Byla bych strašně vděčná za pomoc, vůbec se v tom nevyznám..
Logfile of random's system information tool 1.08 (written by random/random)
Run by esterka at 2010-09-24 13:29:53
Microsoft Windows 7 Home Premium
System drive C: has 429 GB (93%) free of 459 GB
Total RAM: 2813 MB (66% free)
HijackThis download failed
======Scheduled tasks folder======
C:\windows\tasks\HPCeeScheduleForesterka.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{27B4851A-3207-45A2-B947-BE8AFE6163AB}]
McAfee Phishing Filter - c:\progra~1\mcafee\msk\mskapbho.dll [2010-05-03 245272]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{551A852F-39A6-44A7-9C13-AFBEC9185A9D}]
PlusIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll [2009-02-06 249856]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SearchHelper.dll [2009-01-14 92504]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20100923201207.dll [2010-08-24 73288]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-09-10 149968]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B164E929-A1B6-4A06-B104-2CD0E90A88FF}]
McAfee SiteAdvisor BHO - c:\progra~1\mcafee\sitead~2\mcieplg.dll [2010-02-01 251416]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DA986D7D-CCAF-47B2-84FE-BFA1549BEBF9}]
ZeonIEEventHelper Class - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E15A8DC0-8516-42A1-81EA-DC94EC1ACF10}]
Windows Live Toolbar Helper - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - McAfee SiteAdvisor Toolbar - c:\progra~1\mcafee\sitead~2\mcieplg.dll [2010-02-01 251416]
{E3286BF1-E654-42FF-B4A6-5E111731DF6B} - Nuance PDF - C:\Program Files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll [2009-03-26 475136]
{21FA44EF-376D-4D53-9B0F-8A89D3229068} - &Windows Live Toolbar - C:\Program Files\Windows Live\Toolbar\wltcore.dll [2009-02-06 1068904]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files\ICQ6Toolbar\ICQToolBar.dll [2010-06-02 1018616]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QLBController"=C:\Program Files\Hewlett-Packard\HP HotKey Support\QLBController.exe [2010-03-01 256056]
"PDF Complete"=C:\Program Files\PDF Complete\pdfsty.exe [2010-03-06 563736]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-02-26 1713448]
"HPWirelessAssistant"=C:\Program Files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe [2010-04-05 8192]
"McAfee Managed Services Tray"=C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe [2010-02-17 476480]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-04-08 102400]
"SysTrayApp"=C:\Program Files\IDT\WDM\sttray.exe [2010-03-17 495708]
"estar"=C:\System.Sav\Util\HideDOS.EXE [2006-11-29 77824]
"PDFHook"=C:\Program Files\Nuance\PDF Professional 6\pdfpro6hook.exe [2009-11-13 1277952]
"PDF6 Registry Controller"=C:\Program Files\Nuance\PDF Professional 6\RegistryController.exe [2009-11-03 110880]
"Nuance PDF Reader-reminder"=C:\Program Files\Nuance\PDF Reader\Ereg\Ereg.exe [2008-11-03 328992]
"NortonOnlineBackupReminder"=C:\Program Files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe [2009-12-03 3331944]
"Norton Online Backup"=C:\Program Files\Symantec\Norton Online Backup\NOBuClient.exe [2010-06-08 968536]
"mcui_exe"=C:\Program Files\McAfee.com\Agent\mcagent.exe [2010-07-01 1193848]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"=C:\Program Files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe [2010-02-10 1515576]
"ISUSPM"=C:\ProgramData\FLEXnet\Connect\11\ISUSPM.exe [2009-05-05 222496]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2010-02-22 2363392]
"ICQ"=C:\Program Files\ICQ7.2\ICQ.exe [2010-09-16 133432]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McMPFSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mcmscsvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MCODS]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefire]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfefirek.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MpfService]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-09-24 13:29:53 ----D---- C:\rsit
2010-09-24 13:29:53 ----D---- C:\Program Files\trend micro
2010-09-24 12:47:12 ----SHD---- C:\Config.Msi
2010-09-24 11:11:50 ----D---- C:\Users\esterka\AppData\Roaming\ESET
2010-09-24 09:37:02 ----D---- C:\ProgramData\Google
2010-09-24 09:31:54 ----D---- C:\Program Files\Google
2010-09-24 09:31:24 ----D---- C:\ProgramData\Alwil Software
2010-09-24 09:31:24 ----D---- C:\Program Files\Alwil Software
2010-09-23 20:17:33 ----D---- C:\Program Files\SiteAdvisor
2010-09-23 20:11:55 ----A---- C:\windows\system32\drivers\mfenlfk.sys
2010-09-23 20:11:55 ----A---- C:\windows\system32\drivers\mfefirek.sys
2010-09-23 20:11:54 ----A---- C:\windows\system32\drivers\cfwids.sys
2010-09-23 20:11:48 ----D---- C:\Program Files\McAfee.com
2010-09-23 19:31:18 ----A---- C:\windows\system32\MRT.exe
2010-09-16 23:29:04 ----A---- C:\windows\system32\iertutil.dll
2010-09-16 19:49:27 ----D---- C:\Program Files\ICQ6Toolbar
2010-09-16 19:49:24 ----D---- C:\Users\esterka\AppData\Roaming\Mozilla
2010-09-16 19:49:24 ----D---- C:\ProgramData\ICQ
2010-09-16 19:49:14 ----D---- C:\Users\esterka\AppData\Roaming\ICQ
2010-09-16 19:49:02 ----D---- C:\Program Files\ICQ7.2
2010-09-16 15:48:37 ----D---- C:\Users\esterka\AppData\Roaming\QIP
2010-09-16 13:12:27 ----A---- C:\windows\system32\spoolsv.exe
2010-09-15 17:15:48 ----D---- C:\ProgramData\Norton
2010-09-14 01:56:52 ----D---- C:\windows\system32\Wat
2010-09-14 01:49:23 ----A---- C:\windows\system32\PresentationHostProxy.dll
2010-09-14 01:49:23 ----A---- C:\windows\system32\PresentationHost.exe
2010-09-14 01:49:23 ----A---- C:\windows\system32\netfxperf.dll
2010-09-14 01:49:23 ----A---- C:\windows\system32\mscoree.dll
2010-09-14 01:49:23 ----A---- C:\windows\system32\dfshim.dll
2010-09-14 01:35:28 ----A---- C:\windows\system32\browserchoice.exe
2010-09-14 01:27:54 ----D---- C:\Program Files\MSXML 4.0
2010-09-13 16:55:14 ----D---- C:\Program Files\Movie Maker
2010-09-13 16:34:29 ----D---- C:\audiograbber
2010-09-13 15:07:19 ----D---- C:\Users\esterka\AppData\Roaming\skypePM
2010-09-13 13:58:50 ----A---- C:\windows\system32\lsasrv.dll
2010-09-13 13:58:50 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2010-09-13 13:57:51 ----A---- C:\windows\system32\ir32_32.dll
2010-09-13 13:57:51 ----A---- C:\windows\system32\iccvid.dll
2010-09-13 13:56:47 ----A---- C:\windows\system32\atmlib.dll
2010-09-13 13:56:47 ----A---- C:\windows\system32\atmfd.dll
2010-09-13 13:56:46 ----A---- C:\windows\system32\drivers\tcpip.sys
2010-09-13 13:56:25 ----A---- C:\windows\system32\drivers\srvnet.sys
2010-09-13 13:56:25 ----A---- C:\windows\system32\drivers\srv2.sys
2010-09-13 13:56:25 ----A---- C:\windows\system32\drivers\srv.sys
2010-09-13 13:56:22 ----A---- C:\windows\system32\CPFilters.dll
2010-09-13 13:56:21 ----A---- C:\windows\system32\msdri.dll
2010-09-13 13:56:14 ----A---- C:\windows\system32\shell32.dll
2010-09-13 13:56:12 ----A---- C:\windows\system32\drivers\fvevol.sys
2010-09-13 13:36:06 ----A---- C:\windows\system32\rtutils.dll
2010-09-13 13:36:02 ----A---- C:\windows\system32\inetcomm.dll
2010-09-13 13:35:58 ----A---- C:\windows\system32\msxml3.dll
2010-09-13 13:35:31 ----A---- C:\windows\system32\ntdll.dll
2010-09-13 13:35:24 ----A---- C:\windows\system32\asycfilt.dll
2010-09-13 13:14:18 ----A---- C:\windows\system32\vbscript.dll
2010-09-13 13:14:16 ----A---- C:\windows\system32\mshtml.dll
2010-09-13 13:14:15 ----A---- C:\windows\system32\mstime.dll
2010-09-13 13:14:15 ----A---- C:\windows\system32\ieframe.dll
2010-09-13 13:14:14 ----A---- C:\windows\system32\wininet.dll
2010-09-13 13:14:14 ----A---- C:\windows\system32\urlmon.dll
2010-09-13 13:14:14 ----A---- C:\windows\system32\msfeedsbs.dll
2010-09-13 13:14:14 ----A---- C:\windows\system32\ieui.dll
2010-09-13 13:14:14 ----A---- C:\windows\system32\iepeers.dll
2010-09-13 13:14:14 ----A---- C:\windows\system32\iedkcs32.dll
2010-09-13 13:14:13 ----A---- C:\windows\system32\msfeedssync.exe
2010-09-13 13:14:13 ----A---- C:\windows\system32\jsproxy.dll
2010-09-13 13:14:03 ----A---- C:\windows\system32\ntoskrnl.exe
2010-09-13 13:14:03 ----A---- C:\windows\system32\ntkrnlpa.exe
2010-09-13 13:13:58 ----A---- C:\windows\system32\tzres.dll
2010-09-13 13:13:50 ----A---- C:\windows\system32\schannel.dll
2010-09-13 13:10:57 ----A---- C:\windows\system32\drivers\mrxsmb10.sys
2010-09-13 13:10:56 ----A---- C:\windows\system32\drivers\mrxsmb20.sys
2010-09-13 13:10:56 ----A---- C:\windows\system32\drivers\mrxsmb.sys
2010-09-13 13:10:55 ----A---- C:\windows\system32\win32k.sys
2010-09-13 12:15:02 ----A---- C:\windows\system32\wintrust.dll
2010-09-13 12:14:54 ----A---- C:\windows\system32\cabview.dll
2010-09-13 12:13:20 ----D---- C:\Users\esterka\AppData\Roaming\Macromedia
2010-09-11 13:50:22 ----D---- C:\Users\esterka\AppData\Roaming\Skype
2010-09-11 13:27:51 ----D---- C:\Users\esterka\AppData\Roaming\CorelHomeOffice
2010-09-11 13:27:25 ----RSH---- C:\ProgramData\7CE0980472.sys
2010-09-11 13:27:24 ----D---- C:\Users\esterka\AppData\Roaming\Corel
2010-09-11 13:27:18 ----ASH---- C:\ProgramData\KGyGaAvL.sys
2010-09-11 13:19:14 ----D---- C:\Users\esterka\AppData\Roaming\Adobe
2010-09-10 06:16:19 ----ASH---- C:\pagefile.sys
2010-09-10 06:16:17 ----ASH---- C:\hiberfil.sys
2010-09-09 22:49:12 ----D---- C:\Users\esterka\AppData\Roaming\ATI
2010-09-09 22:49:12 ----D---- C:\ProgramData\ATI
2010-09-09 22:48:12 ----D---- C:\Users\esterka\AppData\Roaming\McAfee
2010-09-09 22:48:10 ----D---- C:\Users\esterka\AppData\Roaming\FLEXnet
2010-09-09 22:47:56 ----D---- C:\Users\esterka\AppData\Roaming\Identities
2010-09-09 22:27:57 ----D---- C:\Users\esterka\AppData\Roaming\Hewlett-Packard
2010-09-09 22:27:46 ----D---- C:\ProgramData\Symantec
2010-09-09 22:27:46 ----D---- C:\Program Files\Symantec
2010-09-09 22:26:33 ----D---- C:\Users\esterka\AppData\Roaming\hpqLog
2010-09-09 22:26:08 ----D---- C:\Program Files\Windows Live
2010-09-09 22:25:57 ----D---- C:\Program Files\Windows Live SkyDrive
2010-09-09 22:25:42 ----D---- C:\Program Files\Microsoft Sync Framework
2010-09-09 22:25:34 ----D---- C:\Program Files\Microsoft
2010-09-09 22:25:04 ----D---- C:\Program Files\Common Files\Windows Live
2010-09-09 22:24:37 ----D---- C:\ProgramData\WinZip
2010-09-09 22:24:36 ----D---- C:\Program Files\WinZip
2010-09-09 22:24:14 ----D---- C:\ProgramData\Downloaded Installations
2010-09-09 22:23:56 ----D---- C:\ProgramData\ScanSoft
2010-09-09 22:23:40 ----D---- C:\Users\esterka\AppData\Roaming\Zeon
2010-09-09 22:23:23 ----D---- C:\ProgramData\Nuance
2010-09-09 22:23:02 ----D---- C:\ProgramData\zeon
2010-09-09 22:23:00 ----D---- C:\Program Files\Common Files\ScanSoft Shared
2010-09-09 22:22:56 ----D---- C:\ProgramData\FLEXnet
2010-09-09 22:22:56 ----D---- C:\Program Files\Nuance
2010-09-09 22:21:20 ----SD---- C:\Users\esterka\AppData\Roaming\Microsoft
