Logfile of random's system information tool 1.09 (written by random/random)
Run by Tomas at 2012-03-28 11:30:56
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 92 GB (75%) free of 122 GB
Total RAM: 3575 MB (72% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:31:02, on 28.3.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\BinarySense\SSDlife\ssdlife.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\FinalWire\AIDA64 Extreme Edition\aida64.exe
C:\Users\Tomas\Desktop\RSIT.exe
C:\Program Files\trend micro\Tomas.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\ProgramData\LangSoft\WebIE.dll
O2 - BHO: Babylon toolbar helper - {2EECD738-5844-4a99-B4B6-146BF802613B} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: RewardsArcadeSuite - {B6EF6C45-5E8D-4c3b-B580-A5073261A381} - C:\Program Files\RewardsArcadeSuite\RewardsArcadeSuite.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\ProgramData\LangSoft\WebIE.dll
O3 - Toolbar: Babylon Toolbar - {98889811-442D-49dd-99D7-DC866BE87DBC} - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [egregregerfwde] "C:\Users\Tomas\AppData\Roaming\svhost.exe"
O4 - HKCU\..\Run: [svhost.exe] "C:\Users\Tomas\AppData\Roaming\svhost.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\ProgramData\LangSoft\WebIE.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: Sandboxie Service (SbieSvc) - SANDBOXIE L.T.D - C:\Program Files\Sandboxie\SbieSvc.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
--
End of file - 7299 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\ProgramData\LangSoft\WebIE.dll [2012-02-19 798771]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2EECD738-5844-4a99-B4B6-146BF802613B}]
Babylon toolbar helper - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\bh\BabylonToolbar.dll [2011-08-14 270960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-19 192112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B6EF6C45-5E8D-4c3b-B580-A5073261A381}]
RewardsArcadeSuite - C:\Program Files\RewardsArcadeSuite\RewardsArcadeSuite.dll [2011-11-03 528216]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\ProgramData\LangSoft\WebIE.dll [2012-02-19 798771]
{98889811-442D-49dd-99D7-DC866BE87DBC} - Babylon Toolbar - C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\BabylonToolbarTlbr.dll [2011-08-14 237680]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-03-19 192112]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"=C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe [2011-10-17 284440]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-22 3080264]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2012-02-14 636032]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-02-18 39408]
"egregregerfwde"=C:\Users\Tomas\AppData\Roaming\svhost.exe [2012-03-22 137376]
"svhost.exe"=C:\Users\Tomas\AppData\Roaming\svhost.exe [2012-03-22 137376]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-02 843712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2012-01-03 37296]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
C:\Program Files\Sandboxie\SbieCtrl.exe [2012-02-08 451856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-08-31 294400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvyu"=msyuv.dll
"vidc.iyuv"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"vidc.yvu9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux2"=wdmaud.drv
"VIDC.FFDS"=ff_vfw.dll
"wave3"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer3"=wdmaud.drv
"aux3"=wdmaud.drv
"VIDC.XVID"=xvidvfw.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 month======
2012-03-28 11:30:56 ----D---- C:\rsit
2012-03-28 11:30:56 ----D---- C:\Program Files\trend micro
2012-03-26 19:06:22 ----D---- C:\Users\Tomas\AppData\Roaming\Anarchy
2012-03-26 19:04:39 ----D---- C:\Users\Tomas\AppData\Roaming\TheMissingMonaLisa
2012-03-26 19:02:54 ----D---- C:\Users\Tomas\AppData\Roaming\4 Friends Games
2012-03-26 19:01:22 ----D---- C:\Users\Tomas\AppData\Roaming\SulusGames
2012-03-22 15:40:38 ----RSH---- C:\Users\Tomas\AppData\Roaming\svhost.exe
2012-03-19 14:41:42 ----D---- C:\Program Files\OCCTPT
2012-03-18 23:24:42 ----D---- C:\Users\Tomas\AppData\Roaming\GO Games
2012-03-17 19:24:05 ----D---- C:\ProgramData\Playrix Entertainment
2012-03-17 19:22:23 ----D---- C:\ProgramData\TERMINAL Studio
2012-03-17 18:13:13 ----D---- C:\Users\Tomas\AppData\Roaming\Floodlight Games
2012-03-17 18:13:13 ----D---- C:\ProgramData\Floodlight Games
2012-03-17 18:12:37 ----D---- C:\Users\Tomas\AppData\Roaming\Gunnar Games
2012-03-17 18:11:44 ----D---- C:\Users\Tomas\AppData\Roaming\Dark Blue Games
2012-03-17 17:58:17 ----D---- C:\Users\Tomas\AppData\Roaming\Blue Tea Games
2012-03-17 17:56:50 ----D---- C:\Users\Tomas\AppData\Roaming\FlowerOfImmortality
2012-03-17 17:55:58 ----D---- C:\Users\Tomas\AppData\Roaming\iWin
2012-03-17 17:55:58 ----D---- C:\ProgramData\iWin
2012-03-17 17:55:20 ----D---- C:\Users\Tomas\AppData\Roaming\ERS G-Studio
2012-03-17 17:47:12 ----HD---- C:\Windows\PIF
2012-03-17 17:46:35 ----D---- C:\Users\Tomas\AppData\Roaming\Mozilla
2012-03-17 17:42:07 ----D---- C:\Users\Tomas\AppData\Roaming\ABSOLUTIST
2012-03-17 14:50:40 ----D---- C:\Program Files\CPUID
2012-03-17 14:50:40 ----A---- C:\Windows\system32\drivers\cpuz135_x32.sys
2012-03-14 23:31:22 ----D---- C:\ProgramData\Binarysense
2012-03-14 23:30:56 ----D---- C:\Program Files\BinarySense
2012-03-14 18:17:22 ----D---- C:\Temp
2012-03-14 16:46:04 ----D---- C:\Program Files\GIGABYTE
2012-03-14 16:34:37 ----D---- C:\Windows\pss
2012-03-14 16:21:31 ----A---- C:\Windows\system32\drivers\iaStor.sys
2012-03-13 23:05:40 ----A---- C:\Windows\system32\ntkrnlpa.exe
2012-03-13 23:05:39 ----A---- C:\Windows\system32\ntoskrnl.exe
2012-03-13 23:05:30 ----A---- C:\Windows\system32\win32k.sys
2012-03-13 23:05:30 ----A---- C:\Windows\system32\rdrmemptylst.exe
2012-03-13 23:05:30 ----A---- C:\Windows\system32\rdpwsx.dll
2012-03-13 23:05:30 ----A---- C:\Windows\system32\rdpcorekmts.dll
2012-03-13 23:05:30 ----A---- C:\Windows\system32\DWrite.dll
2012-03-13 23:05:29 ----A---- C:\Windows\system32\rdpcorets.dll
2012-03-13 23:05:29 ----A---- C:\Windows\system32\rdpcore.dll
2012-03-13 23:05:29 ----A---- C:\Windows\system32\drivers\tdtcp.sys
2012-03-13 23:05:29 ----A---- C:\Windows\system32\drivers\rdpwd.sys
2012-03-13 22:44:39 ----D---- C:\Program Files\Geeks3D
2012-03-13 21:49:21 ----D---- C:\Users\Tomas\AppData\Roaming\FlyWheelGames
2012-03-13 21:44:41 ----D---- C:\Users\Tomas\AppData\Roaming\Alawar Stargaze
2012-03-13 21:42:04 ----D---- C:\Users\Tomas\AppData\Roaming\Alawar Entertainment
2012-03-13 21:41:15 ----D---- C:\Users\Tomas\AppData\Roaming\Daedalic Entertainment
2012-03-11 22:20:30 ----D---- C:\Users\Tomas\AppData\Roaming\EntwinedSoD
2012-03-10 16:20:20 ----D---- C:\ProgramData\ATI
2012-03-10 16:19:33 ----D---- C:\ProgramData\AMD
2012-03-10 16:19:33 ----D---- C:\Program Files\AMD AVT
2012-03-10 16:19:32 ----D---- C:\Program Files\AMD APP
2012-03-06 16:59:47 ----D---- C:\Program Files\NVIDIA Corporation
2012-03-05 12:15:18 ----D---- C:\Users\Tomas\AppData\Roaming\Feuerwache
2012-03-05 09:54:23 ----D---- C:\Windows\system32\Adobe
2012-03-04 15:59:13 ----A---- C:\Windows\system32\ff_vfw.dll
2012-03-04 15:41:23 ----D---- C:\ProgramData\rionix
2012-03-03 02:23:21 ----D---- C:\ProgramData\Electronic Arts
2012-03-03 02:23:21 ----D---- C:\ProgramData\EA Logs
2012-03-03 02:23:21 ----D---- C:\ProgramData\EA Core
2012-03-03 00:38:34 ----D---- C:\Users\Tomas\AppData\Roaming\Origin
2012-03-03 00:38:05 ----D---- C:\ProgramData\Origin
2012-03-02 19:51:10 ----A---- C:\Windows\system32\xvidvfw.dll
2012-03-02 19:51:10 ----A---- C:\Windows\system32\xvidcore.dll
2012-03-02 19:48:07 ----D---- C:\Users\Tomas\AppData\Roaming\Big Finish
2012-03-02 19:48:07 ----D---- C:\ProgramData\Big Finish
2012-03-02 18:37:14 ----D---- C:\Users\Tomas\AppData\Roaming\Baumaschinen Simulator 2011
2012-03-02 18:36:54 ----D---- C:\Users\Tomas\AppData\Roaming\GameInvest
======List of files/folders modified in the last 1 month======
2012-03-28 11:31:02 ----D---- C:\Windows\Prefetch
2012-03-28 11:30:56 ----RD---- C:\Program Files
2012-03-28 11:30:13 ----D---- C:\Windows
2012-03-28 11:29:43 ----D---- C:\Windows\system32\config
2012-03-28 11:29:42 ----D---- C:\Windows\Temp
2012-03-28 11:23:34 ----D---- C:\Windows\System32
2012-03-28 11:23:34 ----D---- C:\Windows\inf
2012-03-28 11:23:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-03-28 11:22:17 ----D---- C:\Windows\SoftwareDistribution
2012-03-28 11:21:46 ----D---- C:\Users\Tomas\AppData\Roaming\uTorrent
2012-03-28 10:35:00 ----D---- C:\Windows\system32\drivers
2012-03-27 09:10:56 ----SHD---- C:\System Volume Information
2012-03-26 19:07:16 ----D---- C:\Users\Tomas\AppData\Roaming\Alawar
2012-03-26 19:07:16 ----D---- C:\ProgramData\Alawar
2012-03-26 19:01:22 ----HD---- C:\ProgramData
2012-03-26 18:53:23 ----D---- C:\Program Files\Alawarhry.cz
2012-03-26 16:48:21 ----SHD---- C:\Windows\Installer
2012-03-25 05:10:52 ----D---- C:\Windows\Minidump
2012-03-22 13:51:45 ----D---- C:\Windows\system32\catroot2
2012-03-21 08:33:39 ----D---- C:\Program Files\Sandboxie
2012-03-21 08:20:36 ----A---- C:\Windows\Sandboxie.ini
2012-03-20 03:43:59 ----D---- C:\Windows\Logs
2012-03-19 14:41:42 ----D---- C:\Windows\system32\directx
2012-03-19 01:34:04 ----D---- C:\Windows\system32\NDF
2012-03-18 23:23:26 ----D---- C:\Users\Tomas\AppData\Roaming\ERS Game Studios
2012-03-18 23:10:55 ----D---- C:\Windows\system32\Tasks
2012-03-18 23:02:40 ----D---- C:\Users\Tomas\AppData\Roaming\DAEMON Tools Lite
2012-03-18 22:27:56 ----RSD---- C:\Windows\assembly
2012-03-14 18:13:25 ----HD---- C:\Program Files\InstallShield Installation Information
2012-03-14 16:21:58 ----D---- C:\Windows\system32\catroot
2012-03-14 16:21:38 ----D---- C:\Windows\system32\DriverStore
2012-03-14 16:21:30 ----D---- C:\Program Files\Intel
2012-03-14 03:24:45 ----D---- C:\Windows\debug
2012-03-13 23:07:26 ----D---- C:\Windows\winsxs
2012-03-13 23:06:45 ----D---- C:\Windows\system32\wdi
2012-03-13 23:05:51 ----A---- C:\Windows\system32\MRT.exe
2012-03-13 23:05:46 ----D---- C:\ProgramData\Microsoft Help
2012-03-13 21:46:17 ----D---- C:\Users\Tomas\AppData\Roaming\Vast Studios
2012-03-12 21:08:18 ----D---- C:\Users\Tomas\AppData\Roaming\Natural Threat.Ominous Shores
2012-03-12 19:51:47 ----A---- C:\Users\Tomas\AppData\Roaming\log.txt
2012-03-10 16:19:28 ----D---- C:\Program Files\ATI Technologies
2012-03-09 22:58:46 ----AD---- C:\ProgramData\TEMP
2012-03-09 02:05:21 ----SD---- C:\ProgramData\Microsoft
2012-03-06 16:59:48 ----HD---- C:\Program Files\Common Files\EAInstaller
2012-03-06 16:59:47 ----D---- C:\Program Files\Common Files
2012-03-06 14:11:49 ----D---- C:\Program Files\Foxy Games
2012-03-05 12:07:50 ----D---- C:\Users\Tomas\AppData\Roaming\Artogon
2012-03-05 09:54:23 ----D---- C:\Windows\Downloaded Program Files
2012-03-03 18:02:39 ----D---- C:\ProgramData\Mastiff
2012-03-03 12:49:37 ----D---- C:\Users\Tomas\AppData\Roaming\Elephant Games
2012-03-03 12:49:37 ----D---- C:\ProgramData\Elephant Games
2012-03-02 18:18:07 ----D---- C:\Downloads
