Zdravím,prosím o kontrolu (100% využití paměti RAM)

[deadsorrow]

Dobrá tedy jdu na to.

Omlouvám se za nedorozumění ...nejspíš jsem to špatně napsal a zároveň děkuji za pochopení.

[deadsorrow]

takže jsem OTM provedl v nouzovém režimu, restartoval, udělal RSIT a zde je LOG:


Logfile of random's system information tool 1.09 (written by random/random)
Run by LEJLLINKA at 2012-09-10 22:12:46
Microsoft Windows 7 Home Premium Service Pack 1
System drive C: has 40 GB (14%) free of 286 GB
Total RAM: 4001 MB (70% free)

HijackThis download failed

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\Explorer.EXE
ctfmon.exe
"C:\Users\LEJLLINKA\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\rundll32.exe" "C:\Windows\system32\WININET.dll",DispatchAPICall 1

======Scheduled tasks folder======

C:\Windows\tasks\Adobe Flash Player Updater.job
C:\Windows\tasks\DLL-files.com Fixer_UPDATES.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre7\bin\ssv.dll [2012-06-28 545192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.2.4204.1700\swg64.dll [2011-04-01 318960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre7\bin\jp2ssv.dll [2012-06-28 193456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-12-12 194432]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll [2012-05-04 453504]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{8D10F6C4-0E01-4BD4-8601-11AC1FDF8126}]
CIESpeechBHO Class - C:\Program Files (x86)\Bluetooth Suite\IEPlugIn.dll [2011-03-13 60576]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll [2012-05-04 157576]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_64.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2011-02-10 167960]
"HotKeysCmds"=C:\Windows\system32\hkcmd.exe [2011-02-10 391704]
"Persistence"=C:\Windows\system32\igfxpers.exe [2011-02-10 418328]
"ETDWare"=C:\Program Files\Elantech\ETDCtrl.exe [2010-06-10 649608]
"RtHDVBg"=C:\Program Files\Realtek\Audio\HDA\RAVBg64.exe [2011-03-21 2207848]
"snp2uvc"=C:\Windows\vsnp2uvc.exe [2010-01-21 909824]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-03-18 11785832]
"AmIcoSinglun64"=C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe [2010-08-11 324096]
"AutoKMS"=C:\Windows\AutoKMS.exe []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-02-13 3481408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeAAMUpdater-1.0]
C:\Program Files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS5ServiceManager]
C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-07-22 402432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AthBtTray]
C:\Program Files (x86)\Bluetooth Suite\AthBtTray.exe [2011-03-13 379552]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AtherosBtStack]
C:\Program Files (x86)\Bluetooth Suite\BtvStack.exe [2011-03-13 617120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast5]
C:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-01-05 3396624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Clownfish]
C:\Program Files (x86)\Clownfish\Clownfish.exe [2012-06-11 1097464]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2012-02-13 3481408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\Steam.exe [2012-09-03 1353080]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SwitchBoard]
C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WebcamMaxAutoRun]
C:\Program Files (x86)\WebcamMax\wcmmon.exe [2011-07-17 1038848]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 3"=C:\Program Files (x86)\ASUS\Wireless Console 3\wcourier.exe [2010-09-24 1601536]
"ATKOSD2"=C:\Program Files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe [2010-08-17 5732992]
"ATKMEDIA"=C:\Program Files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe [2010-10-07 170624]
"HControlUser"=C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe [2009-06-19 105016]
"UpdatePSTShortCut"=C:\Program Files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe [2010-11-25 222504]
"UpdateP2GoShortCut"=C:\Program Files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"UpdateLBPShortCut"=C:\Program Files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe [2009-05-20 222504]
"CLMLServer"=C:\Program Files (x86)\CyberLink\Power2Go\CLMLSvc.exe [2009-11-02 103720]
"ASUS Screen Saver Protector"=C:\Windows\AsScrPro.exe [2011-07-26 3058304]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
FancyStart daemon.lnk - C:\Windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe
GamePark klient 2.lnk - C:\Program Files\GamePark2\gpcl.exe

C:\Users\LEJLLINKA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Xfire.lnk - C:\Program Files (x86)\Xfire\Xfire.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinitx.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2011-01-27 385024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]


