Prosím o kontrolu logu RSIT, předem moc dík.

Zpráva

#16 Příspěvek od **vyosek** » 27 zář 2010 21:59

Vse co nasel MBAM smazte

Udelejte uplny, kompletni sken - log pred mazanim opet sem

digiart · #17 Příspěvek od **digiart** » 27 zář 2010 22:51

Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4705

Windows 6.1.7600
Internet Explorer 8.0.7600.16385

27.9.2010 23:49:02
mbam-log-2010-09-27 (23-49-02).txt

Typ skenu: Úplný sken (C:\|)
Skenované objekty: 383029
Uplynulý čas: 48 minuta(y), 28 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 0
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 0
Infikované soubory: 34

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\F3CJPEG.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\F3HKSTUB.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\F3PSSAVR.SCR.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\F3REGHK.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\F3RESTUB.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\F3SCHMON.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3AUXSTB.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3DLGHK.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3HIGHIN.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3HTML.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3IDLE.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3IMPIPE.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3MEDINT.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3MSG.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3OUTLCN.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3PLUGIN.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3SKIN.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3SKPLAY.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3SLSRCH.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\M3SRCHMN.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSBAR.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSMLBTN.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSOEPLG.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSOESTB.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSSRCAS.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\MWSUABTN.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Program Files\MyWebSearch\bar\1.bin\NPMYWEBS.DLL.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\PROGRA~1\MYWEBS~1\bar\1.bin\MWSOEMON.EXE.vir (Adware.MyWebSearch) -> No action taken.
C:\Qoobox\Quarantine\C\Windows\System32\f3PSSavr.scr.vir (Adware.MyWebSearch) -> No action taken.
C:\Users\digiart\Desktop\Staženo\O&O Defrag 12.0.197 Professional Edition + Cz + keygen\32bitverzia\keygen.exe (Backdoor.RBot) -> No action taken.
C:\Users\digiart\Desktop\Staženo\O&O Defrag 12.0.197 Professional Edition + Cz + keygen\64bitverzia\keygen.exe (Backdoor.RBot) -> No action taken.
C:\Users\digiart\Desktop\Kingston DT 101 flash\Snagit\Keygen.exe (Backdoor.RBot) -> No action taken.
C:\Users\digiart\Desktop\Kingston DT 101 flash\Corel Paint Shop Pro Photo X2 - Installation Files\keygen\trz695C.tmp (Malware.Packer.Gen) -> No action taken.

#18 Příspěvek od **vyosek** » 28 zář 2010 08:06

Polozky C:\Qoobox\ nechte - je to zaloha ComboFixu - smazeme ji jinak...

Ostatni veci smazte

Ani se nedivim ze je PC tak zas*ate kdyz ho krmite craky a podobnou "dobrotou". Nehlede na porusovani autorskeho zako na a pachani trestneho cinu...

Jak se chova PC

digiart · #19 Příspěvek od **digiart** » 28 zář 2010 09:55

Je to OK počítač šlape jak má

#20 Příspěvek od **vyosek** » 28 zář 2010 10:06

Tak jdem pouklizet po utilitach

Odinstalujte Combofix

Start - Spustit (nebo pouzijte klavesobou zkratku Win+R)
Napiste ComboFix /Uninstall
Stisknete Enter
Tohle smaze Combofix a jeho slozky

T-Cleaner http://sweb.cz/Marinus/T-Cleaner.exe

Stahnete a spustte
Pro potvrzeni volby mackejte A, Enter
Po pouziti utilitu smazte
Antiviry touhou utilitu chybne oznacit jako vir - jedna se o falesny poplach - takze v pohode stahnete (pripadne vypnete pri stahovani antivir)

Havet se usadila v bodech obnoveni - smazte je dle navodu kolegy riffa http://www.viry.cz/forum/viewtopic.php?f=11&t=47040

MBAM muzete odinstalovat nebo nechat na obcasny sken - v pripade nalezu velmi doporucuji dat sem log na posouzeni, at si neodstrelite neco legitimniho

