Nelze otevřít soubory EXE - pouze jako správce

[motji]

Stahněte z mého podpisu AVPTOOl http://www.viry.cz/forum/viewtopic.php?f=29&t=58179

-Podle návodu nainstalujte a proveďte sken
-co najde nechejte léčit, mazat
-sken může trvat několik hodin
-vložte zde log z výsledky

[richi4ever]

Moc nám to toho nenašlo

Autoscan: completed 4 minutes ago (events: 2, objects: 329086, time: 01:02:40)
2.4.2010 14:57:32 Task started
2.4.2010 16:00:13 Task completed

[richi4ever]

A postupně to dělá častěji a častěji........

[motji]

častěji se seká?


Stáhněte na plochu, ukončete všechna aktivní okna a spusťte ComboFix - http://download.bleepingcomputer.com/sUBs/ComboFix.exe


- ComboFix je třeba spustit pod účtem s právy administrátora

- Před použitím vypněte všechny rezidentní bezpečnostní programy - antiviry, firewally, antispywary

- Po spuštění se zobrazí podmínky užití, potvrďte je stiskem tlačítka Ano

- Dále postupujte dle pokynů, během aplikování ComboFixu neklikejte do zobrazujícího se okna

- Po dokončení skenování, trvajícího maximálně 10 minut, by měl program vytvořit log - C:\ComboFix.txt, zkopírujte celý jeho obsah sem

[richi4ever]

Ano častěji se tak zadrhává....

Tady je log z combofixu:

ComboFix 10-04-01.02 - Richi 02.04.2010 23:56:40.6.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.1534.920 [GMT 2:00]
Spuštěný z: c:\users\Richi\Desktop\ComboFix.exe
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-03-02 do 2010-04-02 )))))))))))))))))))))))))))))))
.

2010-04-02 12:18 . 2010-04-02 21:46 -------- d-----w- c:\programdata\Kaspersky Lab
2010-04-02 12:16 . 2009-10-22 11:54 37392 ----a-w- c:\windows\system32\drivers\92339562.sys
2010-04-02 12:16 . 2009-10-09 21:31 311312 ----a-w- c:\windows\system32\drivers\9233956.sys
2010-04-02 12:16 . 2009-09-25 15:59 128016 ----a-w- c:\windows\system32\drivers\92339561.sys
2010-04-01 20:31 . 2010-04-01 20:48 -------- d-----w- C:\rsit
2010-04-01 15:35 . 2010-04-01 15:35 -------- d--h--w- c:\windows\PIF
2010-04-01 13:26 . 2010-04-02 22:04 -------- d-----w- c:\users\Richi\AppData\Local\temp
2010-03-31 05:22 . 2010-02-23 07:56 977920 ----a-w- c:\windows\system32\wininet.dll
2010-03-30 20:07 . 2010-03-30 20:07 -------- d-----w- c:\users\Richi\AppData\Local\Apps
2010-03-30 19:07 . 2010-03-30 19:07 -------- d-----w- c:\users\Richi\AppData\Local\ESET
2010-03-30 18:32 . 2010-03-30 18:47 -------- d-----w- C:\AdobeTemp
2010-03-30 18:08 . 2010-03-30 18:31 -------- d-----w- c:\program files\Lavasoft
2010-03-18 08:42 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-03-17 19:49 . 2010-03-17 19:49 -------- d-----w- c:\users\Richi\AppData\Local\Sam Francke