======List of files/folders modified in the last 1 months======
2010-09-24 13:29:56 ----D---- C:\windows\Temp
2010-09-24 13:29:53 ----RD---- C:\Program Files
2010-09-24 13:24:10 ----D---- C:\windows\system32\config
2010-09-24 12:50:52 ----SHD---- C:\windows\Installer
2010-09-24 12:49:38 ----HD---- C:\ProgramData
2010-09-24 12:49:35 ----D---- C:\windows\system32\DriverStore
2010-09-24 12:49:35 ----D---- C:\windows\system32\catroot
2010-09-24 12:49:35 ----D---- C:\windows\inf
2010-09-24 12:47:33 ----D---- C:\windows\system32\drivers
2010-09-24 12:13:54 ----D---- C:\windows\system32\wdi
2010-09-24 11:31:49 ----D---- C:\windows\System32
2010-09-24 11:31:49 ----A---- C:\windows\system32\PerfStringBackup.INI
2010-09-24 11:08:56 ----SHD---- C:\System Volume Information
2010-09-24 11:00:34 ----D---- C:\Windows
2010-09-24 11:00:30 ----D---- C:\windows\system32\catroot2
2010-09-24 10:59:52 ----D---- C:\windows\system32\Tasks
2010-09-24 09:37:02 ----D---- C:\windows\Tasks
2010-09-23 23:17:54 ----D---- C:\ProgramData\McAfee
2010-09-23 22:49:25 ----RSD---- C:\windows\assembly
2010-09-23 22:49:25 ----D---- C:\windows\Microsoft.NET
2010-09-23 22:21:51 ----D---- C:\Program Files\McAfee
2010-09-23 20:14:37 ----D---- C:\windows\Prefetch
2010-09-23 20:13:40 ----D---- C:\Program Files\Common Files\McAfee
2010-09-23 19:31:19 ----D---- C:\windows\debug
2010-09-23 19:30:49 ----D---- C:\windows\system32\cs-CZ
2010-09-23 19:28:34 ----D---- C:\windows\system32\en-US
2010-09-23 19:28:30 ----D---- C:\Program Files\Microsoft.NET
2010-09-23 19:20:53 ----D---- C:\ProgramData\PDFC
2010-09-17 09:43:10 ----D---- C:\ProgramData\Hewlett-Packard
2010-09-17 09:39:09 ----D---- C:\windows\winsxs
2010-09-16 19:49:24 ----HD---- C:\Program Files\InstallShield Installation Information
2010-09-15 17:13:48 ----D---- C:\windows\rescache
2010-09-14 01:56:57 ----D---- C:\windows\AppPatch
2010-09-14 01:56:57 ----D---- C:\Program Files\Windows Mail
2010-09-14 01:56:56 ----D---- C:\windows\system32\migration
2010-09-14 01:56:56 ----D---- C:\windows\ehome
2010-09-14 01:56:56 ----D---- C:\Program Files\Internet Explorer
2010-09-14 01:56:51 ----D---- C:\Program Files\Windows Sidebar
2010-09-14 01:56:51 ----D---- C:\Program Files\Windows Photo Viewer
2010-09-14 01:56:51 ----D---- C:\Program Files\Windows Media Player
2010-09-14 01:56:51 ----D---- C:\Program Files\Windows Journal
2010-09-14 01:56:50 ----D---- C:\windows\servicing
2010-09-14 01:56:50 ----D---- C:\windows\PolicyDefinitions
2010-09-14 01:56:50 ----D---- C:\windows\en-US
2010-09-14 01:56:50 ----D---- C:\Program Files\Windows Defender
2010-09-14 01:56:50 ----D---- C:\Program Files\Common Files\System
2010-09-14 01:56:49 ----D---- C:\windows\system32\winrm
2010-09-14 01:56:49 ----D---- C:\windows\system32\sysprep
2010-09-14 01:56:49 ----D---- C:\windows\system32\slmgr
2010-09-14 01:56:49 ----D---- C:\windows\system32\oobe
2010-09-14 01:56:49 ----D---- C:\windows\system32\migwiz
2010-09-14 01:56:49 ----D---- C:\windows\system32\en
2010-09-14 01:56:49 ----D---- C:\windows\system32\drivers\en-US
2010-09-14 01:56:49 ----D---- C:\windows\system32\Boot
2010-09-14 01:56:46 ----D---- C:\windows\system32\sl-SI
2010-09-14 01:56:43 ----D---- C:\windows\system32\WCN
2010-09-14 01:56:43 ----D---- C:\windows\system32\Dism
2010-09-14 01:56:41 ----D---- C:\windows\system32\wbem
2010-09-14 01:56:41 ----D---- C:\windows\system32\Printing_Admin_Scripts
2010-09-14 01:56:32 ----D---- C:\windows\system32\sk-SK
2010-09-14 01:56:24 ----D---- C:\windows\system32\hr-HR
2010-09-14 01:56:14 ----D---- C:\Program Files\DVD Maker
2010-09-14 01:56:10 ----D---- C:\windows\Speech
2010-09-14 01:25:25 ----D---- C:\windows\SoftwareDistribution
2010-09-13 13:40:40 ----D---- C:\windows\Logs
2010-09-11 13:38:51 ----SD---- C:\ProgramData\Microsoft
2010-09-11 13:24:49 ----D---- C:\windows\system32\LogFiles
2010-09-11 13:10:37 ----D---- C:\windows\system32\drivers\UMDF
2010-09-10 06:16:51 ----D---- C:\windows\Panther
2010-09-09 22:47:54 ----SHD---- C:\$Recycle.Bin
2010-09-09 22:27:55 ----RD---- C:\Program Files\Online Services
2010-09-09 22:27:23 ----D---- C:\swsetup
2010-09-09 22:27:23 ----AHD---- C:\SYSTEM.SAV
2010-09-09 22:26:02 ----D---- C:\Program Files\Common Files\microsoft shared
2010-09-09 22:25:04 ----D---- C:\Program Files\Common Files
2010-09-09 22:23:41 ----HD---- C:\windows\system32\GroupPolicy
2010-09-09 22:21:20 ----RD---- C:\Users
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 AtiPcie;AMD PCI Express (3GIO) Filter; C:\windows\system32\DRIVERS\AtiPcie.sys [2009-08-23 14392]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2010-08-24 386712]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2010-08-24 164808]
R0 PxHelp20;PxHelp20; C:\windows\System32\Drivers\PxHelp20.sys [2009-07-09 45200]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R1 mfenlfk;McAfee NDIS Light Filter; C:\windows\system32\DRIVERS\mfenlfk.sys [2010-08-24 64304]
R1 MPFP;MPFP; C:\windows\System32\Drivers\Mpfp.sys [2009-04-09 130424]
R1 vwififlt;Virtual WiFi Filter Driver; C:\windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R3 AgereSoftModem;Agere Systems Soft Modem; C:\windows\system32\DRIVERS\AGRSM.sys [2009-11-02 1163328]
R3 amdkmdag;amdkmdag; C:\windows\system32\DRIVERS\atikmdag.sys [2010-04-08 5429760]
R3 amdkmdap;amdkmdap; C:\windows\system32\DRIVERS\atikmpag.sys [2010-04-08 157184]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\windows\system32\drivers\AtiHdmi.sys [2010-03-09 107024]
R3 cfwids;McAfee Inc. cfwids; C:\windows\system32\drivers\cfwids.sys [2010-08-24 55840]
R3 HpqKbFiltr;HpqKbFilter Driver; C:\windows\system32\DRIVERS\HpqKbFiltr.sys [2010-02-16 21560]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2010-08-24 95600]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2010-08-24 152992]
R3 mfebopk;McAfee Inc. mfebopk; C:\windows\system32\drivers\mfebopk.sys [2010-08-24 52104]
R3 mfefirek;McAfee Inc. mfefirek; C:\windows\system32\drivers\mfefirek.sys [2010-08-24 312904]
R3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys [2010-08-24 84264]
R3 RTL8167;Realtek 8167 NT Driver; C:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-13 257568]
R3 rtsuvc;HP Webcam [2 MP Fixed]; C:\windows\system32\DRIVERS\rtsuvc.sys [2010-05-21 78848]
R3 STHDA;IDT High Definition Audio CODEC; C:\windows\system32\DRIVERS\stwrt.sys [2010-03-17 423424]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2010-02-26 242992]
S2 Parvdm;Parvdm; C:\windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 aic78xx;aic78xx; C:\windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BCM43XX;Broadcom 802.11 Network Adapter Driver; C:\windows\system32\DRIVERS\bcmwl6.sys [2010-08-24 2709056]
S3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2010-01-07 86056]
S3 btwavdt;Bluetooth AVDT; C:\windows\system32\DRIVERS\btwavdt.sys [2010-01-07 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2010-01-07 18472]
S3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2009-06-10 4756480]
S3 mfeavfk01;McAfee Inc.; C:\windows\system32\drivers\mfeavfk01.sys []
S3 pciide;pciide; C:\windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S3 viaagp;VIA AGP Bus Filter; C:\windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AESTFilters;Andrea ST Filters Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7b6e808b01435efc\aestsrv.exe [2009-03-03 81920]
R2 AgereModemAudio;Agere Modem Call Progress Audio; C:\Program Files\LSI SoftModem\agrsmsvc.exe [2009-11-02 14336]
R2 AMD External Events Utility;AMD External Events Utility; C:\windows\system32\atiesrxx.exe [2010-04-08 172032]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-12-29 595232]
R2 HP Health Check Service;HP Health Check Service; C:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe [2010-03-24 121344]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service; C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 hpHotkeyMonitor;HP Hotkey Monitor; C:\Program Files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 ICQ Service;ICQ Service; C:\Program Files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2010-02-22 73728]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McMPFSvc;McAfee Služba programu Personal Firewall; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 mcmscsvc;McAfee Services; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McNaiAnn;McAfee VirusScan Announcer; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McNASvc;McAfee Network Agent; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McProxy;McAfee Proxy Service; C:\Program Files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McShield;McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2010-08-24 171168]
R2 mfefire;McAfee Firewall Core Service; C:\Program Files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-08-24 188136]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\Program Files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-08-24 141792]
R2 MpfService;McAfee Personal Firewall Service; C:\Program Files\McAfee\MPF\MPFSrv.exe [2009-05-09 893112]
R2 MSK80Service;McAfee Anti-Spam Service; C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service; C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2010-02-17 282824]
R2 NOBU;Norton Online Backup; C:\Program Files\Symantec\Norton Online Backup\NOBuAgent.exe [2010-06-08 2057560]
R2 pdfcDispatcher;PDF Document Manager; C:\Program Files\PDF Complete\pdfsvc.exe [2010-03-06 635416]
R2 PDFProFiltSrv;PDFProFiltSrv; C:\Program Files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2007-07-24 185632]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2009-01-14 226656]
R2 STacSV;Audio Service; C:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7b6e808b01435efc\STacSV.exe [2010-03-17 229458]
R3 hpqwmiex;hpqwmiex; C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe [2010-02-08 230968]
R3 McODS;McAfee Scanner; C:\Program Files\McAfee\VirusScan\mcods.exe [2010-04-15 364216]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service; C:\Program Files\McAfee\SiteAdvisor Enterprise\McSACore.exe [2009-08-07 222528]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 RoxMediaDB10;RoxMediaDB10; c:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
S3 stllssvr;stllssvr; c:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-10-16 74392]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\windows\system32\Wat\WatAdminSvc.exe [2010-09-14 1343400]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
McAfee mi hlásí vir
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: McAfee mi hlásí vir
Dejte log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
msjesterka
- Návštěvník
- Příspěvky: 5
- Registrován: 24 zář 2010 12:33
Re: McAfee mi hlásí vir
ComboFix stáhnu a dám otevřít, naběhne takový zelený proužek a pak se to vypne, když dám znova spustit, tak zas proběhne tohle..