OTC http://oldtimer.geekstogo.com/OTC.exe

Stahnete a spustte
Kliknete na CleanUp a potvrdte YES
Program uklidi a restartuje PC

TFC http://oldtimer.geekstogo.com/TFC.exe

Stahnete a spustte
Kliknete na Start a potvrdte OK
Program uklidi a restartuje pc
Po pouziti utilitu smazte

Stahnete Ccleaner (viz muj podpis), pri instalaci dejte fajfku pryc u yahoo toolbaru
Panel čistič

Vse nechte jak je, jen dejte Analyzovat a pote Spustit CCleaner

Panel registry

dejte Hledej problémy
nasledne Opravit problémy - zalohu registru doporucuji udelat, opravte vsechny problemy
postup opakujte dokud nebude bez problemu - vetsinou cca 3x

Panel nástroje

Zde muzete odinstalovat nepotrebne programy

CCleaner doporucuji pouzivat cca jednou za 14 dni

Vozte novy log ze RSIT

digiart · #21 Příspěvek od **digiart** » 28 zář 2010 11:57

Logfile of random's system information tool 1.08 (written by random/random)
Run by digiart at 2010-09-28 12:52:22
Microsoft Windows 7 Ultimate
System drive C: has 449 GB (74%) free of 610 GB
Total RAM: 2046 MB (61% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:52:33, on 28.9.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16385)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Hard Disk Sentinel\HDSentinel.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Lexmark X1100 Series\LXBKbmgr.exe
C:\Program Files\Lexmark X1100 Series\lxbkbmon.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\OO Software\Defrag\oodtray.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\MSI Afterburner\MSIAfterburner.exe
C:\Program Files\Naevius USB Antivirus\usbantivirus.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\Core Temp\Core Temp.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\IncrediMail\Bin\IncMail.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
C:\Program Files\IncrediMail\Bin\ImApp.exe
C:\Program Files\Miranda IM Bagr pack\miranda32.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\digiart\Desktop\RSIT.exe
C:\Program Files\trend micro\digiart.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
O2 - BHO: SnagIt Toolbar Loader - {00C6482D-C502-44C8-8409-FCE54AD9C208} - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - (no file)
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O3 - Toolbar: Snagit - {8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll
O3 - Toolbar: (no name) - {855F3B16-6D32-4fe6-8A56-BBB695989046} - (no file)
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [avast5] "C:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [lxbkbmgr.exe] "C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe"
O4 - HKLM\..\Run: [EasyTuneVPro] C:\Program Files\Gigabyte\ET5Pro\ETcall.exe
O4 - HKLM\..\Run: [OODefragTray] C:\Program Files\OO Software\Defrag\oodtray.exe
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
O4 - HKLM\..\Run: [MSIAfterburner] "C:\Program Files\MSI Afterburner\MSIAfterburnerWrapper.exe" /s
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [nusbantivirus] "C:\Program Files\Naevius USB Antivirus\usbantivirus.exe" -hide
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [Core Temp] "C:\Program Files\Core Temp\Core Temp.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [IncrediMail] C:\Program Files\IncrediMail\bin\IncMail.exe /c
O4 - Startup: MSI Afterburner.lnk = C:\Program Files\MSI Afterburner\MSIAfterburner.exe
O4 - Startup: Yahoo! Widgets.lnk = C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\digiart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk (file missing)
O16 - DPF: {0D6709DD-4ED8-40CA-B459-2757AEEF7BEE} (Dldrv2 Control) - http://download.gigabyte.com.tw/object/Dldrv.ocx
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} (Installation Support) - C:\Program Files\Yahoo!\Common\Yinsthelper.dll
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: DES2 Service for Energy Saving. (DES2 Service) - Unknown owner - C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe (file missing)
O23 - Service: ES lite Service for program management. (ES lite Service) - Unknown owner - C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: lxbk_device - - C:\Windows\system32\lxbkcoms.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\Windows\system32\PSIService.exe
O23 - Service: Protexis Licensing V2 (PSI_SVC_2) - Protexis Inc. - c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
O23 - Service: TeamViewer 5 (TeamViewer5) - TeamViewer GmbH - C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe

--
End of file - 7572 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00C6482D-C502-44C8-8409-FCE54AD9C208}]
SnagIt Toolbar Loader - C:\Program Files\TechSmith\Snagit 9\SnagitBHO.dll [2008-11-06 68936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8FF5E183-ABDE-46EB-B09E-D2AAB95CABE3} - Snagit - C:\Program Files\TechSmith\Snagit 9\SnagitIEAddin.dll [2008-11-06 211272]
{855F3B16-6D32-4fe6-8A56-BBB695989046}
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"avast5"=C:\Program Files\Alwil Software\Avast5\avastUI.exe [2010-09-07 2838912]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-05-27 98304]
"lxbkbmgr.exe"=C:\Program Files\Lexmark X1100 Series\lxbkbmgr.exe [2008-02-28 74408]
"EasyTuneVPro"=C:\Program Files\Gigabyte\ET5Pro\ETcall.exe [2007-07-26 20480]
"OODefragTray"=C:\Program Files\OO Software\Defrag\oodtray.exe [2009-09-12 2524416]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2009-06-25 7547424]
"MSIAfterburner"=C:\Program Files\MSI Afterburner\MSIAfterburnerWrapper.exe [2010-06-07 44344]
"ATICustomerCare"=C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe [2010-03-04 311296]
"nusbantivirus"=C:\Program Files\Naevius USB Antivirus\usbantivirus.exe [2009-08-19 1956864]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
"Core Temp"=C:\Program Files\Core Temp\Core Temp.exe [2010-06-27 424464]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"IncrediMail"=C:\Program Files\IncrediMail\bin\IncMail.exe [2010-09-06 353736]