[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\alu.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\backache.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\backbone.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\dllfixer.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\excel.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\facemgr.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fancystart.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\fastboot.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gamebooster.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\gpcl.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\groove.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hirezgamesdiagandsupport.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\hirezlauncherui.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\infopath.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\installhirezgamesenglish.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\labelprint.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\logonmgr.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\misc.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msaccess.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\msoxmled.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mspub.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\mstore.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\olrsubmission.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\onenote.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\outlook.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2go.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\power2goexpress.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerpnt.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\powerstarter.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\setup.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\skype.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\steam.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\tunngle_setup_v4.4.1.2.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\unins000.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\uninst.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\webcammax.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\winword.exe]
"Debugger=""C:\Program Files (x86)\TuneUp Utilities 2012\TUAutoReactivator64.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave2"=wdmaud.drv
"mixer2"=wdmaud.drv
"midi2"=wdmaud.drv
"VIDC.XFR1"=xfcodec64.dll
"VIDC.FPS1"=frapsv64.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-09-10 19:49:15 ----D---- C:\_OTM
2012-09-10 19:22:42 ----D---- C:\Program Files\trend micro
2012-09-10 18:34:37 ----N---- C:\bootsqm.dat
2012-09-10 17:37:49 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\mkvtoolnix
2012-09-10 17:37:22 ----D---- C:\Program Files (x86)\MKVToolNix
2012-09-10 17:10:18 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\KoshyJohn.com
2012-09-10 14:13:04 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\PhotoFiltre Studio X
2012-09-10 14:12:25 ----D---- C:\Program Files (x86)\PhotoFiltre Studio X
2012-09-10 14:08:59 ----D---- C:\Program Files (x86)\PhotoFiltre 7
2012-09-08 23:48:04 ----A---- C:\Windows\ntbtlog.txt
2012-09-03 21:14:11 ----D---- C:\Program Files (x86)\Orcs Must Die 2
2012-09-03 20:41:24 ----D---- C:\Program Files (x86)\Steam
2012-09-03 16:37:49 ----D---- C:\Program Files (x86)\Game_Maker8
2012-09-03 12:19:27 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\ERS Game Studios
2012-09-03 12:18:35 ----D---- C:\Program Files (x86)\Sanatorium Green Hills
2012-09-01 22:16:32 ----A---- C:\Windows\AutoKMS.ini
2012-09-01 22:09:59 ----D---- C:\Program Files\Common Files\DESIGNER
2012-09-01 22:09:30 ----D---- C:\Program Files\Microsoft Synchronization Services
2012-09-01 22:09:10 ----D---- C:\Program Files\Microsoft Sync Framework
2012-09-01 22:09:10 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2012-09-01 22:07:50 ----D---- C:\Program Files (x86)\Microsoft Visual Studio 8
2012-09-01 22:07:02 ----D---- C:\Program Files\Microsoft Analysis Services
2012-09-01 22:07:02 ----D---- C:\Program Files (x86)\Microsoft Analysis Services
2012-09-01 22:06:52 ----D---- C:\Program Files (x86)\Microsoft Office
2012-09-01 22:06:48 ----D---- C:\Program Files\Microsoft Office
2012-09-01 22:06:23 ----RHD---- C:\MSOCache
2012-08-30 20:07:12 ----D---- C:\Program Files (x86)\Chromadrome 2
2012-08-30 18:19:42 ----D---- C:\Program Files (x86)\Focus Home Interactive
2012-08-19 09:43:25 ----A---- C:\Windows\system32\MRT.exe
2012-08-19 09:20:14 ----D---- C:\ProgramData\OUTLAWS
2012-08-18 22:29:20 ----D---- C:\ProgramData\JAGUAR
2012-08-18 22:22:21 ----D---- C:\Program Files (x86)\Tower Wars
2012-08-18 20:43:25 ----D---- C:\Program Files\Blender Foundation
2012-08-17 03:02:50 ----A---- C:\Windows\system32\drivers\bthport.sys
2012-08-17 03:01:48 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2012-08-17 03:01:48 ----A---- C:\Windows\system32\mshtmled.dll
2012-08-17 03:01:47 ----A---- C:\Windows\SYSWOW64\url.dll
2012-08-17 03:01:47 ----A---- C:\Windows\system32\url.dll
2012-08-17 03:01:47 ----A---- C:\Windows\system32\iertutil.dll
2012-08-17 03:01:46 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2012-08-17 03:01:46 ----A---- C:\Windows\SYSWOW64\ieui.dll
2012-08-17 03:01:46 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2012-08-17 03:01:46 ----A---- C:\Windows\system32\urlmon.dll
2012-08-17 03:01:45 ----A---- C:\Windows\SYSWOW64\ieUnatt.exe
2012-08-17 03:01:45 ----A---- C:\Windows\system32\ieUnatt.exe
2012-08-17 03:01:45 ----A---- C:\Windows\system32\ieui.dll
2012-08-17 03:01:44 ----A---- C:\Windows\SYSWOW64\wininet.dll
2012-08-17 03:01:44 ----A---- C:\Windows\system32\wininet.dll
2012-08-17 03:01:44 ----A---- C:\Windows\system32\jscript9.dll
2012-08-17 03:01:43 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2012-08-17 03:01:43 ----A---- C:\Windows\SYSWOW64\jscript9.dll
2012-08-17 03:01:43 ----A---- C:\Windows\SYSWOW64\jscript.dll
2012-08-17 03:01:43 ----A---- C:\Windows\system32\jsproxy.dll
2012-08-17 03:01:43 ----A---- C:\Windows\system32\jscript.dll
2012-08-17 03:01:42 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2012-08-17 03:01:41 ----A---- C:\Windows\system32\mshtml.dll
2012-08-17 03:01:39 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2012-08-17 03:01:39 ----A---- C:\Windows\system32\ieframe.dll
2012-08-16 04:47:50 ----A---- C:\Windows\SYSWOW64\srclient.dll
2012-08-16 04:47:50 ----A---- C:\Windows\system32\srcore.dll
2012-08-16 04:47:48 ----A---- C:\Windows\SYSWOW64\win32spl.dll
2012-08-16 04:47:48 ----A---- C:\Windows\system32\win32spl.dll
2012-08-16 04:47:48 ----A---- C:\Windows\system32\spoolsv.exe
2012-08-16 04:47:48 ----A---- C:\Windows\splwow64.exe
2012-08-16 04:47:47 ----A---- C:\Windows\system32\browser.dll
2012-08-16 04:47:47 ----A---- C:\Windows\system32\browcli.dll
2012-08-16 04:47:46 ----A---- C:\Windows\SYSWOW64\netapi32.dll
2012-08-16 04:47:46 ----A---- C:\Windows\SYSWOW64\browcli.dll
2012-08-16 04:47:46 ----A---- C:\Windows\system32\netapi32.dll
2012-08-16 04:47:45 ----A---- C:\Windows\system32\win32k.sys
2012-08-16 04:47:45 ----A---- C:\Windows\system32\localspl.dll
2012-08-14 12:58:44 ----A---- C:\Windows\system32\HRUPPROG.TXT
2012-08-11 21:47:09 ----D---- C:\ProgramData\Caphyon
2012-08-11 21:47:07 ----D---- C:\Program Files (x86)\Jungle Timer
2012-08-11 21:46:14 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\SitenApp
2012-08-11 10:11:40 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\ts3overlay
2012-08-11 10:09:40 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\TS3Client

======List of files/folders modified in the last 1 month======

2012-09-10 22:11:15 ----D---- C:\Windows\Temp
2012-09-10 22:11:14 ----D---- C:\Windows\system32\config
2012-09-10 22:09:45 ----D---- C:\Windows\system32\Tasks
2012-09-10 19:49:28 ----D---- C:\Windows\SysWOW64
2012-09-10 19:49:28 ----D---- C:\Windows
2012-09-10 19:49:16 ----RD---- C:\Program Files (x86)
2012-09-10 19:49:16 ----D---- C:\Windows\Tasks
2012-09-10 19:49:16 ----D---- C:\Program Files (x86)\Google
2012-09-10 19:22:45 ----D---- C:\rsit
2012-09-10 19:22:42 ----RD---- C:\Program Files
2012-09-10 18:07:08 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\DAEMON Tools Lite
2012-09-10 17:56:41 ----D---- C:\Windows\System32
2012-09-10 17:07:14 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\uTorrent
2012-09-10 15:00:42 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\Xfire
2012-09-10 14:13:05 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\Identities
2012-09-10 14:04:42 ----SD---- C:\Users\LEJLLINKA\AppData\Roaming\Microsoft
2012-09-10 13:47:59 ----SHD---- C:\Windows\Installer
2012-09-10 13:47:59 ----SHD---- C:\Config.Msi
2012-09-10 13:47:55 ----D---- C:\ProgramData\Microsoft Help
2012-09-10 13:46:55 ----SHD---- C:\System Volume Information
2012-09-10 08:26:11 ----D---- C:\Windows\inf
2012-09-10 08:26:11 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-09-10 00:06:40 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\Skype
2012-09-09 20:17:10 ----D---- C:\ProgramData\PMB Files
2012-09-08 23:49:09 ----D---- C:\Windows\system32\drivers
2012-09-08 23:26:35 ----D---- C:\Windows\Prefetch
2012-09-08 13:51:09 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\Media Player Classic
2012-09-04 20:43:41 ----D---- C:\Windows\SoftwareDistribution
2012-09-04 20:43:31 ----D---- C:\Windows\Logs
2012-09-04 17:16:47 ----D---- C:\ProgramData\Tunngle
2012-09-03 21:20:19 ----RSD---- C:\Windows\assembly
2012-09-03 21:19:53 ----D---- C:\Windows\system32\catroot2
2012-09-03 20:41:29 ----D---- C:\Program Files (x86)\Common Files
2012-09-03 03:13:46 ----D---- C:\Windows\Microsoft.NET
2012-09-03 03:09:35 ----A---- C:\Windows\win.ini
2012-09-03 03:04:42 ----D---- C:\Program Files\Common Files\System
2012-09-01 22:10:04 ----RSD---- C:\Windows\Fonts
2012-09-01 22:10:00 ----D---- C:\Windows\ShellNew
2012-09-01 22:09:59 ----D---- C:\Program Files\Common Files\Microsoft Shared
2012-09-01 22:09:59 ----D---- C:\Program Files\Common Files
2012-09-01 22:09:22 ----D---- C:\Program Files (x86)\MSBuild
2012-09-01 22:09:10 ----SD---- C:\ProgramData\Microsoft
2012-09-01 22:09:10 ----D---- C:\Program Files (x86)\Microsoft.NET
2012-09-01 00:46:51 ----D---- C:\ProgramData\Xfire
2012-08-25 01:17:35 ----D---- C:\Windows\pss
2012-08-25 01:01:29 ----D---- C:\Windows\debug
2012-08-25 01:00:36 ----D---- C:\Users\LEJLLINKA\AppData\Roaming\ArcSoft
2012-08-25 01:00:34 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-08-25 00:54:37 ----D---- C:\Program Files (x86)\Mount&Blade Warband
2012-08-19 09:20:14 ----HD---- C:\ProgramData
2012-08-17 03:21:03 ----D---- C:\Windows\winsxs
2012-08-17 03:19:00 ----D---- C:\Windows\SYSWOW64\migration
2012-08-17 03:19:00 ----D---- C:\Windows\system32\migration
2012-08-17 03:19:00 ----D---- C:\Program Files\Internet Explorer
2012-08-17 03:19:00 ----D---- C:\Program Files (x86)\Internet Explorer
2012-08-17 03:18:59 ----D---- C:\Windows\system32\DriverStore
2012-08-17 03:02:57 ----D---- C:\Windows\system32\catroot
2012-08-14 21:49:16 ----A---- C:\Windows\SYSWOW64\FlashPlayerApp.exe
2012-08-14 12:58:46 ----D---- C:\Program Files (x86)\Hi-Rez Studios