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: McAfee mi hlásí vir
Zkuste to v nouz. režimu.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
msjesterka
- Návštěvník
- Příspěvky: 5
- Registrován: 24 zář 2010 12:33
Re: McAfee mi hlásí vir
ComboFix 10-09-23.01 - esterka 24.09.2010 19:53:07.1.2 - x86 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.2813.1947 [GMT 2:00]
Spuštěný z: c:\users\esterka\Desktop\ComboFix.exe
FW: Total Protection *enabled* {259FBE35-46BE-45F3-8F2F-4DB67BBBC614}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Thumbs.db
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-24 do 2010-09-24 )))))))))))))))))))))))))))))))
.
2010-09-24 17:56 . 2010-09-24 17:57 -------- d-----w- c:\users\esterka\AppData\Local\temp
2010-09-24 17:56 . 2010-09-24 17:56 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-24 15:56 . 2010-09-24 15:56 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2010-09-24 14:49 . 2010-09-24 14:49 -------- d-----w- c:\users\esterka\AppData\Local\Diagnostics
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- C:\rsit
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- c:\program files\trend micro
2010-09-24 09:11 . 2010-09-24 09:11 -------- d-----w- c:\users\esterka\AppData\Local\ESET
2010-09-24 07:31 . 2010-09-24 07:37 -------- d-----w- c:\program files\Google
2010-09-24 07:31 . 2010-09-24 07:34 -------- d-----w- c:\users\esterka\AppData\Local\Google
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\programdata\Alwil Software
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\program files\Alwil Software
2010-09-23 18:17 . 2010-09-23 18:17 -------- d-----w- c:\program files\SiteAdvisor
2010-09-23 18:11 . 2010-08-24 12:57 64304 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
2010-09-23 18:11 . 2010-08-24 12:57 312904 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2010-09-23 18:11 . 2010-08-24 12:57 55840 ----a-w- c:\windows\system32\drivers\cfwids.sys
2010-09-23 18:11 . 2010-09-23 18:11 -------- d-----w- c:\program files\McAfee.com
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\program files\ICQ6Toolbar
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\programdata\ICQ
2010-09-16 17:49 . 2010-09-23 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\ICQ
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\users\esterka\AppData\Local\AOL
2010-09-16 17:49 . 2010-09-16 17:51 -------- d-----w- c:\program files\ICQ7.2
2010-09-16 13:48 . 2010-09-16 13:48 -------- d-----w- c:\users\esterka\AppData\Roaming\QIP
2010-09-16 13:42 . 2010-09-10 12:11 48080 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
2010-09-16 13:40 . 2010-09-10 12:11 149968 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
2010-09-16 11:12 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-15 15:15 . 2010-09-15 15:15 -------- d-----w- c:\programdata\Norton
2010-09-13 23:56 . 2010-09-13 23:56 -------- d-----w- c:\windows\system32\Wat
2010-09-13 23:49 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-13 23:49 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-13 23:49 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-13 23:49 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-13 23:49 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-13 23:35 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-09-13 23:27 . 2010-09-13 23:27 -------- d-----w- c:\program files\MSXML 4.0
2010-09-13 14:54 . 2010-09-13 14:54 -------- d-----w- c:\users\esterka\AppData\Local\WinZip
2010-09-13 14:46 . 2010-09-13 14:46 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2010-09-13 14:46 . 2010-09-13 14:46 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-09-13 14:34 . 2010-09-13 17:30 -------- d-----w- C:\audiograbber
2010-09-13 13:07 . 2010-09-13 13:07 -------- d-----w- c:\users\esterka\AppData\Roaming\skypePM
2010-09-13 11:58 . 2009-12-11 07:44 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2010-09-13 11:58 . 2009-12-11 07:38 1037312 ----a-w- c:\windows\system32\lsasrv.dll
2010-09-13 11:57 . 2010-07-29 06:30 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-09-13 11:57 . 2010-07-29 06:30 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-09-13 11:56 . 2010-05-27 07:24 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-09-13 11:56 . 2010-05-27 03:49 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-09-13 11:56 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-09-13 11:56 . 2010-06-22 02:47 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-13 11:56 . 2010-06-22 02:47 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-13 11:56 . 2010-06-22 02:47 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-09-13 11:56 . 2010-05-09 09:14 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-09-13 11:56 . 2010-05-09 09:14 417792 ----a-w- c:\windows\system32\msdri.dll
2010-09-13 11:56 . 2009-09-26 05:58 194488 ----a-w- c:\windows\system32\drivers\fvevol.sys
2010-09-13 11:36 . 2010-06-19 06:23 37376 ----a-w- c:\windows\system32\rtutils.dll
2010-09-13 11:36 . 2010-03-04 07:33 740864 ----a-w- c:\windows\system32\inetcomm.dll
2010-09-13 11:35 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\system32\msxml3.dll
2010-09-13 11:35 . 2010-03-24 06:37 1286456 ----a-w- c:\windows\system32\ntdll.dll
2010-09-13 11:35 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-13 11:13 . 2010-04-23 07:13 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-13 11:13 . 2010-06-16 05:48 224256 ----a-w- c:\windows\system32\schannel.dll
2010-09-13 11:10 . 2010-02-27 07:32 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-09-13 11:10 . 2010-02-27 07:32 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2010-09-13 11:10 . 2010-02-27 07:32 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-09-13 11:10 . 2010-06-19 04:07 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-09-13 10:15 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-13 10:14 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-11 13:10 . 2010-09-11 13:10 -------- d-----w- c:\users\esterka\AppData\Local\Roxio
2010-09-11 11:50 . 2010-09-13 13:09 -------- d-----w- c:\users\esterka\AppData\Roaming\Skype
2010-09-11 11:27 . 2010-09-18 08:37 -------- d-----w- c:\users\esterka\AppData\Roaming\CorelHomeOffice
2010-09-11 11:27 . 2010-09-18 08:36 88 --sh--r- c:\programdata\7CE0980472.sys
2010-09-11 11:27 . 2010-09-11 11:27 -------- d-----w- c:\users\esterka\AppData\Roaming\Corel
2010-09-11 11:27 . 2010-09-18 08:36 2672 --sha-w- c:\programdata\KGyGaAvL.sys
2010-09-09 20:50 . 2010-09-11 13:01 -------- d-----w- c:\users\esterka\AppData\Local\Microsoft Games
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Roaming\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Local\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\programdata\ATI
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\Broadcom
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\McAfee
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\FLEXnet
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\PDFC
2010-09-09 20:47 . 2010-09-11 11:12 -------- d-----w- c:\users\esterka\AppData\Local\Hewlett-Packard
2010-09-09 20:27 . 2010-09-13 10:19 -------- d-----w- c:\users\esterka\AppData\Roaming\Hewlett-Packard
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\programdata\Symantec
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\program files\Symantec
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\hpqLog
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\program files\Windows Live
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft Sync Framework
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Common Files\Windows Live
2010-09-09 20:24 . 2010-09-09 20:24 124752 ----a-w- c:\users\esterka\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\WinZip
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Downloaded Installations
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\ScanSoft
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\users\esterka\AppData\Roaming\Zeon
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Nuance
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\programdata\zeon
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\program files\Common Files\ScanSoft Shared
2010-09-09 20:22 . 2010-09-09 20:24 -------- d-----w- c:\program files\Nuance
2010-09-09 20:22 . 2010-09-09 20:22 -------- d-----w- c:\programdata\FLEXnet
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-24 09:31 . 2010-06-01 00:31 631292 ----a-w- c:\windows\system32\perfh005.dat
2010-09-24 09:31 . 2010-06-01 00:31 121914 ----a-w- c:\windows\system32\perfc005.dat
2010-09-23 21:17 . 2010-06-01 00:48 -------- d-----w- c:\programdata\McAfee
2010-09-23 20:21 . 2010-06-01 00:49 -------- d-----w- c:\program files\McAfee
2010-09-23 18:13 . 2010-06-01 00:49 -------- d-----w- c:\program files\Common Files\McAfee
2010-09-23 17:28 . 2010-06-01 00:37 -------- d-----w- c:\program files\Microsoft.NET
2010-09-23 17:20 . 2010-06-01 00:25 -------- d-----w- c:\programdata\PDFC
2010-09-17 07:43 . 2010-06-01 00:07 -------- d-----w- c:\programdata\Hewlett-Packard
2010-09-16 17:49 . 2010-06-01 00:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-13 23:56 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-13 23:56 . 2010-04-25 20:24 -------- d-----w- c:\program files\Windows Journal
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Photo Viewer
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Defender
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\DVD Maker
2010-09-13 13:07 . 2010-09-13 13:07 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-09-11 11:10 . 2010-09-11 11:10 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-09 20:21 . 2010-09-09 20:21 0 --sha-r- c:\windows\system32\drivers\103C_HP_bNB_625_Y5336AN_0U_QCNU0340WZN_EPO620845-B2A_4A_I1475_SHP_V72.0E_68DVA F.02_T100719_WU3-0_L405_M2813_J500_7AMD_8F63_92.30_#100531_N10EC8136;14E44727_(WS780EA#ARL)_XMOBILE_CN10_Z_2_G10029712.MRK
2010-08-24 12:57 . 2010-06-01 00:49 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2010-08-24 12:57 . 2010-06-01 00:49 164808 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2010-08-24 12:57 . 2010-06-01 00:49 95600 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2010-08-24 12:57 . 2010-06-01 00:49 84264 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2010-08-24 12:57 . 2010-06-01 00:49 52104 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2010-08-24 12:57 . 2010-06-01 00:49 386712 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2010-08-24 12:57 . 2010-06-01 00:49 152992 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2010-08-24 09:07 . 2010-05-31 23:57 -------- d-----w- c:\program files\Hewlett-Packard
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\program files\Common Files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----r- c:\program files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\programdata\Skype
2010-08-24 09:06 . 2010-06-01 00:47 -------- d-----w- c:\programdata\Uninstall
2010-08-24 09:05 . 2010-06-01 01:01 -------- d-----w- c:\program files\Realtek
2010-08-24 09:05 . 2010-08-24 09:05 -------- d-----w- c:\program files\LSI SoftModem
2010-08-24 09:04 . 2010-08-24 09:03 -------- d-----w- c:\program files\IDT
2010-08-24 09:02 . 2010-08-24 09:02 -------- d-----w- c:\program files\Broadcom
2010-08-24 09:02 . 2010-08-24 09:02 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2010-08-24 09:02 . 2010-08-24 09:02 91448 ----a-w- c:\windows\system32\bcmwlcoi.dll
2010-08-24 09:02 . 2010-08-24 09:02 3866624 ----a-w- c:\windows\system32\bcmihvsrv.dll
2010-08-24 09:02 . 2010-08-24 09:02 3555328 ----a-w- c:\windows\system32\bcmihvui.dll
2010-08-24 09:02 . 2010-08-24 09:02 2709056 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS
2010-08-24 09:01 . 2010-08-24 09:01 -------- d-----w- c:\program files\WIDCOMM
2010-08-24 09:00 . 2010-08-24 09:00 -------- d-----w- c:\program files\DIFX
2010-08-24 08:58 . 2010-08-24 08:58 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 08:57 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI Technologies
2010-08-24 08:55 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI
2010-07-16 11:51 . 2010-07-16 11:51 14904 ----a-w- c:\windows\Help\OEM\Scripts\LaunchHPForums.exe
2010-06-30 06:25 . 2010-09-13 11:14 978432 ----a-w- c:\windows\system32\wininet.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1515576]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-02-22 2363392]
"ICQ"="c:\program files\ICQ7.2\ICQ.exe" [2010-09-16 133432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-03-01 256056]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2010-03-06 563736]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-26 1713448]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"McAfee Managed Services Tray"="c:\program files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe" [2010-02-17 476480]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-08 102400]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2010-03-17 495708]
"estar"="c:\system.sav\Util\HideDOS.EXE" [2006-11-28 77824]
"PDFHook"="c:\program files\Nuance\PDF Professional 6\pdfpro6hook.exe" [2009-11-13 1277952]