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-02 12:29 . 2009-12-09 04:23 -------- d-----w- c:\users\Richi\AppData\Roaming\uTorrent
2010-04-01 19:37 . 2009-07-14 08:44 622660 ----a-w- c:\windows\system32\perfh005.dat
2010-04-01 19:37 . 2009-07-14 08:44 118810 ----a-w- c:\windows\system32\perfc005.dat
2010-04-01 06:53 . 2009-12-09 03:18 -------- d-----w- c:\program files\RocketDock
2010-03-31 15:53 . 2010-03-31 15:53 112 ----a-w- c:\programdata\ym0sD033.dat
2010-03-31 15:15 . 2009-12-09 15:01 -------- d-----w- c:\program files\QuickTime
2010-03-30 18:45 . 2009-12-08 23:25 -------- d-----w- c:\program files\Common Files\Adobe
2010-03-30 18:38 . 2009-12-09 04:30 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2010-03-30 18:08 . 2010-01-26 09:03 -------- d-----w- c:\program files\Google
2010-02-28 17:46 . 2010-02-28 16:12 -------- d-----w- c:\program files\Ubisoft
2010-02-28 17:46 . 2009-12-08 23:18 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-28 16:25 . 2010-02-28 16:25 -------- d-----w- c:\users\Richi\AppData\Roaming\InstallShield
2010-02-28 16:25 . 2010-02-28 16:25 -------- d-----w- c:\programdata\InstallShield
2010-02-28 16:12 . 2009-12-08 23:18 -------- d-----w- c:\program files\Common Files\InstallShield
2010-02-24 09:16 . 2009-12-08 22:52 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-23 08:36 . 2010-02-23 08:36 -------- d-----w- c:\programdata\hps
2010-02-16 16:59 . 2010-02-16 16:59 -------- d-----w- c:\users\Richi\AppData\Roaming\Publish Providers
2010-02-16 16:59 . 2010-02-16 16:53 -------- d-----w- c:\users\Richi\AppData\Roaming\Sony
2010-02-16 16:48 . 2010-02-16 16:48 -------- d-----w- c:\programdata\Sony
2010-02-16 15:12 . 2010-02-16 15:12 -------- d-----w- c:\users\Richi\AppData\Roaming\AdobeSupportAdvisor.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2010-02-16 15:12 . 2010-02-16 15:12 -------- d-----w- c:\program files\AdobeSupportAdvisor
2010-02-16 15:12 . 2010-02-16 15:12 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-02-16 15:11 . 2010-03-30 21:00 38784 ----a-w- c:\users\Richi test\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-02-16 15:11 . 2010-02-16 15:12 38784 ----a-w- c:\users\Richi\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-02-16 15:11 . 2010-02-16 15:12 38784 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-02-15 23:29 . 2010-02-15 23:25 -------- d-----w- c:\program files\Project64 1.6
2010-02-15 10:41 . 2009-12-09 00:01 108464 ----a-w- c:\users\Richi\AppData\Local\GDIPFONTCACHEV1.DAT
2010-02-12 11:52 . 2009-12-09 00:25 -------- d-----w- c:\programdata\Microsoft Help
2010-02-07 11:09 . 2010-02-04 10:50 -------- d-----w- c:\program files\SuperDVD Video Editor
2010-02-04 19:45 . 2009-12-09 14:30 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-04 19:43 . 2010-02-04 11:41 794 ---ha-w- C:\os117275.bin
2010-02-04 11:53 . 2010-02-04 11:53 -------- d-----w- c:\users\Richi\AppData\Roaming\AnvSoft
2010-02-04 11:25 . 2010-02-04 11:25 -------- d-----w- c:\program files\Common Files\Vbox
2010-02-04 00:23 . 2010-02-04 00:23 -------- d-----w- c:\program files\CountDown ShutDown PC
2010-02-02 07:45 . 2010-02-24 05:56 2048 ----a-w- c:\windows\system32\tzres.dll
2010-01-18 23:29 . 2010-02-10 08:26 365568 ----a-w- c:\windows\system32\secproc_isv.dll
2010-01-18 23:29 . 2010-02-10 08:26 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-01-18 23:29 . 2010-02-10 08:26 85504 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-01-18 23:29 . 2010-02-10 08:26 369152 ----a-w- c:\windows\system32\secproc.dll
2010-01-18 23:28 . 2010-02-10 08:26 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-01-18 23:28 . 2010-02-10 08:26 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-01-18 23:28 . 2010-02-10 08:26 320512 ----a-w- c:\windows\system32\RMActivate.exe
2010-01-18 23:28 . 2010-02-10 08:26 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-01-08 03:18 . 2010-02-10 08:27 221184 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-01-08 03:17 . 2010-02-10 08:27 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-06 13605408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-06 92704]
"tsnp2std"="c:\windows\system32\tsnp2std.exe" [2005-12-27 122880]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]

c:\users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
setup_9.0.0.722_02.04.2010_15-06.lnk - c:\users\Richi\Desktop\Virus Removal Tool\setup_9.0.0.722_02.04.2010_15-06\startup.exe [2010-4-2 72208]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"