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2010-11-05 438808]
R0 nvpciflt;nvpciflt; C:\Windows\system32\DRIVERS\nvpciflt.sys [2012-03-01 28992]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-04 283200]
R3 AmUStor;AM USB Stroage Driver; C:\Windows\system32\drivers\AmUStor.SYS [2010-08-11 44032]
R3 BTATH_BUS;Atheros Bluetooth Bus; C:\Windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
R3 ETD;ELAN PS/2 Port Input Device; C:\Windows\system32\DRIVERS\ETD.sys [2010-09-08 129024]
R3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver; C:\Windows\system32\DRIVERS\FLxHCIc.sys [2011-02-25 302592]
R3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver; C:\Windows\system32\DRIVERS\FLxHCIh.sys [2011-02-25 81920]
R3 kbfiltr;Keyboard Filter; C:\Windows\system32\DRIVERS\kbfiltr.sys [2009-07-20 15416]
R3 MarvinBus;Pinnacle Marvin Bus 64; C:\Windows\system32\DRIVERS\MarvinBus64.sys [2005-09-23 261120]
R3 MEIx64;Intel(R) Management Engine Interface; C:\Windows\system32\DRIVERS\HECIx64.sys [2010-10-20 56344]
S1 ArcSec;archlp; C:\Windows\system32\drivers\ArcSec.sys []
S1 ATKWMIACPIIO;ATKWMIACPI Driver; \??\C:\Program Files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
S1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 ASMMAP64;ASMMAP64; \??\C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 TurboB;Turbo Boost UI Monitor driver; C:\Windows\system32\DRIVERS\TurboB.sys [2010-11-30 16120]
S2 WCMVCAM;WebcamMax, WDM Video Capture; C:\Windows\system32\DRIVERS\wcmvcam64.sys [2011-06-23 1071032]
S3 ASUSProcObsrv;ASUS Process Creation/Termination Observer; \??\E:\I386\AsPrOb64.sys []
S3 AthBTPort;Atheros Virtual Bluetooth Class; C:\Windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
S3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athrx.sys [2010-07-08 2228736]
S3 BTATH_A2DP;Bluetooth A2DP Audio Driver; C:\Windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
S3 BTATH_HCRP;Bluetooth HCRP Server driver; C:\Windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
S3 BTATH_LWFLT;Bluetooth LWFLT Device; C:\Windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
S3 BTATH_RCP;Bluetooth AVRCP Device; C:\Windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
S3 BtFilter;BtFilter; C:\Windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
S3 BthEnum;Ovladač pro Bluetooth Request Block; C:\Windows\system32\drivers\BthEnum.sys [2009-07-14 41984]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 118784]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2012-07-06 552960]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2011-04-28 80384]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 48488]
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2012-04-10 33344]
S3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd64.sys [2011-01-27 12273408]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-03-22 2815976]
S3 IntcDAud;Intel(R) Display Audio; C:\Windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20); C:\Windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 158720]
S3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136]
S3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver; C:\Windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
S3 SNP2UVC;USB2.0 PC Camera (SNP2UVC); C:\Windows\system32\DRIVERS\snp2uvc.sys [2010-09-07 1800832]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle); C:\Windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\Windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2012-02-09 11856]
S3 WimFltr;WimFltr; C:\Windows\system32\DRIVERS\wimfltr.sys [2008-05-24 154168]
S3 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Program Files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2010-11-01 14544]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2010-11-20 41984]
S3 xusb21;Xbox 360 Wireless Receiver Driver Service 21; C:\Windows\system32\DRIVERS\xusb21.sys [2009-08-13 73984]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

S2 ASLDRService;ASLDR Service; C:\Program Files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe [2009-06-15 84536]
S2 ATKGFNEXSrv;ATKGFNEX Service; C:\Program Files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe [2009-12-15 96896]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 gupdate;Google Update Service (gupdate); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
S2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2012-02-29 889664]
S2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
S2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2012-04-03 75064]
S2 PnkBstrB;PnkBstrB; C:\Windows\syswow64\PnkBstrB.exe [2012-05-02 214520]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-04-05 2143552]
S2 UxTuneUp;@%SystemRoot%\System32\uxtuneup.dll,-4096; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-23 1493352]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
S3 gusvc;Google Software Updater; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-04-01 182768]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
S3 SwitchBoard;SwitchBoard; C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2012-04-04 1255736]
S4 AFBAgent;AFBAgent; C:\Windows\system32\FBAgent.exe [2011-01-25 379520]
S4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent; C:\Program Files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
S4 AtherosSvc;AtherosSvc; C:\Program Files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
S4 HiPatchService;Hi-Rez Studios Authenticate and Update Service; C:\Program Files (x86)\Hi-Rez Studios\HiPatchService.exe [2012-07-12 8704]
S4 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2010-12-21 325656]
S4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
S4 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S4 SkypeUpdate;Skype Updater; C:\Program Files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
S4 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-16 407336]
S4 TunngleService;TunngleService; C:\Program Files (x86)\Tunngle\TnglCtrl.exe [2012-06-01 736104]
S4 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0; C:\Program Files\Intel\TurboBoost\TurboBoost.exe [2010-11-30 149504]
S4 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S4 VideAceWindowsService;VideAceWindowsService; C:\ExpressGateUtil\VAWinService.exe [2010-08-21 77312]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]

-----------------EOF-----------------

[Rudy]

OTM nemazal ani tentokrát. Někde je nějaká chyba. Zkusíme to jinak. Dejte log ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

[deadsorrow]

log z combofixu hotov a zde:


ComboFix 12-09-10.04 - LEJLLINKA 10.09.2012 22:41:50.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4001.2416 [GMT 2:00]
Spuštěný z: c:\users\LEJLLINKA\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Outdated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
FW: avast! Internet Security *Disabled* {FB460EB6-4C6D-E564-6BF5-EEEF2B44B473}
SP: avast! Internet Security *Disabled/Outdated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\ESET\MiNODLogin
c:\program files (x86)\ESET\MiNODLogin\servidores.xml
c:\programdata\FullRemove.exe
c:\windows\AsPatch10430001.exe
c:\windows\msvcr71.dll
c:\windows\SwSys1.bmp
c:\windows\SwSys2.bmp
c:\windows\SysWow64\logs
c:\windows\SysWow64\logs\Game - R3d Logs\2012-07-19_18-24-45_r3dlog.txt
D:\install.exe
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-08-10 do 2012-09-10 )))))))))))))))))))))))))))))))
.
.
2012-09-10 20:48 . 2012-09-10 20:48 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-09-10 20:48 . 2012-09-10 20:48 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-10 17:49 . 2012-09-10 17:49 -------- d-----w- C:\_OTM
2012-09-10 17:22 . 2012-09-10 17:22 -------- d-----w- c:\program files\trend micro
2012-09-10 15:37 . 2012-09-10 15:37 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\mkvtoolnix
2012-09-10 15:37 . 2012-09-10 15:37 -------- d-----w- c:\program files (x86)\MKVToolNix
2012-09-10 15:10 . 2012-09-10 15:10 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\KoshyJohn.com
2012-09-10 12:19 . 2012-09-10 15:59 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{615EB6EE-0B84-4F95-AEF5-270B9AFD8412}\offreg.dll
2012-09-10 12:13 . 2012-09-10 12:24 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\PhotoFiltre Studio X
2012-09-10 12:12 . 2012-09-10 12:13 -------- d-----w- c:\program files (x86)\PhotoFiltre Studio X
2012-09-10 12:08 . 2012-09-10 12:11 -------- d-----w- c:\program files (x86)\PhotoFiltre 7
2012-09-07 22:45 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{615EB6EE-0B84-4F95-AEF5-270B9AFD8412}\mpengine.dll
2012-09-03 19:14 . 2012-09-03 19:19 -------- d-----w- c:\program files (x86)\Orcs Must Die 2
2012-09-03 18:41 . 2012-09-03 18:41 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-09-03 18:41 . 2012-09-07 16:39 -------- d-----w- c:\program files (x86)\Steam
2012-09-03 14:37 . 2012-09-03 14:37 -------- d-----w- c:\program files (x86)\Game_Maker8
2012-09-03 10:19 . 2012-09-03 10:19 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\ERS Game Studios
2012-09-03 10:18 . 2012-09-03 10:19 -------- d-----w- c:\program files (x86)\Sanatorium Green Hills
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Common Files\DESIGNER
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft Synchronization Services
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft Sync Framework
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2012-09-01 20:07 . 2012-09-01 20:07 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2012-09-01 20:07 . 2012-09-01 20:07 -------- d-----w- c:\program files\Microsoft Analysis Services
2012-09-01 20:07 . 2012-09-01 20:07 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2012-09-01 20:06 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft Office
2012-09-01 20:06 . 2012-09-01 20:06 -------- d-----r- C:\MSOCache
2012-08-30 18:07 . 2012-08-30 18:12 -------- d-----w- c:\program files (x86)\Chromadrome 2
2012-08-30 16:19 . 2012-08-30 16:19 -------- d-----w- c:\users\LEJLLINKA\AppData\Local\Focus Home Interactive
2012-08-30 16:19 . 2012-08-30 16:19 -------- d-----w- c:\program files (x86)\Focus Home Interactive
2012-08-26 09:14 . 2012-08-26 09:14 -------- d-----w- c:\users\LEJLLINKA\AppData\Local\Halfbrick
2012-08-26 09:13 . 2012-08-26 09:13 -------- d-----w- c:\users\LEJLLINKA\AppData\Local\Intel
2012-08-19 07:43 . 2012-08-03 02:27 62134624 ----a-w- c:\windows\system32\MRT.exe
2012-08-19 07:20 . 2012-08-19 07:20 -------- d-----w- c:\programdata\OUTLAWS
2012-08-18 20:29 . 2012-08-18 20:29 -------- d-----w- c:\programdata\JAGUAR
2012-08-18 20:22 . 2012-08-18 20:29 -------- d-----w- c:\program files (x86)\Tower Wars
2012-08-18 18:43 . 2012-08-18 18:43 -------- d-----w- c:\users\LEJLLINKA\.thumbnails
2012-08-18 18:43 . 2012-08-18 18:43 -------- d-----w- c:\program files\Blender Foundation
2012-08-17 01:02 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-08-16 02:47 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-16 02:47 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-16 02:47 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-08-16 02:47 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-16 02:47 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-08-16 02:47 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-08-16 02:47 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
2012-08-16 02:47 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
2012-08-16 02:47 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-08-16 02:47 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-08-16 02:47 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-08-16 02:47 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-14 19:49 . 2012-05-15 08:42 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-14 19:49 . 2012-05-15 08:42 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-30 10:06 . 2012-06-30 10:06 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-06-28 09:42 . 2012-06-28 09:42 268720 ----a-w- c:\windows\system32\javaws.exe
2012-06-28 09:42 . 2012-06-28 09:42 189360 ----a-w- c:\windows\system32\javaw.exe
2012-06-28 09:42 . 2012-06-28 09:42 955840 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-06-28 09:42 . 2012-06-28 09:42 188840 ----a-w- c:\windows\system32\java.exe
2012-06-28 09:42 . 2012-06-28 09:42 839096 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-17 08:08 . 2012-04-12 21:46 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-06-17 08:08 . 2012-04-12 21:46 121880 ----a-w- c:\windows\system32\OpenAL32.dll
2012-06-17 08:08 . 2003-11-07 12:28 444952 ------w- c:\windows\SysWow64\wrap_oal.dll
2012-06-17 08:08 . 2003-11-07 12:28 109080 ------w- c:\windows\SysWow64\OpenAL32.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"UpdatePSTShortCut"="c:\program files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2010-11-24 222504]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2009-11-02 103720]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2011-07-26 3058304]
.
c:\users\LEJLLINKA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Xfire.lnk - c:\program files (x86)\Xfire\Xfire.exe [2012-5-3 3553176]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe [2011-7-26 12862]
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2012-4-3 442880]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "c:\programdata\Nuance\PDF Reader\Ereg\Ereg.ini"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"ASUSPRP"="c:\program files (x86)\ASUS\APRP\APRP.EXE"
"ASUSWebStorage"=c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
"SonicMasterTray"=c:\program files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
"RemoteControl10"="c:\program files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
"ATKMEDIA"=c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
"FLxHCIm"="c:\program files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
"VAWinAgent"=c:\expressgateutil\VAWinAgent.exe
"ApnUpdater"="c:\program files (x86)\Ask.com\Updater\Updater.exe"
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
.
R1 ArcSec;archlp;c:\windows\system32\drivers\ArcSec.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056]
R3 ASUSProcObsrv;ASUS Process Creation/Termination Observer;e:\i386\AsPrOb64.sys [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-04 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2010-11-01 14544]
R4 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2011-01-25 379520]
R4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
R4 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R4 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [2012-07-12 8704]
R4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R4 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
R4 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2012-06-01 736104]
R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R4 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R4 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2010-08-21 77312]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-03-01 28992]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-04 283200]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-03-01 2348352]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-04-05 2143552]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\DRIVERS\wcmvcam64.sys [2011-06-23 1071032]
S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [2010-08-11 44032]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-09-08 129024]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [2011-02-25 302592]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [2011-02-25 81920]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2012-02-09 11856]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-09-10 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 19:49]
.
2012-06-03 c:\windows\Tasks\DLL-files.com Fixer_UPDATES.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-06-01 10:41]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-10 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-10 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-10 418328]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-21 2207848]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2010-01-21 909824]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-18 11785832]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2010-08-11 324096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://asus.msn.com
mStart Page = hxxp://asus.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
URLSearchHooks-{687578b9-7132-4a7a-80e4-30ee31099e03} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{687578B9-7132-4A7A-80E4-30EE31099E03} - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
HKLM-Run-ETDWare - c:\program files (x86)\Elantech\ETDCtrl.exe
HKLM-Run-AutoKMS - c:\windows\AutoKMS.exe
AddRemove-ASUS_Screensaver - c:\windows\system32\ASUS_Screensaver.scr
AddRemove-uTorrentControl2 Toolbar - c:\program files (x86)\uTorrentControl2\uninstall.exe
AddRemove-{2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files (x86)\Google\Google Toolbar\Component\GoogleToolbarManager_E582EA556D8DE101.exe
AddRemove-{79A765E1-C399-405B-85AF-466F52E918B0} - c:\program files (x86)\Ask.com\Updater\Updater.exe
.
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-1466467337-2008045321-4060443901-1001\Software\SecuROM\License information*]
"datasecu"=hex:b5,b6,02,81,e9,5b,fe,42,82,9b,cb,19,0f,5d,5b,71,a8,33,d3,7c,54,
3c,10,f7,37,fb,66,6a,95,f3,48,5a,15,f7,44,41,12,07,f3,42,7d,b9,be,2e,20,d2,\
"rkeysecu"=hex:03,34,d6,fe,4a,4e,fc,70,8b,06,a2,55,92,08,93,e1
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_3_300_271_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_3_300_271.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-09-10 22:50:14
ComboFix-quarantined-files.txt 2012-09-10 20:50
.
Před spuštěním: Volných bajtů: 41 860 157 440
Po spuštění: Volných bajtů: 41 657 327 616
.
- - End Of File - - CFDD661997A20F31C838D7A1E30EEB82