"PDF6 Registry Controller"="c:\program files\Nuance\PDF Professional 6\RegistryController.exe" [2009-11-03 110880]
"Nuance PDF Reader-reminder"="c:\program files\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"NortonOnlineBackupReminder"="c:\program files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" [2009-12-03 3331944]
"Norton Online Backup"="c:\program files\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-08 968536]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-06-30 1193848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 795936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-08-24 64304]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7b6e808b01435efc\aestsrv.exe [2009-03-03 81920]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-08 172032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service;c:\program files\McAfee\SiteAdvisor Enterprise\McSACore.exe [2009-08-07 222528]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McMPFSvc;McAfee Služba programu Personal Firewall;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-08-24 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-08-24 141792]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\program files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2010-02-17 282824]
R2 NOBU;Norton Online Backup;c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2010-03-06 635416]
R2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-04-08 5429760]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-04-08 157184]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-08-24 55840]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-08-24 312904]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-08-24 84264]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
R3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-05-21 00:06 78848]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-13 1343400]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-08-24 164808]
--- Ostatní služby/ovladače v paměti ---
*NewlyCreated* - PXHELP20
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-02-22 18:38 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-23 c:\windows\Tasks\HPCeeScheduleForesterka.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.bing.com
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Append the content of the link to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Open with Nuance PDF Converter 6.0 - c:\program files\Nuance\PDF Professional 6\cnvres_eng.dll /100
IE: Open with PDF Professional 6 - c:\program files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: siteadvisor.com\www
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-RunOnce-<NO NAME> - (no file)
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-McAfee Managed Firewall - c:\program files\McAfee\Managed VirusScan\Agent\myinx
AddRemove-{B60DCA15-56A3-4D2D-8747-22CF7D7B588B} - c:\program files\InstallShield Installation Information\{B60DCA15-56A3-4D2D-8747-22CF7D7B588B}\setup.exe
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-24 19:58:26
ComboFix-quarantined-files.txt 2010-09-24 17:58
Před spuštěním: Volných bajtů: 448 536 682 496
Po spuštění: Volných bajtů: 449 161 568 256
- - End Of File - - 2D96022A7A5DCA505D1A988270D71942
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.2813.1947 [GMT 2:00]
Spuštěný z: c:\users\esterka\Desktop\ComboFix.exe
FW: Total Protection *enabled* {259FBE35-46BE-45F3-8F2F-4DB67BBBC614}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\Thumbs.db
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-24 do 2010-09-24 )))))))))))))))))))))))))))))))
.
2010-09-24 17:56 . 2010-09-24 17:57 -------- d-----w- c:\users\esterka\AppData\Local\temp
2010-09-24 17:56 . 2010-09-24 17:56 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-24 15:56 . 2010-09-24 15:56 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2010-09-24 14:49 . 2010-09-24 14:49 -------- d-----w- c:\users\esterka\AppData\Local\Diagnostics
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- C:\rsit
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- c:\program files\trend micro
2010-09-24 09:11 . 2010-09-24 09:11 -------- d-----w- c:\users\esterka\AppData\Local\ESET
2010-09-24 07:31 . 2010-09-24 07:37 -------- d-----w- c:\program files\Google
2010-09-24 07:31 . 2010-09-24 07:34 -------- d-----w- c:\users\esterka\AppData\Local\Google
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\programdata\Alwil Software
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\program files\Alwil Software
2010-09-23 18:17 . 2010-09-23 18:17 -------- d-----w- c:\program files\SiteAdvisor
2010-09-23 18:11 . 2010-08-24 12:57 64304 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
2010-09-23 18:11 . 2010-08-24 12:57 312904 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2010-09-23 18:11 . 2010-08-24 12:57 55840 ----a-w- c:\windows\system32\drivers\cfwids.sys
2010-09-23 18:11 . 2010-09-23 18:11 -------- d-----w- c:\program files\McAfee.com
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\program files\ICQ6Toolbar
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\programdata\ICQ
2010-09-16 17:49 . 2010-09-23 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\ICQ
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\users\esterka\AppData\Local\AOL
2010-09-16 17:49 . 2010-09-16 17:51 -------- d-----w- c:\program files\ICQ7.2
2010-09-16 13:48 . 2010-09-16 13:48 -------- d-----w- c:\users\esterka\AppData\Roaming\QIP
2010-09-16 13:42 . 2010-09-10 12:11 48080 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
2010-09-16 13:40 . 2010-09-10 12:11 149968 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
2010-09-16 11:12 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-15 15:15 . 2010-09-15 15:15 -------- d-----w- c:\programdata\Norton
2010-09-13 23:56 . 2010-09-13 23:56 -------- d-----w- c:\windows\system32\Wat
2010-09-13 23:49 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-13 23:49 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-13 23:49 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-13 23:49 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-13 23:49 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-13 23:35 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-09-13 23:27 . 2010-09-13 23:27 -------- d-----w- c:\program files\MSXML 4.0
2010-09-13 14:54 . 2010-09-13 14:54 -------- d-----w- c:\users\esterka\AppData\Local\WinZip
2010-09-13 14:46 . 2010-09-13 14:46 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2010-09-13 14:46 . 2010-09-13 14:46 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-09-13 14:34 . 2010-09-13 17:30 -------- d-----w- C:\audiograbber
2010-09-13 13:07 . 2010-09-13 13:07 -------- d-----w- c:\users\esterka\AppData\Roaming\skypePM
2010-09-13 11:58 . 2009-12-11 07:44 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2010-09-13 11:58 . 2009-12-11 07:38 1037312 ----a-w- c:\windows\system32\lsasrv.dll
2010-09-13 11:57 . 2010-07-29 06:30 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-09-13 11:57 . 2010-07-29 06:30 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-09-13 11:56 . 2010-05-27 07:24 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-09-13 11:56 . 2010-05-27 03:49 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-09-13 11:56 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-09-13 11:56 . 2010-06-22 02:47 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-13 11:56 . 2010-06-22 02:47 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-13 11:56 . 2010-06-22 02:47 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-09-13 11:56 . 2010-05-09 09:14 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-09-13 11:56 . 2010-05-09 09:14 417792 ----a-w- c:\windows\system32\msdri.dll
2010-09-13 11:56 . 2009-09-26 05:58 194488 ----a-w- c:\windows\system32\drivers\fvevol.sys
2010-09-13 11:36 . 2010-06-19 06:23 37376 ----a-w- c:\windows\system32\rtutils.dll
2010-09-13 11:36 . 2010-03-04 07:33 740864 ----a-w- c:\windows\system32\inetcomm.dll
2010-09-13 11:35 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\system32\msxml3.dll
2010-09-13 11:35 . 2010-03-24 06:37 1286456 ----a-w- c:\windows\system32\ntdll.dll
2010-09-13 11:35 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-13 11:13 . 2010-04-23 07:13 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-13 11:13 . 2010-06-16 05:48 224256 ----a-w- c:\windows\system32\schannel.dll
2010-09-13 11:10 . 2010-02-27 07:32 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-09-13 11:10 . 2010-02-27 07:32 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2010-09-13 11:10 . 2010-02-27 07:32 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-09-13 11:10 . 2010-06-19 04:07 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-09-13 10:15 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-13 10:14 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-11 13:10 . 2010-09-11 13:10 -------- d-----w- c:\users\esterka\AppData\Local\Roxio
2010-09-11 11:50 . 2010-09-13 13:09 -------- d-----w- c:\users\esterka\AppData\Roaming\Skype
2010-09-11 11:27 . 2010-09-18 08:37 -------- d-----w- c:\users\esterka\AppData\Roaming\CorelHomeOffice
2010-09-11 11:27 . 2010-09-18 08:36 88 --sh--r- c:\programdata\7CE0980472.sys
2010-09-11 11:27 . 2010-09-11 11:27 -------- d-----w- c:\users\esterka\AppData\Roaming\Corel
2010-09-11 11:27 . 2010-09-18 08:36 2672 --sha-w- c:\programdata\KGyGaAvL.sys
2010-09-09 20:50 . 2010-09-11 13:01 -------- d-----w- c:\users\esterka\AppData\Local\Microsoft Games
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Roaming\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Local\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\programdata\ATI
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\Broadcom
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\McAfee
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\FLEXnet
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\PDFC
2010-09-09 20:47 . 2010-09-11 11:12 -------- d-----w- c:\users\esterka\AppData\Local\Hewlett-Packard
2010-09-09 20:27 . 2010-09-13 10:19 -------- d-----w- c:\users\esterka\AppData\Roaming\Hewlett-Packard
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\programdata\Symantec
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\program files\Symantec
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\hpqLog
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\program files\Windows Live
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft Sync Framework
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Common Files\Windows Live
2010-09-09 20:24 . 2010-09-09 20:24 124752 ----a-w- c:\users\esterka\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\WinZip
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Downloaded Installations
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\ScanSoft
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\users\esterka\AppData\Roaming\Zeon
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Nuance
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\programdata\zeon
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\program files\Common Files\ScanSoft Shared
2010-09-09 20:22 . 2010-09-09 20:24 -------- d-----w- c:\program files\Nuance
2010-09-09 20:22 . 2010-09-09 20:22 -------- d-----w- c:\programdata\FLEXnet
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-24 09:31 . 2010-06-01 00:31 631292 ----a-w- c:\windows\system32\perfh005.dat
2010-09-24 09:31 . 2010-06-01 00:31 121914 ----a-w- c:\windows\system32\perfc005.dat
2010-09-23 21:17 . 2010-06-01 00:48 -------- d-----w- c:\programdata\McAfee
2010-09-23 20:21 . 2010-06-01 00:49 -------- d-----w- c:\program files\McAfee
2010-09-23 18:13 . 2010-06-01 00:49 -------- d-----w- c:\program files\Common Files\McAfee
2010-09-23 17:28 . 2010-06-01 00:37 -------- d-----w- c:\program files\Microsoft.NET
2010-09-23 17:20 . 2010-06-01 00:25 -------- d-----w- c:\programdata\PDFC
2010-09-17 07:43 . 2010-06-01 00:07 -------- d-----w- c:\programdata\Hewlett-Packard
2010-09-16 17:49 . 2010-06-01 00:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-13 23:56 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-13 23:56 . 2010-04-25 20:24 -------- d-----w- c:\program files\Windows Journal
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Photo Viewer
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Defender
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\DVD Maker
2010-09-13 13:07 . 2010-09-13 13:07 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-09-11 11:10 . 2010-09-11 11:10 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-09 20:21 . 2010-09-09 20:21 0 --sha-r- c:\windows\system32\drivers\103C_HP_bNB_625_Y5336AN_0U_QCNU0340WZN_EPO620845-B2A_4A_I1475_SHP_V72.0E_68DVA F.02_T100719_WU3-0_L405_M2813_J500_7AMD_8F63_92.30_#100531_N10EC8136;14E44727_(WS780EA#ARL)_XMOBILE_CN10_Z_2_G10029712.MRK