R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-30 135664]
R3 bpenum;Intel(R) WiMAX Link Enumerator;c:\windows\system32\DRIVERS\bpenum.sys [2009-07-30 56320]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2009-12-08 691696]
S0 92339562;92339562 Boot Guard Driver;c:\windows\system32\DRIVERS\92339562.sys [2009-10-22 37392]
S1 92339561;92339561;c:\windows\system32\DRIVERS\92339561.sys [2009-09-25 128016]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
S1 setup_9.0.0.722_02.04.2010_15-06drv;setup_9.0.0.722_02.04.2010_15-06drv;c:\windows\system32\DRIVERS\9233956.sys [2009-10-09 311312]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2009-11-16 38240]
S3 athrusb;TP-LINK Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrusb.sys [2007-08-17 891392]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys [2009-03-18 520704]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-08-19 189440]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Obsah adresáře 'Naplánované úlohy'

2010-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-30 18:08]

2010-04-02 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-30 18:08]
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Richi\AppData\Roaming\Mozilla\Firefox\Profiles\55n1vqer.default\
FF - prefs.js: browser.search.selectedEngine - Centrum.cz Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Win7codecs\rm\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\Win7codecs\rm\browser\plugins\nprpjplug.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.032"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.abr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ani"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.arw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bay"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bmp"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cr2"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.crw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cs1"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cur"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dcr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dcx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dib"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.djv"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.djvu"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dng"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.emf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.eps"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.erf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.fff"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.fpx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.gif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.hdr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.icl"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.icn"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.iff"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ilbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.int"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.inta"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.iw4"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.j2c"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.j2k"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jbr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jfif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jp2"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpc"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpe"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpeg"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (S-1-5-21-3310651923-3931097451-1174285733-1000)
@Denied: (2) (LocalSystem)
"Progid"="PhotoViewer.FileAssoc.Jpeg"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpk"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.kdc"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.lbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mef"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mos"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mrw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.nef"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.orf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pbr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pcd"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pct"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pcx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pef"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pgm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pic"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pict"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pix"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.png"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ppm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.psd"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.psp"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pspbrush"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pspimage"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.raf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ras"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.raw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rgb"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rgba"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rle"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rsb"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.sgi"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.sr2"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.srf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tga"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.thm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tiff"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ttc"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ttf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wbmp"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wmf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xpm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Premiere Pro\1.5\DefaultPreset]
@DACL=(02 0000)
@="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Settings\\DV - NTSC\\Standard 48kHz.prpreset"

[HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Premiere Pro\1.5\Help]
@DACL=(02 0000)
"AdobeMediaEncoder"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_0_0_0.html"
"Contents"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_0_0_0.html"
"ExportToDVD"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_19_2_0.html"
"HowToUse"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\0_0_0_0.html"
"Keyboard"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_21_0_0.html"
"Search"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\search.html"
"Support"="http://www.adobe.com/support/products/premiere.html"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
Celkový čas: 2010-04-03 00:07:04
ComboFix-quarantined-files.txt 2010-04-02 22:07

Před spuštěním: Volných bajtů: 10 202 226 688
Po spuštění: Volných bajtů: 10 125 565 952

- - End Of File - - 7278EC2D951F89A59515EABB5652B041

[motji]

Vidím pouze drivery po AVPtoolu, smažeme je, at tam nestraší. Před použitím skriptu AVPtool odinstalujte.

Sekat se začal hned po odvirování, nebo jste ještě něco dělal? Můžete se podívat do protokolu událostí, jestli tam nemáte nějaké záznamy?

Seká se i v nouzovém režimu?


Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše

Folder::
c:\programdata\Kaspersky Lab

Driver::
c:\windows\system32\drivers\92339562.sys
c:\windows\system32\drivers\9233956.sys
c:\windows\system32\drivers\92339561.sys

File::
c:\programdata\ym0sD033.dat
c:\users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
setup_9.0.0.722_02.04.2010_15-06.lnk
c:\users\Richi\Desktop\Virus Removal Tool\setup_9.0.0.722_02.04.2010_15-06\startup.exe [2010-4-2 72208]

-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:




-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci

[richi4ever]

Dobré ranko

Dělalo to i v průběhu odvirování. Tak vše jsem udělal, tady posílám log z combofixu :

ComboFix 10-04-01.02 - Richi 03.04.2010 10:32:08.7.2 - x86
Microsoft Windows 7 Professional 6.1.7600.0.1250.420.1029.18.1534.961 [GMT 2:00]
Spuštěný z: c:\users\Richi\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Richi\Desktop\CFScript.txt

FILE ::
"c:\programdata\ym0sD033.dat"
"c:\users\Richi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\programdata\Kaspersky Lab
c:\programdata\Kaspersky Lab\~PRCustomProps#2d2.dat
c:\programdata\Kaspersky Lab\~PRObjects#2d2.dat
c:\programdata\ym0sD033.dat

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-03-03 do 2010-04-03 )))))))))))))))))))))))))))))))
.

