Logfile of random's system information tool 1.08 (written by random/random)
Run by Petr at 2010-11-21 15:33:24
Microsoft Windows 7 Ultimate
System drive C: has 83 GB (36%) free of 232 GB
Total RAM: 3037 MB (62% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 15:33:39, on 21.11.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal
Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskhost.exe
C:\Windows\Explorer.EXE
C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Alwil Software\Avast5\AvastUI.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\Stardock\CursorFX\CursorFX.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files\Acer\Empowering Technology\eAudio\eAudio.exe
C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSloader.exe
C:\Users\Petr\AppData\Local\RockMelt\Update\1.2.189.1\RockMeltCrashHandler.exe
C:\Windows\system32\taskhost.exe
C:\Program Files\Opera\opera.exe
C:\Windows\system32\taskeng.exe
C:\Users\Petr\AppData\Local\Opera\Opera\temporary_downloads\RSIT.exe
C:\Program Files\trend micro\Petr.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = local;*.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.4.11.9.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: FDMIECookiesBHO Class - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: Acer eDataSecurity Management - {5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll
O4 - HKLM\..\Run: [ePower_DMC] C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe
O4 - HKLM\..\Run: [IAAnotif] C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [SynTPEnh] %ProgramFiles%\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [CLMLServer] "C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe"
O4 - HKLM\..\Run: [Acer Assist Launcher] C:\Program Files\Acer\Acer Assist\launcher.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKCU\..\Run: [CursorFX] "C:\Program Files\Stardock\CursorFX\CursorFX.exe"
O4 - HKCU\..\Run: [RockMelt Update] "C:\Users\Petr\AppData\Local\RockMelt\Update\RockMeltUpdate.exe" /c
O4 - Global Startup: ZyXEL G-202 Wireless Adapter Utility.lnk = ?
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~3\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\Office12\REFIEBAR.DLL
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files\BitComet\tools\BitCometBHO_1.4.11.9.dll/206 (file missing)
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
O23 - Service: AMD External Events Utility - AMD - C:\Windows\system32\atiesrxx.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe
O23 - Service: CLHNService - Unknown owner - C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe
O23 - Service: eDataSecurity Service - Egis Incorporated - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
O23 - Service: Empowering Technology Service (ETService) - Unknown owner - C:\Program Files\Acer\Empowering Technology\Service\ETService.exe
O23 - Service: Intel(R) Matrix Storage Event Monitor (IAANTMON) - Intel Corporation - C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
--
End of file - 6879 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GlaryInitialize.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000UA.job
C:\Windows\tasks\RockMeltUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000Core.job
C:\Windows\tasks\RockMeltUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\Windows\system32\mscoree.dll [2009-11-25 297808]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files\BitComet\tools\BitCometBHO_1.4.11.9.dll [2010-11-09 766768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-05-14 191792]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CC59E0F9-7E43-44FA-9FAA-8377850BF205}]
FDMIECookiesBHO Class - C:\Program Files\Free Download Manager\iefdm2.dll [2008-12-30 98304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-07 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{5CBE3B7C-1E47-477e-A7DD-396DB0476E29} - Acer eDataSecurity Management - C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStoolbar.dll [2008-07-29 142896]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"=C:\Program Files\Acer\Empowering Technology\ePower\ePower_DMC.exe [2008-11-28 417792]
"IAAnotif"=C:\Program Files\Intel\Intel Matrix Storage Manager\iaanotif.exe [2009-06-04 186904]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-09-07 2838912]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2010-02-18 1697064]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"CLMLServer"=C:\Program Files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe [2008-10-08 167936]
"Acer Assist Launcher"=C:\Program Files\Acer\Acer Assist\launcher.exe [2007-11-19 1261568]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-09-04 935288]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-10-26 98304]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CursorFX"=C:\Program Files\Stardock\CursorFX\CursorFX.exe [2008-07-07 416768]
"RockMelt Update"=C:\Users\Petr\AppData\Local\RockMelt\Update\RockMeltUpdate.exe [2010-11-21 136336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-07 30192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-31 136176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.1\ICQ.exe [2010-10-27 133432]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2010-11-17 421160]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2010-05-14 1479680]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2010-09-08 421888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2010-01-12 37888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
C:\PROGRA~1\WIDCOMM\BLUETO~1\BTTray.exe [2009-07-01 795936]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ovi Files Connector.lnk]
C:\PROGRA~1\OVIFIL~1\OVIFIL~1.EXE [2010-04-16 1447280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registration Assassin's Creed.LNK]
C:\PROGRA~1\Ubisoft\ASSASS~1\Register\REGIST~1.EXE -d 804465 -l english -r 7 -g Assassin's Creed -c us -i 3536 []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
C:\PROGRA~1\MICROS~3\Office12\ONENOTEM.EXE [2009-02-26 97680]
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
ZyXEL G-202 Wireless Adapter Utility.lnk - C:\Program Files\ZyXEL\ZyXEL G-202 Wireless Adapter Utility\ZyXEL G-202.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\PROGRA~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2010-08-31 208384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticetext"=
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"BindDirectlyToPropertySetStorage"=0
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\decryption.exe:*:Enabled:decryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x64\encryption.exe:*:Enabled:encryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\decryption.exe:*:Enabled:decryption"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSfsu.exe:*:Enabled:eDSfsu"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSMgr.exe:*:Enabled:eDSMgr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDStbmngr.exe:*:Enabled:eDStbmngr"
"C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe"="C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\encryption.exe:*:Enabled:encryption"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2010-11-21 15:33:24 ----D---- C:\rsit
2010-11-21 15:33:24 ----D---- C:\Program Files\trend micro
2010-11-20 20:20:55 ----D---- C:\ProgramData\ATI
2010-11-20 20:10:28 ----D---- C:\Program Files\Adobe
2010-11-20 00:40:55 ----D---- C:\Program Files\Share Rapid Uploader
2010-11-19 21:50:19 ----A---- C:\Windows\ntbtlog.txt
2010-11-19 19:12:37 ----A---- C:\Windows\system32\drivers\WlanUZXP.SYS
2010-11-19 19:12:36 ----D---- C:\Program Files\ZyXEL
2010-11-19 18:18:10 ----D---- C:\Program Files\iPod
2010-11-19 18:18:09 ----D---- C:\Program Files\iTunes
2010-11-19 18:16:11 ----D---- C:\Program Files\QuickTime
2010-11-19 18:16:02 ----D---- C:\Program Files\Bonjour
2010-11-18 23:45:41 ----D---- C:\Program Files\MediaMonkey
2010-11-17 22:11:29 ----D---- C:\Users\Petr\AppData\Roaming\Acer
2010-11-17 22:03:18 ----D---- C:\32788R22FWJFW
2010-11-17 21:55:12 ----A---- C:\ComboFix.txt
2010-11-17 21:54:05 ----SHD---- C:\$RECYCLE.BIN
2010-11-17 21:49:24 ----D---- C:\Windows\temp
2010-11-17 21:43:15 ----A---- C:\Windows\zip.exe
2010-11-17 21:43:15 ----A---- C:\Windows\SWSC.exe
2010-11-17 21:43:15 ----A---- C:\Windows\SWREG.exe
2010-11-17 21:43:15 ----A---- C:\Windows\sed.exe
2010-11-17 21:43:15 ----A---- C:\Windows\PEV.exe
2010-11-17 21:43:15 ----A---- C:\Windows\NIRCMD.exe
2010-11-17 21:43:15 ----A---- C:\Windows\MBR.exe
2010-11-17 21:43:15 ----A---- C:\Windows\grep.exe
2010-11-17 21:42:33 ----A---- C:\Windows\SWXCACLS.exe
2010-11-17 21:29:31 ----A---- C:\Windows\system32\cmd.execf
2010-11-17 21:14:26 ----D---- C:\ProgramData\PlayMovie