[Rudy]

Otevřte poznámkový bloka zkopírujte do ně:

File::
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1466467337-2008045321-4060443901-1001Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1466467337-2008045321-4060443901-1001UA.job
C:\Program Files (x86)\Google\Google Toolbar
C:\Program Files (x86)\uTorrentControl2
C:\Program Files (x86)\Ask.com
C:\Windows\AutoKMS.exe
C:\Windows\AutoKMS.tmp

Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{687578b9-7132-4a7a-80e4-30ee31099e03}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"AutoKMS"=-
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"ApnUpdater"=-

Regnull::
[HKEY_USERS\S-1-5-21-1466467337-2008045321-4060443901-1001\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]

Reboot::

Uložte na plochu jako CFSCript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

[deadsorrow]

Dobrý večer

Tak jsem tak učinil a zde je nový log z combofixu:






ComboFix 12-09-10.04 - LEJLLINKA 11.09.2012 19:54:04.2.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4001.2568 [GMT 2:00]
Spuštěný z: c:\users\LEJLLINKA\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\LEJLLINKA\Desktop\CFSCript.txt..txt
AV: avast! Internet Security *Disabled/Outdated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
FW: avast! Internet Security *Disabled* {FB460EB6-4C6D-E564-6BF5-EEEF2B44B473}
SP: avast! Internet Security *Disabled/Outdated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
FILE ::
"c:\program files (x86)\Ask.com"
"c:\program files (x86)\Google\Google Toolbar"
"c:\program files (x86)\uTorrentControl2"
"c:\windows\AutoKMS.exe"
"c:\windows\AutoKMS.tmp"
"c:\windows\tasks\GoogleUpdateTaskMachineCore.job"
"c:\windows\tasks\GoogleUpdateTaskMachineUA.job"
"c:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1466467337-2008045321-4060443901-1001Core.job"
"c:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1466467337-2008045321-4060443901-1001UA.job"
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-08-11 do 2012-09-11 )))))))))))))))))))))))))))))))
.
.
2012-09-11 18:00 . 2012-09-11 18:00 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-09-11 18:00 . 2012-09-11 18:00 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-11 14:40 . 2012-08-23 08:26 9310152 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{6CD030E1-EE1B-45B7-A847-F27AF5787DB5}\mpengine.dll
2012-09-11 12:35 . 2012-09-11 18:02 -------- d-----w- c:\windows\SysWow64\NV
2012-09-11 12:35 . 2012-09-11 18:02 -------- d-----w- c:\windows\system32\NV
2012-09-11 12:32 . 2012-05-15 09:29 889664 ----a-w- c:\windows\system32\nvvsvc.exe
2012-09-11 12:32 . 2012-05-15 09:29 858944 ----a-w- c:\windows\system32\nv3dappshext.dll
2012-09-11 12:32 . 2012-05-15 09:29 63296 ----a-w- c:\windows\system32\nvshext.dll
2012-09-11 12:32 . 2012-05-15 09:29 55616 ----a-w- c:\windows\system32\nv3dappshextr.dll
2012-09-11 12:32 . 2012-05-15 09:29 2561856 ----a-w- c:\windows\system32\nvsvcr.dll
2012-09-11 12:32 . 2012-05-15 09:29 118080 ----a-w- c:\windows\system32\nvmctray.dll
2012-09-11 12:32 . 2012-05-15 09:29 2621723 ----a-w- c:\windows\system32\nvcoproc.bin
2012-09-11 12:32 . 2012-05-15 09:29 3149632 ----a-w- c:\windows\system32\nvsvc64.dll
2012-09-11 12:32 . 2012-05-15 09:28 6151488 ----a-w- c:\windows\system32\nvcpl.dll
2012-09-11 12:31 . 2012-09-11 12:31 -------- d-----w- c:\programdata\NVIDIA Corporation
2012-09-10 17:49 . 2012-09-10 17:49 -------- d-----w- C:\_OTM
2012-09-10 17:22 . 2012-09-10 17:22 -------- d-----w- c:\program files\trend micro
2012-09-10 15:37 . 2012-09-10 15:37 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\mkvtoolnix
2012-09-10 15:37 . 2012-09-10 15:37 -------- d-----w- c:\program files (x86)\MKVToolNix
2012-09-10 15:10 . 2012-09-10 15:10 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\KoshyJohn.com
2012-09-10 12:13 . 2012-09-10 12:24 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\PhotoFiltre Studio X
2012-09-10 12:12 . 2012-09-10 12:13 -------- d-----w- c:\program files (x86)\PhotoFiltre Studio X
2012-09-10 12:08 . 2012-09-10 12:11 -------- d-----w- c:\program files (x86)\PhotoFiltre 7
2012-09-03 19:14 . 2012-09-03 19:19 -------- d-----w- c:\program files (x86)\Orcs Must Die 2
2012-09-03 18:41 . 2012-09-03 18:41 -------- d-----w- c:\program files (x86)\Common Files\Steam
2012-09-03 18:41 . 2012-09-07 16:39 -------- d-----w- c:\program files (x86)\Steam
2012-09-03 14:37 . 2012-09-03 14:37 -------- d-----w- c:\program files (x86)\Game_Maker8
2012-09-03 10:19 . 2012-09-03 10:19 -------- d-----w- c:\users\LEJLLINKA\AppData\Roaming\ERS Game Studios
2012-09-03 10:18 . 2012-09-03 10:19 -------- d-----w- c:\program files (x86)\Sanatorium Green Hills
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Common Files\DESIGNER
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft Synchronization Services
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft Sync Framework
2012-09-01 20:09 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2012-09-01 20:07 . 2012-09-01 20:07 -------- d-----w- c:\program files (x86)\Microsoft Visual Studio 8
2012-09-01 20:07 . 2012-09-01 20:07 -------- d-----w- c:\program files\Microsoft Analysis Services
2012-09-01 20:07 . 2012-09-01 20:07 -------- d-----w- c:\program files (x86)\Microsoft Analysis Services
2012-09-01 20:06 . 2012-09-01 20:09 -------- d-----w- c:\program files\Microsoft Office
2012-09-01 20:06 . 2012-09-01 20:06 -------- d-----r- C:\MSOCache
2012-08-30 18:07 . 2012-08-30 18:12 -------- d-----w- c:\program files (x86)\Chromadrome 2
2012-08-30 16:19 . 2012-08-30 16:19 -------- d-----w- c:\users\LEJLLINKA\AppData\Local\Focus Home Interactive
2012-08-30 16:19 . 2012-08-30 16:19 -------- d-----w- c:\program files (x86)\Focus Home Interactive
2012-08-26 09:14 . 2012-08-26 09:14 -------- d-----w- c:\users\LEJLLINKA\AppData\Local\Halfbrick
2012-08-26 09:13 . 2012-08-26 09:13 -------- d-----w- c:\users\LEJLLINKA\AppData\Local\Intel
2012-08-19 07:43 . 2012-08-03 02:27 62134624 ----a-w- c:\windows\system32\MRT.exe
2012-08-19 07:20 . 2012-08-19 07:20 -------- d-----w- c:\programdata\OUTLAWS
2012-08-18 20:29 . 2012-08-18 20:29 -------- d-----w- c:\programdata\JAGUAR
2012-08-18 20:22 . 2012-08-18 20:29 -------- d-----w- c:\program files (x86)\Tower Wars
2012-08-18 18:43 . 2012-08-18 18:43 -------- d-----w- c:\users\LEJLLINKA\.thumbnails
2012-08-18 18:43 . 2012-08-18 18:43 -------- d-----w- c:\program files\Blender Foundation
2012-08-17 01:02 . 2012-07-06 20:07 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-08-16 02:47 . 2012-05-05 08:36 503808 ----a-w- c:\windows\system32\srcore.dll
2012-08-16 02:47 . 2012-05-05 07:46 43008 ----a-w- c:\windows\SysWow64\srclient.dll
2012-08-16 02:47 . 2012-02-11 06:43 751104 ----a-w- c:\windows\system32\win32spl.dll
2012-08-16 02:47 . 2012-02-11 06:36 559104 ----a-w- c:\windows\system32\spoolsv.exe
2012-08-16 02:47 . 2012-02-11 06:36 67072 ----a-w- c:\windows\splwow64.exe
2012-08-16 02:47 . 2012-02-11 05:43 492032 ----a-w- c:\windows\SysWow64\win32spl.dll
2012-08-16 02:47 . 2012-07-04 22:13 59392 ----a-w- c:\windows\system32\browcli.dll
2012-08-16 02:47 . 2012-07-04 22:13 136704 ----a-w- c:\windows\system32\browser.dll
2012-08-16 02:47 . 2012-07-04 22:16 73216 ----a-w- c:\windows\system32\netapi32.dll
2012-08-16 02:47 . 2012-07-04 21:14 41984 ----a-w- c:\windows\SysWow64\browcli.dll
2012-08-16 02:47 . 2012-07-18 18:15 3148800 ----a-w- c:\windows\system32\win32k.sys
2012-08-16 02:47 . 2012-05-14 05:26 956928 ----a-w- c:\windows\system32\localspl.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-08-14 19:49 . 2012-05-15 08:42 70344 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-08-14 19:49 . 2012-05-15 08:42 426184 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-06-30 10:06 . 2012-06-30 10:06 483952 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
2012-06-28 09:42 . 2012-06-28 09:42 268720 ----a-w- c:\windows\system32\javaws.exe
2012-06-28 09:42 . 2012-06-28 09:42 189360 ----a-w- c:\windows\system32\javaw.exe
2012-06-28 09:42 . 2012-06-28 09:42 955840 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-06-28 09:42 . 2012-06-28 09:42 188840 ----a-w- c:\windows\system32\java.exe
2012-06-28 09:42 . 2012-06-28 09:42 839096 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-17 08:08 . 2012-04-12 21:46 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-06-17 08:08 . 2012-04-12 21:46 121880 ----a-w- c:\windows\system32\OpenAL32.dll
2012-06-17 08:08 . 2003-11-07 12:28 444952 ------w- c:\windows\SysWow64\wrap_oal.dll
2012-06-17 08:08 . 2003-11-07 12:28 109080 ------w- c:\windows\SysWow64\OpenAL32.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2012-09-10_20.48.47 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-04-03 17:59 . 2012-05-15 10:48 61248 c:\windows\SysWOW64\OpenCL.dll
- 2012-04-03 17:59 . 2012-03-01 00:02 61248 c:\windows\SysWOW64\OpenCL.dll
+ 2011-02-18 20:13 . 2012-09-11 12:37 56998 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2012-09-11 12:37 40292 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2012-04-02 23:40 . 2012-09-11 12:37 12606 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1466467337-2008045321-4060443901-1001_UserData.bin
- 2012-04-03 17:59 . 2012-03-01 00:02 68928 c:\windows\system32\OpenCL.dll
+ 2012-04-03 17:59 . 2012-05-15 10:48 68928 c:\windows\system32\OpenCL.dll
+ 2009-07-14 05:30 . 2012-09-11 12:33 86016 c:\windows\system32\DriverStore\infpub.dat
- 2009-07-14 05:30 . 2012-08-17 01:18 86016 c:\windows\system32\DriverStore\infpub.dat
+ 2012-09-11 12:33 . 2012-05-15 10:48 68928 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\OpenCL64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 61248 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\OpenCL.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 28992 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvpciflt.sys
+ 2012-09-11 12:33 . 2012-05-15 10:48 28992 c:\windows\system32\drivers\nvpciflt.sys
- 2012-04-03 17:59 . 2012-03-01 00:02 28992 c:\windows\system32\drivers\nvpciflt.sys