C:\Users\digiart\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
MSI Afterburner.lnk - C:\Program Files\MSI Afterburner\MSIAfterburner.exe
Yahoo! Widgets.lnk - C:\Program Files\Yahoo!\Widgets\YahooWidgets.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoResolveSearch"=1
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2010-09-28 12:52:22 ----D---- C:\rsit
2010-09-28 12:30:08 ----D---- C:\Program Files\CCleaner
2010-09-27 22:41:03 ----D---- C:\Users\digiart\AppData\Roaming\Malwarebytes
2010-09-27 22:40:54 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2010-09-27 22:40:53 ----D---- C:\ProgramData\Malwarebytes
2010-09-27 22:40:53 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2010-09-27 22:40:53 ----A---- C:\Windows\system32\drivers\mbam.sys
2010-09-27 22:37:51 ----SHD---- C:\$RECYCLE.BIN
2010-09-27 20:48:34 ----D---- C:\Program Files\Miranda IM Bagr pack
2010-09-27 20:38:03 ----D---- C:\Program Files\Naevius USB Antivirus
2010-09-27 14:19:56 ----D---- C:\Device
2010-09-27 12:05:31 ----D---- C:\Program Files\trend micro
2010-09-27 02:38:00 ----D---- C:\Program Files\Tomb Raider
2010-09-26 18:49:05 ----D---- C:\Program Files\Orbitron
2010-09-26 18:20:11 ----D---- C:\Users\digiart\AppData\Roaming\vlc
2010-09-21 16:53:50 ----A---- C:\Windows\FIN2.cmd
2010-09-21 16:53:50 ----A---- C:\Windows\FIN.cmd
2010-09-21 16:53:39 ----D---- C:\TokensBackup
2010-09-19 15:52:02 ----D---- C:\Program Files\Common Files\Steam
2010-09-19 15:51:24 ----A---- C:\Windows\system32\XAudio2_6.dll
2010-09-19 15:51:24 ----A---- C:\Windows\system32\XAPOFX1_4.dll
2010-09-19 15:51:24 ----A---- C:\Windows\system32\xactengine3_6.dll
2010-09-19 15:51:24 ----A---- C:\Windows\system32\xactengine3_5.dll
2010-09-19 15:51:24 ----A---- C:\Windows\system32\X3DAudio1_7.dll
2010-09-19 15:51:24 ----A---- C:\Windows\system32\D3DCompiler_42.dll
2010-09-19 15:51:22 ----A---- C:\Windows\system32\d3dcsx_42.dll
2010-09-19 15:51:20 ----A---- C:\Windows\system32\d3dx11_42.dll
2010-09-19 15:51:20 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\XAudio2_3.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\XAudio2_2.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\XAPOFX1_2.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\XAPOFX1_1.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\xactengine3_3.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\xactengine3_2.dll
2010-09-19 15:51:17 ----A---- C:\Windows\system32\X3DAudio1_5.dll
2010-09-19 12:30:03 ----D---- C:\ProgramData\Screentime
2010-09-18 23:50:10 ----D---- C:\Config.Msi
2010-09-17 21:58:34 ----D---- C:\Users\digiart\AppData\Roaming\Feedreader
2010-09-17 21:58:32 ----D---- C:\Program Files\FeedReader30
2010-09-16 19:44:22 ----D---- C:\ProgramData\ProcessLasso
2010-09-16 19:44:15 ----HD---- C:\Program Files\Process Lasso
2010-09-15 22:35:56 ----D---- C:\Users\digiart\AppData\Roaming\Scribus
2010-09-15 17:54:06 ----A---- C:\Windows\system32\iertutil.dll
2010-09-15 17:28:15 ----D---- C:\Program Files\Scribus 1.3.7
2010-09-15 16:56:21 ----D---- C:\wamp
2010-09-15 05:45:18 ----A---- C:\Windows\system32\spoolsv.exe
2010-09-14 16:47:40 ----D---- C:\Users\digiart\AppData\Roaming\Vivox
2010-09-13 19:03:01 ----D---- C:\ProgramData\PMB Files
2010-09-13 19:02:45 ----D---- C:\Program Files\Pando Networks
2010-09-10 12:11:00 ----D---- C:\Users\digiart\AppData\Roaming\Quark
2010-09-10 12:09:21 ----D---- C:\ProgramData\Quark
2010-09-10 12:09:21 ----D---- C:\Program Files\Quark
2010-09-10 11:54:44 ----D---- C:\Program Files\QuickTime
2010-09-10 11:54:30 ----D---- C:\ProgramData\Apple Computer
2010-09-10 01:51:37 ----D---- C:\Program Files\Pixarra
2010-09-09 19:22:20 ----D---- C:\Program Files\Raven
2010-09-09 19:21:18 ----A---- C:\Windows\EF.ini
2010-09-08 22:03:51 ----D---- C:\Program Files\Common Files\Oberon Media
2010-09-08 22:03:50 ----D---- C:\Program Files\Oberon Media
2010-09-08 22:03:50 ----D---- C:\Program Files\IncrediGames
2010-09-06 21:53:49 ----D---- C:\Users\digiart\AppData\Roaming\magentictb
2010-09-06 21:53:47 ----D---- C:\Program Files\magentictb
2010-09-06 21:26:46 ----D---- C:\ProgramData\IncrediMail
2010-09-06 21:26:45 ----D---- C:\ProgramData\IM
2010-09-06 21:26:45 ----D---- C:\Program Files\IncrediMail
2010-09-04 16:20:03 ----D---- C:\Users\digiart\AppData\Roaming\Ice Age 2
2010-09-04 16:15:17 ----D---- C:\Program Files\Sierra
2010-09-04 16:04:18 ----D---- C:\Program Files\PowerISO
2010-09-03 17:07:52 ----D---- C:\ProgramData\Bitstream
2010-09-01 22:06:04 ----D---- C:\Program Files\ALCPU
2010-09-01 21:08:57 ----D---- C:\ProgramData\M-Photo
2010-09-01 21:00:55 ----D---- C:\CDSM
2010-09-01 21:00:50 ----A---- C:\Windows\system32\CDSM_CDSM Designer_uninstaller.exe
2010-08-31 22:56:27 ----D---- C:\Users\digiart\AppData\Roaming\Net Meter Pro
2010-08-31 22:56:24 ----D---- C:\Program Files\Net Meter Pro
2010-08-31 21:03:08 ----D---- C:\Program Files\CPU Speed Pro
2010-08-29 02:34:20 ----D---- C:\ABRAG1
2010-08-29 02:33:46 ----D---- C:\Program Files\Firebird
2010-08-29 02:06:01 ----D---- C:\Program Files\OKsystem
2010-08-29 02:06:01 ----A---- C:\Windows\polite.ini