2010-11-17 21:10:02 ----A---- C:\Windows\system32\ZDCN50.dll
2010-11-17 21:10:02 ----A---- C:\Windows\system32\drivers\WlanGZG.sys
2010-11-17 21:05:34 ----D---- C:\Users\Petr\AppData\Roaming\PowerCinema
2010-11-17 21:03:44 ----D---- C:\Program Files\Acer Arcade Deluxe
2010-11-17 19:52:15 ----D---- C:\Program Files\ZyXEL G-202
2010-11-16 01:21:25 ----D---- C:\Users\Petr\AppData\Roaming\OpenCandy
2010-11-16 01:21:24 ----D---- C:\Program Files\MediaInfo
2010-11-16 01:16:07 ----D---- C:\Program Files\Music NFO Builder
2010-11-15 23:19:15 ----D---- C:\Users\Petr\AppData\Roaming\BitComet
2010-11-15 23:19:14 ----D---- C:\Program Files\BitComet
2010-11-15 22:53:21 ----D---- C:\ProgramData\Media Center Studio
2010-11-15 22:24:20 ----D---- C:\Program Files\Glary Utilities
2010-11-14 23:19:04 ----A---- C:\Windows\Wininit.ini
2010-11-14 23:11:34 ----D---- C:\Users\Petr\AppData\Roaming\InstallShield
2010-11-14 21:13:38 ----D---- C:\Users\Petr\AppData\Roaming\gtk-2.0
2010-11-14 14:14:41 ----D---- C:\Windows\system32\CatRoot_bak
2010-11-13 16:13:51 ----A---- C:\Windows\system32\drivers\dtsoftbus01.sys
2010-11-13 16:13:34 ----D---- C:\Program Files\DAEMON Tools Pro
2010-11-13 15:59:04 ----D---- C:\Users\Petr\AppData\Roaming\DAEMON Tools Pro
2010-11-13 15:59:04 ----D---- C:\ProgramData\DAEMON Tools Pro
2010-11-13 00:34:30 ----D---- C:\Users\Petr\AppData\Roaming\Wireshark
2010-11-11 18:02:24 ----D---- C:\Users\Petr\AppData\Roaming\Zoner
2010-11-10 01:51:53 ----D---- C:\Users\Petr\AppData\Roaming\iScreensaver
2010-11-09 01:50:50 ----D---- C:\Program Files\Common Files\Skype
2010-11-09 01:50:48 ----RD---- C:\Program Files\Skype
2010-11-08 02:11:53 ----D---- C:\Users\Petr\AppData\Roaming\Megaupload
2010-11-07 21:54:03 ----D---- C:\Users\Petr\AppData\Roaming\QuickStoresToolbar
2010-11-07 21:44:55 ----D---- C:\Users\Petr\AppData\Roaming\HTML Executable
2010-11-07 21:38:58 ----D---- C:\ProgramData\Sun
2010-11-07 21:38:58 ----D---- C:\Program Files\Common Files\Java
2010-11-07 21:38:42 ----A---- C:\Windows\system32\javaws.exe
2010-11-07 21:38:42 ----A---- C:\Windows\system32\javaw.exe
2010-11-07 21:38:42 ----A---- C:\Windows\system32\java.exe
2010-11-07 21:38:42 ----A---- C:\Windows\system32\deployJava1.dll
2010-11-07 21:38:31 ----D---- C:\Program Files\Java
2010-11-07 21:37:05 ----D---- C:\Program Files\Torrent Episode Downloader
2010-10-29 21:21:59 ----A---- C:\Windows\system32\PCDLIB32.DLL
2010-10-29 21:21:15 ----A---- C:\Windows\uninst.exe
2010-10-29 21:05:38 ----A---- C:\Windows\system32\Ltwvc13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\ltkrn13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\ltimg13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\ltfil13n.DLL
2010-10-29 21:05:38 ----A---- C:\Windows\system32\ltefx13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\LTDIS13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lftif13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lftga13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lfRaw13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\Lfpng13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lfpcx13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lfmsp13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\LFJ2K13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lffax13n.dll
2010-10-29 21:05:38 ----A---- C:\Windows\system32\LFCMP13n.DLL
2010-10-29 21:05:38 ----A---- C:\Windows\system32\lfbmp13n.dll
2010-10-29 20:59:04 ----D---- C:\Users\Petr\AppData\Roaming\gtc
2010-10-28 01:16:30 ----D---- C:\ProgramData\GoQ
2010-10-28 01:16:30 ----D---- C:\Program Files\izyPlayer
2010-10-27 23:51:11 ----D---- C:\ProgramData\NokiaInstallerCache
2010-10-27 21:59:29 ----D---- C:\Users\Petr\AppData\Roaming\Vidalia
2010-10-26 20:52:20 ----D---- C:\ProgramData\FNET
2010-10-26 20:52:13 ----D---- C:\Program Files\PcCloneEX
2010-10-26 20:50:42 ----A---- C:\Windows\system32\msdri.dll
2010-10-26 20:50:42 ----A---- C:\Windows\system32\CPFilters.dll
2010-10-26 20:50:37 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-10-26 02:03:30 ----D---- C:\Windows\PCHEALTH
2010-10-25 22:22:25 ----D---- C:\Users\Petr\AppData\Roaming\NewtonVoice
2010-10-25 22:22:25 ----D---- C:\Program Files\NewtonDictate 2.2
2010-10-24 23:27:33 ----D---- C:\Users\Petr\AppData\Roaming\Synaptics
2010-10-24 23:26:31 ----A---- C:\Windows\system32\SynTPCo4.dll
2010-10-24 23:26:31 ----A---- C:\Windows\system32\SynCtrl.dll
2010-10-24 23:26:31 ----A---- C:\Windows\system32\SynCOM.dll
2010-10-24 23:26:30 ----A---- C:\Windows\system32\SynTPAPI.dll
2010-10-24 23:26:30 ----A---- C:\Windows\system32\drivers\SynTP.sys
2010-10-23 22:43:56 ----D---- C:\Users\Petr\AppData\Roaming\WindSolutions
2010-10-23 22:43:40 ----D---- C:\ProgramData\WindSolutions
======List of files/folders modified in the last 1 months======
2010-11-21 15:33:24 ----RD---- C:\Program Files
2010-11-21 12:38:24 ----D---- C:\Windows\Tasks
2010-11-21 12:38:24 ----D---- C:\Windows\system32\Tasks
2010-11-21 12:11:49 ----D---- C:\Windows\system32\config
2010-11-21 12:01:43 ----SHD---- C:\Windows\Installer
2010-11-21 12:01:43 ----D---- C:\Config.Msi
2010-11-21 12:01:42 ----RSD---- C:\Windows\assembly
2010-11-21 12:01:21 ----AD---- C:\Windows\System32
2010-11-21 12:01:21 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-11-21 12:01:05 ----D---- C:\Windows\inf
2010-11-21 12:00:10 ----SHD---- C:\System Volume Information
2010-11-20 20:38:38 ----D---- C:\ProgramData\Adobe
2010-11-20 20:20:55 ----D---- C:\ProgramData
2010-11-20 20:20:34 ----D---- C:\Program Files\ATI Technologies
2010-11-20 20:14:32 ----D---- C:\Windows
2010-11-20 20:10:32 ----D---- C:\Program Files\Common Files\Adobe
2010-11-19 21:38:51 ----D---- C:\Windows\system32\NDF
2010-11-19 19:12:37 ----D---- C:\Windows\system32\drivers
2010-11-19 19:12:35 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-19 18:20:41 ----D---- C:\Users\Petr\AppData\Roaming\Winamp
2010-11-19 18:18:10 ----D---- C:\Program Files\Common Files\Apple
2010-11-18 23:45:19 ----D---- C:\Downloads
2010-11-18 03:24:13 ----D---- C:\Users\Petr\AppData\Roaming\Skype
2010-11-18 00:26:19 ----D---- C:\Users\Petr\AppData\Roaming\skypePM
2010-11-17 22:10:55 ----D---- C:\Program Files\Acer
2010-11-17 21:55:14 ----AD---- C:\Qoobox
2010-11-17 21:51:35 ----A---- C:\Windows\system.ini
2010-11-17 21:51:27 ----D---- C:\Windows\system32\drivers\etc
2010-11-17 21:49:40 ----D---- C:\Boot
2010-11-17 21:49:29 ----D---- C:\Windows\ERDNT
2010-11-17 21:46:54 ----D---- C:\Windows\AppPatch
2010-11-17 21:46:53 ----D---- C:\Program Files\Common Files
2010-11-17 21:14:31 ----D---- C:\ProgramData\CyberLink
2010-11-17 21:14:29 ----D---- C:\Users\Petr\AppData\Roaming\SoftDMA
2010-11-17 21:10:04 ----D---- C:\Windows\system32\catroot
2010-11-17 21:10:03 ----D---- C:\Windows\system32\DriverStore
2010-11-17 20:42:38 ----D---- C:\Windows\system
2010-11-17 20:42:14 ----D---- C:\Windows\system32\catroot2
2010-11-17 20:41:17 ----D---- C:\Users\Petr\AppData\Roaming\Azureus
2010-11-16 01:21:33 ----D---- C:\Windows\Prefetch
2010-11-15 22:46:22 ----HDC---- C:\ProgramData\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}
2010-11-15 22:46:22 ----AD---- C:\book
2010-11-15 22:45:13 ----D---- C:\ProgramData\PC Suite
2010-11-15 22:45:12 ----SD---- C:\ProgramData\Microsoft
2010-11-15 22:45:12 ----D---- C:\Program Files\Windows Sidebar
2010-11-15 22:45:12 ----D---- C:\Program Files\Windows Media Player
2010-11-15 22:45:12 ----D---- C:\Program Files\Total Video Converter
2010-11-15 22:45:11 ----D---- C:\Program Files\The KMPlayer
2010-11-15 22:45:11 ----D---- C:\Program Files\NSS
2010-11-15 22:45:11 ----D---- C:\Program Files\Microsoft Games
2010-11-15 22:45:11 ----D---- C:\Program Files\Google
2010-11-15 22:45:10 ----D---- C:\Program Files\Cool YouTube Downloader
2010-11-15 22:45:10 ----D---- C:\ACER
2010-11-14 23:19:04 ----D---- C:\Users\Petr\AppData\Roaming\ConMet
2010-11-14 23:19:04 ----D---- C:\ProgramData\ConMet
2010-11-14 23:12:31 ----D---- C:\Program Files\Acer GameZone
2010-11-14 23:11:50 ----D---- C:\Program Files\Ubisoft
2010-11-14 22:40:57 ----D---- C:\Users\Petr\AppData\Roaming\Free Download Manager
2010-11-14 15:22:19 ----D---- C:\Users\Petr\AppData\Roaming\vlc
2010-11-14 14:59:14 ----D---- C:\Users\Petr\AppData\Roaming\Apple Computer
2010-11-14 14:54:16 ----D---- C:\Windows\debug
2010-11-11 17:50:27 ----RSD---- C:\Windows\Fonts
2010-11-11 17:41:34 ----D---- C:\Users\Petr\AppData\Roaming\ICQ
2010-11-11 17:41:25 ----D---- C:\Program Files\ICQ7.1
2010-11-11 03:06:15 ----D---- C:\ProgramData\Microsoft Help
2010-11-11 03:00:39 ----A---- C:\Windows\system32\MRT.exe
2010-11-09 01:50:44 ----D---- C:\ProgramData\Skype
2010-11-08 19:44:41 ----D---- C:\Users\Petr\AppData\Roaming\PC Suite