2010-04-03 08:37 . 2010-04-03 08:37 -------- d-----w- c:\users\Richi\AppData\Local\temp
2010-04-03 08:37 . 2010-04-03 08:37 -------- d-----w- c:\users\Richi test\AppData\Local\temp
2010-04-03 08:37 . 2010-04-03 08:37 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-04-03 08:37 . 2010-04-03 08:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-04-01 20:31 . 2010-04-01 20:48 -------- d-----w- C:\rsit
2010-04-01 15:35 . 2010-04-01 15:35 -------- d--h--w- c:\windows\PIF
2010-03-31 05:22 . 2010-02-23 07:56 977920 ----a-w- c:\windows\system32\wininet.dll
2010-03-30 20:07 . 2010-03-30 20:07 -------- d-----w- c:\users\Richi\AppData\Local\Apps
2010-03-30 19:07 . 2010-03-30 19:07 -------- d-----w- c:\users\Richi\AppData\Local\ESET
2010-03-30 18:32 . 2010-03-30 18:47 -------- d-----w- C:\AdobeTemp
2010-03-30 18:08 . 2010-03-30 18:31 -------- d-----w- c:\program files\Lavasoft
2010-03-18 08:42 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-03-17 19:49 . 2010-03-17 19:49 -------- d-----w- c:\users\Richi\AppData\Local\Sam Francke

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-02 12:29 . 2009-12-09 04:23 -------- d-----w- c:\users\Richi\AppData\Roaming\uTorrent
2010-04-01 19:37 . 2009-07-14 08:44 622660 ----a-w- c:\windows\system32\perfh005.dat
2010-04-01 19:37 . 2009-07-14 08:44 118810 ----a-w- c:\windows\system32\perfc005.dat
2010-04-01 06:53 . 2009-12-09 03:18 -------- d-----w- c:\program files\RocketDock
2010-03-31 15:15 . 2009-12-09 15:01 -------- d-----w- c:\program files\QuickTime
2010-03-30 18:45 . 2009-12-08 23:25 -------- d-----w- c:\program files\Common Files\Adobe
2010-03-30 18:38 . 2009-12-09 04:30 -------- d-----w- c:\program files\Common Files\PX Storage Engine
2010-03-30 18:08 . 2010-01-26 09:03 -------- d-----w- c:\program files\Google
2010-02-28 17:46 . 2010-02-28 16:12 -------- d-----w- c:\program files\Ubisoft
2010-02-28 17:46 . 2009-12-08 23:18 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-02-28 16:25 . 2010-02-28 16:25 -------- d-----w- c:\users\Richi\AppData\Roaming\InstallShield
2010-02-28 16:25 . 2010-02-28 16:25 -------- d-----w- c:\programdata\InstallShield
2010-02-28 16:12 . 2009-12-08 23:18 -------- d-----w- c:\program files\Common Files\InstallShield
2010-02-24 09:16 . 2009-12-08 22:52 181632 ------w- c:\windows\system32\MpSigStub.exe
2010-02-23 08:36 . 2010-02-23 08:36 -------- d-----w- c:\programdata\hps
2010-02-16 16:59 . 2010-02-16 16:59 -------- d-----w- c:\users\Richi\AppData\Roaming\Publish Providers
2010-02-16 16:59 . 2010-02-16 16:53 -------- d-----w- c:\users\Richi\AppData\Roaming\Sony
2010-02-16 16:48 . 2010-02-16 16:48 -------- d-----w- c:\programdata\Sony
2010-02-16 15:12 . 2010-02-16 15:12 -------- d-----w- c:\users\Richi\AppData\Roaming\AdobeSupportAdvisor.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