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 epfwwfp;epfwwfp; C:\Windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2011-10-17 462104]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2012-03-17 473656]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 175360]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 ehdrv;ehdrv; C:\Windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 EpfwLWF;Epfw NDIS LightWeight Filter; C:\Windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
R2 cpuz135;cpuz135; \??\C:\Windows\system32\drivers\cpuz135_x32.sys [2011-09-21 21992]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
R2 epfw;epfw; C:\Windows\system32\DRIVERS\epfw.sys [2011-08-04 147480]
R3 AIDA64Driver;FinalWire AIDA64 Kernel Driver; \??\C:\Program Files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 [2011-06-15 28824]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2012-02-15 9182208]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2012-02-15 264704]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service; C:\Windows\system32\drivers\AtihdW73.sys [2011-12-05 86032]
R3 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-26 242240]
R3 EtronHub3;Etron USB 3.0 Extensible Hub Driver; C:\Windows\System32\Drivers\EtronHub3.sys [2011-05-25 41600]
R3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver; C:\Windows\System32\Drivers\EtronXHCI.sys [2011-05-25 61824]
R3 MEI;Intel(R) Management Engine Interface ; C:\Windows\system32\DRIVERS\HECI.sys [2010-10-20 41088]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2011-05-16 391272]
R3 SbieDrv;SbieDrv; \??\C:\Program Files\Sandboxie\SbieDrv.sys [2012-03-21 133904]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-07 10064]
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 ALSysIO;ALSysIO; \??\C:\Users\Tomas\AppData\Local\Temp\ALSysIO.sys []
S3 amdagp;Ovladač filtru AMD portu AGP; C:\Windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 asrt1dys;asrt1dys; C:\Windows\system32\drivers\asrt1dys.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 cpuz130;cpuz130; \??\C:\Users\Tomas\AppData\Local\Temp\cpuz130\cpuz_x32.sys []
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2012-02-25 17488]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2012-03-19 17488]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2011-08-31 10855424]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2011-06-07 3514152]
S3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 Revoflt;Revoflt; C:\Windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;Filtr SIS sběrnice AGP; C:\Windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\Windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 tsusbhub;@%SystemRoot%\system32\drivers\tsusbhub.sys,-1; C:\Windows\system32\drivers\tsusbhub.sys []
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 viaagp;Filtr VIA sběrnice AGP; C:\Windows\system32\drivers\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2012-02-15 163328]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
R2 SbieSvc;Sandboxie Service; C:\Program Files\Sandboxie\SbieSvc.exe [2012-02-08 74512]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-10-27 1483072]
R2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology; C:\Program Files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-17 13592]
S2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-02-18 182768]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-02-18 1343400]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nepravidelné zamrzání internetu
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Nepravidelné zamrzání internetu
zdravim a pekny den preji 
Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit
Mohu mit dotaz, proc si bezny uzivatel kupuje nejvyssi licenci Windows Ultimate, ktera je urcena spise pro velke korporace, kdyz stejne nevyuzije nic vic nez nabizi verze Home Premium 
Poprosim i o druhy log z RSIT s nazvem info.txt, je ulozen v c:\rsit Mohu mit dotaz, proc si bezny uzivatel kupuje nejvyssi licenci Windows Ultimate, ktera je urcena spise pro velke korporace, kdyz stejne nevyuzije nic vic nez nabizi verze Home Premium "Kdo víno má a nepije,kdo hrozny má a nejí je, kdo ženu má a nelíbá, kdo zábavě se vyhýbá, na toho vemte bič a hůl, to není člověk, to je vůl."
Člen
od 1. února 2011.
Člen
od 1. února 2011.
Re: Nepravidelné zamrzání internetu
Presun ComboFix
na plochu (ak tam este nie je)
otvor si Poznamkovy blok - notepad
do neho zkopiruj skript z nasledujiceho okna:
uloz vytvoreny textovy soubor ako CFScript.txt na plochu
po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:
po aplikacii by mal vzniknut dalsi log, ten vloz sem
na plochu (ak tam este nie je)
otvor si Poznamkovy blok - notepad
do neho zkopiruj skript z nasledujiceho okna:
Kód: Vybrat vše
Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"egregregerfwde"=-
"svhost.exe"=-
po ulozeni uchop vytvoreny skript lavym tlacitkom mysi a presun ho nad ikonu Combofixu, nad nim skript upust:
po aplikacii by mal vzniknut dalsi log, ten vloz sem
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nepravidelné zamrzání internetu
Také zdravím a přeji hezký den. Ty Win 7 by jsem si sám nekoupil, byl to nevhodný dárek.
info.txt logfile of random's system information tool 1.09 2012-03-28 11:31:03
======Uninstall list======
@BIOS-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}\setup.exe" -l0x9 -removeonly
-->MsiExec /X{9530AE42-DAE1-4619-9594-B23487285D17}
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
3DMark06-->"C:\Program Files\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -runfromtemp -l0x0009 -removeonly
7 Gates The Path to Zamolxes 1.00-->D:\Olinka-Hry\7 Gates The Path\7 Gates The Path to Zamolxes\Uninstall.exe
7554 Final Release 1.0.1-->"D:\Games\7554\uninstall.exe"
Aaron Crane - Paintings Come Alive-->"D:\Olinka-Hry\Aaron Crane\uninstall.exe" "/U:D:\Olinka-Hry\Aaron Crane\Uninstall\uninstall.xml"
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil11g_ActiveX.exe -maintain activex
Adobe Reader 9.5.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A95000000001}
Adobe Shockwave Player 11.6-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
AIDA64 Extreme Edition v1.80-->"C:\Program Files\FinalWire\AIDA64 Extreme Edition\unins000.exe"
Air Conflicts Secret Wars-->D:\Games\Air Conflicts Secret Wars\Uninstall.exe
Air Conflicts-->D:\Games\Air Conflicts\uninstall.exe
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {0A1FAC46-B899-421D-B1A2-470896DC45DB}
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {E68DD413-B834-4923-8181-0A03B7555187}
Alan Wake version 1.0-->"D:\Games\Alan Wake\uninstall\unins000.exe"
AMD Accelerated Video Transcoding-->MsiExec.exe /X{A994E9F7-A748-FFB1-01C2-9D64ADE870B4}
AMD APP SDK Runtime-->MsiExec.exe /I{A25FF1C0-80B6-4B8B-A551-DC525697A408}
AMD Catalyst Install Manager-->msiexec /q/x{C4100721-2D71-CC80-8877-0A7855B6EEFB} REBOOT=ReallySuppress
AMD Drag and Drop Transcoding-->MsiExec.exe /X{305C431C-CC6E-5506-CE75-29512315D306}
AMD Media Foundation Decoders-->MsiExec.exe /X{943B2619-0E00-E9F1-73E3-03090965484E}
Amulet of Time - Shadow of la Rochelle-->"C:\Program Files\Foxy Games\Amulet of Time - Shadow of la Rochelle\uninstall.exe" "/U:C:\Program Files\Foxy Games\Amulet of Time - Shadow of la Rochelle\Uninstall\uninstall.xml"
Ashampoo Burning Studio 10 v.10.0.11-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 10\unins000.exe"
Atlantis Trilogy Pack-->"D:\Olinka-Hry\Atlantis Trilogy\uninstall.exe" "/U:D:\Olinka-Hry\Atlantis Trilogy\Uninstall\uninstall.xml"
Azkend-->"C:\Program Files\Foxy Games\Azkend\uninstall.exe" "/U:C:\Program Files\Foxy Games\Azkend\Uninstall\uninstall.xml"
Babylon toolbar on IE-->"C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe"
Behind the Reflection 2 Witchs Revenge-->"D:\Olinka-Hry\Behind the Reflection 2\uninstall.exe" "/U:D:\Olinka-Hry\Behind the Reflection 2\Uninstall\uninstall.xml"
Big City Adventure - San Francisco-->"C:\Program Files\Foxy Games\Big City Adventure - San Francisco\uninstall.exe" "/U:C:\Program Files\Foxy Games\Big City Adventure - San Francisco\Uninstall\uninstall.xml"
Big City Adventure - Vancouver CE-->"C:\Program Files\Foxy Games\Big City Adventure - Vancouver CE\uninstall.exe" "/U:C:\Program Files\Foxy Games\Big City Adventure - Vancouver CE\Uninstall\uninstall.xml"
Bubble Bonanza-->"D:\Olinka-Hry\Bubble Bonanza\uninstall.exe" "/U:D:\Olinka-Hry\Bubble Bonanza\Uninstall\uninstall.xml"
Catalyst Control Center - Branding-->MsiExec.exe /I{2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Combined Community Codec Pack 2011-11-11-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Core Temp 1.0 RC3-->"C:\Program Files\Core Temp\unins000.exe"
CPUID CPU-Z 1.60-->"C:\Program Files\CPUID\CPU-Z\unins000.exe"
CrystalDiskMark 3.0.1b-->"C:\Program Files\CrystalDiskMark\unins000.exe"
Černý kocour v1.0-->"D:\Olinka-Hry\Černý kocour\Cerny kocour\unins000.exe"
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Dark Parables - Rise of the Snow Queen version 1.0-->"D:\Olinka-Hry\Dark Parables-Rise of the Snow Queen\Dark Parables - Rise of the Snow Queen\unins000.exe"
Dark Strokes Sins of the Fathers CE-->"D:\Olinka-Hry\Dark Strokes Sins\uninstall.exe" "/U:D:\Olinka-Hry\Dark Strokes Sins\Uninstall\uninstall.xml"
Deep Black : Reloaded-->"D:\Games\Deep Black\Deep Black Reloaded\unins000.exe"
Depth Hunter-->"D:\Games\Depth Hunter\Depth Hunter\unins000.exe"
Etron USB3.0 Host Controller-->"C:\Program Files\InstallShield Installation Information\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}\setup.exe" -runfromtemp -l0x0409 -removeonly
Etron USB3.0 Host Controller-->MsiExec.exe /I{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}
Fantastic Creations - House of Brass CE-->"D:\Olinka-Hry\Fantastic Creations - House of Brass\uninstall.exe" "/U:D:\Olinka-Hry\Fantastic Creations - House of Brass\Uninstall\uninstall.xml"
ffdshow v1.1.3631 [2010-11-15]-->"C:\Program Files\Combined Community Codec Pack\Filters\FFDShow\unins000.exe"
Flower of Immortality-->"D:\Olinka-Hry\Flower of Immortality\uninstall.exe" "/U:D:\Olinka-Hry\Flower of Immortality\Uninstall\uninstall.xml"
Fruit Mania-->"D:\Olinka-Hry\Fruit Mania\uninstall.exe" "/U:D:\Olinka-Hry\Fruit Mania\Uninstall\uninstall.xml"
Futuremark SystemInfo-->"C:\Program Files\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe" -runfromtemp -l0x0009 -removeonly
Gardenscapes 2 Mansion Makeover CE version 2.0-->"D:\Olinka-Hry\Gardenscapes 2 Mansion Makeover\Gardenscapes 2 Mansion Makeover CE\unins000.exe"
Geeks3D.com FurMark 1.9.1-->"C:\Program Files\Geeks3D\Benchmarks\FurMark_1.9.1\unins000.exe"
Gem Boy-->"D:\Olinka-Hry\Gem Boy\uninstall.exe" "/U:D:\Olinka-Hry\Gem Boy\Uninstall\uninstall.xml"
German Truck Simulator 1.04-->D:\Games\German Truck Simulator\uninst.exe
Ghost Towns - The Cats Of Ulthar CE-->"C:\Program Files\Foxy Games\Ghost Towns - The Cats Of Ulthar CE\uninstall.exe" "/U:C:\Program Files\Foxy Games\Ghost Towns - The Cats Of Ulthar CE\Uninstall\uninstall.xml"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_F91D44FAA5479127.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Hard Reset - Extended Edition version 1.5-->"D:\Games\Hard Reset\Hard Reset - Extended Edition\unins000.exe"
HD Tune Pro 5.00-->"C:\Program Files\HD Tune Pro\unins000.exe"