2010-11-08 19:37:00 ----D---- C:\Program Files\CCleaner
2010-11-08 03:09:56 ----D---- C:\Windows\Microsoft.NET
2010-11-08 02:11:29 ----D---- C:\Program Files\Mozilla Firefox
2010-11-07 21:42:54 ----D---- C:\Windows\system32\cs-CZ
2010-11-07 21:41:10 ----D---- C:\Windows\system32\en-US
2010-11-07 21:41:09 ----D---- C:\Program Files\Microsoft.NET
2010-11-07 17:50:24 ----SD---- C:\Users\Petr\AppData\Roaming\Microsoft
2010-11-05 21:11:21 ----D---- C:\Windows\winsxs
2010-11-05 21:00:26 ----D---- C:\Program Files\Windows Live
2010-10-30 13:54:47 ----D---- C:\Windows\rescache
2010-10-28 21:22:30 ----D---- C:\Users\Petr\AppData\Roaming\Nokia
2010-10-28 00:45:40 ----D---- C:\Program Files\Common Files\Nokia
2010-10-28 00:45:23 ----D---- C:\Program Files\Nokia
2010-10-26 22:53:53 ----D---- C:\Windows\ehome
2010-10-26 22:11:06 ----D---- C:\Users\Petr\AppData\Roaming\dvdcss
2010-10-26 20:38:59 ----D---- C:\Program Files\Microsoft Silverlight
2010-10-26 02:03:40 ----D---- C:\Program Files\Common Files\microsoft shared
2010-10-26 02:03:32 ----D---- C:\Program Files\Microsoft Works
2010-10-23 22:37:31 ----AD---- C:\ProgramData\Temp
2010-10-23 22:15:42 ----D---- C:\Users\Petr\AppData\Roaming\Registry Mechanic
2010-10-23 22:15:34 ----D---- C:\Windows\Downloaded Program Files
2010-10-23 19:35:57 ----D---- C:\Program Files\Vuze
2010-10-22 23:42:51 ----D---- C:\Program Files\Common Files\Stardock
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 iaStor;Intel AHCI Controller; C:\Windows\system32\DRIVERS\iaStor.sys [2009-06-04 330264]
R0 PSDFilter;PSDFilter; C:\Windows\system32\DRIVERS\psdfilter.sys [2008-07-29 18992]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 UBHelper;UBHelper; C:\Windows\system32\drivers\UBHelper.sys [2008-01-30 13824]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 23376]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\Windows\system32\DRIVERS\dtsoftbus01.sys [2010-11-13 219200]
R1 VWiFiFlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
R2 int15;int15; \??\C:\Windows\system32\drivers\int15.sys [2008-10-01 12832]
R2 PSDNServ;PSDNServ; C:\Windows\system32\DRIVERS\PSDNServ.sys [2008-07-29 16944]
R2 psdvdisk;PSDVdisk; C:\Windows\system32\DRIVERS\PSDVdisk.sys [2008-07-29 60464]
R2 RMCAST;@%SystemRoot%\system32\wshrm.dll,-102; C:\Windows\system32\DRIVERS\RMCAST.sys [2009-07-14 117248]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2009-08-18 4994560]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 KMWDFILTERx86;HIDServiceDesc; C:\Windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
R3 L1E;NDIS Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; C:\Windows\system32\DRIVERS\L1E62x86.sys [2009-08-23 48640]
R3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit; C:\Windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
R3 NTIDrvr;Upper Class Filter Driver; C:\Windows\system32\DRIVERS\NTIDrvr.sys [2008-01-30 14848]
R3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\Windows\System32\Drivers\RootMdm.sys [2009-07-14 8192]
R3 SrvHsfHDA;SrvHsfHDA; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
R3 SrvHsfV92;SrvHsfV92; C:\Windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
R3 SrvHsfWinac;SrvHsfWinac; C:\Windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2010-02-18 242992]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service; C:\Windows\system32\DRIVERS\vwifimp.sys [2009-07-14 14336]
R3 winbondcir;Winbond IR Transceiver; C:\Windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
S1 FNETURPX;FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS []
S2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys []
S2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
S3 A310;AVerMedia A310 DVB-T; C:\Windows\system32\DRIVERS\AVerA310USB.sys [2008-07-03 26752]
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device; C:\Windows\system32\drivers\AVerA310Cap.sys [2008-07-03 47104]
S3 BthEnum;Služba Bluetooth Enumerator; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Zařízení Bluetooth (síť PAN); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Ovladač portu Bluetooth; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHprint;Třída tiskárny protokolu Bluetooth (Microsoft); C:\Windows\system32\DRIVERS\bthprint.sys [2009-07-14 50688]
S3 BTHUSB;Ovladač rozhraní USB radiostanice Bluetooth; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btwaudio;Bluetooth Audio Device Service; C:\Windows\system32\drivers\btwaudio.sys [2009-07-02 86056]
S3 btwavdt;Bluetooth AVDT Service; C:\Windows\system32\DRIVERS\btwavdt.sys [2009-07-02 108072]
S3 btwl2cap;Bluetooth L2CAP Service; C:\Windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
S3 btwrchid;btwrchid; C:\Windows\system32\DRIVERS\btwrchid.sys [2009-07-02 18344]
S3 DKbFltr;Dritek Keyboard Filter Driver; C:\Windows\system32\DRIVERS\DKbFltr.sys []
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2008-09-18 2169944]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\Windows\system32\DRIVERS\netaapl.sys [2010-04-19 18432]
S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista; C:\Windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
S3 nmwcd;Nokia USB Phone Parent; C:\Windows\system32\drivers\ccdcmb.sys [2010-02-26 18176]
S3 nmwcdc;Nokia USB Generic; C:\Windows\system32\drivers\ccdcmbo.sys [2010-02-26 22528]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; C:\Windows\system32\drivers\nmwcdnsu.sys [2010-02-26 137344]
S3 nmwcdnsuc;Nokia USB Flashing Generic; C:\Windows\system32\drivers\nmwcdnsuc.sys [2010-02-26 8320]
S3 nuvotoncir;Nuvoton IR Transceiver; C:\Windows\system32\DRIVERS\nuvotoncir.sys [2009-06-24 44544]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader; C:\Windows\System32\Drivers\RtsUStor.sys [2009-08-10 171520]
S3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver; C:\Windows\system32\DRIVERS\wg111v3.sys [2009-11-18 376832]
S3 RTSTOR;Realtek USB 2.0 Card Reader; C:\Windows\system32\drivers\RTSTOR.SYS []
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 TcUsb;TC USB Kernel Driver; C:\Windows\System32\Drivers\tcusb.sys [2008-04-28 50576]
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerflt.sys [2010-02-26 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2010-09-28 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2009-07-14 27648]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltj.sys [2010-02-26 8192]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S4 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-09-23 691696]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2009-08-18 176128]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2010-10-07 345376]
R2 btwdins;Bluetooth Service; C:\Program Files\WIDCOMM\Bluetooth Software\btwdins.exe [2009-07-01 582944]
R2 CLHNService;CLHNService; C:\Program Files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-10-04 69632]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 eDataSecurity Service;eDataSecurity Service; C:\Program Files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe [2008-07-29 500784]
R2 ETService;Empowering Technology Service; C:\Program Files\Acer\Empowering Technology\Service\ETService.exe [2008-11-28 24576]
R2 IAANTMON;Intel(R) Matrix Storage Event Monitor; C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe [2009-06-04 354840]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2007-01-09 272024]
R2 SeaPort;SeaPort; C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-05-14 249136]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-07 1343400]
S4 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-10-16 37664]
S4 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335; C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-07 30192]
S4 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-11-17 820008]
S4 MobilityService;MobilityService; C:\Acer\Mobility Center\MobilityService.exe [2007-12-06 110592]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NTIBackupSvc;NTI Backup Now 5 Backup Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-09-23 50424]
S4 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service; C:\Program Files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-09-23 144632]
S4 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-06-14 615936]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosim o preventivku sem tam se seka
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o preventivku sem tam se seka
Před 5 dny jste dělal sken ComboFix. Dejte z něj log.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: prosim o preventivku sem tam se seka
ComboFix 10-11-17.01 - Petr 17.11.2010 21:44:09.2.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3037.1942 [GMT 1:00]
Spuštěný z: c:\users\Petr\Desktop\ComboFix.exe
.