2010-02-16 15:12 . 2010-02-16 15:12 -------- d-----w- c:\program files\AdobeSupportAdvisor
2010-02-16 15:12 . 2010-02-16 15:12 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-02-16 15:11 . 2010-03-30 21:00 38784 ----a-w- c:\users\Richi test\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-02-16 15:11 . 2010-02-16 15:12 38784 ----a-w- c:\users\Richi\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-02-16 15:11 . 2010-02-16 15:12 38784 ----a-w- c:\users\Default\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-02-15 23:29 . 2010-02-15 23:25 -------- d-----w- c:\program files\Project64 1.6
2010-02-15 10:41 . 2009-12-09 00:01 108464 ----a-w- c:\users\Richi\AppData\Local\GDIPFONTCACHEV1.DAT
2010-02-12 11:52 . 2009-12-09 00:25 -------- d-----w- c:\programdata\Microsoft Help
2010-02-07 11:09 . 2010-02-04 10:50 -------- d-----w- c:\program files\SuperDVD Video Editor
2010-02-04 19:45 . 2009-12-09 14:30 -------- d-----w- c:\program files\Microsoft Silverlight
2010-02-04 19:43 . 2010-02-04 11:41 794 ---ha-w- C:\os117275.bin
2010-02-04 11:53 . 2010-02-04 11:53 -------- d-----w- c:\users\Richi\AppData\Roaming\AnvSoft
2010-02-04 11:25 . 2010-02-04 11:25 -------- d-----w- c:\program files\Common Files\Vbox
2010-02-04 00:23 . 2010-02-04 00:23 -------- d-----w- c:\program files\CountDown ShutDown PC
2010-02-02 07:45 . 2010-02-24 05:56 2048 ----a-w- c:\windows\system32\tzres.dll
2010-01-18 23:29 . 2010-02-10 08:26 365568 ----a-w- c:\windows\system32\secproc_isv.dll
2010-01-18 23:29 . 2010-02-10 08:26 85504 ----a-w- c:\windows\system32\secproc_ssp_isv.dll
2010-01-18 23:29 . 2010-02-10 08:26 85504 ----a-w- c:\windows\system32\secproc_ssp.dll
2010-01-18 23:29 . 2010-02-10 08:26 369152 ----a-w- c:\windows\system32\secproc.dll
2010-01-18 23:28 . 2010-02-10 08:26 324608 ----a-w- c:\windows\system32\RMActivate_isv.exe
2010-01-18 23:28 . 2010-02-10 08:26 277504 ----a-w- c:\windows\system32\RMActivate_ssp_isv.exe
2010-01-18 23:28 . 2010-02-10 08:26 320512 ----a-w- c:\windows\system32\RMActivate.exe
2010-01-18 23:28 . 2010-02-10 08:26 280064 ----a-w- c:\windows\system32\RMActivate_ssp.exe
2010-01-08 03:18 . 2010-02-10 08:27 221184 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-01-08 03:17 . 2010-02-10 08:27 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-03-06 13605408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2009-03-06 92704]
"tsnp2std"="c:\windows\system32\tsnp2std.exe" [2005-12-27 122880]
"NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2009-11-16 2054360]
"SMail"="c:\program files\Seznam\Postak\Postak.exe" [2006-05-18 450560]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sr.sys]
@="FSFilter System Recovery"