2010-08-24 12:57 . 2010-06-01 00:49 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2010-08-24 12:57 . 2010-06-01 00:49 164808 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2010-08-24 12:57 . 2010-06-01 00:49 95600 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2010-08-24 12:57 . 2010-06-01 00:49 84264 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2010-08-24 12:57 . 2010-06-01 00:49 52104 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2010-08-24 12:57 . 2010-06-01 00:49 386712 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2010-08-24 12:57 . 2010-06-01 00:49 152992 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2010-08-24 09:07 . 2010-05-31 23:57 -------- d-----w- c:\program files\Hewlett-Packard
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\program files\Common Files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----r- c:\program files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\programdata\Skype
2010-08-24 09:06 . 2010-06-01 00:47 -------- d-----w- c:\programdata\Uninstall
2010-08-24 09:05 . 2010-06-01 01:01 -------- d-----w- c:\program files\Realtek
2010-08-24 09:05 . 2010-08-24 09:05 -------- d-----w- c:\program files\LSI SoftModem
2010-08-24 09:04 . 2010-08-24 09:03 -------- d-----w- c:\program files\IDT
2010-08-24 09:02 . 2010-08-24 09:02 -------- d-----w- c:\program files\Broadcom
2010-08-24 09:02 . 2010-08-24 09:02 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2010-08-24 09:02 . 2010-08-24 09:02 91448 ----a-w- c:\windows\system32\bcmwlcoi.dll
2010-08-24 09:02 . 2010-08-24 09:02 3866624 ----a-w- c:\windows\system32\bcmihvsrv.dll
2010-08-24 09:02 . 2010-08-24 09:02 3555328 ----a-w- c:\windows\system32\bcmihvui.dll
2010-08-24 09:02 . 2010-08-24 09:02 2709056 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS
2010-08-24 09:01 . 2010-08-24 09:01 -------- d-----w- c:\program files\WIDCOMM
2010-08-24 09:00 . 2010-08-24 09:00 -------- d-----w- c:\program files\DIFX
2010-08-24 08:58 . 2010-08-24 08:58 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 08:57 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI Technologies
2010-08-24 08:55 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI
2010-07-16 11:51 . 2010-07-16 11:51 14904 ----a-w- c:\windows\Help\OEM\Scripts\LaunchHPForums.exe
2010-06-30 06:25 . 2010-09-13 11:14 978432 ----a-w- c:\windows\system32\wininet.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1515576]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-02-22 2363392]
"ICQ"="c:\program files\ICQ7.2\ICQ.exe" [2010-09-16 133432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-03-01 256056]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2010-03-06 563736]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-26 1713448]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"McAfee Managed Services Tray"="c:\program files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe" [2010-02-17 476480]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-08 102400]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2010-03-17 495708]
"estar"="c:\system.sav\Util\HideDOS.EXE" [2006-11-28 77824]
"PDFHook"="c:\program files\Nuance\PDF Professional 6\pdfpro6hook.exe" [2009-11-13 1277952]
"PDF6 Registry Controller"="c:\program files\Nuance\PDF Professional 6\RegistryController.exe" [2009-11-03 110880]
"Nuance PDF Reader-reminder"="c:\program files\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"NortonOnlineBackupReminder"="c:\program files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" [2009-12-03 3331944]
"Norton Online Backup"="c:\program files\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-08 968536]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-06-30 1193848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 795936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-08-24 64304]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7b6e808b01435efc\aestsrv.exe [2009-03-03 81920]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-08 172032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service;c:\program files\McAfee\SiteAdvisor Enterprise\McSACore.exe [2009-08-07 222528]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McMPFSvc;McAfee Služba programu Personal Firewall;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-08-24 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-08-24 141792]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\program files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2010-02-17 282824]
R2 NOBU;Norton Online Backup;c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2010-03-06 635416]
R2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-04-08 5429760]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-04-08 157184]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-08-24 55840]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-08-24 312904]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-08-24 84264]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
R3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-05-21 00:06 78848]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-13 1343400]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-08-24 164808]
--- Ostatní služby/ovladače v paměti ---
*NewlyCreated* - PXHELP20
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-02-22 18:38 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-23 c:\windows\Tasks\HPCeeScheduleForesterka.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.bing.com
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Append the content of the link to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Open with Nuance PDF Converter 6.0 - c:\program files\Nuance\PDF Professional 6\cnvres_eng.dll /100
IE: Open with PDF Professional 6 - c:\program files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: siteadvisor.com\www
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-RunOnce-<NO NAME> - (no file)
AddRemove-LSI Soft Modem - c:\windows\agrsmdel
AddRemove-McAfee Managed Firewall - c:\program files\McAfee\Managed VirusScan\Agent\myinx
AddRemove-{B60DCA15-56A3-4D2D-8747-22CF7D7B588B} - c:\program files\InstallShield Installation Information\{B60DCA15-56A3-4D2D-8747-22CF7D7B588B}\setup.exe
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-24 19:58:26
ComboFix-quarantined-files.txt 2010-09-24 17:58
Před spuštěním: Volných bajtů: 448 536 682 496
Po spuštění: Volných bajtů: 449 161 568 256
- - End Of File - - 2D96022A7A5DCA505D1A988270D71942
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: McAfee mi hlásí vir
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pustte. CF se spustí a vykoná příkaz ze skriptu.Collect::
c:\programdata\7CE0980472.sys
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
msjesterka
- Návštěvník
- Příspěvky: 5
- Registrován: 24 zář 2010 12:33
Re: McAfee mi hlásí vir
Nejsem si jistá, jestli jsem to udělala dobře..
ComboFix 10-09-23.01 - esterka 24.09.2010 21:19:53.3.2 - x86 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.2813.1948 [GMT 2:00]
Spuštěný z: c:\users\esterka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\esterka\Desktop\CFScript.txt
FW: Total Protection *enabled* {259FBE35-46BE-45F3-8F2F-4DB67BBBC614}
* Vytvořen nový Bod Obnovení
file zipped: c:\programdata\7CE0980472.sys
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\programdata\7CE0980472.sys
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-24 do 2010-09-24 )))))))))))))))))))))))))))))))
.
2010-09-24 19:23 . 2010-09-24 19:23 -------- d-----w- c:\users\esterka\AppData\Local\temp
2010-09-24 19:23 . 2010-09-24 19:23 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-09-24 19:23 . 2010-09-24 19:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-24 18:01 . 2010-09-24 18:01 -------- d-----w- c:\users\esterka\AppData\Local\ElevatedDiagnostics
2010-09-24 15:56 . 2010-09-24 15:56 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2010-09-24 14:49 . 2010-09-24 14:49 -------- d-----w- c:\users\esterka\AppData\Local\Diagnostics
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- C:\rsit
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- c:\program files\trend micro
2010-09-24 09:11 . 2010-09-24 09:11 -------- d-----w- c:\users\esterka\AppData\Local\ESET
2010-09-24 07:31 . 2010-09-24 07:37 -------- d-----w- c:\program files\Google
2010-09-24 07:31 . 2010-09-24 07:34 -------- d-----w- c:\users\esterka\AppData\Local\Google
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\programdata\Alwil Software
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\program files\Alwil Software
2010-09-23 18:17 . 2010-09-23 18:17 -------- d-----w- c:\program files\SiteAdvisor
2010-09-23 18:11 . 2010-08-24 12:57 64304 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
2010-09-23 18:11 . 2010-08-24 12:57 312904 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2010-09-23 18:11 . 2010-08-24 12:57 55840 ----a-w- c:\windows\system32\drivers\cfwids.sys
2010-09-23 18:11 . 2010-09-23 18:11 -------- d-----w- c:\program files\McAfee.com
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\program files\ICQ6Toolbar
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\programdata\ICQ
2010-09-16 17:49 . 2010-09-23 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\ICQ
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\users\esterka\AppData\Local\AOL
2010-09-16 17:49 . 2010-09-16 17:51 -------- d-----w- c:\program files\ICQ7.2
2010-09-16 13:48 . 2010-09-16 13:48 -------- d-----w- c:\users\esterka\AppData\Roaming\QIP
2010-09-16 13:42 . 2010-09-10 12:11 48080 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
2010-09-16 13:40 . 2010-09-10 12:11 149968 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
2010-09-16 11:12 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-15 15:15 . 2010-09-15 15:15 -------- d-----w- c:\programdata\Norton
2010-09-13 23:56 . 2010-09-13 23:56 -------- d-----w- c:\windows\system32\Wat
2010-09-13 23:49 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-13 23:49 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-13 23:49 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-13 23:49 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-13 23:49 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-13 23:35 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-09-13 23:27 . 2010-09-13 23:27 -------- d-----w- c:\program files\MSXML 4.0
2010-09-13 14:54 . 2010-09-13 14:54 -------- d-----w- c:\users\esterka\AppData\Local\WinZip
2010-09-13 14:46 . 2010-09-13 14:46 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2010-09-13 14:46 . 2010-09-13 14:46 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-09-13 14:34 . 2010-09-13 17:30 -------- d-----w- C:\audiograbber
2010-09-13 13:07 . 2010-09-13 13:07 -------- d-----w- c:\users\esterka\AppData\Roaming\skypePM
2010-09-13 11:58 . 2009-12-11 07:44 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2010-09-13 11:58 . 2009-12-11 07:38 1037312 ----a-w- c:\windows\system32\lsasrv.dll
2010-09-13 11:57 . 2010-07-29 06:30 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-09-13 11:57 . 2010-07-29 06:30 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-09-13 11:56 . 2010-05-27 07:24 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-09-13 11:56 . 2010-05-27 03:49 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-09-13 11:56 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-09-13 11:56 . 2010-06-22 02:47 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-13 11:56 . 2010-06-22 02:47 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-13 11:56 . 2010-06-22 02:47 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-09-13 11:56 . 2010-05-09 09:14 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-09-13 11:56 . 2010-05-09 09:14 417792 ----a-w- c:\windows\system32\msdri.dll
2010-09-13 11:56 . 2009-09-26 05:58 194488 ----a-w- c:\windows\system32\drivers\fvevol.sys
2010-09-13 11:36 . 2010-06-19 06:23 37376 ----a-w- c:\windows\system32\rtutils.dll
2010-09-13 11:36 . 2010-03-04 07:33 740864 ----a-w- c:\windows\system32\inetcomm.dll
2010-09-13 11:35 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\system32\msxml3.dll
2010-09-13 11:35 . 2010-03-24 06:37 1286456 ----a-w- c:\windows\system32\ntdll.dll
2010-09-13 11:35 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-13 11:13 . 2010-04-23 07:13 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-13 11:13 . 2010-06-16 05:48 224256 ----a-w- c:\windows\system32\schannel.dll
2010-09-13 11:10 . 2010-02-27 07:32 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-09-13 11:10 . 2010-02-27 07:32 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2010-09-13 11:10 . 2010-02-27 07:32 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-09-13 11:10 . 2010-06-19 04:07 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-09-13 10:15 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-13 10:14 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-11 13:10 . 2010-09-11 13:10 -------- d-----w- c:\users\esterka\AppData\Local\Roxio
2010-09-11 11:50 . 2010-09-13 13:09 -------- d-----w- c:\users\esterka\AppData\Roaming\Skype
2010-09-11 11:27 . 2010-09-18 08:37 -------- d-----w- c:\users\esterka\AppData\Roaming\CorelHomeOffice
2010-09-11 11:27 . 2010-09-11 11:27 -------- d-----w- c:\users\esterka\AppData\Roaming\Corel
2010-09-11 11:27 . 2010-09-18 08:36 2672 --sha-w- c:\programdata\KGyGaAvL.sys