ADS - system32: deleted 12 bytes in 1 streams.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\Petr\Desktop\Internet Explorer.lnk
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
((((((((((((((((((((((((( Soubory vytvořené od 2010-10-17 do 2010-11-17 )))))))))))))))))))))))))))))))
.
2010-11-17 20:29 . 2010-11-17 20:29 301568 ----a-w- c:\windows\system32\cmd.execf
2010-11-17 20:14 . 2010-11-17 20:14 -------- d-----w- c:\users\Petr\AppData\Local\Acer Arcade Deluxe
2010-11-17 20:14 . 2010-11-17 20:14 -------- d-----w- c:\programdata\PlayMovie
2010-11-17 20:14 . 2010-11-17 20:14 -------- d-----w- c:\users\Petr\AppData\Local\PlayMovie
2010-11-17 20:10 . 2009-04-24 08:03 873472 ----a-w- c:\windows\system32\drivers\WlanGZG.sys
2010-11-17 20:10 . 2009-04-24 08:03 94208 ----a-w- c:\windows\system32\ZDCN50.dll
2010-11-17 20:05 . 2010-11-17 20:14 -------- d-----w- c:\users\Petr\AppData\Roaming\PowerCinema
2010-11-17 20:03 . 2010-11-17 20:06 -------- d-----w- c:\program files\Acer Arcade Deluxe
2010-11-17 18:52 . 2010-11-17 20:11 -------- d-----w- c:\program files\ZyXEL G-202
2010-11-16 00:21 . 2010-11-16 00:22 -------- d-----w- c:\users\Petr\AppData\Local\OpenCandy
2010-11-16 00:21 . 2010-11-16 00:21 -------- d-----w- c:\users\Petr\AppData\Roaming\OpenCandy
2010-11-16 00:21 . 2010-11-16 00:30 -------- d-----w- c:\program files\MediaInfo
2010-11-16 00:16 . 2010-11-16 00:16 -------- d-----w- c:\program files\Music NFO Builder
2010-11-15 22:19 . 2010-11-16 01:08 -------- d-----w- c:\users\Petr\AppData\Roaming\BitComet
2010-11-15 22:19 . 2010-11-15 22:19 -------- d-----w- c:\program files\BitComet
2010-11-15 21:53 . 2010-11-15 21:53 -------- d-----w- c:\programdata\Media Center Studio
2010-11-15 21:51 . 2010-11-17 19:43 -------- d-----w- c:\users\Petr\AppData\Local\Deployment
2010-11-15 21:24 . 2010-11-15 21:24 -------- d-----w- c:\program files\Glary Utilities
2010-11-14 22:11 . 2010-11-14 22:11 -------- d-----w- c:\users\Petr\AppData\Roaming\InstallShield
2010-11-14 20:13 . 2010-11-14 20:13 -------- d-----w- c:\users\Petr\AppData\Roaming\gtk-2.0
2010-11-14 14:03 . 2010-11-14 14:03 -------- d-----w- c:\program files\iPod
2010-11-14 14:03 . 2010-11-14 14:04 -------- d-----w- c:\program files\iTunes
2010-11-14 13:14 . 2010-11-14 13:14 -------- d-----w- c:\windows\system32\CatRoot_bak
2010-11-13 15:13 . 2010-11-13 15:13 219200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2010-11-13 15:13 . 2010-11-13 15:13 -------- d-----w- c:\program files\DAEMON Tools Pro
2010-11-13 14:59 . 2010-11-13 20:23 -------- d-----w- c:\users\Petr\AppData\Roaming\DAEMON Tools Pro
2010-11-13 14:59 . 2010-11-13 14:59 -------- d-----w- c:\programdata\DAEMON Tools Pro
2010-11-12 23:34 . 2010-11-14 15:06 -------- d-----w- c:\users\Petr\AppData\Roaming\Wireshark
2010-11-12 22:46 . 2010-11-12 22:46 -------- d-----w- c:\users\Petr\signapplet
2010-11-11 17:02 . 2010-11-14 22:09 -------- d-----w- c:\users\Petr\AppData\Roaming\Zoner
2010-11-11 17:02 . 2010-11-11 17:02 -------- d-----w- c:\users\Petr\AppData\Local\Zoner
2010-11-11 02:04 . 2010-11-11 02:14 -------- d-----w- c:\users\Petr\Sharerapid
2010-11-10 00:51 . 2010-11-10 00:51 -------- d-----w- c:\users\Petr\AppData\Roaming\iScreensaver
2010-11-09 00:50 . 2010-11-09 00:50 -------- d-----w- c:\program files\Common Files\Skype
2010-11-09 00:50 . 2010-11-09 00:50 -------- d-----r- c:\program files\Skype
2010-11-08 01:11 . 2010-11-08 01:11 -------- d-----w- c:\users\Petr\AppData\Roaming\Megaupload
2010-11-07 20:54 . 2010-11-07 20:54 -------- d-----w- c:\users\Petr\AppData\Roaming\QuickStoresToolbar
2010-11-07 20:44 . 2010-11-07 20:44 -------- d-----w- c:\users\Petr\AppData\Roaming\HTML Executable
2010-11-07 20:38 . 2010-11-07 20:38 -------- d-----w- c:\program files\Common Files\Java
2010-11-07 20:38 . 2010-11-07 20:38 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-07 20:38 . 2010-11-07 20:38 -------- d-----w- c:\program files\Java
2010-11-07 20:37 . 2010-11-08 18:34 -------- d-----w- c:\program files\Torrent Episode Downloader
2010-10-29 20:21 . 1995-07-31 11:44 212480 ----a-w- c:\windows\system32\PCDLIB32.DLL
2010-10-29 20:21 . 1997-01-18 09:40 299520 ----a-w- c:\windows\uninst.exe
2010-10-29 19:59 . 2010-10-29 21:16 -------- d-----w- c:\users\Petr\AppData\Roaming\gtc
2010-10-28 14:14 . 2010-10-28 14:14 -------- d-----w- c:\users\Petr\AppData\Local\NokiaAccount
2010-10-28 00:16 . 2010-11-14 22:12 -------- d-----w- c:\program files\izyPlayer
2010-10-28 00:16 . 2010-10-28 00:16 -------- d-----w- c:\programdata\GoQ
2010-10-27 22:51 . 2010-10-27 22:51 -------- d-----w- c:\programdata\NokiaInstallerCache
2010-10-27 20:59 . 2010-10-29 15:24 -------- d-----w- c:\users\Petr\AppData\Roaming\Vidalia
2010-10-26 19:52 . 2010-10-26 19:52 -------- d-----w- c:\programdata\FNET
2010-10-26 19:52 . 2010-10-26 19:55 -------- d-----w- c:\program files\PcCloneEX
2010-10-26 19:50 . 2010-08-04 06:18 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-10-26 19:50 . 2010-08-04 06:17 417792 ----a-w- c:\windows\system32\msdri.dll
2010-10-26 19:50 . 2010-08-04 06:15 204288 ----a-w- c:\windows\system32\MSNP.ax
2010-10-26 19:50 . 2010-08-04 06:15 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2010-10-26 19:50 . 2010-07-13 05:22 26504 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2010-10-26 01:03 . 2010-10-26 01:03 -------- d-----w- c:\windows\PCHEALTH
2010-10-25 21:22 . 2010-10-26 19:55 -------- d-----w- c:\program files\NewtonDictate 2.2
2010-10-25 21:22 . 2010-10-25 23:41 -------- d-----w- c:\users\Petr\AppData\Roaming\NewtonVoice
2010-10-24 22:27 . 2010-10-24 22:27 -------- d-----w- c:\users\Petr\AppData\Roaming\Synaptics
2010-10-24 22:25 . 2010-10-24 22:25 -------- d-----w- c:\users\Petr\AppData\Local\Downloaded Installations
2010-10-23 21:43 . 2010-10-23 21:43 -------- d-----w- c:\users\Petr\AppData\Roaming\WindSolutions
2010-10-23 21:43 . 2010-10-23 21:43 -------- d-----w- c:\programdata\WindSolutions
2010-10-21 17:55 . 2010-10-21 17:55 -------- d-----w- c:\users\Petr\AppData\Local\GHISLER
2010-10-21 17:54 . 2010-10-21 17:54 -------- d-----w- C:\totalcmd
2010-10-21 17:54 . 2010-10-21 17:54 -------- d-----w- c:\users\Petr\AppData\Roaming\GHISLER
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\UC.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\RAR.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\PKZIP.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\LHA.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\ARJ.PIF
2010-10-20 18:47 . 2010-11-14 13:59 -------- d-----w- c:\users\Petr\AppData\Roaming\Apple Computer
2010-10-20 18:47 . 2009-05-18 11:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2010-10-20 18:47 . 2008-04-17 10:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2010-10-20 18:46 . 2010-10-20 18:47 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-10-20 18:46 . 2010-10-20 18:46 -------- d-----w- c:\program files\Apple Software Update
2010-10-20 18:34 . 2010-11-14 14:05 -------- d-----w- c:\users\Petr\AppData\Local\Apple Computer
2010-10-20 18:31 . 2010-10-20 18:31 -------- d-----w- c:\users\Petr\AppData\Local\myPod_Apps
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2010-10-20 18:30 . 2010-10-20 18:46 -------- d-----w- c:\programdata\Apple Computer
2010-10-20 18:29 . 2010-11-14 14:03 -------- d-----w- c:\program files\Common Files\Apple
2010-10-20 18:29 . 2010-10-20 18:29 -------- d-----w- c:\users\Petr\AppData\Local\Apple
2010-10-20 18:29 . 2010-10-20 18:46 -------- d-----w- c:\programdata\Apple
2010-10-20 18:16 . 2010-10-20 18:17 -------- d-----w- c:\program files\iPhone PC Suite
2010-10-20 17:29 . 2010-10-20 17:29 -------- d-----w- c:\users\Petr\AppData\Local\Mozilla
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-12 19:42 . 2010-10-12 19:42 1 ----a-w- c:\users\Petr\AppData\Local\ddinstall.bin
2010-09-28 14:44 . 2010-09-28 14:44 41984 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2010-09-28 14:44 . 2010-09-28 14:44 4184352 ----a-w- c:\windows\system32\usbaaplrc.dll
2010-09-23 18:41 . 2010-08-21 12:26 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-08 09:17 . 2010-09-08 09:17 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-09-08 09:17 . 2010-09-08 09:17 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-09-07 15:12 . 2010-07-07 22:16 38848 ----a-w- c:\windows\avastSS.scr