R2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-03-30 135664]
R3 bpenum;Intel(R) WiMAX Link Enumerator;c:\windows\system32\DRIVERS\bpenum.sys [2009-07-30 56320]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2009-12-08 691696]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [2009-11-16 735960]
S2 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [2009-11-16 38240]
S3 athrusb;TP-LINK Wireless LAN USB device driver;c:\windows\system32\DRIVERS\athrusb.sys [2007-08-17 891392]
S3 ATSwpWDF;AuthenTec TruePrint USB WDF Driver;c:\windows\system32\Drivers\ATSwpWDF.sys [2009-03-18 520704]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-08-19 189440]


[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
Akamai REG_MULTI_SZ Akamai
.
Obsah adresáře 'Naplánované úlohy'

2010-04-03 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-30 18:08]

2010-04-03 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-03-30 18:08]
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyOverride = *.local
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~1\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\users\Richi\AppData\Roaming\Mozilla\Firefox\Profiles\55n1vqer.default\
FF - prefs.js: browser.search.selectedEngine - Centrum.cz Search
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - plugin: c:\program files\Google\Update\1.2.183.23\npGoogleOneClick8.dll
FF - plugin: c:\program files\Win7codecs\rm\browser\plugins\nppl3260.dll
FF - plugin: c:\program files\Win7codecs\rm\browser\plugins\nprpjplug.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.032\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.032"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.abr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.abr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ani\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ani"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.arw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.arw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bay\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bay"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bmp"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.bw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.bw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cr2"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.crw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.crw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cs1\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cs1"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.cur\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.cur"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dcr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dcx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dib\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dib"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djv\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.djv"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.djvu\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.djvu"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dng\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.dng"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.emf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.emf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.eps\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.eps"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.erf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.erf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.fff"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.fpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.fpx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.gif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.gif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.hdr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icl\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.icl"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.icn\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.icn"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.iff"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ilbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ilbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.int\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.int"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.inta\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.inta"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.iw4\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.iw4"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2c\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.j2c"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.j2k\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.j2k"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jbr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jfif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jfif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jp2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jp2"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpc"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpe\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpe"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpeg\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpeg"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpg\UserChoice]
@Denied: (2) (S-1-5-21-3310651923-3931097451-1174285733-1000)
@Denied: (2) (LocalSystem)
"Progid"="PhotoViewer.FileAssoc.Jpeg"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpk\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpk"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.jpx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.jpx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.kdc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.kdc"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.lbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.lbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mef"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mos\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mos"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mrw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.mrw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.nef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.nef"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.orf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.orf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pbr\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pbr"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pcd"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pct\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pct"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pcx\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pcx"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pef\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pef"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pgm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pgm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pic\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pic"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pict\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pict"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pix\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pix"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.png\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.png"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ppm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ppm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psd\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.psd"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.psp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.psp"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspbrush\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pspbrush"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.pspimage\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.pspimage"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.raf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ras\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ras"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.raw\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.raw"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rgb"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rgba\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rgba"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rle\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rle"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rsb\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.rsb"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sgi\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.sgi"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.sr2\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.sr2"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.srf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.srf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tga\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tga"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.thm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.thm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.tiff\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.tiff"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttc\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ttc"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ttf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.ttf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wbmp\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wbmp"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.wmf"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xbm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xbm"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xif\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xif"

[HKEY_USERS\S-1-5-21-3310651923-3931097451-1174285733-1000\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xpm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="ACDSee Pro 2.5.xpm"

[HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Premiere Pro\1.5\DefaultPreset]
@DACL=(02 0000)
@="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Settings\\DV - NTSC\\Standard 48kHz.prpreset"

[HKEY_LOCAL_MACHINE\SOFTWARE\Adobe\Premiere Pro\1.5\Help]
@DACL=(02 0000)
"AdobeMediaEncoder"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_0_0_0.html"
"Contents"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_0_0_0.html"
"ExportToDVD"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_19_2_0.html"
"HowToUse"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\0_0_0_0.html"
"Keyboard"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\1_21_0_0.html"
"Search"="c:\\Program Files\\Adobe\\Premiere Pro 1.5 Tryout\\Help\\search.html"
"Support"="http://www.adobe.com/support/products/premiere.html"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
Celkový čas: 2010-04-03 10:39:50
ComboFix-quarantined-files.txt 2010-04-03 08:39
ComboFix2.txt 2010-04-02 22:07

Před spuštěním: Volných bajtů: 10 351 489 024
Po spuštění: Volných bajtů: 10 296 668 160

- - End Of File - - 26630185322AC586A5ACC701CCA2CD14

[richi4ever]

A po odvirování jsem nic neinstaloval a nic zásadního v PC nedělal....

[motji]

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.


***********


Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir



***********


Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.


***********



Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech


start-spustit - napište chkdsk /f/r
-[enter]
souhlas - restartuje se pc a nechá se disk zkontrolovat


defragmentujte disk

podívejte se do protokolu událostí, zda tam nemáte nějaké události.
V nouzovém režimu to také dělá?

[richi4ever]

Vše jsem udělal....

Události nemám žádné a když spustím nouzový režim tak mi tam nejede zvuk.Takže to tam nemohu odzkoušet....

A pořád to občas tak divně seká no,tak se to trhá jako...

[motji]

Zkuste přeinstalovat ovladače od zvukovky

[richi4ever]

Dobrý den, omlouvám se že píšu po dlouhé době, měl jsem hodně práce.

Tak zvukovku jsem přeinstaloval, ale v nouzovém režimu přesto nemůžu pustit zvuk. Zvuk tam prostě není přístupny. Ve finále zjišťuji, že to možná tou zvukovou nebude, nevím. Protože Notebook funguje v pořádku a až po nějaké době používání cca po 2,3 hod. začne právě sekat. A neseká jenom zvuk ale celkově ten počítač. Myslel jsem že jenom zvukové věci ale když jsem dělal ve wordu a měl puštěnou hudbu tak v momentě kdy to tak seklo tak se sekl i word a pak hned vše jelo a po chvíli zase takové menší seky.

V podstatě je asi nějaký pomalejší ten PC.

A chtěl jsem se zeptat, na disku C mi zůstaly soubory jako MSOCache, Recovery,ProgramDate atd....co s nimi? a na D: a E:zůstal $RECYCLE.BIN.

Děkuji.