======List of files/folders modified in the last 1 months======

2010-09-28 12:52:33 ----D---- C:\Windows\Prefetch
2010-09-28 12:52:31 ----D---- C:\Windows\Temp
2010-09-28 12:32:26 ----D---- C:\Windows\debug
2010-09-28 12:32:26 ----D---- C:\Windows
2010-09-28 12:30:08 ----D---- C:\Program Files
2010-09-28 12:26:49 ----D---- C:\Windows\System32
2010-09-28 12:21:43 ----D---- C:\Windows\system32\config
2010-09-28 12:14:45 ----SHD---- C:\System Volume Information
2010-09-28 12:02:49 ----D---- C:\Windows\Minidump
2010-09-28 12:01:34 ----D---- C:\ProgramData\BOINC
2010-09-28 10:51:58 ----D---- C:\Program Files\MSI Afterburner
2010-09-27 22:44:54 ----D---- C:\Windows\system32\drivers
2010-09-27 22:40:53 ----D---- C:\ProgramData
2010-09-27 22:37:52 ----A---- C:\Windows\system.ini
2010-09-27 22:37:47 ----D---- C:\Windows\system32\drivers\etc
2010-09-27 22:31:01 ----D---- C:\Windows\AppPatch
2010-09-27 22:31:00 ----D---- C:\Program Files\Common Files
2010-09-27 21:12:30 ----D---- C:\Windows\Tasks
2010-09-27 21:03:24 ----D---- C:\Windows\system32\catroot2
2010-09-27 15:16:03 ----D---- C:\Windows\winsxs
2010-09-27 15:16:01 ----D---- C:\Windows\system32\catroot
2010-09-27 14:12:09 ----D---- C:\Windows\system32\wdi
2010-09-26 22:28:34 ----D---- C:\Users\digiart\AppData\Roaming\dvdcss
2010-09-26 21:18:17 ----D---- C:\Users\digiart\AppData\Roaming\Skype
2010-09-26 16:02:55 ----D---- C:\Users\digiart\AppData\Roaming\skypePM
2010-09-25 22:28:41 ----D---- C:\Users\digiart\AppData\Roaming\ICQ
2010-09-25 01:00:44 ----D---- C:\Users\digiart\AppData\Roaming\eM Client
2010-09-22 13:29:51 ----A---- C:\Windows\Lexstat.ini
2010-09-21 16:53:56 ----D---- C:\Windows\system32\nb-NO
2010-09-21 16:53:55 ----D---- C:\Windows\system32\de-DE
2010-09-21 16:53:54 ----D---- C:\Windows\system32\cs-CZ
2010-09-21 16:52:48 ----D---- C:\Windows\system32\oobe
2010-09-21 14:31:41 ----D---- C:\temp
2010-09-20 19:09:10 ----D---- C:\World of Warcraft
2010-09-20 19:05:47 ----A---- C:\ZendOptimizer_errors.txt
2010-09-19 17:09:59 ----SHD---- C:\Windows\Installer
2010-09-19 17:09:50 ----D---- C:\Program Files\Google
2010-09-19 16:10:33 ----A---- C:\Windows\system32\wrap_oal.dll
2010-09-19 16:10:32 ----A---- C:\Windows\system32\OpenAL32.dll
2010-09-19 16:10:14 ----RSD---- C:\Windows\assembly
2010-09-19 00:32:26 ----D---- C:\Program Files\Common Files\Corel
2010-09-19 00:03:41 ----D---- C:\Program Files\Miranda Micro 0.1
2010-09-18 23:57:48 ----D---- C:\Program Files\Common Files\microsoft shared
2010-09-18 23:57:13 ----D---- C:\Windows\inf
2010-09-18 23:55:44 ----D---- C:\Program Files\BoincLogX
2010-09-18 23:54:52 ----D---- C:\Program Files\FahMon
2010-09-18 23:53:18 ----D---- C:\Users\digiart\AppData\Roaming\TweakNow PowerPack 2009
2010-09-18 23:50:53 ----HD---- C:\Program Files\InstallShield Installation Information
2010-09-18 23:47:49 ----D---- C:\Program Files\thriXXX
2010-09-18 23:43:50 ----D---- C:\Program Files\PopTray
2010-09-18 20:15:45 ----D---- C:\Users\digiart\AppData\Roaming\Adobe
2010-09-16 21:24:34 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-09-16 16:49:37 ----D---- C:\Program Files\Ashampoo
2010-09-16 16:47:53 ----D---- C:\Users\digiart\AppData\Roaming\BSplayer PRO
2010-09-16 14:57:35 ----D---- C:\Program Files\Venetica
2010-09-15 21:41:14 ----D---- C:\Program Files\Microsoft Silverlight
2010-09-15 17:54:38 ----A---- C:\Windows\system32\MRT.exe
2010-09-14 09:51:52 ----D---- C:\Users\digiart\AppData\Roaming\AIMP
2010-09-14 00:14:37 ----D---- C:\ProgramData\Adobe
2010-09-13 16:27:51 ----D---- C:\Users\digiart\AppData\Roaming\FileZilla
2010-09-11 18:15:10 ----D---- C:\Windows\system32\Tasks
2010-09-11 18:11:25 ----D---- C:\Program Files\ATI
2010-09-11 18:10:31 ----D---- C:\Windows\system32\DriverStore
2010-09-11 09:35:52 ----D---- C:\Windows\system32\FxsTmp
2010-09-10 11:56:18 ----D---- C:\Program Files\Internet Explorer
2010-09-09 01:31:33 ----D---- C:\Program Files\Hard Disk Sentinel
2010-09-08 22:28:57 ----AD---- C:\ProgramData\TEMP
2010-09-08 19:08:46 ----D---- C:\Program Files\BOINC
2010-09-07 17:11:54 ----A---- C:\Windows\system32\aswBoot.exe
2010-09-07 16:00:35 ----D---- C:\Windows\system32\oodag
2010-09-03 17:43:02 ----RSD---- C:\Windows\Fonts
2010-09-02 14:57:08 ----D---- C:\Users\digiart\AppData\Roaming\SQLyog
2010-09-02 08:32:17 ----D---- C:\Users\digiart\AppData\Roaming\Ahead
2010-09-01 21:55:18 ----SD---- C:\Users\digiart\AppData\Roaming\Microsoft
2010-08-30 19:45:25 ----A---- C:\Windows\ODBC.INI
2010-08-30 19:44:48 ----D---- C:\Users\digiart\AppData\Roaming\Folding@home-gpu

