byl restartovßn
ComboFix-quarantined-files.txt 2012-03-10 04:11
ComboFix2.txt 2012-03-08 21:31
.
P°ed spuÜtýnÝm: Volnřch bajt¨: 200á782á680á064
Po spuÜtýnÝ: Volnřch bajt¨: 200á362á926á080
.
- - End Of File - - 6D60602E0D2C1ED9ABBC8115EA1CB42F
Nahrání proběhlo úspěšně

#6 Příspěvek od **Rudy** » 10 bře 2012 11:40

Smazáno. Nastala nějaká změna?

Vasek2 · #7 Příspěvek od **Vasek2** » 11 bře 2012 17:32

No už se mi procesor nevytěžuje na 100%, a tím pádem tak moc nezahřívá. Uvidím časem, díky moc.

#8 Příspěvek od **Rudy** » 11 bře 2012 17:59

Nemáte zač!

Vasek2 · #9 Příspěvek od **Vasek2** » 01 dub 2012 08:47

Ahoj, tak po nějakém čase testování jsem asi našel příčinu občasného vypínání. Nainstaloval jsem si program na měření teploty, a zjistil jsem že při běžné činnosti na netu je teplota kolem 50°C. Ale když si dcera zapne například on-line vědomostní hru Dobyvatel, dokáže teplota stoupnout i na 75°C. Jaká teplota je kritická?

#10 Příspěvek od **Rudy** » 01 dub 2012 10:40

Pro NB by teplota komponent neměla trvale překračovat 70°C.

VIRY.CZ

samovolné vypínání notebooku.

samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.

Re: samovolné vypínání notebooku.