2010-09-09 20:50 . 2010-09-11 13:01 -------- d-----w- c:\users\esterka\AppData\Local\Microsoft Games
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Roaming\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Local\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\programdata\ATI
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\Broadcom
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\McAfee
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\FLEXnet
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\PDFC
2010-09-09 20:47 . 2010-09-11 11:12 -------- d-----w- c:\users\esterka\AppData\Local\Hewlett-Packard
2010-09-09 20:27 . 2010-09-13 10:19 -------- d-----w- c:\users\esterka\AppData\Roaming\Hewlett-Packard
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\programdata\Symantec
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\program files\Symantec
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\hpqLog
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\program files\Windows Live
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft Sync Framework
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Common Files\Windows Live
2010-09-09 20:24 . 2010-09-09 20:24 124752 ----a-w- c:\users\esterka\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\WinZip
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Downloaded Installations
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\ScanSoft
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\users\esterka\AppData\Roaming\Zeon
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Nuance
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\programdata\zeon
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\program files\Common Files\ScanSoft Shared
2010-09-09 20:22 . 2010-09-09 20:24 -------- d-----w- c:\program files\Nuance
2010-09-09 20:22 . 2010-09-09 20:22 -------- d-----w- c:\programdata\FLEXnet
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-24 19:04 . 2010-06-01 00:31 631054 ----a-w- c:\windows\system32\perfh005.dat
2010-09-24 19:04 . 2010-06-01 00:31 121708 ----a-w- c:\windows\system32\perfc005.dat
2010-09-23 21:17 . 2010-06-01 00:48 -------- d-----w- c:\programdata\McAfee
2010-09-23 20:21 . 2010-06-01 00:49 -------- d-----w- c:\program files\McAfee
2010-09-23 18:13 . 2010-06-01 00:49 -------- d-----w- c:\program files\Common Files\McAfee
2010-09-23 17:28 . 2010-06-01 00:37 -------- d-----w- c:\program files\Microsoft.NET
2010-09-23 17:20 . 2010-06-01 00:25 -------- d-----w- c:\programdata\PDFC
2010-09-17 07:43 . 2010-06-01 00:07 -------- d-----w- c:\programdata\Hewlett-Packard
2010-09-16 17:49 . 2010-06-01 00:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-13 23:56 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-13 23:56 . 2010-04-25 20:24 -------- d-----w- c:\program files\Windows Journal
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Photo Viewer
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Defender
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\DVD Maker
2010-09-13 13:07 . 2010-09-13 13:07 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-09-11 11:10 . 2010-09-11 11:10 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-09 20:21 . 2010-09-09 20:21 0 --sha-r- c:\windows\system32\drivers\103C_HP_bNB_625_Y5336AN_0U_QCNU0340WZN_EPO620845-B2A_4A_I1475_SHP_V72.0E_68DVA F.02_T100719_WU3-0_L405_M2813_J500_7AMD_8F63_92.30_#100531_N10EC8136;14E44727_(WS780EA#ARL)_XMOBILE_CN10_Z_2_G10029712.MRK
2010-08-24 12:57 . 2010-06-01 00:49 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2010-08-24 12:57 . 2010-06-01 00:49 164808 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2010-08-24 12:57 . 2010-06-01 00:49 95600 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2010-08-24 12:57 . 2010-06-01 00:49 84264 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2010-08-24 12:57 . 2010-06-01 00:49 52104 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2010-08-24 12:57 . 2010-06-01 00:49 386712 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2010-08-24 12:57 . 2010-06-01 00:49 152992 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2010-08-24 09:07 . 2010-05-31 23:57 -------- d-----w- c:\program files\Hewlett-Packard
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\program files\Common Files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----r- c:\program files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\programdata\Skype
2010-08-24 09:06 . 2010-06-01 00:47 -------- d-----w- c:\programdata\Uninstall
2010-08-24 09:05 . 2010-06-01 01:01 -------- d-----w- c:\program files\Realtek
2010-08-24 09:05 . 2010-08-24 09:05 -------- d-----w- c:\program files\LSI SoftModem
2010-08-24 09:04 . 2010-08-24 09:03 -------- d-----w- c:\program files\IDT
2010-08-24 09:02 . 2010-08-24 09:02 -------- d-----w- c:\program files\Broadcom
2010-08-24 09:02 . 2010-08-24 09:02 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2010-08-24 09:02 . 2010-08-24 09:02 91448 ----a-w- c:\windows\system32\bcmwlcoi.dll
2010-08-24 09:02 . 2010-08-24 09:02 3866624 ----a-w- c:\windows\system32\bcmihvsrv.dll
2010-08-24 09:02 . 2010-08-24 09:02 3555328 ----a-w- c:\windows\system32\bcmihvui.dll
2010-08-24 09:02 . 2010-08-24 09:02 2709056 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS
2010-08-24 09:01 . 2010-08-24 09:01 -------- d-----w- c:\program files\WIDCOMM
2010-08-24 09:00 . 2010-08-24 09:00 -------- d-----w- c:\program files\DIFX
2010-08-24 08:58 . 2010-08-24 08:58 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 08:57 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI Technologies
2010-08-24 08:55 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI
2010-07-16 11:51 . 2010-07-16 11:51 14904 ----a-w- c:\windows\Help\OEM\Scripts\LaunchHPForums.exe
2010-06-30 06:25 . 2010-09-13 11:14 978432 ----a-w- c:\windows\system32\wininet.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
((((((((((((((((((((((((((((( SnapShot@2010-09-24_17.57.03 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-06-01 00:01 . 2010-09-24 18:04 37320 c:\windows\System32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 04:55 . 2010-09-24 18:04 41794 c:\windows\System32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-09-10 04:16 . 2010-09-24 18:59 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-10 04:16 . 2010-09-24 17:28 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-10 04:16 . 2010-09-24 17:28 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-10 04:16 . 2010-09-24 18:59 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:41 . 2010-09-24 17:28 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:41 . 2010-09-24 18:59 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-13 12:04 . 2010-09-24 17:01 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-13 12:04 . 2010-09-24 18:10 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat
- 2010-09-13 12:04 . 2010-09-24 17:01 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\index.dat
+ 2010-09-13 12:04 . 2010-09-24 18:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\index.dat
- 2010-09-13 12:04 . 2010-09-24 17:01 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Cookies\index.dat
+ 2010-09-13 12:04 . 2010-09-24 18:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Cookies\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:10 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-09-11 11:10 . 2010-09-24 18:04 6838 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1445417499-181565323-564678345-1001_UserData.bin
+ 2010-09-24 18:59 . 2010-09-24 19:18 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-09-24 17:26 . 2010-09-24 17:51 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-09-24 17:26 . 2010-09-24 17:51 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-09-24 18:59 . 2010-09-24 19:18 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-09-16 19:58 . 2010-09-24 18:53 174486 c:\windows\System32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:05 . 2010-09-24 19:04 615810 c:\windows\System32\perfh009.dat
+ 2009-07-14 02:05 . 2010-09-24 19:04 106190 c:\windows\System32\perfc009.dat
- 2009-07-14 04:47 . 2010-09-24 17:25 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 04:47 . 2010-09-24 18:57 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2010-09-09 21:04 . 2010-09-24 17:25 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1445417499-181565323-564678345-1001-8192.dat
+ 2010-09-09 21:04 . 2010-09-24 18:58 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1445417499-181565323-564678345-1001-8192.dat
+ 2009-07-14 02:03 . 2010-09-24 18:12 6815744 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT
- 2009-07-14 02:03 . 2010-09-24 17:39 6815744 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1515576]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-02-22 2363392]
"ICQ"="c:\program files\ICQ7.2\ICQ.exe" [2010-09-16 133432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-03-01 256056]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2010-03-06 563736]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-26 1713448]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"McAfee Managed Services Tray"="c:\program files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe" [2010-02-17 476480]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-08 102400]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2010-03-17 495708]
"estar"="c:\system.sav\Util\HideDOS.EXE" [2006-11-28 77824]
"PDFHook"="c:\program files\Nuance\PDF Professional 6\pdfpro6hook.exe" [2009-11-13 1277952]
"PDF6 Registry Controller"="c:\program files\Nuance\PDF Professional 6\RegistryController.exe" [2009-11-03 110880]
"Nuance PDF Reader-reminder"="c:\program files\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"NortonOnlineBackupReminder"="c:\program files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" [2009-12-03 3331944]
"Norton Online Backup"="c:\program files\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-08 968536]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-06-30 1193848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 795936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-08-24 64304]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7b6e808b01435efc\aestsrv.exe [2009-03-03 81920]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-08 172032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service;c:\program files\McAfee\SiteAdvisor Enterprise\McSACore.exe [2009-08-07 222528]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McMPFSvc;McAfee Služba programu Personal Firewall;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-08-24 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-08-24 141792]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\program files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2010-02-17 282824]
R2 NOBU;Norton Online Backup;c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2010-03-06 635416]
R2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-04-08 5429760]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-04-08 157184]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-08-24 55840]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-08-24 312904]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-08-24 84264]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
R3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-05-21 00:06 78848]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-13 1343400]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-08-24 164808]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-02-22 18:38 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-23 c:\windows\Tasks\HPCeeScheduleForesterka.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.bing.com
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Append the content of the link to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Open with Nuance PDF Converter 6.0 - c:\program files\Nuance\PDF Professional 6\cnvres_eng.dll /100
IE: Open with PDF Professional 6 - c:\program files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: siteadvisor.com\www
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-RunOnce-<NO NAME> - (no file)
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-24 21:25:15
ComboFix-quarantined-files.txt 2010-09-24 19:25
ComboFix2.txt 2010-09-24 19:08
ComboFix3.txt 2010-09-24 17:58
Před spuštěním: Volných bajtů: 449 342 320 640
Po spuštění: Volných bajtů: 449 174 630 400
- - End Of File - - 5393B8F05E807CD4CAB7A817EDF27932
ComboFix 10-09-23.01 - esterka 24.09.2010 21:19:53.3.2 - x86 MINIMAL
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.2813.1948 [GMT 2:00]
Spuštěný z: c:\users\esterka\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\esterka\Desktop\CFScript.txt
FW: Total Protection *enabled* {259FBE35-46BE-45F3-8F2F-4DB67BBBC614}
* Vytvořen nový Bod Obnovení
file zipped: c:\programdata\7CE0980472.sys
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\programdata\7CE0980472.sys
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-24 do 2010-09-24 )))))))))))))))))))))))))))))))
.