+ 2012-09-01 20:10 . 2012-09-11 09:51 34144 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\oisicon.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 34144 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\oisicon.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 43608 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\msouc.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 43608 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\msouc.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 19296 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\cagicon.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 19296 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\cagicon.exe
+ 2012-09-11 12:33 . 2012-05-15 10:48 4096 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdetx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 4096 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdet.dll
+ 2012-09-11 18:01 . 2012-09-11 18:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-09-10 20:13 . 2012-09-10 20:13 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-09-10 20:13 . 2012-09-10 20:13 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-09-11 18:01 . 2012-09-11 18:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-09-11 12:33 . 2012-05-15 10:48 818496 c:\windows\SysWOW64\nvumdshim.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 202048 c:\windows\SysWOW64\nvinit.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 301376 c:\windows\SysWOW64\nvdecodemft.dll
- 2012-04-03 17:59 . 2012-03-01 00:02 301376 c:\windows\SysWOW64\nvdecodemft.dll
+ 2012-09-11 12:36 . 2012-05-15 10:48 818496 c:\windows\SysWOW64\NV\igdumdx32.dll
+ 2012-09-11 12:36 . 2012-05-15 10:48 818496 c:\windows\SysWOW64\NV\igd10umd32.dll
- 2009-07-14 02:36 . 2012-09-10 06:26 634606 c:\windows\system32\perfh009.dat
+ 2009-07-14 02:36 . 2012-09-11 06:47 634606 c:\windows\system32\perfh009.dat
- 2011-02-19 05:36 . 2012-09-10 06:26 658388 c:\windows\system32\perfh005.dat
+ 2011-02-19 05:36 . 2012-09-11 06:47 658388 c:\windows\system32\perfh005.dat
- 2009-07-14 02:36 . 2012-09-10 06:26 115074 c:\windows\system32\perfc009.dat
+ 2009-07-14 02:36 . 2012-09-11 06:47 115074 c:\windows\system32\perfc009.dat
- 2011-02-19 05:36 . 2012-09-10 06:26 131072 c:\windows\system32\perfc005.dat
+ 2011-02-19 05:36 . 2012-09-11 06:47 131072 c:\windows\system32\perfc005.dat
+ 2012-09-11 12:33 . 2012-05-15 10:48 949056 c:\windows\system32\nvumdshimx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 246592 c:\windows\system32\nvinitx.dll
- 2012-04-03 17:59 . 2012-03-01 00:02 364352 c:\windows\system32\nvdecodemft.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 364352 c:\windows\system32\nvdecodemft.dll
+ 2012-09-11 12:35 . 2012-05-15 10:48 949056 c:\windows\system32\NV\igdumd64.dll
+ 2012-09-11 12:35 . 2012-05-15 10:48 949056 c:\windows\system32\NV\igd10umd64.dll
+ 2009-07-14 05:30 . 2012-09-11 12:33 143360 c:\windows\system32\DriverStore\infstrng.dat
- 2009-07-14 05:30 . 2012-08-17 01:18 143360 c:\windows\system32\DriverStore\infstrng.dat
+ 2009-07-14 05:30 . 2012-09-11 12:33 143360 c:\windows\system32\DriverStore\infstor.dat
- 2009-07-14 05:30 . 2012-08-17 01:18 143360 c:\windows\system32\DriverStore\infstor.dat
+ 2012-09-11 12:33 . 2012-05-15 10:48 949056 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvumdshimx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 818496 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvumdshim.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 249152 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvkflt.sys
+ 2012-09-11 12:33 . 2012-05-15 10:48 246592 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvinitx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 202048 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvinit.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 249856 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdxgiwrapx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 220480 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdxgiwrap.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 301376 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdecodemft32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 364352 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdecodemft.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 316928 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\Nvd3d9wrapx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 285504 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\Nvd3d9wrap.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 232768 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\dbInstaller.exe
- 2009-07-14 05:01 . 2012-09-10 20:11 508832 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2012-09-11 18:01 508832 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2012-09-01 20:10 . 2012-09-11 09:51 415584 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pubs.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 415584 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pubs.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 303456 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\outicon.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 303456 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\outicon.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 571232 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\misc.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 571232 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\misc.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 326496 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\joticon.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 326496 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\joticon.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 470616 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\inficon.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 470616 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\inficon.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 178528 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\grvicons.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 178528 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\grvicons.exe
+ 2012-09-11 12:33 . 2012-05-15 10:48 8105280 c:\windows\SysWOW64\nvwgf2um.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2524992 c:\windows\SysWOW64\nvcuvid.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2445120 c:\windows\SysWOW64\nvcuvenc.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 5982528 c:\windows\SysWOW64\nvcuda.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2368832 c:\windows\SysWOW64\nvapi.dll
+ 2012-04-03 17:59 . 2012-05-15 10:48 1468224 c:\windows\system32\nvgenco64.dll
+ 2012-04-03 17:59 . 2012-05-15 10:48 1738048 c:\windows\system32\nvdispco64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2681664 c:\windows\system32\nvcuvid.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2881856 c:\windows\system32\nvcuvenc.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 8139072 c:\windows\system32\nvcuda.dll
+ 2012-04-03 17:59 . 2012-05-15 10:48 2741568 c:\windows\system32\nvapi64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 8105280 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvwgf2um.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 1468224 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvgenco64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 1066872 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdrsdb.bin
+ 2012-09-11 12:33 . 2012-05-15 10:48 1738048 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvdispco64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2524992 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcuvid32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2681664 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcuvid.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2881856 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcuvenc64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2445120 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcuvenc.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 5982528 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcuda32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 8139072 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcuda.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2741568 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvapi64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 2368832 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvapi.dll
+ 2012-04-03 18:04 . 2012-09-11 18:01 7102042 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1466467337-2008045321-4060443901-1001-12288.dat
+ 2012-09-01 20:10 . 2012-09-11 09:51 1479520 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\xlicons.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 1479520 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\xlicons.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 1858400 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 1858400 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\wordicon.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 3792736 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pptico.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 3792736 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\pptico.exe
+ 2012-09-01 20:10 . 2012-09-11 09:51 1449312 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\accicons.exe
- 2012-09-01 20:10 . 2012-09-10 11:47 1449312 c:\windows\Installer\{91140000-0011-0000-1000-0000000FF1CE}\accicons.exe
+ 2012-09-11 12:33 . 2012-05-15 10:48 19607872 c:\windows\SysWOW64\nvoglv32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 15322432 c:\windows\SysWOW64\nvd3dum.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 17551680 c:\windows\SysWOW64\nvcompiler.dll