Intel(R) Management Engine Components-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Jewel Quest Mysteries 4 CE version 4.0-->"D:\Olinka-Hry\Jewel Quest Mysteries 4\Jewel Quest Mysteries 4 CE\unins000.exe"
Leahs Tale-->"C:\Program Files\Foxy Games\Leahs Tale\uninstall.exe" "/U:C:\Program Files\Foxy Games\Leahs Tale\Uninstall\uninstall.xml"
Loutkové divadlo - Záhada Štěstíkova v1.0-->"D:\Olinka-Hry\Loutkové divadlo-Záhada Štěstíkova\Loutkove divadlo - Zahada Stestikova\unins000.exe"
Maestro 2- Notes of Life - Standard With Guide-->"C:\Program Files\Foxy Games\Maestro 2- Notes of Life - Standard With Guide\uninstall.exe" "/U:C:\Program Files\Foxy Games\Maestro 2- Notes of Life - Standard With Guide\Uninstall\uninstall.xml"
Malwarebytes' Anti-Malware verze 1.51.2.1300-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Mass Effect™ 3-->"C:\Program Files\Common Files\EAInstaller\Mass Effect 3\Cleanup.exe" uninstall_game -autologging
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Midnight Mysteries 4 - Haunted Houdini Deluxe-->"D:\Olinka-Hry\Midnight Mysteries 4\uninstall.exe" "/U:D:\Olinka-Hry\Midnight Mysteries 4\Uninstall\uninstall.xml"
Mother Nature-->"C:\Program Files\Foxy Games\Mother Nature\uninstall.exe" "/U:C:\Program Files\Foxy Games\Mother Nature\Uninstall\uninstall.xml"
Mystery Agency 3 - Visions of Time-->"D:\Olinka-Hry\Mystery Agency 3 - Visions of Time\uninstall.exe" "/U:D:\Olinka-Hry\Mystery Agency 3 - Visions of Time\Uninstall\uninstall.xml"
Mystic Diary - Lost Brother-->"C:\Windows\Mystic Diary - Lost Brother\uninstall.exe" "/U:D:\Olinka-Hry\Mystic Diary\Uninstall\uninstall.xml"
New Yankee in King Arthurs Court-->"D:\Olinka-Hry\New Yankee in King Arthurs\uninstall.exe" "/U:D:\Olinka-Hry\New Yankee in King Arthurs\Uninstall\uninstall.xml"
NVIDIA PhysX-->MsiExec.exe /X{9530AE42-DAE1-4619-9594-B23487285D17}
OCCT 4.2.0-->C:\Program Files\OCCTPT\uninst.exe
Odysseus - Dlouhá cesta domů v1.0-->"D:\Olinka-Hry\Odyseus-Dlouhá cesta domů\Odysseus - Dlouha cesta domu\unins000.exe"
OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U
Osada: Kolos-->C:\Program Files\Alawarhry.cz\Settlement Colossus\Uninstall.exe
Prokletý hřbitov - Krkavčí kletba 1.2-->"D:\Olinka-Hry\Prokletý hřbitov Krkavčí kletba\Proklety hrbitov - Krkavci kletba\unins000.exe"
Realtek Ethernet Controller Driver-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.Exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -removeonly
Revo Uninstaller Pro 2.5.3-->"C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe"
Rita James and the Race to Shangri La-->"D:\Olinka-Hry\Rita James and the Race\uninstall.exe" "/U:D:\Olinka-Hry\Rita James and the Race\Uninstall\uninstall.xml"
Road Construction Simulator-->"D:\Olinka-Hry\Road Construction Simulator\uninstall.exe" "/U:D:\Olinka-Hry\Road Construction Simulator\Uninstall\uninstall.xml"
Rocket Mania Deluxe-->D:\Olinka-Hry\Rocket Mania\Uninstal.exe
Sandboxie 3.64 (32-bit)-->"C:\Windows\Installer\SandboxieInstall32.exe" /remove
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5A8732F0-C20F-4A9B-A2A9-66FE7A586C35}
Special Enquiry Details 2 version 2.0-->"D:\Olinka-Hry\Special Enquiry Details 2\Special Enquiry Details 2\unins000.exe"
SSDlife Pro-->MsiExec.exe /X{42223788-172F-491E-B5F6-91136414AEFD}
Strange Cases 3 - The Secrets of Grey Mist Lake-->"D:\Olinka-Hry\Strange Cases 3 The Secrets of Grey\uninstall.exe" "/U:D:\Olinka-Hry\Strange Cases 3 The Secrets of Grey\Uninstall\uninstall.xml"
swMSM-->MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
Syndicate-->"D:\Games\Syndicate\Syndicate\unins000.exe"
Temple of Life - The Legend of Four Elements and Guide-->"C:\Program Files\Foxy Games\Temple of Life - The Legend of Four Elements and Guide\uninstall.exe" "/U:C:\Program Files\Foxy Games\Temple of Life - The Legend of Four Elements and Guide\Uninstall\uninstall.xml"
The Agency of Anomalies 2 - Cinderstone Orphanage CE-->"C:\Program Files\Foxy Games\The Agency of Anomalies 2 - Cinderstone Orphanage CE\uninstall.exe" "/U:C:\Program Files\Foxy Games\The Agency of Anomalies 2 - Cinderstone Orphanage CE\Uninstall\uninstall.xml"
The Scruffs 2 - Return of the Duke-->"D:\Olinka-Hry\The Scruffs 2\uninstall.exe" "/U:D:\Olinka-Hry\The Scruffs 2\Uninstall\uninstall.xml"
Throne of Olympus 1.00-->D:\Olinka-Hry\Throne of Olympus\Throne of Olympus\Uninstall.exe
Time Dreamer 2 - Temporal Betrayal-->"C:\Program Files\Foxy Games\Time Dreamer 2 - Temporal Betrayal\uninstall.exe" "/U:C:\Program Files\Foxy Games\Time Dreamer 2 - Temporal Betrayal\Uninstall\uninstall.xml"
Time Chronicles - The Missing Mona Lisa-->"D:\Olinka-Hry\Time Chronicles - The Missing\uninstall.exe" "/U:D:\Olinka-Hry\Time Chronicles - The Missing\Uninstall\uninstall.xml"
Total Commander (Remove or Repair)-->c:\Totalcmd\tcuninst.exe
TuneUp Utilities 2011-->C:\Program Files\TuneUp Utilities 2011\TUInstallHelper.exe --Trigger-Uninstall
Ukrytý svět-->C:\Program Files\Alawarhry.cz\Hidden World\Uninstall.exe
UltraISO Premium V9.36-->"C:\Program Files\UltraISO\unins000.exe"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B7873DF5-9E1C-45EE-8895-D29C6AE01202}
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C20964A7-5181-45E5-9E82-72F5D400DEBF}
Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {91E130AA-C37F-42D8-9D5D-397B3416A7F2}
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {567103D1-96CD-4B76-93B9-2681A187DEFF}
Vraždy v ulici Morgue 1.0-->"D:\Olinka-Hry\Vraždy v ulici Morgue\Vraždy v ulici Morgue\unins000.exe"
Wings of Prey (Collector's Edition)-->"D:\Games\Wings of Prey\Wings of Prey (Collector's Edition)\unins000.exe"
WinRAR 4.01 (32-bit)-->C:\Program Files\WinRAR\uninstall.exe
Witches Legacy - The Charleston Curse with Strategy Guide-->"C:\Program Files\Foxy Games\Witches Legacy - The Charleston Curse with Strategy Guide\uninstall.exe" "/U:C:\Program Files\Foxy Games\Witches Legacy - The Charleston Curse with Strategy Guide\Uninstall\uninstall.xml"
Zoner Photo Studio 13-->"C:\Program Files\Zoner\Photo Studio 13\unins000.exe" /SILENT
======System event log======
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Distributed Link Tracking Client byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Security Center byl změněn na: stopped
Record Number: 4
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Desktop Window Manager Session Manager byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Diagnostic Policy Service byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Microsoft Software Shadow Copy Provider byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: 37L4247D28-05
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPDriverNotFound
Reakce: Není k dispozici
ID souboru CAB: 0
Podpis problému:
P1: x86
P2: PCI\VEN_8086&DEV_1C22&SUBSYS_50011458&REV_05
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:
Připojené soubory:
C:\Windows\Temp\DMIEE15.tmp.log.xml
Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x86_bcbdb638468b47eed22da58c71ad72779e9c914_cab_07e4ee34
Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: e232c923-5a38-11e1-921d-baa99e1456c8
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20120218140016.000000-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 4
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20120218135942.130845-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: 37L4247D28-05
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20120218135942.000000-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 2
Source Name: Microsoft-Windows-WMI
Time Written: 20120218135942.000000-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20120218135942.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: 37L4247D28-05
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247D28-05$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -
Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.652038-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247D28-05$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -
Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.652038-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.
Počet prvků: 0
ID zásady: 0x256a8
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.652038-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.589638-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.574038-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\AMD APP\bin\x86;C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 42 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=2a07
"AMDAPPSDKROOT"=C:\Program Files\AMD APP\
-----------------EOF-----------------
info.txt logfile of random's system information tool 1.09 2012-03-28 11:31:03
======Uninstall list======
@BIOS-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}\setup.exe" -l0x9 -removeonly
-->MsiExec /X{9530AE42-DAE1-4619-9594-B23487285D17}
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0015-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0019-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001A-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0405-0000-0000000FF1CE} /uninstall {0B7A4B67-2A38-42B1-9857-662FAB361E08}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0407-0000-0000000FF1CE} /uninstall {928D7B99-2BEA-49F9-83B8-20FA57860643}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {1FF96026-A04A-4C3E-B50A-BB7022654D0F}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-001F-041B-0000-0000000FF1CE} /uninstall {FDF9A959-241A-4662-A8DE-7DED9C22D160}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E107EB7-8B55-48BF-ACCB-199F86A2CD93}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-0044-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-006E-0405-0000-0000000FF1CE} /uninstall {A0AAD4D5-9F9C-49BB-AB64-0FD4695424E8}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-00A1-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
2007 Microsoft Office Suite Service Pack 3 (SP3)-->msiexec /package {90120000-00BA-0405-0000-0000000FF1CE} /uninstall {3FD35521-B8F1-4CE0-85E0-DC6CA1E01012}
3DMark06-->"C:\Program Files\InstallShield Installation Information\{7F3AD00A-1819-4B15-BB7D-08B3586336D7}\setup.exe" -runfromtemp -l0x0009 -removeonly
7 Gates The Path to Zamolxes 1.00-->D:\Olinka-Hry\7 Gates The Path\7 Gates The Path to Zamolxes\Uninstall.exe
7554 Final Release 1.0.1-->"D:\Games\7554\uninstall.exe"
Aaron Crane - Paintings Come Alive-->"D:\Olinka-Hry\Aaron Crane\uninstall.exe" "/U:D:\Olinka-Hry\Aaron Crane\Uninstall\uninstall.xml"
Adobe Flash Player 11 ActiveX-->C:\Windows\system32\Macromed\Flash\FlashUtil11g_ActiveX.exe -maintain activex
Adobe Reader 9.5.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A95000000001}
Adobe Shockwave Player 11.6-->"C:\Windows\system32\Adobe\Shockwave 11\uninstaller.exe"
AIDA64 Extreme Edition v1.80-->"C:\Program Files\FinalWire\AIDA64 Extreme Edition\unins000.exe"
Air Conflicts Secret Wars-->D:\Games\Air Conflicts Secret Wars\Uninstall.exe
Air Conflicts-->D:\Games\Air Conflicts\uninstall.exe
Aktualizace produktu Microsoft Office Excel 2007 Help (KB963678)-->msiexec /package {90120000-0016-0405-0000-0000000FF1CE} /uninstall {0A1FAC46-B899-421D-B1A2-470896DC45DB}
Aktualizace produktu Microsoft Office Powerpoint 2007 Help (KB963669)-->msiexec /package {90120000-0018-0405-0000-0000000FF1CE} /uninstall {5260BB53-C1F7-4A3B-9AEB-3EC9B37FF194}