2010-09-07 15:11 . 2010-06-04 22:06 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-07 14:52 . 2010-06-04 22:11 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-09-07 14:52 . 2010-06-04 22:11 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-09-07 14:47 . 2010-06-04 22:11 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-09-07 14:47 . 2010-06-04 22:11 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-09-07 14:47 . 2010-06-04 22:11 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-09-05 21:35 . 2010-09-05 21:35 119808 ----a-r- c:\users\Petr\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2010-09-01 04:23 . 2010-10-14 15:14 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-01 02:34 . 2010-10-14 15:14 2327552 ----a-w- c:\windows\system32\win32k.sys
2010-08-31 22:46 . 2010-09-30 20:35 1355264 ----a-w- c:\windows\system32\jscript9.dll
2010-08-31 22:44 . 2010-09-30 20:35 367104 ----a-w- c:\windows\system32\html.iec
2010-08-31 22:44 . 2010-09-30 20:34 1448448 ----a-w- c:\windows\system32\inetcpl.cpl
2010-08-31 22:44 . 2010-09-30 20:34 1122304 ----a-w- c:\windows\system32\wininet.dll
2010-08-31 22:44 . 2010-09-30 20:35 424960 ----a-w- c:\windows\system32\vbscript.dll
2010-08-31 22:43 . 2010-09-30 20:35 23552 ----a-w- c:\windows\system32\licmgr10.dll
2010-08-31 22:43 . 2010-09-30 20:34 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2010-08-31 22:43 . 2010-09-30 20:34 114176 ----a-w- c:\windows\system32\iesysprep.dll
2010-08-31 22:43 . 2010-09-30 20:35 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2010-08-31 22:43 . 2010-09-30 20:35 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2010-08-31 22:42 . 2010-09-30 20:35 51200 ----a-w- c:\windows\system32\admparse.dll
2010-08-31 22:42 . 2010-09-30 20:34 75264 ----a-w- c:\windows\system32\iesetup.dll
2010-08-31 22:42 . 2010-09-30 20:35 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2010-08-31 22:42 . 2010-09-30 20:34 150016 ----a-w- c:\windows\system32\iexpress.exe
2010-08-31 22:42 . 2010-09-30 20:34 149504 ----a-w- c:\windows\system32\wextract.exe
2010-08-31 22:42 . 2010-09-30 20:34 33280 ----a-w- c:\windows\system32\imgutil.dll
2010-08-31 22:42 . 2010-09-30 20:35 48640 ----a-w- c:\windows\system32\mshtmler.dll
2010-08-31 22:42 . 2010-09-30 20:35 11264 ----a-w- c:\windows\system32\mshta.exe
2010-08-31 22:42 . 2010-09-30 20:35 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-08-31 22:42 . 2010-09-30 20:35 63488 ----a-w- c:\windows\system32\tdc.ocx
2010-08-31 22:41 . 2010-09-30 20:35 160768 ----a-w- c:\windows\system32\msls31.dll
2010-08-31 04:32 . 2010-10-14 15:14 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 04:32 . 2010-10-14 15:14 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-27 05:46 . 2010-10-14 15:14 168448 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 03:31 . 2010-10-14 15:14 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-27 03:30 . 2010-10-14 15:14 308736 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-08-27 03:30 . 2010-10-14 15:14 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-26 04:39 . 2010-10-14 15:14 109056 ----a-w- c:\windows\system32\t2embed.dll
2010-08-21 12:52 . 2010-08-15 12:03 138184 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-08-21 12:51 . 2010-08-15 12:03 183112 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-08-21 05:36 . 2010-10-14 15:14 738816 ----a-w- c:\windows\system32\wmpmde.dll
2010-08-21 05:36 . 2010-10-14 15:14 224256 ----a-w- c:\windows\system32\schannel.dll
2010-08-21 05:33 . 2010-10-14 15:14 530432 ----a-w- c:\windows\system32\comctl32.dll
2010-08-21 05:32 . 2010-09-19 16:26 316928 ----a-w- c:\windows\system32\spoolsv.exe
2007-11-07 01:19 . 2010-11-08 01:12 568832 ----a-w- c:\program files\opera\program\plugins\msvcp90.dll
2007-11-07 01:19 . 2010-11-08 01:12 655872 ----a-w- c:\program files\opera\program\plugins\msvcr90.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-07-29 16:52 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CursorFX"="c:\program files\Stardock\CursorFX\CursorFX.exe" [2008-07-07 416768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-11-28 417792]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-09-07 2838912]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1049896]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-10-08 147456]
"CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-10-08 167936]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2008-10-17 167936]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
NETGEAR WG111v3 Smart Wizard.lnk - c:\program files\NETGEAR\WG111v3\WG111v3.exe [2007-9-14 1695744]
ZyXEL G-202 Wireless Adapter Utility.lnk - c:\program files\ZyXEL G-202\ZyXEL G-202.exe [2010-11-17 10838016]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
backup=c:\windows\pss\Bluetooth.lnk.CommonStartup
backupExtension=.CommonStartup
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ovi Files Connector.lnk]
backup=c:\windows\pss\Ovi Files Connector.lnk.CommonStartup
backupExtension=.CommonStartup
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registration Assassin's Creed.LNK]
backup=c:\windows\pss\Registration Assassin's Creed.LNK.Startup
backupExtension=.Startup
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdvTor
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeDeluxeAgent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogonStudio
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mask My IP
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMusic FastStart
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vidalia
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 01:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-09-16 20:04 1164584 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2010-07-07 22:22 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-05-31 00:14 136176 ----atw- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2010-10-27 12:20 133432 ----a-w- c:\program files\ICQ7.1\ICQ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2010-05-14 08:32 1479680 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2010-01-12 20:02 37888 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"Microsoft Default Manager"="c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"AppleSyncNotifier"=c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
R1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 A310;AVerMedia A310 DVB-T;c:\windows\system32\DRIVERS\AVerA310USB.sys [2008-07-03 26752]
R3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-07-03 47104]
R3 BTHprint;Třída tiskárny protokolu Bluetooth (Microsoft);c:\windows\system32\DRIVERS\bthprint.sys [2009-07-13 50688]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl.sys [2010-04-19 18432]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2010-02-26 137344]
R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2010-02-26 8320]
R3 nuvotoncir;Nuvoton IR Transceiver;c:\windows\system32\DRIVERS\nuvotoncir.sys [2009-06-24 44544]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-08-10 171520]
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver;c:\windows\system32\DRIVERS\wg111v3.sys [2009-11-18 376832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-07 1343400]
R4 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-07 30192]
R4 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-09-23 50424]
R4 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-09-23 144632]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-23 691696]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2010-11-13 219200]
S1 VWiFiFlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};Power Control [2010/11/17 21:06];c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-10-17 13:49 87536]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-10-04 69632]
S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-11-28 24576]
S3 KMWDFILTERx86;HIDServiceDesc;c:\windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
S3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 winbondcir;Winbond IR Transceiver;c:\windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
S3 XG762_VS;ZyXEL 802.11g XG762 1211 Vista Driver;c:\windows\system32\DRIVERS\WlanGZG.sys [2009-04-24 873472]
.