2010-09-24 19:23 . 2010-09-24 19:23 -------- d-----w- c:\users\esterka\AppData\Local\temp
2010-09-24 19:23 . 2010-09-24 19:23 -------- d-----w- c:\users\Public\AppData\Local\temp
2010-09-24 19:23 . 2010-09-24 19:23 -------- d-----w- c:\users\Default\AppData\Local\temp
2010-09-24 18:01 . 2010-09-24 18:01 -------- d-----w- c:\users\esterka\AppData\Local\ElevatedDiagnostics
2010-09-24 15:56 . 2010-09-24 15:56 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\Markup.dll
2010-09-24 14:49 . 2010-09-24 14:49 -------- d-----w- c:\users\esterka\AppData\Local\Diagnostics
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- C:\rsit
2010-09-24 11:29 . 2010-09-24 11:29 -------- d-----w- c:\program files\trend micro
2010-09-24 09:11 . 2010-09-24 09:11 -------- d-----w- c:\users\esterka\AppData\Local\ESET
2010-09-24 07:31 . 2010-09-24 07:37 -------- d-----w- c:\program files\Google
2010-09-24 07:31 . 2010-09-24 07:34 -------- d-----w- c:\users\esterka\AppData\Local\Google
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\programdata\Alwil Software
2010-09-24 07:31 . 2010-09-24 07:31 -------- d-----w- c:\program files\Alwil Software
2010-09-23 18:17 . 2010-09-23 18:17 -------- d-----w- c:\program files\SiteAdvisor
2010-09-23 18:11 . 2010-08-24 12:57 64304 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
2010-09-23 18:11 . 2010-08-24 12:57 312904 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2010-09-23 18:11 . 2010-08-24 12:57 55840 ----a-w- c:\windows\system32\drivers\cfwids.sys
2010-09-23 18:11 . 2010-09-23 18:11 -------- d-----w- c:\program files\McAfee.com
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\program files\ICQ6Toolbar
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\programdata\ICQ
2010-09-16 17:49 . 2010-09-23 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\ICQ
2010-09-16 17:49 . 2010-09-16 17:49 -------- d-----w- c:\users\esterka\AppData\Local\AOL
2010-09-16 17:49 . 2010-09-16 17:51 -------- d-----w- c:\program files\ICQ7.2
2010-09-16 13:48 . 2010-09-16 13:48 -------- d-----w- c:\users\esterka\AppData\Roaming\QIP
2010-09-16 13:42 . 2010-09-10 12:11 48080 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
2010-09-16 13:40 . 2010-09-10 12:11 149968 ----a-w- c:\users\esterka\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
2010-09-16 11:12 . 2010-08-21 05:32 316928 ----a-w- c:\windows\system32\spoolsv.exe
2010-09-15 15:15 . 2010-09-15 15:15 -------- d-----w- c:\programdata\Norton
2010-09-13 23:56 . 2010-09-13 23:56 -------- d-----w- c:\windows\system32\Wat
2010-09-13 23:49 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-13 23:49 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-13 23:49 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-13 23:49 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-13 23:49 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-13 23:35 . 2010-02-11 07:10 293376 ----a-w- c:\windows\system32\browserchoice.exe
2010-09-13 23:27 . 2010-09-13 23:27 -------- d-----w- c:\program files\MSXML 4.0
2010-09-13 14:54 . 2010-09-13 14:54 -------- d-----w- c:\users\esterka\AppData\Local\WinZip
2010-09-13 14:46 . 2010-09-13 14:46 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2010-09-13 14:46 . 2010-09-13 14:46 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2010-09-13 14:34 . 2010-09-13 17:30 -------- d-----w- C:\audiograbber
2010-09-13 13:07 . 2010-09-13 13:07 -------- d-----w- c:\users\esterka\AppData\Roaming\skypePM
2010-09-13 11:58 . 2009-12-11 07:44 133720 ----a-w- c:\windows\system32\drivers\ksecpkg.sys
2010-09-13 11:58 . 2009-12-11 07:38 1037312 ----a-w- c:\windows\system32\lsasrv.dll
2010-09-13 11:57 . 2010-07-29 06:30 197632 ----a-w- c:\windows\system32\ir32_32.dll
2010-09-13 11:57 . 2010-07-29 06:30 82944 ----a-w- c:\windows\system32\iccvid.dll
2010-09-13 11:56 . 2010-05-27 07:24 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-09-13 11:56 . 2010-05-27 03:49 293888 ----a-w- c:\windows\system32\atmfd.dll
2010-09-13 11:56 . 2010-06-14 06:12 1286016 ----a-w- c:\windows\system32\drivers\tcpip.sys
2010-09-13 11:56 . 2010-06-22 02:47 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-09-13 11:56 . 2010-06-22 02:47 307200 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-09-13 11:56 . 2010-06-22 02:47 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-09-13 11:56 . 2010-05-09 09:14 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-09-13 11:56 . 2010-05-09 09:14 417792 ----a-w- c:\windows\system32\msdri.dll
2010-09-13 11:56 . 2009-09-26 05:58 194488 ----a-w- c:\windows\system32\drivers\fvevol.sys
2010-09-13 11:36 . 2010-06-19 06:23 37376 ----a-w- c:\windows\system32\rtutils.dll
2010-09-13 11:36 . 2010-03-04 07:33 740864 ----a-w- c:\windows\system32\inetcomm.dll
2010-09-13 11:35 . 2010-06-08 06:02 1233920 ----a-w- c:\windows\system32\msxml3.dll
2010-09-13 11:35 . 2010-03-24 06:37 1286456 ----a-w- c:\windows\system32\ntdll.dll
2010-09-13 11:35 . 2010-03-05 07:42 67584 ----a-w- c:\windows\system32\asycfilt.dll
2010-09-13 11:13 . 2010-04-23 07:13 2048 ----a-w- c:\windows\system32\tzres.dll
2010-09-13 11:13 . 2010-06-16 05:48 224256 ----a-w- c:\windows\system32\schannel.dll
2010-09-13 11:10 . 2010-02-27 07:32 221696 ----a-w- c:\windows\system32\drivers\mrxsmb10.sys
2010-09-13 11:10 . 2010-02-27 07:32 95744 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2010-09-13 11:10 . 2010-02-27 07:32 123392 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2010-09-13 11:10 . 2010-06-19 04:07 2326016 ----a-w- c:\windows\system32\win32k.sys
2010-09-13 10:15 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-13 10:14 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-11 13:10 . 2010-09-11 13:10 -------- d-----w- c:\users\esterka\AppData\Local\Roxio
2010-09-11 11:50 . 2010-09-13 13:09 -------- d-----w- c:\users\esterka\AppData\Roaming\Skype
2010-09-11 11:27 . 2010-09-18 08:37 -------- d-----w- c:\users\esterka\AppData\Roaming\CorelHomeOffice
2010-09-11 11:27 . 2010-09-11 11:27 -------- d-----w- c:\users\esterka\AppData\Roaming\Corel
2010-09-11 11:27 . 2010-09-18 08:36 2672 --sha-w- c:\programdata\KGyGaAvL.sys
2010-09-09 20:50 . 2010-09-11 13:01 -------- d-----w- c:\users\esterka\AppData\Local\Microsoft Games
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Roaming\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\users\esterka\AppData\Local\ATI
2010-09-09 20:49 . 2010-09-09 20:49 -------- d-----w- c:\programdata\ATI
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\Broadcom
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\McAfee
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Roaming\FLEXnet
2010-09-09 20:48 . 2010-09-09 20:48 -------- d-----w- c:\users\esterka\AppData\Local\PDFC
2010-09-09 20:47 . 2010-09-11 11:12 -------- d-----w- c:\users\esterka\AppData\Local\Hewlett-Packard
2010-09-09 20:27 . 2010-09-13 10:19 -------- d-----w- c:\users\esterka\AppData\Roaming\Hewlett-Packard
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\programdata\Symantec
2010-09-09 20:27 . 2010-09-09 20:27 -------- d-----w- c:\program files\Symantec
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\users\esterka\AppData\Roaming\hpqLog
2010-09-09 20:26 . 2010-09-09 20:26 -------- d-----w- c:\program files\Windows Live
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Windows Live SkyDrive
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft Sync Framework
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Microsoft
2010-09-09 20:25 . 2010-09-09 20:25 -------- d-----w- c:\program files\Common Files\Windows Live
2010-09-09 20:24 . 2010-09-09 20:24 124752 ----a-w- c:\users\esterka\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\WinZip
2010-09-09 20:24 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Downloaded Installations
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\ScanSoft
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\users\esterka\AppData\Roaming\Zeon
2010-09-09 20:23 . 2010-09-09 20:24 -------- d-----w- c:\programdata\Nuance
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\programdata\zeon
2010-09-09 20:23 . 2010-09-09 20:23 -------- d-----w- c:\program files\Common Files\ScanSoft Shared
2010-09-09 20:22 . 2010-09-09 20:24 -------- d-----w- c:\program files\Nuance
2010-09-09 20:22 . 2010-09-09 20:22 -------- d-----w- c:\programdata\FLEXnet
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-24 19:04 . 2010-06-01 00:31 631054 ----a-w- c:\windows\system32\perfh005.dat
2010-09-24 19:04 . 2010-06-01 00:31 121708 ----a-w- c:\windows\system32\perfc005.dat
2010-09-23 21:17 . 2010-06-01 00:48 -------- d-----w- c:\programdata\McAfee
2010-09-23 20:21 . 2010-06-01 00:49 -------- d-----w- c:\program files\McAfee
2010-09-23 18:13 . 2010-06-01 00:49 -------- d-----w- c:\program files\Common Files\McAfee
2010-09-23 17:28 . 2010-06-01 00:37 -------- d-----w- c:\program files\Microsoft.NET
2010-09-23 17:20 . 2010-06-01 00:25 -------- d-----w- c:\programdata\PDFC
2010-09-17 07:43 . 2010-06-01 00:07 -------- d-----w- c:\programdata\Hewlett-Packard
2010-09-16 17:49 . 2010-06-01 00:17 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-13 23:56 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-13 23:56 . 2010-04-25 20:24 -------- d-----w- c:\program files\Windows Journal
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Sidebar
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Photo Viewer
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\Windows Defender
2010-09-13 23:56 . 2009-07-14 04:52 -------- d-----w- c:\program files\DVD Maker
2010-09-13 13:07 . 2010-09-13 13:07 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-09-11 11:10 . 2010-09-11 11:10 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-09 20:21 . 2010-09-09 20:21 0 --sha-r- c:\windows\system32\drivers\103C_HP_bNB_625_Y5336AN_0U_QCNU0340WZN_EPO620845-B2A_4A_I1475_SHP_V72.0E_68DVA F.02_T100719_WU3-0_L405_M2813_J500_7AMD_8F63_92.30_#100531_N10EC8136;14E44727_(WS780EA#ARL)_XMOBILE_CN10_Z_2_G10029712.MRK
2010-08-24 12:57 . 2010-06-01 00:49 9344 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2010-08-24 12:57 . 2010-06-01 00:49 164808 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2010-08-24 12:57 . 2010-06-01 00:49 95600 ----a-w- c:\windows\system32\drivers\mfeapfk.sys
2010-08-24 12:57 . 2010-06-01 00:49 84264 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2010-08-24 12:57 . 2010-06-01 00:49 52104 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2010-08-24 12:57 . 2010-06-01 00:49 386712 ----a-w- c:\windows\system32\drivers\mfehidk.sys
2010-08-24 12:57 . 2010-06-01 00:49 152992 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2010-08-24 09:07 . 2010-05-31 23:57 -------- d-----w- c:\program files\Hewlett-Packard
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\program files\Common Files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----r- c:\program files\Skype
2010-08-24 09:06 . 2010-08-24 09:06 -------- d-----w- c:\programdata\Skype
2010-08-24 09:06 . 2010-06-01 00:47 -------- d-----w- c:\programdata\Uninstall
2010-08-24 09:05 . 2010-06-01 01:01 -------- d-----w- c:\program files\Realtek
2010-08-24 09:05 . 2010-08-24 09:05 -------- d-----w- c:\program files\LSI SoftModem
2010-08-24 09:04 . 2010-08-24 09:03 -------- d-----w- c:\program files\IDT
2010-08-24 09:02 . 2010-08-24 09:02 -------- d-----w- c:\program files\Broadcom
2010-08-24 09:02 . 2010-08-24 09:02 6656 ----a-w- c:\windows\system32\bcmwlrc.dll
2010-08-24 09:02 . 2010-08-24 09:02 91448 ----a-w- c:\windows\system32\bcmwlcoi.dll
2010-08-24 09:02 . 2010-08-24 09:02 3866624 ----a-w- c:\windows\system32\bcmihvsrv.dll
2010-08-24 09:02 . 2010-08-24 09:02 3555328 ----a-w- c:\windows\system32\bcmihvui.dll
2010-08-24 09:02 . 2010-08-24 09:02 2709056 ----a-w- c:\windows\system32\drivers\BCMWL6.SYS