Aktualizace produktu Microsoft Office Word 2007 Help (KB963665)-->msiexec /package {90120000-001B-0405-0000-0000000FF1CE} /uninstall {E68DD413-B834-4923-8181-0A03B7555187}
Alan Wake version 1.0-->"D:\Games\Alan Wake\uninstall\unins000.exe"
AMD Accelerated Video Transcoding-->MsiExec.exe /X{A994E9F7-A748-FFB1-01C2-9D64ADE870B4}
AMD APP SDK Runtime-->MsiExec.exe /I{A25FF1C0-80B6-4B8B-A551-DC525697A408}
AMD Catalyst Install Manager-->msiexec /q/x{C4100721-2D71-CC80-8877-0A7855B6EEFB} REBOOT=ReallySuppress
AMD Drag and Drop Transcoding-->MsiExec.exe /X{305C431C-CC6E-5506-CE75-29512315D306}
AMD Media Foundation Decoders-->MsiExec.exe /X{943B2619-0E00-E9F1-73E3-03090965484E}
Amulet of Time - Shadow of la Rochelle-->"C:\Program Files\Foxy Games\Amulet of Time - Shadow of la Rochelle\uninstall.exe" "/U:C:\Program Files\Foxy Games\Amulet of Time - Shadow of la Rochelle\Uninstall\uninstall.xml"
Ashampoo Burning Studio 10 v.10.0.11-->"C:\Program Files\Ashampoo\Ashampoo Burning Studio 10\unins000.exe"
Atlantis Trilogy Pack-->"D:\Olinka-Hry\Atlantis Trilogy\uninstall.exe" "/U:D:\Olinka-Hry\Atlantis Trilogy\Uninstall\uninstall.xml"
Azkend-->"C:\Program Files\Foxy Games\Azkend\uninstall.exe" "/U:C:\Program Files\Foxy Games\Azkend\Uninstall\uninstall.xml"
Babylon toolbar on IE-->"C:\Program Files\BabylonToolbar\BabylonToolbar\1.5.3.17\uninstall.exe"
Behind the Reflection 2 Witchs Revenge-->"D:\Olinka-Hry\Behind the Reflection 2\uninstall.exe" "/U:D:\Olinka-Hry\Behind the Reflection 2\Uninstall\uninstall.xml"
Big City Adventure - San Francisco-->"C:\Program Files\Foxy Games\Big City Adventure - San Francisco\uninstall.exe" "/U:C:\Program Files\Foxy Games\Big City Adventure - San Francisco\Uninstall\uninstall.xml"
Big City Adventure - Vancouver CE-->"C:\Program Files\Foxy Games\Big City Adventure - Vancouver CE\uninstall.exe" "/U:C:\Program Files\Foxy Games\Big City Adventure - Vancouver CE\Uninstall\uninstall.xml"
Bubble Bonanza-->"D:\Olinka-Hry\Bubble Bonanza\uninstall.exe" "/U:D:\Olinka-Hry\Bubble Bonanza\Uninstall\uninstall.xml"
Catalyst Control Center - Branding-->MsiExec.exe /I{2ECA81CA-D932-4AD3-AD59-BF5CCF099C83}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Combined Community Codec Pack 2011-11-11-->"C:\Program Files\Combined Community Codec Pack\unins000.exe"
Core Temp 1.0 RC3-->"C:\Program Files\Core Temp\unins000.exe"
CPUID CPU-Z 1.60-->"C:\Program Files\CPUID\CPU-Z\unins000.exe"
CrystalDiskMark 3.0.1b-->"C:\Program Files\CrystalDiskMark\unins000.exe"
Černý kocour v1.0-->"D:\Olinka-Hry\Černý kocour\Cerny kocour\unins000.exe"
DAEMON Tools Lite-->C:\Program Files\DAEMON Tools Lite\uninst.exe
Dark Parables - Rise of the Snow Queen version 1.0-->"D:\Olinka-Hry\Dark Parables-Rise of the Snow Queen\Dark Parables - Rise of the Snow Queen\unins000.exe"
Dark Strokes Sins of the Fathers CE-->"D:\Olinka-Hry\Dark Strokes Sins\uninstall.exe" "/U:D:\Olinka-Hry\Dark Strokes Sins\Uninstall\uninstall.xml"
Deep Black : Reloaded-->"D:\Games\Deep Black\Deep Black Reloaded\unins000.exe"
Depth Hunter-->"D:\Games\Depth Hunter\Depth Hunter\unins000.exe"
Etron USB3.0 Host Controller-->"C:\Program Files\InstallShield Installation Information\{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}\setup.exe" -runfromtemp -l0x0409 -removeonly
Etron USB3.0 Host Controller-->MsiExec.exe /I{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}
Fantastic Creations - House of Brass CE-->"D:\Olinka-Hry\Fantastic Creations - House of Brass\uninstall.exe" "/U:D:\Olinka-Hry\Fantastic Creations - House of Brass\Uninstall\uninstall.xml"
ffdshow v1.1.3631 [2010-11-15]-->"C:\Program Files\Combined Community Codec Pack\Filters\FFDShow\unins000.exe"
Flower of Immortality-->"D:\Olinka-Hry\Flower of Immortality\uninstall.exe" "/U:D:\Olinka-Hry\Flower of Immortality\Uninstall\uninstall.xml"
Fruit Mania-->"D:\Olinka-Hry\Fruit Mania\uninstall.exe" "/U:D:\Olinka-Hry\Fruit Mania\Uninstall\uninstall.xml"
Futuremark SystemInfo-->"C:\Program Files\InstallShield Installation Information\{BEE64C14-BEF1-4610-8A68-A16EAA47B882}\setup.exe" -runfromtemp -l0x0009 -removeonly
Gardenscapes 2 Mansion Makeover CE version 2.0-->"D:\Olinka-Hry\Gardenscapes 2 Mansion Makeover\Gardenscapes 2 Mansion Makeover CE\unins000.exe"
Geeks3D.com FurMark 1.9.1-->"C:\Program Files\Geeks3D\Benchmarks\FurMark_1.9.1\unins000.exe"
Gem Boy-->"D:\Olinka-Hry\Gem Boy\uninstall.exe" "/U:D:\Olinka-Hry\Gem Boy\Uninstall\uninstall.xml"
German Truck Simulator 1.04-->D:\Games\German Truck Simulator\uninst.exe
Ghost Towns - The Cats Of Ulthar CE-->"C:\Program Files\Foxy Games\Ghost Towns - The Cats Of Ulthar CE\uninstall.exe" "/U:C:\Program Files\Foxy Games\Ghost Towns - The Cats Of Ulthar CE\Uninstall\uninstall.xml"
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_F91D44FAA5479127.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}
Hard Reset - Extended Edition version 1.5-->"D:\Games\Hard Reset\Hard Reset - Extended Edition\unins000.exe"
HD Tune Pro 5.00-->"C:\Program Files\HD Tune Pro\unins000.exe"
Intel(R) Management Engine Components-->C:\Program Files\Intel\Intel(R) Management Engine Components\Uninstall\setup.exe -uninstall
Intel(R) Rapid Storage Technology-->C:\Program Files\Intel\Intel(R) Rapid Storage Technology\Uninstall\setup.exe -uninstall
Jewel Quest Mysteries 4 CE version 4.0-->"D:\Olinka-Hry\Jewel Quest Mysteries 4\Jewel Quest Mysteries 4 CE\unins000.exe"
Leahs Tale-->"C:\Program Files\Foxy Games\Leahs Tale\uninstall.exe" "/U:C:\Program Files\Foxy Games\Leahs Tale\Uninstall\uninstall.xml"
Loutkové divadlo - Záhada Štěstíkova v1.0-->"D:\Olinka-Hry\Loutkové divadlo-Záhada Štěstíkova\Loutkove divadlo - Zahada Stestikova\unins000.exe"
Maestro 2- Notes of Life - Standard With Guide-->"C:\Program Files\Foxy Games\Maestro 2- Notes of Life - Standard With Guide\uninstall.exe" "/U:C:\Program Files\Foxy Games\Maestro 2- Notes of Life - Standard With Guide\Uninstall\uninstall.xml"
Malwarebytes' Anti-Malware verze 1.51.2.1300-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Mass Effect™ 3-->"C:\Program Files\Common Files\EAInstaller\Mass Effect 3\Cleanup.exe" uninstall_game -autologging
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\Setup.exe /repair /x86 /lcid 1029 /parameterfolder ClientLP
Microsoft .NET Framework 4 Client Profile CSY Language Pack-->MsiExec.exe /X{7036A6F4-5DAD-3908-956D-1752CD7F7E5A}
Microsoft .NET Framework 4 Client Profile-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\Setup.exe /repair /x86 /parameterfolder Client
Microsoft .NET Framework 4 Client Profile-->MsiExec.exe /X{3C3901C5-3455-3E0A-A214-0B093A5070A6}
Microsoft Office Access MUI (Czech) 2007-->MsiExec.exe /X{90120000-0015-0405-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (Czech) 2007-->MsiExec.exe /X{90120000-0016-0405-0000-0000000FF1CE}
Microsoft Office File Validation Add-In-->MsiExec.exe /I{90140000-2005-0000-0000-0000000FF1CE}
Microsoft Office Groove MUI (Czech) 2007-->MsiExec.exe /X{90120000-00BA-0405-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (Czech) 2007-->MsiExec.exe /X{90120000-0044-0405-0000-0000000FF1CE}
Microsoft Office OneNote MUI (Czech) 2007-->MsiExec.exe /X{90120000-00A1-0405-0000-0000000FF1CE}
Microsoft Office Outlook MUI (Czech) 2007-->MsiExec.exe /X{90120000-001A-0405-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (Czech) 2007-->MsiExec.exe /X{90120000-0018-0405-0000-0000000FF1CE}
Microsoft Office Proof (Czech) 2007-->MsiExec.exe /X{90120000-001F-0405-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (German) 2007-->MsiExec.exe /X{90120000-001F-0407-0000-0000000FF1CE}
Microsoft Office Proof (Slovak) 2007-->MsiExec.exe /X{90120000-001F-041B-0000-0000000FF1CE}
Microsoft Office Proofing (Czech) 2007-->MsiExec.exe /X{90120000-002C-0405-0000-0000000FF1CE}
Microsoft Office Publisher MUI (Czech) 2007-->MsiExec.exe /X{90120000-0019-0405-0000-0000000FF1CE}
Microsoft Office Shared MUI (Czech) 2007-->MsiExec.exe /X{90120000-006E-0405-0000-0000000FF1CE}
Microsoft Office Word MUI (Czech) 2007-->MsiExec.exe /X{90120000-001B-0405-0000-0000000FF1CE}
Microsoft Silverlight-->MsiExec.exe /X{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161-->MsiExec.exe /X{9BE518E6-ECC6-35A9-88E4-87755C07200F}
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319-->MsiExec.exe /X{196BB40D-1578-3D01-B289-BEFC77A11A1E}
Midnight Mysteries 4 - Haunted Houdini Deluxe-->"D:\Olinka-Hry\Midnight Mysteries 4\uninstall.exe" "/U:D:\Olinka-Hry\Midnight Mysteries 4\Uninstall\uninstall.xml"
Mother Nature-->"C:\Program Files\Foxy Games\Mother Nature\uninstall.exe" "/U:C:\Program Files\Foxy Games\Mother Nature\Uninstall\uninstall.xml"
Mystery Agency 3 - Visions of Time-->"D:\Olinka-Hry\Mystery Agency 3 - Visions of Time\uninstall.exe" "/U:D:\Olinka-Hry\Mystery Agency 3 - Visions of Time\Uninstall\uninstall.xml"
Mystic Diary - Lost Brother-->"C:\Windows\Mystic Diary - Lost Brother\uninstall.exe" "/U:D:\Olinka-Hry\Mystic Diary\Uninstall\uninstall.xml"
New Yankee in King Arthurs Court-->"D:\Olinka-Hry\New Yankee in King Arthurs\uninstall.exe" "/U:D:\Olinka-Hry\New Yankee in King Arthurs\Uninstall\uninstall.xml"
NVIDIA PhysX-->MsiExec.exe /X{9530AE42-DAE1-4619-9594-B23487285D17}
OCCT 4.2.0-->C:\Program Files\OCCTPT\uninst.exe
Odysseus - Dlouhá cesta domů v1.0-->"D:\Olinka-Hry\Odyseus-Dlouhá cesta domů\Odysseus - Dlouha cesta domu\unins000.exe"
OpenAL-->"C:\Program Files\OpenAL\OpenALwEAX.exe" /U
Osada: Kolos-->C:\Program Files\Alawarhry.cz\Settlement Colossus\Uninstall.exe
Prokletý hřbitov - Krkavčí kletba 1.2-->"D:\Olinka-Hry\Prokletý hřbitov Krkavčí kletba\Proklety hrbitov - Krkavci kletba\unins000.exe"
Realtek Ethernet Controller Driver-->C:\Program Files\InstallShield Installation Information\{8833FFB6-5B0C-4764-81AA-06DFEED9A476}\Setup.Exe -runfromtemp -removeonly
Realtek High Definition Audio Driver-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}\setup.exe" -removeonly
Revo Uninstaller Pro 2.5.3-->"C:\Program Files\VS Revo Group\Revo Uninstaller Pro\unins000.exe"
Rita James and the Race to Shangri La-->"D:\Olinka-Hry\Rita James and the Race\uninstall.exe" "/U:D:\Olinka-Hry\Rita James and the Race\Uninstall\uninstall.xml"
Road Construction Simulator-->"D:\Olinka-Hry\Road Construction Simulator\uninstall.exe" "/U:D:\Olinka-Hry\Road Construction Simulator\Uninstall\uninstall.xml"
Rocket Mania Deluxe-->D:\Olinka-Hry\Rocket Mania\Uninstal.exe
Sandboxie 3.64 (32-bit)-->"C:\Windows\Installer\SandboxieInstall32.exe" /remove
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {DB31DEDD-BF95-31E7-A9B7-5480561CEFF3} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {8DDEFC7E-0C61-3D11-AFC6-5414F2DAFD01} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {4952F442-5C1A-38EB-8C23-B18EFE77E20C} /parameterfolder Client
Security Update for Microsoft .NET Framework 4 Client Profile CSY Language Pack (KB2518870)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\ClientLP\setup.exe /uninstallpatch {2CE2EB39-45C8-32D4-8A99-5529C38F1B99} /parameterfolder ClientLP
Security Update for Microsoft Office 2007 suites (KB2596785) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A0D5F849-D9D5-48ED-99D0-C74D7BFA6A09}
Security Update for Microsoft Office PowerPoint 2007 (KB2596764) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AEA16A27-0B97-4670-818F-A98D06EC0A6F}