Obsah adresáře 'Naplánované úlohy'
2010-11-17 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2010-11-15 20:55]
2010-11-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000Core.job
- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-31 00:14]
2010-11-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000UA.job
- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-31 00:14]
2010-10-02 c:\windows\Tasks\Install_NSS.job
- c:\program files\DivX\Symantec\scstubinstaller.exe [2010-03-08 18:00]
.
.
------- Doplňkový sken -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&i ... urceid=ie7
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://www.msn.com
uInternet Settings,ProxyOverride = local
IE: Stáhnout odkaz s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\xilzmbho.default\
FF - prefs.js: network.proxy.type - 4
FF - component: c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\components\FirefoxExtension.dll
FF - component: c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\xilzmbho.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\components\IBitCometExtension.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\users\Petr\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\windows\system32\Wat\npWatWeb.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
FF - user.js: browser.cache.disk.capacity - 1024000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKCU-Run-WindowsWelcomeCenter - (no file)
MSConfigStartUp-Mega Manager - c:\program files\Megaupload\Mega Manager\MegaManager.exe
AddRemove-CursorFX - c:\programdata\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}\CursorFX_setup.exe
AddRemove-Nokia Ovi Suite - c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
AddRemove-Nokia PC Suite - c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze_web.exe
AddRemove-{C1080852-065E-4991-9260-F3756E3CC182} - c:\programdata\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}\CursorFX_setup.exe
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-1611992166-1054670808-751486312-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{4E085142-9303-D942-372C-B709CD58809A}*]
"iagjlcmhdjpbpfkffn"=hex:6b,61,63,6d,66,63,62,61,6f,68,68,67,6f,63,70,62,62,67,
6d,62,6e,70,00,00
"hamibfgbnfacbdnd"=hex:6b,61,63,6d,66,63,62,61,6f,68,68,67,6f,63,70,62,62,67,
6d,62,6e,70,00,00
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:0000002e
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'Explorer.exe'(2800)
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
c:\program files\DAEMON Tools Pro\DTShl32.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\DAEMON Tools Pro\DTShellHlp.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2010-11-17 21:55:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-11-17 20:55
ComboFix2.txt 2010-08-30 20:23
Před spuštěním: Volných bajtů: 87 172 550 656
Po spuštění: Volných bajtů: 86 895 812 608
- - End Of File - - 29102F0D63D5D0F70D2ACC18E6DB1D60
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3037.1942 [GMT 1:00]
Spuštěný z: c:\users\Petr\Desktop\ComboFix.exe
.
ADS - system32: deleted 12 bytes in 1 streams.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\Petr\Desktop\Internet Explorer.lnk
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_NPF
((((((((((((((((((((((((( Soubory vytvořené od 2010-10-17 do 2010-11-17 )))))))))))))))))))))))))))))))
.
2010-11-17 20:29 . 2010-11-17 20:29 301568 ----a-w- c:\windows\system32\cmd.execf
2010-11-17 20:14 . 2010-11-17 20:14 -------- d-----w- c:\users\Petr\AppData\Local\Acer Arcade Deluxe
2010-11-17 20:14 . 2010-11-17 20:14 -------- d-----w- c:\programdata\PlayMovie
2010-11-17 20:14 . 2010-11-17 20:14 -------- d-----w- c:\users\Petr\AppData\Local\PlayMovie
2010-11-17 20:10 . 2009-04-24 08:03 873472 ----a-w- c:\windows\system32\drivers\WlanGZG.sys
2010-11-17 20:10 . 2009-04-24 08:03 94208 ----a-w- c:\windows\system32\ZDCN50.dll
2010-11-17 20:05 . 2010-11-17 20:14 -------- d-----w- c:\users\Petr\AppData\Roaming\PowerCinema
2010-11-17 20:03 . 2010-11-17 20:06 -------- d-----w- c:\program files\Acer Arcade Deluxe
2010-11-17 18:52 . 2010-11-17 20:11 -------- d-----w- c:\program files\ZyXEL G-202
2010-11-16 00:21 . 2010-11-16 00:22 -------- d-----w- c:\users\Petr\AppData\Local\OpenCandy
2010-11-16 00:21 . 2010-11-16 00:21 -------- d-----w- c:\users\Petr\AppData\Roaming\OpenCandy
2010-11-16 00:21 . 2010-11-16 00:30 -------- d-----w- c:\program files\MediaInfo
2010-11-16 00:16 . 2010-11-16 00:16 -------- d-----w- c:\program files\Music NFO Builder
2010-11-15 22:19 . 2010-11-16 01:08 -------- d-----w- c:\users\Petr\AppData\Roaming\BitComet
2010-11-15 22:19 . 2010-11-15 22:19 -------- d-----w- c:\program files\BitComet
2010-11-15 21:53 . 2010-11-15 21:53 -------- d-----w- c:\programdata\Media Center Studio
2010-11-15 21:51 . 2010-11-17 19:43 -------- d-----w- c:\users\Petr\AppData\Local\Deployment
2010-11-15 21:24 . 2010-11-15 21:24 -------- d-----w- c:\program files\Glary Utilities
2010-11-14 22:11 . 2010-11-14 22:11 -------- d-----w- c:\users\Petr\AppData\Roaming\InstallShield
2010-11-14 20:13 . 2010-11-14 20:13 -------- d-----w- c:\users\Petr\AppData\Roaming\gtk-2.0
2010-11-14 14:03 . 2010-11-14 14:03 -------- d-----w- c:\program files\iPod
2010-11-14 14:03 . 2010-11-14 14:04 -------- d-----w- c:\program files\iTunes
2010-11-14 13:14 . 2010-11-14 13:14 -------- d-----w- c:\windows\system32\CatRoot_bak
2010-11-13 15:13 . 2010-11-13 15:13 219200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2010-11-13 15:13 . 2010-11-13 15:13 -------- d-----w- c:\program files\DAEMON Tools Pro
2010-11-13 14:59 . 2010-11-13 20:23 -------- d-----w- c:\users\Petr\AppData\Roaming\DAEMON Tools Pro
2010-11-13 14:59 . 2010-11-13 14:59 -------- d-----w- c:\programdata\DAEMON Tools Pro
2010-11-12 23:34 . 2010-11-14 15:06 -------- d-----w- c:\users\Petr\AppData\Roaming\Wireshark
2010-11-12 22:46 . 2010-11-12 22:46 -------- d-----w- c:\users\Petr\signapplet
2010-11-11 17:02 . 2010-11-14 22:09 -------- d-----w- c:\users\Petr\AppData\Roaming\Zoner
2010-11-11 17:02 . 2010-11-11 17:02 -------- d-----w- c:\users\Petr\AppData\Local\Zoner
2010-11-11 02:04 . 2010-11-11 02:14 -------- d-----w- c:\users\Petr\Sharerapid
2010-11-10 00:51 . 2010-11-10 00:51 -------- d-----w- c:\users\Petr\AppData\Roaming\iScreensaver
2010-11-09 00:50 . 2010-11-09 00:50 -------- d-----w- c:\program files\Common Files\Skype
2010-11-09 00:50 . 2010-11-09 00:50 -------- d-----r- c:\program files\Skype
2010-11-08 01:11 . 2010-11-08 01:11 -------- d-----w- c:\users\Petr\AppData\Roaming\Megaupload
2010-11-07 20:54 . 2010-11-07 20:54 -------- d-----w- c:\users\Petr\AppData\Roaming\QuickStoresToolbar
2010-11-07 20:44 . 2010-11-07 20:44 -------- d-----w- c:\users\Petr\AppData\Roaming\HTML Executable
2010-11-07 20:38 . 2010-11-07 20:38 -------- d-----w- c:\program files\Common Files\Java
2010-11-07 20:38 . 2010-11-07 20:38 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-07 20:38 . 2010-11-07 20:38 -------- d-----w- c:\program files\Java
2010-11-07 20:37 . 2010-11-08 18:34 -------- d-----w- c:\program files\Torrent Episode Downloader
2010-10-29 20:21 . 1995-07-31 11:44 212480 ----a-w- c:\windows\system32\PCDLIB32.DLL
2010-10-29 20:21 . 1997-01-18 09:40 299520 ----a-w- c:\windows\uninst.exe
2010-10-29 19:59 . 2010-10-29 21:16 -------- d-----w- c:\users\Petr\AppData\Roaming\gtc
2010-10-28 14:14 . 2010-10-28 14:14 -------- d-----w- c:\users\Petr\AppData\Local\NokiaAccount
2010-10-28 00:16 . 2010-11-14 22:12 -------- d-----w- c:\program files\izyPlayer
2010-10-28 00:16 . 2010-10-28 00:16 -------- d-----w- c:\programdata\GoQ
2010-10-27 22:51 . 2010-10-27 22:51 -------- d-----w- c:\programdata\NokiaInstallerCache
2010-10-27 20:59 . 2010-10-29 15:24 -------- d-----w- c:\users\Petr\AppData\Roaming\Vidalia
2010-10-26 19:52 . 2010-10-26 19:52 -------- d-----w- c:\programdata\FNET
2010-10-26 19:52 . 2010-10-26 19:55 -------- d-----w- c:\program files\PcCloneEX