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-06-21 691696]
R0 timounter;Acronis True Image Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2010-06-25 441760]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2008-11-02 56572]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
R2 npf;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2009-11-16 50704]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R2 RtNdPt60;Realtek NDIS Protocol Driver; C:\Windows\system32\DRIVERS\RtNdPt60.sys [2009-07-20 27648]
R2 tifsfilter;Acronis True Image FS Filter; C:\Windows\system32\DRIVERS\tifsfilt.sys [2010-06-25 44384]
R2 WinRing0_1_2_0;WinRing0_1_2_0; \??\C:\Users\digiart\AppData\Local\Microsoft\Windows Sidebar\Gadgets\IntelCoreSeries24.gadget\WinRing0.sys [2010-06-24 14416]
R3 ALSysIO;ALSysIO; \??\C:\Users\digiart\AppData\Local\Temp\ALSysIO.sys []
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-05 5550592]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-05-05 176128]
R3 ET5Drv;ET5Drv; \??\C:\Windows\system32\Drivers\ET5Drv.sys [2007-10-11 30008]
R3 gdrv;gdrv; \??\C:\Windows\gdrv.sys [2010-09-28 17488]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2009-06-25 2375776]
R3 RTCore32;RTCore32; \??\C:\Program Files\MSI Afterburner\RTCore32.sys [2010-06-07 12088]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-07-30 187392]
R3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 AODDriver;AODDriver; \??\C:\Program Files\GIGABYTE\ET6\i386\AODDriver.sys [2009-02-23 7168]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-05-05 5550592]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 cpuz132;cpuz132; \??\C:\Users\digiart\AppData\Local\Temp\cpuz132\cpuz132_x32.sys []
S3 etdrv;etdrv; \??\C:\Windows\etdrv.sys [2010-06-25 17488]
S3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys []
S3 gMouPS2;PS2 Scroll Mouse Device; C:\Windows\system32\DRIVERS\gMouPS2.sys []
S3 gMouUsb;USB Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-08-18 25280]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RivaTuner32;RivaTuner32; \??\C:\Program Files\RivaTuner v2.23\RivaTuner32.sys []
S3 RTTEAMPT;Realtek Teaming Protocol Driver (NDIS 6.0); C:\Windows\system32\DRIVERS\RtTeam60.sys [2009-12-21 43520]
S3 RTVLANPT;Realtek Vlan Protocol Driver (NDIS 6.2); C:\Windows\system32\DRIVERS\RtVlan60.sys [2007-12-03 19968]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-05-05 172032]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 Bonjour Service;##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762##; C:\Program Files\Bonjour\mDNSResponder.exe [2006-02-28 229376]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 ES lite Service;ES lite Service for program management.; C:\Program Files\Gigabyte\EasySaver\ESSVR.EXE [2009-03-02 68136]
R2 lxbk_device;lxbk_device; C:\Windows\system32\lxbkcoms.exe [2008-02-19 537256]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 O&O Defrag;O&O Defrag; C:\Program Files\OO Software\Defrag\oodag.exe [2009-09-12 1488128]
R2 ProtexisLicensing;ProtexisLicensing; C:\Windows\system32\PSIService.exe [2007-06-05 177704]
R2 PSI_SVC_2;Protexis Licensing V2; c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe [2010-03-10 189728]
R2 TeamViewer5;TeamViewer 5; C:\Program Files\TeamViewer\Version5\TeamViewer_Service.exe [2010-05-21 173352]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 DES2 Service;DES2 Service for Energy Saving.; C:\Program Files\GIGABYTE\EnergySaver2\des2svr.exe []
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-11 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-08-18 654848]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]