Security Update for Microsoft Office PowerPoint 2007 (KB2596912) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {0EF0D4FB-BB23-4515-AAEA-1240AC2DA525}
Security Update for Microsoft Office Publisher 2007 (KB2596705) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5A8732F0-C20F-4A9B-A2A9-66FE7A586C35}
Special Enquiry Details 2 version 2.0-->"D:\Olinka-Hry\Special Enquiry Details 2\Special Enquiry Details 2\unins000.exe"
SSDlife Pro-->MsiExec.exe /X{42223788-172F-491E-B5F6-91136414AEFD}
Strange Cases 3 - The Secrets of Grey Mist Lake-->"D:\Olinka-Hry\Strange Cases 3 The Secrets of Grey\uninstall.exe" "/U:D:\Olinka-Hry\Strange Cases 3 The Secrets of Grey\Uninstall\uninstall.xml"
swMSM-->MsiExec.exe /I{612C34C7-5E90-47D8-9B5C-0F717DD82726}
Syndicate-->"D:\Games\Syndicate\Syndicate\unins000.exe"
Temple of Life - The Legend of Four Elements and Guide-->"C:\Program Files\Foxy Games\Temple of Life - The Legend of Four Elements and Guide\uninstall.exe" "/U:C:\Program Files\Foxy Games\Temple of Life - The Legend of Four Elements and Guide\Uninstall\uninstall.xml"
The Agency of Anomalies 2 - Cinderstone Orphanage CE-->"C:\Program Files\Foxy Games\The Agency of Anomalies 2 - Cinderstone Orphanage CE\uninstall.exe" "/U:C:\Program Files\Foxy Games\The Agency of Anomalies 2 - Cinderstone Orphanage CE\Uninstall\uninstall.xml"
The Scruffs 2 - Return of the Duke-->"D:\Olinka-Hry\The Scruffs 2\uninstall.exe" "/U:D:\Olinka-Hry\The Scruffs 2\Uninstall\uninstall.xml"
Throne of Olympus 1.00-->D:\Olinka-Hry\Throne of Olympus\Throne of Olympus\Uninstall.exe
Time Dreamer 2 - Temporal Betrayal-->"C:\Program Files\Foxy Games\Time Dreamer 2 - Temporal Betrayal\uninstall.exe" "/U:C:\Program Files\Foxy Games\Time Dreamer 2 - Temporal Betrayal\Uninstall\uninstall.xml"
Time Chronicles - The Missing Mona Lisa-->"D:\Olinka-Hry\Time Chronicles - The Missing\uninstall.exe" "/U:D:\Olinka-Hry\Time Chronicles - The Missing\Uninstall\uninstall.xml"
Total Commander (Remove or Repair)-->c:\Totalcmd\tcuninst.exe
TuneUp Utilities 2011-->C:\Program Files\TuneUp Utilities 2011\TUInstallHelper.exe --Trigger-Uninstall
Ukrytý svět-->C:\Program Files\Alawarhry.cz\Hidden World\Uninstall.exe
UltraISO Premium V9.36-->"C:\Program Files\UltraISO\unins000.exe"
Update for 2007 Microsoft Office System (KB967642)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C444285D-5E4F-48A4-91DD-47AAAA68E92D}
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5E9CF3A4-ADB3-3080-A8BF-976A28340758} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {81EBB9D7-173C-32E3-B477-149C8DE075E4} /parameterfolder Client
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)-->C:\Windows\Microsoft.NET\Framework\v4.0.30319\SetupCache\Client\setup.exe /uninstallpatch {5D9961AC-7C99-36A2-9EF0-34678AED5384} /parameterfolder Client
Update for Microsoft Office 2007 suites (KB2596651) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {B7873DF5-9E1C-45EE-8895-D29C6AE01202}
Update for Microsoft Office 2007 suites (KB2596789) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {C20964A7-5181-45E5-9E82-72F5D400DEBF}
Update for Microsoft Office 2007 suites (KB2597970) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {91E130AA-C37F-42D8-9D5D-397B3416A7F2}
Update for Microsoft Office Excel 2007 (KB2596596) 32-Bit Edition-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {567103D1-96CD-4B76-93B9-2681A187DEFF}
Vraždy v ulici Morgue 1.0-->"D:\Olinka-Hry\Vraždy v ulici Morgue\Vraždy v ulici Morgue\unins000.exe"
Wings of Prey (Collector's Edition)-->"D:\Games\Wings of Prey\Wings of Prey (Collector's Edition)\unins000.exe"
WinRAR 4.01 (32-bit)-->C:\Program Files\WinRAR\uninstall.exe
Witches Legacy - The Charleston Curse with Strategy Guide-->"C:\Program Files\Foxy Games\Witches Legacy - The Charleston Curse with Strategy Guide\uninstall.exe" "/U:C:\Program Files\Foxy Games\Witches Legacy - The Charleston Curse with Strategy Guide\Uninstall\uninstall.xml"
Zoner Photo Studio 13-->"C:\Program Files\Zoner\Photo Studio 13\unins000.exe" /SILENT
======System event log======
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Distributed Link Tracking Client byl změněn na: stopped
Record Number: 5
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Security Center byl změněn na: stopped
Record Number: 4
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Desktop Window Manager Session Manager byl změněn na: stopped
Record Number: 3
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Diagnostic Policy Service byl změněn na: stopped
Record Number: 2
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 7036
Message: Stav služby Microsoft Software Shadow Copy Provider byl změněn na: stopped
Record Number: 1
Source Name: Service Control Manager
Time Written: 20090714045645.074339-000
Event Type: Informace
User:
=====Application event log=====
Computer Name: 37L4247D28-05
Event Code: 1001
Message: Chybný blok , typ 0
Název události: PnPDriverNotFound
Reakce: Není k dispozici
ID souboru CAB: 0
Podpis problému:
P1: x86
P2: PCI\VEN_8086&DEV_1C22&SUBSYS_50011458&REV_05
P3:
P4:
P5:
P6:
P7:
P8:
P9:
P10:
Připojené soubory:
C:\Windows\Temp\DMIEE15.tmp.log.xml
Tyto soubory mohou být k dispozici zde:
C:\ProgramData\Microsoft\Windows\WER\ReportQueue\NonCritical_x86_bcbdb638468b47eed22da58c71ad72779e9c914_cab_07e4ee34
Symbol analýzy:
Opětovné hledání řešení: 0
ID hlášení: e232c923-5a38-11e1-921d-baa99e1456c8
Stav hlášení: 6
Record Number: 5
Source Name: Windows Error Reporting
Time Written: 20120218140016.000000-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 1531
Message: Služba Profil uživatele byla úspěšně spuštěna.
Record Number: 4
Source Name: Microsoft-Windows-User Profiles Service
Time Written: 20120218135942.130845-000
Event Type: Informace
User: NT AUTHORITY\SYSTEM
Computer Name: 37L4247D28-05
Event Code: 5617
Message: Windows Management Instrumentation Service subsystems initialized successfully
Record Number: 3
Source Name: Microsoft-Windows-WMI
Time Written: 20120218135942.000000-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 5615
Message: Windows Management Instrumentation Service started sucessfully
Record Number: 2
Source Name: Microsoft-Windows-WMI
Time Written: 20120218135942.000000-000
Event Type: Informace
User:
Computer Name: 37L4247D28-05
Event Code: 4625
Message: Subsystém EventSystem zabraňuje vytváření duplicitních záznamů v protokolu událostí po dobu 86400 sekund. Tuto dobu lze změnit pomocí hodnoty REG_DWORD s názvem SuppressDuplicateDuration v následujícím klíči registru: HKLM\Software\Microsoft\EventSystem\EventLog.
Record Number: 1
Source Name: Microsoft-Windows-EventSystem
Time Written: 20120218135942.000000-000
Event Type: Informace
User:
=====Security event log=====
Computer Name: 37L4247D28-05
Event Code: 4735
Message: Byla změněna zabezpečená místní skupina.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247D28-05$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Změněné atributy:
Název účtu SAM: -
Historie identifikátoru zabezpečení: -
Další informace:
Oprávnění: -
Record Number: 5
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.652038-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4731
Message: Byla vytvořena zabezpečená místní skupina.
Předmět:
ID zabezpečení: S-1-5-18
Název účtu: 37L4247D28-05$
Doména účtu: WORKGROUP
ID přihlášení: 0x3e7
Nová skupina:
ID zabezpečení: S-1-5-32-551
Název skupiny: Backup Operators
Doména skupiny: Builtin
Atributy:
Název účtu SAM: Backup Operators
Historie identifikátoru zabezpečení: -
Další informace:
Oprávnění: -
Record Number: 4
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.652038-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4902
Message: Tabulka zásad auditu pro jednotlivé uživatele byla vytvořena.
Počet prvků: 0
ID zásady: 0x256a8
Record Number: 3
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.652038-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4624
Message: Účet byl úspěšně přihlášen.
Předmět:
ID zabezpečení: S-1-0-0
Název účtu: -
Doména účtu: -
ID přihlášení: 0x0
Typ přihlášení: 0
Nové přihlášení:
ID zabezpečení: S-1-5-18
Název účtu: SYSTEM
Doména účtu: NT AUTHORITY
ID přihlášení: 0x3e7
GUID přihlášení: {00000000-0000-0000-0000-000000000000}
Informace o procesu:
ID procesu: 0x4
Název procesu:
Informace o síti:
Název pracovní stanice: -
Adresa zdrojové sítě -
Zdrojový port: -
Podrobné informace o ověření:
Proces přihlášení: -
Balíček ověření: -
Přenosové služby: -
Název balíčku (pouze NTLM): -
Délka klíče: 0
Tato událost je generována po vytvoření relace přihlášení. Je generována v počítači, ke kterému byl získán přístup.
Pole s předmětem označují účet v místním systému, který požadoval přihlášení. Jedná se nejčastěji o službu, například službu serveru nebo místní proces, například Winlogon.exe nebo Services.exe.
Pole Typ přihlášení označuje, k jakému typu přihlášení došlo. Nejběžnější typy jsou 2 (interaktivní) a 3 (síť).
Pole Nové přihlášení označují účet, pro který bylo nové přihlášení vytvořeno, tj. účet, který byl přihlášen.
Pole Síť označují původ požadavku na vzdálené přihlášení. Název pracovní stanice není vždy k dispozici a v některých případech může být toto pole prázdné.
Pole s informacemi o ověření poskytují podrobné informace o tomto konkrétním požadavku na přihlášení.
- GUID přihlášení je jednoznačný identifikátor, který je možné použít ke spojení této události s událostí KDC.
- Přenosové služby označují, které pomocné služby se podílely na tomto požadavku na přihlášení.
- Název balíčku označuje, který dílčí protokol z protokolů NTLM byl použit.
- Délka klíče označuje délku generovaného klíče relace. Tato hodnota bude 0, pokud nebyl požadován žádný klíč relace.
Record Number: 2
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.589638-000
Event Type: Úspěšný audit
User:
Computer Name: 37L4247D28-05
Event Code: 4608
Message: Spouští se systém Windows.
Tato událost je zaznamenána při spuštění procesu LSASS.EXE a inicializaci kontrolního podsystému.
Record Number: 1
Source Name: Microsoft-Windows-Security-Auditing
Time Written: 20120218135938.574038-000
Event Type: Úspěšný audit
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"Path"=C:\Program Files\AMD APP\bin\x86;C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;%SYSTEMROOT%\System32\WindowsPowerShell\v1.0\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PSModulePath"=%SystemRoot%\system32\WindowsPowerShell\v1.0\Modules\
"NUMBER_OF_PROCESSORS"=4
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 42 Stepping 7, GenuineIntel
"PROCESSOR_REVISION"=2a07
"AMDAPPSDKROOT"=C:\Program Files\AMD APP\
-----------------EOF-----------------
Re: Nepravidelné zamrzání internetu
Zdravím, tady je ten log z Combo fix
ComboFix 12-03-28.01 - Tomas 28.03.2012 12:49:30.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3575.2493 [GMT 2:00]
Spuštěný z: c:\users\Tomas\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Tomas\Desktop\CFScript.txt
AV: ESET Smart Security 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Tomas\AppData\Roaming\log.txt
c:\users\Tomas\AppData\Roaming\svhost.exe
c:\users\Tomas\AppData\Roaming\Tomaslog.dat
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-28 do 2012-03-28 )))))))))))))))))))))))))))))))
.