2010-08-24 09:01 . 2010-08-24 09:01 -------- d-----w- c:\program files\WIDCOMM
2010-08-24 09:00 . 2010-08-24 09:00 -------- d-----w- c:\program files\DIFX
2010-08-24 08:58 . 2010-08-24 08:58 0 ----a-w- c:\windows\ativpsrm.bin
2010-08-24 08:57 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI Technologies
2010-08-24 08:55 . 2010-08-24 08:55 -------- d-----w- c:\program files\ATI
2010-07-16 11:51 . 2010-07-16 11:51 14904 ----a-w- c:\windows\Help\OEM\Scripts\LaunchHPForums.exe
2010-06-30 06:25 . 2010-09-13 11:14 978432 ----a-w- c:\windows\system32\wininet.dll
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
((((((((((((((((((((((((((((( SnapShot@2010-09-24_17.57.03 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-06-01 00:01 . 2010-09-24 18:04 37320 c:\windows\System32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 04:55 . 2010-09-24 18:04 41794 c:\windows\System32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-09-10 04:16 . 2010-09-24 18:59 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-10 04:16 . 2010-09-24 17:28 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-10 04:16 . 2010-09-24 17:28 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-10 04:16 . 2010-09-24 18:59 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:41 . 2010-09-24 17:28 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:41 . 2010-09-24 18:59 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 32768 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-09-13 12:04 . 2010-09-24 17:01 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat
+ 2010-09-13 12:04 . 2010-09-24 18:10 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Temporary Internet Files\Content.IE5\index.dat
- 2010-09-13 12:04 . 2010-09-24 17:01 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\index.dat
+ 2010-09-13 12:04 . 2010-09-24 18:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\History\History.IE5\index.dat
- 2010-09-13 12:04 . 2010-09-24 17:01 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Cookies\index.dat
+ 2010-09-13 12:04 . 2010-09-24 18:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Temp\Cookies\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:10 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 32768 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2010-09-11 11:13 . 2010-09-24 17:27 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-09-11 11:13 . 2010-09-24 18:03 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-09-11 11:10 . 2010-09-24 18:04 6838 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-1445417499-181565323-564678345-1001_UserData.bin
+ 2010-09-24 18:59 . 2010-09-24 19:18 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-09-24 17:26 . 2010-09-24 17:51 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2010-09-24 17:26 . 2010-09-24 17:51 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-09-24 18:59 . 2010-09-24 19:18 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-09-16 19:58 . 2010-09-24 18:53 174486 c:\windows\System32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin
+ 2009-07-14 02:05 . 2010-09-24 19:04 615810 c:\windows\System32\perfh009.dat
+ 2009-07-14 02:05 . 2010-09-24 19:04 106190 c:\windows\System32\perfc009.dat
- 2009-07-14 04:47 . 2010-09-24 17:25 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 04:47 . 2010-09-24 18:57 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2010-09-09 21:04 . 2010-09-24 17:25 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1445417499-181565323-564678345-1001-8192.dat
+ 2010-09-09 21:04 . 2010-09-24 18:58 440152 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-1445417499-181565323-564678345-1001-8192.dat
+ 2009-07-14 02:03 . 2010-09-24 18:12 6815744 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT
- 2009-07-14 02:03 . 2010-09-24 17:39 6815744 c:\windows\System32\SMI\Store\Machine\SCHEMA.DAT
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HPAdvisorDock"="c:\program files\Hewlett-Packard\HP Advisor\Dock\HPAdvisorDock.exe" [2010-02-10 1515576]
"ISUSPM"="c:\programdata\FLEXnet\Connect\11\ISUSPM.exe" [2009-05-05 222496]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2010-02-22 2363392]
"ICQ"="c:\program files\ICQ7.2\ICQ.exe" [2010-09-16 133432]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"QLBController"="c:\program files\Hewlett-Packard\HP HotKey Support\QLBController.exe" [2010-03-01 256056]
"PDF Complete"="c:\program files\PDF Complete\pdfsty.exe" [2010-03-06 563736]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-02-26 1713448]
"HPWirelessAssistant"="c:\program files\Hewlett-Packard\HP Wireless Assistant\DelayedAppStarter.exe" [2010-04-05 8192]
"McAfee Managed Services Tray"="c:\program files\McAfee\Managed VirusScan\DesktopUI\XTray.Exe" [2010-02-17 476480]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-04-08 102400]
"SysTrayApp"="c:\program files\IDT\WDM\sttray.exe" [2010-03-17 495708]
"estar"="c:\system.sav\Util\HideDOS.EXE" [2006-11-28 77824]
"PDFHook"="c:\program files\Nuance\PDF Professional 6\pdfpro6hook.exe" [2009-11-13 1277952]
"PDF6 Registry Controller"="c:\program files\Nuance\PDF Professional 6\RegistryController.exe" [2009-11-03 110880]
"Nuance PDF Reader-reminder"="c:\program files\Nuance\PDF Reader\Ereg\Ereg.exe" [2008-11-03 328992]
"NortonOnlineBackupReminder"="c:\program files\Symantec\Norton Online Backup\Activation\NOBuActivation.exe" [2009-12-03 3331944]
"Norton Online Backup"="c:\program files\Symantec\Norton Online Backup\NOBuClient.exe" [2010-06-08 968536]
"mcui_exe"="c:\program files\McAfee.com\Agent\mcagent.exe" [2010-06-30 1193848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\WIDCOMM\Bluetooth Software\BTTray.exe [2009-12-29 795936]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\mcmscsvc]
@=""
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\DRIVERS\mfenlfk.sys [2010-08-24 64304]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\System32\DriverStore\FileRepository\stwrt.inf_x86_neutral_7b6e808b01435efc\aestsrv.exe [2009-03-03 81920]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-04-08 172032]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 HP Wireless Assistant Service;HP Wireless Assistant Service;c:\program files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe [2010-04-05 103992]
R2 hpHotkeyMonitor;HP Hotkey Monitor;c:\program files\Hewlett-Packard\HP HotKey Support\hpHotkeyMonitor.exe [2010-03-01 264248]
R2 ICQ Service;ICQ Service;c:\program files\ICQ6Toolbar\ICQ Service.exe [2010-06-02 246520]
R2 McAfee SiteAdvisor Enterprise Service;McAfee SiteAdvisor Enterprise Service;c:\program files\McAfee\SiteAdvisor Enterprise\McSACore.exe [2009-08-07 222528]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McMPFSvc;McAfee Služba programu Personal Firewall;c:\program files\Common Files\Mcafee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\Common Files\McAfee\McSvcHost\McSvHost.exe [2010-03-10 271480]
R2 mfefire;McAfee Firewall Core Service;c:\program files\Common Files\McAfee\SystemCore\\mfefire.exe [2010-08-24 188136]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\program files\Common Files\McAfee\SystemCore\mfevtps.exe [2010-08-24 141792]
R2 myAgtSvc;McAfee Virus and Spyware Protection Service;c:\program files\McAfee\Managed VirusScan\Agent\myAgtSvc.Exe [2010-02-17 282824]
R2 NOBU;Norton Online Backup;c:\program files\Symantec\Norton Online Backup\NOBuAgent.exe SERVICE [x]
R2 pdfcDispatcher;PDF Document Manager;c:\program files\PDF Complete\pdfsvc.exe [2010-03-06 635416]
R2 PDFProFiltSrv;PDFProFiltSrv;c:\program files\Nuance\PDF Professional 6\PDFProFiltSrv.exe [2009-11-03 134944]
R3 amdkmdag;amdkmdag;c:\windows\system32\DRIVERS\atikmdag.sys [2010-04-08 5429760]
R3 amdkmdap;amdkmdap;c:\windows\system32\DRIVERS\atikmpag.sys [2010-04-08 157184]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2010-01-07 29472]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2010-08-24 55840]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2010-08-24 312904]
R3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2010-08-24 84264]
R3 RoxMediaDB10;RoxMediaDB10;c:\program files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe [2009-11-23 1120752]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2010-01-12 257568]
R3 rtsuvc;HP Webcam [2 MP Fixed];c:\windows\system32\DRIVERS\rtsuvc.sys [2010-05-21 00:06 78848]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-13 1343400]
S0 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2010-08-24 164808]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2010-02-22 18:38 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'
2010-09-23 c:\windows\Tasks\HPCeeScheduleForesterka.job
- c:\program files\Hewlett-Packard\HP Ceement\HPCEE.exe [2010-01-05 10:53]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uDefault_Search_URL = hxxp://search.qip.ru
mStart Page = hxxp://www.bing.com
uSearchAssistant = hxxp://search.qip.ru/ie
IE: Append the content of the link to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Append the content of the selected links to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppendSelLinks.HTML
IE: Append to existing PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIEAppend.HTML
IE: Create PDF file - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF file from the content of the link - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECapture.HTML
IE: Create PDF files from the selected links - c:\program files\Nuance\PDF Professional 6\Bin\ZeonIEFavClient.dll/ZeonIECaptureSelLinks.HTML
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
IE: Open with Nuance PDF Converter 6.0 - c:\program files\Nuance\PDF Professional 6\cnvres_eng.dll /100
IE: Open with PDF Professional 6 - c:\program files\Nuance\PDF Professional 6\Bin\PlusIEContextMenu.dll/PlusIEContextMenu.htm
Trusted Zone: //about.htm/
Trusted Zone: //Exclude.htm/
Trusted Zone: //FWEvent.htm/
Trusted Zone: //LanguageSelection.htm/
Trusted Zone: //Message.htm/
Trusted Zone: //MyAgttryCmd.htm/
Trusted Zone: //MyAgttryNag.htm/
Trusted Zone: //MyNotification.htm/
Trusted Zone: //NOCLessUpdate.htm/
Trusted Zone: //quarantine.htm/
Trusted Zone: //ScanNow.htm/
Trusted Zone: //strings.vbs/
Trusted Zone: //Template.htm/
Trusted Zone: //Update.htm/
Trusted Zone: //VirFound.htm/
Trusted Zone: mcafee.com\*
Trusted Zone: mcafeeasap.com\betavscan
Trusted Zone: mcafeeasap.com\vs
Trusted Zone: mcafeeasap.com\www
Trusted Zone: siteadvisor.com\www
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKLM-RunOnce-<NO NAME> - (no file)
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\pdfcDispatcher]
"ImagePath"="c:\program files\PDF Complete\pdfsvc.exe /startedbyscm:66B66708-40E2BE4D-pdfcService"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:000000b5
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-24 21:25:15
ComboFix-quarantined-files.txt 2010-09-24 19:25
ComboFix2.txt 2010-09-24 19:08
ComboFix3.txt 2010-09-24 17:58
Před spuštěním: Volných bajtů: 449 342 320 640
Po spuštění: Volných bajtů: 449 174 630 400
- - End Of File - - 5393B8F05E807CD4CAB7A817EDF27932
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: McAfee mi hlásí vir
Smazáno. Ještě jsem se všiml, že máte v PC zbytky po Nortonu, ktarý jste měl zřejmě dříve v PC. Odstrante je pomocí SymNrt: http://us.norton.com/support/kb/web_vie ... N&ln=en_US .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
-
msjesterka
- Návštěvník
- Příspěvky: 5
- Registrován: 24 zář 2010 12:33
Re: McAfee mi hlásí vir
Moc, moc, moc děkuji, jsem vaším velkým dlužníkem
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: McAfee mi hlásí vir
Nemáte zač! 
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?