2010-10-26 19:50 . 2010-08-04 06:18 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-10-26 19:50 . 2010-08-04 06:17 417792 ----a-w- c:\windows\system32\msdri.dll
2010-10-26 19:50 . 2010-08-04 06:15 204288 ----a-w- c:\windows\system32\MSNP.ax
2010-10-26 19:50 . 2010-08-04 06:15 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2010-10-26 19:50 . 2010-07-13 05:22 26504 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2010-10-26 01:03 . 2010-10-26 01:03 -------- d-----w- c:\windows\PCHEALTH
2010-10-25 21:22 . 2010-10-26 19:55 -------- d-----w- c:\program files\NewtonDictate 2.2
2010-10-25 21:22 . 2010-10-25 23:41 -------- d-----w- c:\users\Petr\AppData\Roaming\NewtonVoice
2010-10-24 22:27 . 2010-10-24 22:27 -------- d-----w- c:\users\Petr\AppData\Roaming\Synaptics
2010-10-24 22:25 . 2010-10-24 22:25 -------- d-----w- c:\users\Petr\AppData\Local\Downloaded Installations
2010-10-23 21:43 . 2010-10-23 21:43 -------- d-----w- c:\users\Petr\AppData\Roaming\WindSolutions
2010-10-23 21:43 . 2010-10-23 21:43 -------- d-----w- c:\programdata\WindSolutions
2010-10-21 17:55 . 2010-10-21 17:55 -------- d-----w- c:\users\Petr\AppData\Local\GHISLER
2010-10-21 17:54 . 2010-10-21 17:54 -------- d-----w- C:\totalcmd
2010-10-21 17:54 . 2010-10-21 17:54 -------- d-----w- c:\users\Petr\AppData\Roaming\GHISLER
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\UC.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\RAR.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\PKZIP.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\PKUNZIP.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\NOCLOSE.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\LHA.PIF
2010-10-21 17:54 . 2010-07-07 05:55 545 ----a-w- c:\windows\ARJ.PIF
2010-10-20 18:47 . 2010-11-14 13:59 -------- d-----w- c:\users\Petr\AppData\Roaming\Apple Computer
2010-10-20 18:47 . 2009-05-18 11:17 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2010-10-20 18:47 . 2008-04-17 10:12 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2010-10-20 18:46 . 2010-10-20 18:47 -------- d-----w- c:\programdata\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-10-20 18:46 . 2010-10-20 18:46 -------- d-----w- c:\program files\Apple Software Update
2010-10-20 18:34 . 2010-11-14 14:05 -------- d-----w- c:\users\Petr\AppData\Local\Apple Computer
2010-10-20 18:31 . 2010-10-20 18:31 -------- d-----w- c:\users\Petr\AppData\Local\myPod_Apps
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin7.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin6.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin5.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin4.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin3.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin2.dll
2010-10-20 18:30 . 2010-10-20 18:30 159744 ----a-w- c:\program files\Internet Explorer\Plugins\npqtplugin.dll
2010-10-20 18:30 . 2010-10-20 18:46 -------- d-----w- c:\programdata\Apple Computer
2010-10-20 18:29 . 2010-11-14 14:03 -------- d-----w- c:\program files\Common Files\Apple
2010-10-20 18:29 . 2010-10-20 18:29 -------- d-----w- c:\users\Petr\AppData\Local\Apple
2010-10-20 18:29 . 2010-10-20 18:46 -------- d-----w- c:\programdata\Apple
2010-10-20 18:16 . 2010-10-20 18:17 -------- d-----w- c:\program files\iPhone PC Suite
2010-10-20 17:29 . 2010-10-20 17:29 -------- d-----w- c:\users\Petr\AppData\Local\Mozilla
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-12 19:42 . 2010-10-12 19:42 1 ----a-w- c:\users\Petr\AppData\Local\ddinstall.bin
2010-09-28 14:44 . 2010-09-28 14:44 41984 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2010-09-28 14:44 . 2010-09-28 14:44 4184352 ----a-w- c:\windows\system32\usbaaplrc.dll
2010-09-23 18:41 . 2010-08-21 12:26 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-08 09:17 . 2010-09-08 09:17 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-09-08 09:17 . 2010-09-08 09:17 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-09-07 15:12 . 2010-07-07 22:16 38848 ----a-w- c:\windows\avastSS.scr
2010-09-07 15:11 . 2010-06-04 22:06 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-07 14:52 . 2010-06-04 22:11 46672 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2010-09-07 14:52 . 2010-06-04 22:11 165584 ----a-w- c:\windows\system32\drivers\aswSP.sys
2010-09-07 14:47 . 2010-06-04 22:11 23376 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2010-09-07 14:47 . 2010-06-04 22:11 50768 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2010-09-07 14:47 . 2010-06-04 22:11 17744 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2010-09-05 21:35 . 2010-09-05 21:35 119808 ----a-r- c:\users\Petr\AppData\Roaming\Microsoft\Installer\{CCF298AF-9CE1-4B26-B251-486E98A34789}\icons.exe
2010-09-01 04:23 . 2010-10-14 15:14 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-01 02:34 . 2010-10-14 15:14 2327552 ----a-w- c:\windows\system32\win32k.sys
2010-08-31 22:46 . 2010-09-30 20:35 1355264 ----a-w- c:\windows\system32\jscript9.dll
2010-08-31 22:44 . 2010-09-30 20:35 367104 ----a-w- c:\windows\system32\html.iec
2010-08-31 22:44 . 2010-09-30 20:34 1448448 ----a-w- c:\windows\system32\inetcpl.cpl
2010-08-31 22:44 . 2010-09-30 20:34 1122304 ----a-w- c:\windows\system32\wininet.dll
2010-08-31 22:44 . 2010-09-30 20:35 424960 ----a-w- c:\windows\system32\vbscript.dll
2010-08-31 22:43 . 2010-09-30 20:35 23552 ----a-w- c:\windows\system32\licmgr10.dll
2010-08-31 22:43 . 2010-09-30 20:34 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2010-08-31 22:43 . 2010-09-30 20:34 114176 ----a-w- c:\windows\system32\iesysprep.dll
2010-08-31 22:43 . 2010-09-30 20:35 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2010-08-31 22:43 . 2010-09-30 20:35 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2010-08-31 22:42 . 2010-09-30 20:35 51200 ----a-w- c:\windows\system32\admparse.dll
2010-08-31 22:42 . 2010-09-30 20:34 75264 ----a-w- c:\windows\system32\iesetup.dll
2010-08-31 22:42 . 2010-09-30 20:35 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2010-08-31 22:42 . 2010-09-30 20:34 150016 ----a-w- c:\windows\system32\iexpress.exe
2010-08-31 22:42 . 2010-09-30 20:34 149504 ----a-w- c:\windows\system32\wextract.exe
2010-08-31 22:42 . 2010-09-30 20:34 33280 ----a-w- c:\windows\system32\imgutil.dll
2010-08-31 22:42 . 2010-09-30 20:35 48640 ----a-w- c:\windows\system32\mshtmler.dll
2010-08-31 22:42 . 2010-09-30 20:35 11264 ----a-w- c:\windows\system32\mshta.exe
2010-08-31 22:42 . 2010-09-30 20:35 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-08-31 22:42 . 2010-09-30 20:35 63488 ----a-w- c:\windows\system32\tdc.ocx
2010-08-31 22:41 . 2010-09-30 20:35 160768 ----a-w- c:\windows\system32\msls31.dll
2010-08-31 04:32 . 2010-10-14 15:14 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 04:32 . 2010-10-14 15:14 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-27 05:46 . 2010-10-14 15:14 168448 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 03:31 . 2010-10-14 15:14 310784 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-27 03:30 . 2010-10-14 15:14 308736 ----a-w- c:\windows\system32\drivers\srv2.sys
2010-08-27 03:30 . 2010-10-14 15:14 113664 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-08-26 04:39 . 2010-10-14 15:14 109056 ----a-w- c:\windows\system32\t2embed.dll
2010-08-21 12:52 . 2010-08-15 12:03 138184 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2010-08-21 12:51 . 2010-08-15 12:03 183112 ----a-w- c:\windows\system32\PnkBstrB.exe
2010-08-21 05:36 . 2010-10-14 15:14 738816 ----a-w- c:\windows\system32\wmpmde.dll
2010-08-21 05:36 . 2010-10-14 15:14 224256 ----a-w- c:\windows\system32\schannel.dll
2010-08-21 05:33 . 2010-10-14 15:14 530432 ----a-w- c:\windows\system32\comctl32.dll
2010-08-21 05:32 . 2010-09-19 16:26 316928 ----a-w- c:\windows\system32\spoolsv.exe
2007-11-07 01:19 . 2010-11-08 01:12 568832 ----a-w- c:\program files\opera\program\plugins\msvcp90.dll
2007-11-07 01:19 . 2010-11-08 01:12 655872 ----a-w- c:\program files\opera\program\plugins\msvcr90.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\egisPSDP]