.
2012-03-28 10:51 . 2012-03-28 10:51 -------- d-----w- c:\users\Tomas\AppData\Local\temp
2012-03-28 10:51 . 2012-03-28 10:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-28 09:30 . 2012-03-28 09:31 -------- d-----w- C:\rsit
2012-03-28 09:30 . 2012-03-28 09:31 -------- d-----w- c:\program files\trend micro
2012-03-27 07:10 . 2012-03-14 02:15 6582328 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{354B59F9-9333-4020-9CE3-1BB073D2088B}\mpengine.dll
2012-03-26 17:06 . 2012-03-26 17:06 -------- d-----w- c:\users\Tomas\AppData\Roaming\Anarchy
2012-03-26 17:04 . 2012-03-26 17:04 -------- d-----w- c:\users\Tomas\AppData\Roaming\TheMissingMonaLisa
2012-03-26 17:02 . 2012-03-26 17:02 -------- d-----w- c:\users\Tomas\AppData\Roaming\4 Friends Games
2012-03-26 17:01 . 2012-03-26 17:01 -------- d-----w- c:\users\Tomas\AppData\Roaming\SulusGames
2012-03-19 12:41 . 2012-03-19 12:41 -------- d-----w- c:\program files\OCCTPT
2012-03-18 21:24 . 2012-03-18 21:24 -------- d-----w- c:\users\Tomas\AppData\Roaming\GO Games
2012-03-18 20:35 . 2012-03-18 20:35 -------- d-----w- c:\users\Tomas\AppData\Local\CrashRpt
2012-03-17 17:27 . 2012-03-17 18:23 -------- d-----w- c:\users\Tomas\AtlantisQuest
2012-03-17 17:24 . 2012-03-18 21:22 -------- d-----w- c:\programdata\Playrix Entertainment
2012-03-17 17:22 . 2012-03-17 17:22 -------- d-----w- c:\programdata\TERMINAL Studio
2012-03-17 16:13 . 2012-03-17 16:13 -------- d-----w- c:\users\Tomas\AppData\Roaming\Floodlight Games
2012-03-17 16:13 . 2012-03-17 16:13 -------- d-----w- c:\programdata\Floodlight Games
2012-03-17 16:12 . 2012-03-17 16:12 -------- d-----w- c:\users\Tomas\AppData\Roaming\Gunnar Games
2012-03-17 16:11 . 2012-03-17 16:11 -------- d-----w- c:\users\Tomas\AppData\Roaming\Dark Blue Games
2012-03-17 15:58 . 2012-03-17 15:58 -------- d-----w- c:\users\Tomas\AppData\Roaming\Blue Tea Games
2012-03-17 15:56 . 2012-03-17 15:57 -------- d-----w- c:\users\Tomas\AppData\Roaming\FlowerOfImmortality
2012-03-17 15:55 . 2012-03-17 15:55 -------- d-----w- c:\users\Tomas\AppData\Roaming\iWin
2012-03-17 15:55 . 2012-03-17 15:55 -------- d-----w- c:\programdata\iWin
2012-03-17 15:55 . 2012-03-17 16:13 -------- d-----w- c:\users\Tomas\AppData\Roaming\ERS G-Studio
2012-03-17 15:47 . 2012-03-17 15:47 -------- d--h--w- c:\windows\PIF
2012-03-17 15:42 . 2012-03-17 15:42 -------- d-----w- c:\users\Tomas\AppData\Roaming\ABSOLUTIST
2012-03-17 15:29 . 2012-03-17 15:29 -------- d-----w- c:\users\Tomas\AppData\Local\bitComposer
2012-03-17 12:50 . 2012-03-17 12:50 -------- d-----w- c:\program files\CPUID
2012-03-17 12:50 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x32.sys
2012-03-14 21:31 . 2012-03-14 21:31 -------- d-----w- c:\programdata\Binarysense
2012-03-14 21:30 . 2012-03-14 21:30 -------- d-----w- c:\program files\BinarySense
2012-03-14 16:17 . 2012-03-14 16:17 -------- d-----w- C:\Temp
2012-03-14 14:46 . 2012-03-14 14:46 -------- d-----w- c:\program files\GIGABYTE
2012-03-14 14:45 . 2012-03-14 14:45 331908 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2012-03-14 14:45 . 2012-03-14 14:45 200836 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2012-03-14 14:45 . 2005-04-03 22:02 753664 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2012-03-14 14:45 . 2005-04-03 22:02 69714 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2012-03-14 14:45 . 2005-04-03 22:01 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2012-03-14 14:45 . 2005-04-03 22:00 184320 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2012-03-14 14:45 . 2005-04-03 21:59 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2012-03-14 14:21 . 2011-10-17 13:45 462104 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-03-13 21:05 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-03-13 21:05 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-13 21:05 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-03-13 21:05 . 2012-02-03 03:54 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-03-13 21:05 . 2012-01-25 05:32 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-03-13 21:05 . 2012-01-25 05:32 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-03-13 21:05 . 2012-01-25 05:27 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-03-13 21:05 . 2012-02-17 05:34 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-03-13 21:05 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-03-13 21:05 . 2012-02-17 04:14 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-13 21:05 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-03-13 20:44 . 2012-03-13 20:44 -------- d-----w- c:\program files\Geeks3D
2012-03-13 19:49 . 2012-03-13 19:49 -------- d-----w- c:\users\Tomas\AppData\Roaming\FlyWheelGames
2012-03-13 19:44 . 2012-03-13 19:44 -------- d-----w- c:\users\Tomas\AppData\Roaming\Alawar Stargaze
2012-03-13 19:42 . 2012-03-13 19:42 -------- d-----w- c:\users\Tomas\AppData\Roaming\Alawar Entertainment
2012-03-13 19:41 . 2012-03-13 19:41 -------- d-----w- c:\users\Tomas\AppData\Roaming\Daedalic Entertainment
2012-03-11 20:20 . 2012-03-11 20:20 -------- d-----w- c:\users\Tomas\AppData\Roaming\EntwinedSoD
2012-03-10 14:20 . 2012-03-10 14:20 -------- d-----w- c:\programdata\ATI
2012-03-10 14:19 . 2012-03-10 14:19 -------- d-----w- c:\programdata\AMD
2012-03-10 14:19 . 2012-03-10 14:19 -------- d-----w- c:\program files\AMD AVT
2012-03-10 14:19 . 2012-03-10 14:19 -------- d-----w- c:\program files\AMD APP
2012-03-06 14:59 . 2012-03-06 14:59 -------- d-----w- c:\program files\NVIDIA Corporation
2012-03-05 10:15 . 2012-03-05 10:15 -------- d-----w- c:\users\Tomas\AppData\Roaming\Feuerwache
2012-03-05 09:49 . 2012-03-05 09:49 -------- d-----w- c:\users\Tomas\AppData\Local\ElevatedDiagnostics
2012-03-05 07:54 . 2012-03-05 07:54 -------- d-----w- c:\windows\system32\Adobe
2012-03-04 16:02 . 2012-03-04 16:02 -------- d-----w- c:\users\Tomas\AppData\Local\4A Games
2012-03-04 13:59 . 2010-10-29 23:42 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2012-03-04 13:41 . 2012-03-04 13:41 -------- d-----w- c:\programdata\rionix
2012-03-03 13:59 . 2012-03-03 13:59 -------- d-----w- c:\users\Tomas\AppData\Local\AliensVsPredator
2012-03-03 00:23 . 2012-03-03 00:23 -------- d-----w- c:\programdata\Electronic Arts
2012-03-03 00:23 . 2012-03-03 00:23 -------- d-----w- c:\programdata\EA Logs
2012-03-03 00:23 . 2012-03-03 00:23 -------- d-----w- c:\programdata\EA Core
2012-03-02 22:38 . 2012-03-02 22:43 -------- d-----w- c:\users\Tomas\AppData\Roaming\Origin
2012-03-02 22:38 . 2012-03-02 22:42 -------- d-----w- c:\programdata\Origin
2012-03-02 17:51 . 2010-08-03 07:41 819200 ----a-w- c:\windows\system32\xvidcore.dll
2012-03-02 17:51 . 2010-08-03 07:41 180224 ----a-w- c:\windows\system32\xvidvfw.dll
2012-03-02 17:48 . 2012-03-02 17:48 -------- d-----w- c:\users\Tomas\AppData\Roaming\Big Finish
2012-03-02 17:48 . 2012-03-02 17:48 -------- d-----w- c:\programdata\Big Finish
2012-03-02 16:37 . 2012-03-02 16:37 -------- d-----w- c:\users\Tomas\AppData\Roaming\Baumaschinen Simulator 2011
2012-03-02 16:36 . 2012-03-02 16:36 -------- d-----w- c:\users\Tomas\AppData\Roaming\GameInvest
2012-02-28 12:01 . 2012-02-28 12:01 -------- d-----w- c:\users\Tomas\AppData\Roaming\SunRay Games
2012-02-28 12:00 . 2012-02-28 12:00 -------- d-----w- c:\windows\Mystic Diary - Lost Brother
2012-02-28 00:19 . 2012-02-28 00:19 -------- d-----w- c:\users\Tomas\AppData\Roaming\MumboJumbo
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-19 14:39 . 2012-02-18 14:35 17488 ----a-w- c:\windows\gdrv.sys
2012-03-17 15:20 . 2012-02-26 12:03 473656 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-03-05 07:53 . 2012-02-18 17:54 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-26 12:08 . 2012-02-26 12:08 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-02-24 23:57 . 2012-02-18 14:28 17488 ----a-w- c:\windows\etdrv.sys
2012-02-24 23:57 . 2012-02-18 14:28 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2012-02-23 08:18 . 2012-02-18 17:41 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-18 18:47 . 2012-02-18 18:47 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2012-02-18 18:47 . 2012-02-18 18:47 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2012-02-18 18:09 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2012-02-18 17:48 . 2012-02-18 17:48 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-02-18 17:48 . 2012-02-18 17:48 161792 ----a-w- c:\windows\system32\msls31.dll
2012-02-18 17:48 . 2012-02-18 17:48 1127424 ----a-w- c:\windows\system32\wininet.dll
2012-02-18 17:48 . 2012-02-18 17:48 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-02-18 17:48 . 2012-02-18 17:48 86528 ----a-w- c:\windows\system32\iesysprep.dll
2012-02-18 17:48 . 2012-02-18 17:48 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-02-18 17:48 . 2012-02-18 17:48 74752 ----a-w- c:\windows\system32\iesetup.dll
2012-02-18 17:48 . 2012-02-18 17:48 63488 ----a-w- c:\windows\system32\tdc.ocx
2012-02-18 17:48 . 2012-02-18 17:48 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-02-18 17:48 . 2012-02-18 17:48 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-02-18 17:48 . 2012-02-18 17:48 367104 ----a-w- c:\windows\system32\html.iec
2012-02-18 17:48 . 2012-02-18 17:48 35840 ----a-w- c:\windows\system32\imgutil.dll
2012-02-18 17:48 . 2012-02-18 17:48 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-02-18 17:48 . 2012-02-18 17:48 23552 ----a-w- c:\windows\system32\licmgr10.dll
2012-02-18 17:48 . 2012-02-18 17:48 1798656 ----a-w- c:\windows\system32\jscript9.dll
2012-02-18 17:48 . 2012-02-18 17:48 152064 ----a-w- c:\windows\system32\wextract.exe
2012-02-18 17:48 . 2012-02-18 17:48 150528 ----a-w- c:\windows\system32\iexpress.exe
2012-02-18 17:48 . 2012-02-18 17:48 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-02-18 17:48 . 2012-02-18 17:48 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2012-02-18 17:48 . 2012-02-18 17:48 11776 ----a-w- c:\windows\system32\mshta.exe
2012-02-18 17:48 . 2012-02-18 17:48 101888 ----a-w- c:\windows\system32\admparse.dll
2012-02-15 03:47 . 2012-02-15 03:47 9182208 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-02-15 03:18 . 2012-02-15 03:18 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-02-15 03:18 . 2011-11-10 03:16 791040 ----a-w- c:\windows\system32\aticfx32.dll
2012-02-15 03:13 . 2012-02-15 03:13 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-02-15 03:13 . 2012-02-15 03:13 405504 ----a-w- c:\windows\system32\atieclxx.exe
2012-02-15 03:12 . 2012-02-15 03:12 163328 ----a-w- c:\windows\system32\atiesrxx.exe
2012-02-15 03:11 . 2012-02-15 03:11 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2012-02-15 03:10 . 2012-02-15 03:10 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-02-15 03:10 . 2012-02-15 03:10 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-02-15 03:07 . 2011-11-10 03:06 6200320 ----a-w- c:\windows\system32\atidxx32.dll
2012-02-15 02:58 . 2012-02-15 02:58 19392000 ----a-w- c:\windows\system32\atioglxx.dll
2012-02-15 02:40 . 2012-02-15 02:40 1828864 ----a-w- c:\windows\system32\atiumdmv.dll
2012-02-15 02:34 . 2012-02-15 02:34 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-02-15 02:34 . 2012-02-15 02:34 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-02-15 02:34 . 2012-02-15 02:34 5954048 ----a-w- c:\windows\system32\atiumdag.dll