-----------------EOF-----------------

#22 Příspěvek od **vyosek** » 28 zář 2010 12:01

Doporucuji odinstalovat (pokud nepouzivate) toolbary (listy prohlizecu) v Přidat nebo odebrat programy

Kliknete na Start a pote Spustit, pripadne pouzijte klavesou zkratku Win+R

Vyskoci na Vas okenko, do ktereho zkopirujte text nize
Kód: Vybrat vše
```
services.msc
```
Kliknete na OK
Najdete sluzby nize
Služba Google Update
U kazde provedte toto
- Klik na ni pravym mysidlem a zvolit Vlastnosti
- Nyní klik na Zastavit
- Typ spousteni nastavit na Zakazano
- Potvrdte kliknutim na OK

Otevrete si poznamkovy blok

Start->spustit->notepad
Vlozte text nize

Kód: Vybrat vše

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{855F3B16-6D32-4fe6-8A56-BBB695989046}"=-
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools Lite"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-

Soubor ulozte jako oprava.reg
Pri ukladani dejte ulozit jako typ Vsechny soubory (nastevni je uvedeno na obrazku nize)
Zavrit notepad a spustit dvojklikem oprava.reg
Pripadny dotaz na zmenu registru potvrdte
Okno jen problikne a opravi regsitry - soubor muzete smazat

Jinak log vypada OK

digiart · #23 Příspěvek od **digiart** » 28 zář 2010 12:06

Díky moc a hlavně za trpělivost se mnou

#24 Příspěvek od **vyosek** » 28 zář 2010 12:07

Nemate zac, rad jsem pomohl

Zase nekdy Obrázek

VIRY.CZ

Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.

Re: Prosím o kontrolu logu RSIT, předem moc dík.