+ 2012-09-11 12:35 . 2012-05-15 10:48 19607872 c:\windows\SysWOW64\NV\ig4icd32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 10194752 c:\windows\system32\nvwgf2umx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 25743168 c:\windows\system32\nvoglv64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 18044224 c:\windows\system32\nvd3dumx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 25248064 c:\windows\system32\nvcompiler.dll
+ 2012-09-11 12:35 . 2012-05-15 10:48 25743168 c:\windows\system32\NV\ig4icd64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 10194752 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvwgf2umx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 25743168 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvoglv64.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 19607872 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvoglv32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 14298944 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvlddmkm.sys
+ 2012-09-11 12:33 . 2012-05-15 10:48 18044224 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvd3dumx.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 15322432 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvd3dum.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 71931424 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\NvCplSetupInt.exe
+ 2012-09-11 12:33 . 2012-05-15 10:48 17551680 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcompiler32.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 25248064 c:\windows\system32\DriverStore\FileRepository\nvam.inf_amd64_neutral_5f16d6d65e690a52\nvcompiler.dll
+ 2012-09-11 12:33 . 2012-05-15 10:48 14298944 c:\windows\system32\drivers\nvlddmkm.sys
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-02-13 3481408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Wireless Console 3"="c:\program files (x86)\ASUS\Wireless Console 3\wcourier.exe" [2010-09-23 1601536]
"ATKOSD2"="c:\program files (x86)\ASUS\ATK Package\ATKOSD2\ATKOSD2.exe" [2010-08-17 5732992]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe" [2010-10-07 170624]
"HControlUser"="c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"UpdatePSTShortCut"="c:\program files (x86)\Cyberlink\DVD Suite\MUITransfer\MUIStartMenu.exe" [2010-11-24 222504]
"UpdateP2GoShortCut"="c:\program files (x86)\CyberLink\Power2Go\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"UpdateLBPShortCut"="c:\program files (x86)\CyberLink\LabelPrint\MUITransfer\MUIStartMenu.exe" [2009-05-20 222504]
"CLMLServer"="c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe" [2009-11-02 103720]
"ASUS Screen Saver Protector"="c:\windows\AsScrPro.exe" [2011-07-26 3058304]
.
c:\users\LEJLLINKA\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Xfire.lnk - c:\program files (x86)\Xfire\Xfire.exe [2012-5-3 3553176]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_94E3CE3704FE82FBF49A6A.exe [2011-7-26 12862]
GamePark klient 2.lnk - c:\program files\GamePark2\gpcl.exe [2012-4-3 442880]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"midi2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Nuance PDF Reader-reminder"="c:\program files (x86)\Nuance\PDF Reader\Ereg\Ereg.exe" -r "c:\programdata\Nuance\PDF Reader\Ereg\Ereg.ini"
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"ASUSPRP"="c:\program files (x86)\ASUS\APRP\APRP.EXE"
"ASUSWebStorage"=c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSPanel.exe /S
"SonicMasterTray"=c:\program files (x86)\ASUS\SonicMaster\SonicMasterTray.exe
"RemoteControl10"="c:\program files (x86)\Cyberlink\PowerDVD10\PDVD10Serv.exe"
"ATKMEDIA"=c:\program files (x86)\ASUS\ATK Package\ATK Media\DMedia.exe
"FLxHCIm"="c:\program files\Fresco Logic Inc\Fresco Logic USB3.0 Host Controller\host\FLxHCIm.exe"
"VAWinAgent"=c:\expressgateutil\VAWinAgent.exe
"DivXUpdate"="c:\program files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
.
R1 ArcSec;archlp;c:\windows\system32\drivers\ArcSec.sys [x]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2012-05-15 1262400]
R3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-14 250056]
R3 ASUSProcObsrv;ASUS Process Creation/Termination Observer;e:\i386\AsPrOb64.sys [x]
R3 AthBTPort;Atheros Virtual Bluetooth Class;c:\windows\system32\DRIVERS\btath_flt.sys [2011-03-13 36000]
R3 BTATH_A2DP;Bluetooth A2DP Audio Driver;c:\windows\system32\drivers\btath_a2dp.sys [2011-03-13 298656]
R3 BTATH_HCRP;Bluetooth HCRP Server driver;c:\windows\system32\DRIVERS\btath_hcrp.sys [2011-03-13 201376]
R3 BTATH_LWFLT;Bluetooth LWFLT Device;c:\windows\system32\DRIVERS\btath_lwflt.sys [2011-03-13 55456]
R3 BTATH_RCP;Bluetooth AVRCP Device;c:\windows\system32\DRIVERS\btath_rcp.sys [2011-03-13 154272]
R3 BtFilter;BtFilter;c:\windows\system32\DRIVERS\btfilter.sys [2011-03-13 280224]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-04-01 135664]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller (NDIS 6.20);c:\windows\system32\DRIVERS\L1C62x64.sys [2009-06-10 57344]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [2009-06-10 56832]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 31232]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2012-04-04 1255736]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\program files (x86)\IObit\Game Booster 3\Driver\WinRing0x64.sys [2010-11-01 14544]
R4 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [2011-01-25 379520]
R4 Atheros Bt&Wlan Coex Agent;Atheros Bt&Wlan Coex Agent;c:\program files (x86)\Bluetooth Suite\Ath_CoexAgent.exe [2011-03-13 138400]
R4 AtherosSvc;AtherosSvc;c:\program files (x86)\Bluetooth Suite\adminservice.exe [2011-03-13 74912]
R4 HiPatchService;Hi-Rez Studios Authenticate and Update Service;c:\program files (x86)\Hi-Rez Studios\HiPatchService.exe [2012-07-12 8704]
R4 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R4 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-02-29 158856]
R4 TunngleService;TunngleService;c:\program files (x86)\Tunngle\TnglCtrl.exe [2012-06-01 736104]
R4 TurboBoost;Intel(R) Turbo Boost Technology Monitor 2.0;c:\program files\Intel\TurboBoost\TurboBoost.exe [2010-11-29 149504]
R4 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
R4 VideAceWindowsService;VideAceWindowsService;c:\expressgateutil\VAWinService.exe [2010-08-21 77312]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-05-15 28992]
S1 ATKWMIACPIIO;ATKWMIACPI Driver;c:\program files (x86)\ASUS\ATK Package\ATK WMIACPI\atkwmiacpi64.sys [2010-07-26 17024]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-04-04 283200]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 59904]
S2 ASMMAP64;ASMMAP64;c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\ASMMAP64.sys [2009-07-02 15416]
S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesService64.exe [2012-04-05 2143552]
S2 TurboB;Turbo Boost UI Monitor driver;c:\windows\system32\DRIVERS\TurboB.sys [2010-11-29 16120]
S2 WCMVCAM;WebcamMax, WDM Video Capture;c:\windows\system32\DRIVERS\wcmvcam64.sys [2011-06-23 1071032]
S3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [2010-08-11 44032]
S3 BTATH_BUS;Atheros Bluetooth Bus;c:\windows\system32\DRIVERS\btath_bus.sys [2011-03-13 28832]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [2010-09-08 129024]
S3 FLxHCIc;Fresco Logic xHCI (USB3) Device Driver;c:\windows\system32\DRIVERS\FLxHCIc.sys [2011-02-25 302592]
S3 FLxHCIh;Fresco Logic xHCI (USB3) Hub Device Driver;c:\windows\system32\DRIVERS\FLxHCIh.sys [2011-02-25 81920]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2010-10-14 317440]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [2010-10-19 56344]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2011-02-16 428136]
S3 tap0901t;TAP-Win32 Adapter V9 (Tunngle);c:\windows\system32\DRIVERS\tap0901t.sys [2009-09-16 31232]
S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files (x86)\TuneUp Utilities 2012\TuneUpUtilitiesDriver64.sys [2012-02-09 11856]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-09-11 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-05-15 19:49]
.
2012-06-03 c:\windows\Tasks\DLL-files.com Fixer_UPDATES.job
- c:\program files (x86)\Dll-Files.com Fixer\DLLFixer.exe [2012-06-01 10:41]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2010-09-02 08:41 220160 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\3.0.84.161\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-10 167960]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-10 391704]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-10 418328]
"ETDWare"="c:\program files (x86)\Elantech\ETDCtrl.exe" [BU]
"RtHDVBg"="c:\program files\Realtek\Audio\HDA\RAVBg64.exe" [2011-03-21 2207848]
"snp2uvc"="c:\windows\vsnp2uvc.exe" [2010-01-21 909824]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-18 11785832]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2010-08-11 324096]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://asus.msn.com
mStart Page = hxxp://asus.msn.com
mLocal Page = c:\windows\SysWOW64\blank.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 62.129.50.20 85.135.32.100
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
ShellIconOverlayIdentifiers-{472083B0-C522-11CF-8763-00608CC02F24} - (no file)
.
.
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ASLDRSrv.exe
c:\program files (x86)\ASUS\ATK Package\ATKGFNEX\GFNEXSrv.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\windows\SysWOW64\PnkBstrB.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\KBFiltr.exe
c:\program files (x86)\ASUS\ATK Package\ATK Hotkey\WDC.exe
.
**************************************************************************
.
Celkový čas: 2012-09-11 20:06:35 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-09-11 18:06
ComboFix2.txt 2012-09-10 20:50
.
Před spuštěním: Volných bajtů: 47 889 989 632
Po spuštění: Volných bajtů: 47 575 318 528
.
- - End Of File - - 58096BD7B952D063B819AA60F4EC7F4F