2012-02-15 02:29 . 2012-02-15 02:29 5062656 ----a-w- c:\windows\system32\atiumdva.dll
2012-02-15 02:29 . 2012-02-15 02:29 11561984 ----a-w- c:\windows\system32\aticaldd.dll
2012-02-15 02:16 . 2011-11-10 02:18 51200 ----a-w- c:\windows\system32\coinst.dll
2012-02-15 02:13 . 2012-02-15 02:13 356352 ----a-w- c:\windows\system32\atiadlxx.dll
2012-02-15 02:13 . 2012-02-15 02:13 14336 ----a-w- c:\windows\system32\atiglpxx.dll
2012-02-15 02:13 . 2012-02-15 02:13 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-02-15 02:12 . 2012-02-15 02:12 264704 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-02-15 02:12 . 2011-11-10 02:11 33280 ----a-w- c:\windows\system32\atiuxpag.dll
2012-02-15 02:12 . 2012-02-15 02:12 30208 ----a-w- c:\windows\system32\atiu9pag.dll
2012-02-15 02:11 . 2012-02-15 02:11 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-02-15 02:11 . 2012-02-15 02:11 53760 ----a-w- c:\windows\system32\atimpc32.dll
2012-02-15 02:11 . 2012-02-15 02:11 53760 ----a-w- c:\windows\system32\amdpcom32.dll
2012-02-14 21:05 . 2012-02-14 21:05 59904 ----a-w- c:\windows\system32\OpenVideo.dll
2012-02-14 21:05 . 2012-02-14 21:05 54784 ----a-w- c:\windows\system32\OVDecode.dll
2012-02-14 21:04 . 2012-02-14 21:04 13238272 ----a-w- c:\windows\system32\amdocl.dll
2012-02-14 21:03 . 2012-02-14 21:03 48128 ----a-w- c:\windows\system32\OpenCL.dll
2012-01-31 05:00 . 2012-01-31 05:00 16896 ----a-w- c:\windows\system32\kdbsdk32.dll
2012-01-04 08:58 . 2012-02-18 17:37 442880 ----a-w- c:\windows\system32\ntshrui.dll
2011-12-30 05:27 . 2012-02-18 17:37 478720 ----a-w- c:\windows\system32\timedate.cpl
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-02-18 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-10-17 284440]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 636032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-02 09:07 843712 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-01-03 21:51 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
2012-02-07 23:11 451856 ----a-w- c:\program files\Sandboxie\SbieCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"RtHDVCpl"=c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe -s
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"IgfxTray"=c:\windows\system32\igfxtray.exe
"HotKeysCmds"=c:\windows\system32\hkcmd.exe
"Persistence"=c:\windows\system32\igfxpers.exe
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
R3 ALSysIO;ALSysIO;c:\users\Tomas\AppData\Local\Temp\ALSysIO.sys [x]
R3 cpuz130;cpuz130;c:\users\Tomas\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2012-02-24 17488]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-18 1343400]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-02-15 163328]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [2011-09-21 21992]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-17 13592]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-10-27 1483072]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;c:\program files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 [2011-06-15 28824]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-02-15 9182208]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-02-15 264704]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-12-05 86032]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-26 242240]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-05-25 41600]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-05-25 61824]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-05-16 391272]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-07 10064]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - AIDA64DRIVER
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 17:56]
.
2012-03-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 17:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.centrum.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\programdata\LangSoft\WebIE.dll
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
WebBrowser-{124D001A-BDCB-472F-AA59-BBE7E4BC3204} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\c:\program files\FinalWire\AIDA64 Extreme Edition\kerneld.x32"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-03-28 12:51:56
ComboFix-quarantined-files.txt 2012-03-28 10:51
.
Před spuštěním: Volných bajtů: 96 433 799 168
Po spuštění: Volných bajtů: 96 328 781 824
.
- - End Of File - - 01B77BA43653FEBB832CD1DACB1CFDE8
ComboFix 12-03-28.01 - Tomas 28.03.2012 12:49:30.1.4 - x86
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.3575.2493 [GMT 2:00]
Spuštěný z: c:\users\Tomas\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Tomas\Desktop\CFScript.txt
AV: ESET Smart Security 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Rezidentní štít AV je zapnutý
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Tomas\AppData\Roaming\log.txt
c:\users\Tomas\AppData\Roaming\svhost.exe
c:\users\Tomas\AppData\Roaming\Tomaslog.dat
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-02-28 do 2012-03-28 )))))))))))))))))))))))))))))))
.
.
2012-03-28 10:51 . 2012-03-28 10:51 -------- d-----w- c:\users\Tomas\AppData\Local\temp
2012-03-28 10:51 . 2012-03-28 10:51 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-03-28 09:30 . 2012-03-28 09:31 -------- d-----w- C:\rsit
2012-03-28 09:30 . 2012-03-28 09:31 -------- d-----w- c:\program files\trend micro
2012-03-27 07:10 . 2012-03-14 02:15 6582328 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{354B59F9-9333-4020-9CE3-1BB073D2088B}\mpengine.dll
2012-03-26 17:06 . 2012-03-26 17:06 -------- d-----w- c:\users\Tomas\AppData\Roaming\Anarchy
2012-03-26 17:04 . 2012-03-26 17:04 -------- d-----w- c:\users\Tomas\AppData\Roaming\TheMissingMonaLisa
2012-03-26 17:02 . 2012-03-26 17:02 -------- d-----w- c:\users\Tomas\AppData\Roaming\4 Friends Games
2012-03-26 17:01 . 2012-03-26 17:01 -------- d-----w- c:\users\Tomas\AppData\Roaming\SulusGames
2012-03-19 12:41 . 2012-03-19 12:41 -------- d-----w- c:\program files\OCCTPT
2012-03-18 21:24 . 2012-03-18 21:24 -------- d-----w- c:\users\Tomas\AppData\Roaming\GO Games
2012-03-18 20:35 . 2012-03-18 20:35 -------- d-----w- c:\users\Tomas\AppData\Local\CrashRpt
2012-03-17 17:27 . 2012-03-17 18:23 -------- d-----w- c:\users\Tomas\AtlantisQuest
2012-03-17 17:24 . 2012-03-18 21:22 -------- d-----w- c:\programdata\Playrix Entertainment
2012-03-17 17:22 . 2012-03-17 17:22 -------- d-----w- c:\programdata\TERMINAL Studio
2012-03-17 16:13 . 2012-03-17 16:13 -------- d-----w- c:\users\Tomas\AppData\Roaming\Floodlight Games
2012-03-17 16:13 . 2012-03-17 16:13 -------- d-----w- c:\programdata\Floodlight Games
2012-03-17 16:12 . 2012-03-17 16:12 -------- d-----w- c:\users\Tomas\AppData\Roaming\Gunnar Games
2012-03-17 16:11 . 2012-03-17 16:11 -------- d-----w- c:\users\Tomas\AppData\Roaming\Dark Blue Games
2012-03-17 15:58 . 2012-03-17 15:58 -------- d-----w- c:\users\Tomas\AppData\Roaming\Blue Tea Games
2012-03-17 15:56 . 2012-03-17 15:57 -------- d-----w- c:\users\Tomas\AppData\Roaming\FlowerOfImmortality
2012-03-17 15:55 . 2012-03-17 15:55 -------- d-----w- c:\users\Tomas\AppData\Roaming\iWin
2012-03-17 15:55 . 2012-03-17 15:55 -------- d-----w- c:\programdata\iWin
2012-03-17 15:55 . 2012-03-17 16:13 -------- d-----w- c:\users\Tomas\AppData\Roaming\ERS G-Studio
2012-03-17 15:47 . 2012-03-17 15:47 -------- d--h--w- c:\windows\PIF
2012-03-17 15:42 . 2012-03-17 15:42 -------- d-----w- c:\users\Tomas\AppData\Roaming\ABSOLUTIST
2012-03-17 15:29 . 2012-03-17 15:29 -------- d-----w- c:\users\Tomas\AppData\Local\bitComposer
2012-03-17 12:50 . 2012-03-17 12:50 -------- d-----w- c:\program files\CPUID
2012-03-17 12:50 . 2011-09-21 09:25 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x32.sys
2012-03-14 21:31 . 2012-03-14 21:31 -------- d-----w- c:\programdata\Binarysense
2012-03-14 21:30 . 2012-03-14 21:30 -------- d-----w- c:\program files\BinarySense
2012-03-14 16:17 . 2012-03-14 16:17 -------- d-----w- C:\Temp
2012-03-14 14:46 . 2012-03-14 14:46 -------- d-----w- c:\program files\GIGABYTE
2012-03-14 14:45 . 2012-03-14 14:45 331908 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\setup.dll
2012-03-14 14:45 . 2012-03-14 14:45 200836 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iGdi.dll
2012-03-14 14:45 . 2005-04-03 22:02 753664 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iKernel.dll
2012-03-14 14:45 . 2005-04-03 22:02 69714 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\ctor.dll
2012-03-14 14:45 . 2005-04-03 22:01 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iscript.dll
2012-03-14 14:45 . 2005-04-03 22:00 184320 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\iuser.dll
2012-03-14 14:45 . 2005-04-03 21:59 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\11\00\Intel32\DotNetInstaller.exe
2012-03-14 14:21 . 2011-10-17 13:45 462104 ----a-w- c:\windows\system32\drivers\iaStor.sys
2012-03-13 21:05 . 2011-11-19 14:50 3968368 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-03-13 21:05 . 2011-11-19 14:50 3913584 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-03-13 21:05 . 2012-02-10 05:38 1077248 ----a-w- c:\windows\system32\DWrite.dll
2012-03-13 21:05 . 2012-02-03 03:54 2343424 ----a-w- c:\windows\system32\win32k.sys
2012-03-13 21:05 . 2012-01-25 05:32 58880 ----a-w- c:\windows\system32\rdpwsx.dll
2012-03-13 21:05 . 2012-01-25 05:32 129536 ----a-w- c:\windows\system32\rdpcorekmts.dll
2012-03-13 21:05 . 2012-01-25 05:27 8192 ----a-w- c:\windows\system32\rdrmemptylst.exe
2012-03-13 21:05 . 2012-02-17 05:34 919040 ----a-w- c:\windows\system32\rdpcorets.dll
2012-03-13 21:05 . 2012-02-17 05:34 826880 ----a-w- c:\windows\system32\rdpcore.dll
2012-03-13 21:05 . 2012-02-17 04:14 183808 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-03-13 21:05 . 2012-02-17 04:13 24576 ----a-w- c:\windows\system32\drivers\tdtcp.sys
2012-03-13 20:44 . 2012-03-13 20:44 -------- d-----w- c:\program files\Geeks3D
2012-03-13 19:49 . 2012-03-13 19:49 -------- d-----w- c:\users\Tomas\AppData\Roaming\FlyWheelGames
2012-03-13 19:44 . 2012-03-13 19:44 -------- d-----w- c:\users\Tomas\AppData\Roaming\Alawar Stargaze
2012-03-13 19:42 . 2012-03-13 19:42 -------- d-----w- c:\users\Tomas\AppData\Roaming\Alawar Entertainment
2012-03-13 19:41 . 2012-03-13 19:41 -------- d-----w- c:\users\Tomas\AppData\Roaming\Daedalic Entertainment
2012-03-11 20:20 . 2012-03-11 20:20 -------- d-----w- c:\users\Tomas\AppData\Roaming\EntwinedSoD
2012-03-10 14:20 . 2012-03-10 14:20 -------- d-----w- c:\programdata\ATI
2012-03-10 14:19 . 2012-03-10 14:19 -------- d-----w- c:\programdata\AMD
2012-03-10 14:19 . 2012-03-10 14:19 -------- d-----w- c:\program files\AMD AVT
2012-03-10 14:19 . 2012-03-10 14:19 -------- d-----w- c:\program files\AMD APP
2012-03-06 14:59 . 2012-03-06 14:59 -------- d-----w- c:\program files\NVIDIA Corporation
2012-03-05 10:15 . 2012-03-05 10:15 -------- d-----w- c:\users\Tomas\AppData\Roaming\Feuerwache
2012-03-05 09:49 . 2012-03-05 09:49 -------- d-----w- c:\users\Tomas\AppData\Local\ElevatedDiagnostics
2012-03-05 07:54 . 2012-03-05 07:54 -------- d-----w- c:\windows\system32\Adobe
2012-03-04 16:02 . 2012-03-04 16:02 -------- d-----w- c:\users\Tomas\AppData\Local\4A Games
2012-03-04 13:59 . 2010-10-29 23:42 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2012-03-04 13:41 . 2012-03-04 13:41 -------- d-----w- c:\programdata\rionix
2012-03-03 13:59 . 2012-03-03 13:59 -------- d-----w- c:\users\Tomas\AppData\Local\AliensVsPredator
2012-03-03 00:23 . 2012-03-03 00:23 -------- d-----w- c:\programdata\Electronic Arts
2012-03-03 00:23 . 2012-03-03 00:23 -------- d-----w- c:\programdata\EA Logs
2012-03-03 00:23 . 2012-03-03 00:23 -------- d-----w- c:\programdata\EA Core
2012-03-02 22:38 . 2012-03-02 22:43 -------- d-----w- c:\users\Tomas\AppData\Roaming\Origin
2012-03-02 22:38 . 2012-03-02 22:42 -------- d-----w- c:\programdata\Origin
2012-03-02 17:51 . 2010-08-03 07:41 819200 ----a-w- c:\windows\system32\xvidcore.dll
2012-03-02 17:51 . 2010-08-03 07:41 180224 ----a-w- c:\windows\system32\xvidvfw.dll
2012-03-02 17:48 . 2012-03-02 17:48 -------- d-----w- c:\users\Tomas\AppData\Roaming\Big Finish
2012-03-02 17:48 . 2012-03-02 17:48 -------- d-----w- c:\programdata\Big Finish
2012-03-02 16:37 . 2012-03-02 16:37 -------- d-----w- c:\users\Tomas\AppData\Roaming\Baumaschinen Simulator 2011
2012-03-02 16:36 . 2012-03-02 16:36 -------- d-----w- c:\users\Tomas\AppData\Roaming\GameInvest
2012-02-28 12:01 . 2012-02-28 12:01 -------- d-----w- c:\users\Tomas\AppData\Roaming\SunRay Games
2012-02-28 12:00 . 2012-02-28 12:00 -------- d-----w- c:\windows\Mystic Diary - Lost Brother
2012-02-28 00:19 . 2012-02-28 00:19 -------- d-----w- c:\users\Tomas\AppData\Roaming\MumboJumbo
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-19 14:39 . 2012-02-18 14:35 17488 ----a-w- c:\windows\gdrv.sys
2012-03-17 15:20 . 2012-02-26 12:03 473656 ----a-w- c:\windows\system32\drivers\sptd.sys
2012-03-05 07:53 . 2012-02-18 17:54 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-02-26 12:08 . 2012-02-26 12:08 242240 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-02-24 23:57 . 2012-02-18 14:28 17488 ----a-w- c:\windows\etdrv.sys
2012-02-24 23:57 . 2012-02-18 14:28 24944 ----a-w- c:\windows\system32\drivers\GVTDrv.sys
2012-02-23 08:18 . 2012-02-18 17:41 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-02-18 18:47 . 2012-02-18 18:47 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2012-02-18 18:47 . 2012-02-18 18:47 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2012-02-18 18:09 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
2012-02-18 17:48 . 2012-02-18 17:48 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2012-02-18 17:48 . 2012-02-18 17:48 161792 ----a-w- c:\windows\system32\msls31.dll
2012-02-18 17:48 . 2012-02-18 17:48 1127424 ----a-w- c:\windows\system32\wininet.dll
2012-02-18 17:48 . 2012-02-18 17:48 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2012-02-18 17:48 . 2012-02-18 17:48 86528 ----a-w- c:\windows\system32\iesysprep.dll
2012-02-18 17:48 . 2012-02-18 17:48 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2012-02-18 17:48 . 2012-02-18 17:48 74752 ----a-w- c:\windows\system32\iesetup.dll
2012-02-18 17:48 . 2012-02-18 17:48 63488 ----a-w- c:\windows\system32\tdc.ocx
2012-02-18 17:48 . 2012-02-18 17:48 48640 ----a-w- c:\windows\system32\mshtmler.dll
2012-02-18 17:48 . 2012-02-18 17:48 420864 ----a-w- c:\windows\system32\vbscript.dll
2012-02-18 17:48 . 2012-02-18 17:48 367104 ----a-w- c:\windows\system32\html.iec
2012-02-18 17:48 . 2012-02-18 17:48 35840 ----a-w- c:\windows\system32\imgutil.dll
2012-02-18 17:48 . 2012-02-18 17:48 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2012-02-18 17:48 . 2012-02-18 17:48 23552 ----a-w- c:\windows\system32\licmgr10.dll
2012-02-18 17:48 . 2012-02-18 17:48 1798656 ----a-w- c:\windows\system32\jscript9.dll
2012-02-18 17:48 . 2012-02-18 17:48 152064 ----a-w- c:\windows\system32\wextract.exe
2012-02-18 17:48 . 2012-02-18 17:48 150528 ----a-w- c:\windows\system32\iexpress.exe
2012-02-18 17:48 . 2012-02-18 17:48 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2012-02-18 17:48 . 2012-02-18 17:48 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2012-02-18 17:48 . 2012-02-18 17:48 11776 ----a-w- c:\windows\system32\mshta.exe
2012-02-18 17:48 . 2012-02-18 17:48 101888 ----a-w- c:\windows\system32\admparse.dll
2012-02-15 03:47 . 2012-02-15 03:47 9182208 ----a-w- c:\windows\system32\drivers\atikmdag.sys
2012-02-15 03:18 . 2012-02-15 03:18 159744 ----a-w- c:\windows\system32\atiapfxx.exe
2012-02-15 03:18 . 2011-11-10 03:16 791040 ----a-w- c:\windows\system32\aticfx32.dll
2012-02-15 03:13 . 2012-02-15 03:13 442368 ----a-w- c:\windows\system32\ATIDEMGX.dll
2012-02-15 03:13 . 2012-02-15 03:13 405504 ----a-w- c:\windows\system32\atieclxx.exe
2012-02-15 03:12 . 2012-02-15 03:12 163328 ----a-w- c:\windows\system32\atiesrxx.exe
2012-02-15 03:11 . 2012-02-15 03:11 159744 ----a-w- c:\windows\system32\atitmmxx.dll
2012-02-15 03:10 . 2012-02-15 03:10 20992 ----a-w- c:\windows\system32\atimuixx.dll
2012-02-15 03:10 . 2012-02-15 03:10 43520 ----a-w- c:\windows\system32\ati2edxx.dll
2012-02-15 03:07 . 2011-11-10 03:06 6200320 ----a-w- c:\windows\system32\atidxx32.dll
2012-02-15 02:58 . 2012-02-15 02:58 19392000 ----a-w- c:\windows\system32\atioglxx.dll
2012-02-15 02:40 . 2012-02-15 02:40 1828864 ----a-w- c:\windows\system32\atiumdmv.dll
2012-02-15 02:34 . 2012-02-15 02:34 46080 ----a-w- c:\windows\system32\aticalrt.dll
2012-02-15 02:34 . 2012-02-15 02:34 44032 ----a-w- c:\windows\system32\aticalcl.dll
2012-02-15 02:34 . 2012-02-15 02:34 5954048 ----a-w- c:\windows\system32\atiumdag.dll
2012-02-15 02:29 . 2012-02-15 02:29 5062656 ----a-w- c:\windows\system32\atiumdva.dll
2012-02-15 02:29 . 2012-02-15 02:29 11561984 ----a-w- c:\windows\system32\aticaldd.dll
2012-02-15 02:16 . 2011-11-10 02:18 51200 ----a-w- c:\windows\system32\coinst.dll
2012-02-15 02:13 . 2012-02-15 02:13 356352 ----a-w- c:\windows\system32\atiadlxx.dll
2012-02-15 02:13 . 2012-02-15 02:13 14336 ----a-w- c:\windows\system32\atiglpxx.dll
2012-02-15 02:13 . 2012-02-15 02:13 33280 ----a-w- c:\windows\system32\atigktxx.dll
2012-02-15 02:12 . 2012-02-15 02:12 264704 ----a-w- c:\windows\system32\drivers\atikmpag.sys
2012-02-15 02:12 . 2011-11-10 02:11 33280 ----a-w- c:\windows\system32\atiuxpag.dll
2012-02-15 02:12 . 2012-02-15 02:12 30208 ----a-w- c:\windows\system32\atiu9pag.dll
2012-02-15 02:11 . 2012-02-15 02:11 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2012-02-15 02:11 . 2012-02-15 02:11 53760 ----a-w- c:\windows\system32\atimpc32.dll
2012-02-15 02:11 . 2012-02-15 02:11 53760 ----a-w- c:\windows\system32\amdpcom32.dll
2012-02-14 21:05 . 2012-02-14 21:05 59904 ----a-w- c:\windows\system32\OpenVideo.dll
2012-02-14 21:05 . 2012-02-14 21:05 54784 ----a-w- c:\windows\system32\OVDecode.dll
2012-02-14 21:04 . 2012-02-14 21:04 13238272 ----a-w- c:\windows\system32\amdocl.dll
2012-02-14 21:03 . 2012-02-14 21:03 48128 ----a-w- c:\windows\system32\OpenCL.dll
2012-01-31 05:00 . 2012-01-31 05:00 16896 ----a-w- c:\windows\system32\kdbsdk32.dll
2012-01-04 08:58 . 2012-02-18 17:37 442880 ----a-w- c:\windows\system32\ntshrui.dll
2011-12-30 05:27 . 2012-02-18 17:37 478720 ----a-w- c:\windows\system32\timedate.cpl
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-02-18 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-10-17 284440]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2012-02-14 636032]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-02 09:07 843712 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2012-01-03 21:51 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SandboxieControl]
2012-02-07 23:11 451856 ----a-w- c:\program files\Sandboxie\SbieCtrl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"RtHDVCpl"=c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe -s
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray
"IgfxTray"=c:\windows\system32\igfxtray.exe
"HotKeysCmds"=c:\windows\system32\hkcmd.exe
"Persistence"=c:\windows\system32\igfxpers.exe
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
R3 ALSysIO;ALSysIO;c:\users\Tomas\AppData\Local\Temp\ALSysIO.sys [x]
R3 cpuz130;cpuz130;c:\users\Tomas\AppData\Local\Temp\cpuz130\cpuz_x32.sys [x]
R3 etdrv;etdrv;c:\windows\etdrv.sys [2012-02-24 17488]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 136176]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2010-11-20 15872]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27192]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-02-18 1343400]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2011-08-04 50624]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [2011-08-04 33656]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-02-15 163328]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x32.sys [2011-09-21 21992]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2011-08-09 163424]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-10-17 13592]
S2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe [2010-10-27 1483072]
S3 AIDA64Driver;FinalWire AIDA64 Kernel Driver;c:\program files\FinalWire\AIDA64 Extreme Edition\kerneld.x32 [2011-06-15 28824]
S3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2012-02-15 9182208]
S3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2012-02-15 264704]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2011-12-05 86032]
S3 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-02-26 242240]
S3 EtronHub3;Etron USB 3.0 Extensible Hub Driver;c:\windows\system32\Drivers\EtronHub3.sys [2011-05-25 41600]
S3 EtronXHCI;Etron USB 3.0 Extensible Host Controller Driver;c:\windows\system32\Drivers\EtronXHCI.sys [2011-05-25 61824]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-08-31 22216]
S3 MEI;Intel(R) Management Engine Interface ;c:\windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2011-05-16 391272]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-07 10064]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - AIDA64DRIVER
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
.
2012-03-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 17:56]
.
2012-03-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-02-18 17:56]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.centrum.cz/
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\programdata\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\programdata\LangSoft\WebIE.dll
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{124d001a-bdcb-472f-aa59-bbe7e4bc3204} - (no file)
WebBrowser-{124D001A-BDCB-472F-AA59-BBE7E4BC3204} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\AIDA64Driver]
"ImagePath"="\??\c:\program files\FinalWire\AIDA64 Extreme Edition\kerneld.x32"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-03-28 12:51:56
ComboFix-quarantined-files.txt 2012-03-28 10:51
.
Před spuštěním: Volných bajtů: 96 433 799 168
Po spuštění: Volných bajtů: 96 328 781 824
.
- - End Of File - - 01B77BA43653FEBB832CD1DACB1CFDE8
Re: Nepravidelné zamrzání internetu
odomna vsetko - smejd odstraneny
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Re: Nepravidelné zamrzání internetu
JaRon, moc díky a doufám že to bude v pohodě. Nějakou dárcovskou sms určitě pošlu.
Re: Nepravidelné zamrzání internetu
rado sa stalo a dakujeme
FRST |ADWCleaner |MBAM |CCleaner |AVPTool
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
V prípade spokojnosti je možné podporiť fórum https://platba.viry.cz/payment/
Přispějete na provoz fóra?