[Rudy]

Log již vypadá čistý. Nastala nějaká změna?

[deadsorrow]

Paráda !! Jeden ze 2 filmů už mi šel vymazat a už nedělá paseku..bohužel ten druhý vymazat stále nejde.... když se o to pokusím tak mi někde v pozadí začne ta složka s filmem "žrát" 2,5gb ramky a trhá mi to celý notebook. Řeším stále jen restartem. V nouzáku taky vymazat nejde.

Plus mi přestala jít i GK.... i přesto, že mám nastavenou jako výchozí ge force gt540tku tak se mi vše spouští přes mojí integrovanou v procesoru... nechápu to.

Nevíte co s tím ?? Nebo už jsme ve slepé uličce, kterou vyřeši jedině reinstall mého Winu..?:D

[Rudy]

Když mi dáte cestu k souboru toho filmu, pokusím se ho sestřelit.

[deadsorrow]

cesta k filmu je: D:\Filmy\Men In Black 3

[Rudy]

Potřebuji to komplet i s připonou (např. D:\Filmy\Men In Black 3.mpg) . Je to nutné pro napsání skriptu.

[deadsorrow]

Pokusím se... já jen kliknu na ikonu toho filmu a už se mi notebook kouše jak sviňa.. moc se sním pracovat nedá...
Akorát nevím jak...když dám vlastnosti tak se mi nic neukáže.

[Rudy]

Stáhněte a spusťte Avenger: http://forum.viry.cz/viewtopic.php?f=11&t=19832 . Do bílého okna zkopírujte:

Files to delete:
D:\Filmy\Men In Black 3.xxx

(za xxx dosaďte příponu souboru)

a klikněte na >Execute<. PC bude restartován.

[deadsorrow]

Tak jsem to udělal dle vašeho návodu....udělal se restart a dál nic.... stále ten samý problém. Prostě když JENOM kliknu na ikonku toho filmu tak mi to začne "žrát" klidně i 3gb ramky... zjišťuji to přes RAMMap..."FileSummary" ... obyčejný správce úloh by mi to neukázal.

Vložil jsem to tam takto:
Files to delete:
D:\Filmy\Men In Black 3\název filmu.mkv (název nepíšu protože bych musel po kliknutí na film další restart)

[deadsorrow]

Tak jsem to vyřešil. Podařilo se mi to smáznout pomocí programu z vašeho fórka a to UNLOCKEREM.
Teď už mám jenom problém s tou GK, ale to už nespadá pod vás..