@="{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}"
[HKEY_CLASSES_ROOT\CLSID\{30A0A3F6-38AC-4C53-BB8B-0D95238E25BA}]
2008-07-29 16:52 121392 ----a-w- c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CursorFX"="c:\program files\Stardock\CursorFX\CursorFX.exe" [2008-07-07 416768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ePower_DMC"="c:\program files\Acer\Empowering Technology\ePower\ePower_DMC.exe" [2008-11-28 417792]
"IAAnotif"="c:\program files\Intel\Intel Matrix Storage Manager\iaanotif.exe" [2009-06-04 186904]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-09-07 2838912]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2008-04-25 1049896]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"ArcadeDeluxeAgent"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\ArcadeDeluxeAgent.exe" [2008-10-08 147456]
"CLMLServer"="c:\program files\Acer Arcade Deluxe\Acer Arcade Deluxe\Kernel\CLML\CLMLSvc.exe" [2008-10-08 167936]
"PlayMovie"="c:\program files\Acer Arcade Deluxe\PlayMovie\PMVService.exe" [2008-10-17 167936]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
NETGEAR WG111v3 Smart Wizard.lnk - c:\program files\NETGEAR\WG111v3\WG111v3.exe [2007-9-14 1695744]
ZyXEL G-202 Wireless Adapter Utility.lnk - c:\program files\ZyXEL G-202\ZyXEL G-202.exe [2010-11-17 10838016]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\Google\GOOGLE~1\GoogleDesktopNetwork3.dll
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer4"=wdmaud.drv
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Bluetooth.lnk]
backup=c:\windows\pss\Bluetooth.lnk.CommonStartup
backupExtension=.CommonStartup
[HKLM\~\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^Ovi Files Connector.lnk]
backup=c:\windows\pss\Ovi Files Connector.lnk.CommonStartup
backupExtension=.CommonStartup
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Registration Assassin's Creed.LNK]
backup=c:\windows\pss\Registration Assassin's Creed.LNK.Startup
backupExtension=.Startup
[HKLM\~\startupfolder\C:^Users^Petr^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk]
backup=c:\windows\pss\Výřezy obrazovky a spuštění aplikace OneNote 2007.lnk.Startup
backupExtension=.Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdvTor
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ArcadeDeluxeAgent
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogonStudio
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mask My IP
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMusic FastStart
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PlayMovie
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vidalia
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2008-06-12 01:38 34672 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
2010-09-16 20:04 1164584 ----a-w- c:\program files\DivX\DivX Update\DivXUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
2010-07-07 22:22 30192 ----a-w- c:\program files\Google\Google Desktop Search\GoogleDesktop.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2010-05-31 00:14 136176 ----atw- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
2010-10-27 12:20 133432 ----a-w- c:\program files\ICQ7.1\ICQ.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2010-05-14 08:32 1479680 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2010-01-12 20:02 37888 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-disabled]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
"Microsoft Default Manager"="c:\program files\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" -resume
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" -atboottime
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe"
"AppleSyncNotifier"=c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\setup\disabledrunkeys]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
R1 FNETURPX;FNETURPX;c:\windows\system32\drivers\FNETURPX.SYS [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 A310;AVerMedia A310 DVB-T;c:\windows\system32\DRIVERS\AVerA310USB.sys [2008-07-03 26752]
R3 BDASwCap;AVerMedia A310 BDA DVBT Capture Device;c:\windows\system32\drivers\AVerA310Cap.sys [2008-07-03 47104]
R3 BTHprint;Třída tiskárny protokolu Bluetooth (Microsoft);c:\windows\system32\DRIVERS\bthprint.sys [2009-07-13 50688]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2009-04-08 29472]
R3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\DRIVERS\netaapl.sys [2010-04-19 18432]
R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series – ovladač adaptéru pro 32bitový systém Windows Vista;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
R3 nmwcdnsu;Nokia USB Flashing Phone Parent;c:\windows\system32\drivers\nmwcdnsu.sys [2010-02-26 137344]
R3 nmwcdnsuc;Nokia USB Flashing Generic;c:\windows\system32\drivers\nmwcdnsuc.sys [2010-02-26 8320]
R3 nuvotoncir;Nuvoton IR Transceiver;c:\windows\system32\DRIVERS\nuvotoncir.sys [2009-06-24 44544]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\Drivers\RtsUStor.sys [2009-08-10 171520]
R3 RTL8187B;NETGEAR WG111v3 Wireless-G USB Adapter Win7 Driver;c:\windows\system32\DRIVERS\wg111v3.sys [2009-11-18 376832]
R3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [2009-07-13 14336]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-07-07 1343400]
R4 GoogleDesktopManager-051210-111108;Google Desktop Manager 5.9.1005.12335;c:\program files\Google\Google Desktop Search\GoogleDesktop.exe [2010-07-07 30192]
R4 NTIBackupSvc;NTI Backup Now 5 Backup Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\BackupSvc.exe [2008-09-23 50424]
R4 NTISchedulerSvc;NTI Backup Now 5 Scheduler Service;c:\program files\NewTech Infosystems\NTI Backup Now 5\SchedulerSvc.exe [2008-09-23 144632]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-23 691696]
S1 aswSP;aswSP; [x]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2010-11-13 219200]
S1 VWiFiFlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796};Power Control [2010/11/17 21:06];c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl [2008-10-17 13:49 87536]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2009-08-18 176128]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 50768]
S2 CLHNService;CLHNService;c:\program files\Acer Arcade Deluxe\HomeMedia\Kernel\DMP\CLHNService.exe [2008-10-04 69632]
S2 ETService;Empowering Technology Service;c:\program files\Acer\Empowering Technology\Service\ETService.exe [2008-11-28 24576]
S3 KMWDFILTERx86;HIDServiceDesc;c:\windows\system32\DRIVERS\KMWDFILTER.sys [2009-04-29 25088]
S3 NETw5s32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows 7 32 Bit;c:\windows\system32\DRIVERS\NETw5s32.sys [2009-09-15 6114816]
S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
S3 winbondcir;Winbond IR Transceiver;c:\windows\system32\DRIVERS\winbondcir.sys [2007-03-28 43008]
S3 XG762_VS;ZyXEL 802.11g XG762 1211 Vista Driver;c:\windows\system32\DRIVERS\WlanGZG.sys [2009-04-24 873472]
.
Obsah adresáře 'Naplánované úlohy'
2010-11-17 c:\windows\Tasks\GlaryInitialize.job
- c:\program files\Glary Utilities\initialize.exe [2010-11-15 20:55]
2010-11-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000Core.job
- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-31 00:14]
2010-11-17 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1611992166-1054670808-751486312-1000UA.job
- c:\users\Petr\AppData\Local\Google\Update\GoogleUpdate.exe [2010-05-31 00:14]
2010-10-02 c:\windows\Tasks\Install_NSS.job
- c:\program files\DivX\Symantec\scstubinstaller.exe [2010-03-08 18:00]
.
.
------- Doplňkový sken -------
.
uSearchMigratedDefaultURL = hxxp://www.google.com/search?q={searchTerms}&i ... urceid=ie7
uStart Page = hxxp://www.seznam.cz/
mStart Page = hxxp://www.msn.com
uInternet Settings,ProxyOverride = local
IE: Stáhnout odkaz s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
FF - ProfilePath - c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\xilzmbho.default\
FF - prefs.js: network.proxy.type - 4
FF - component: c:\program files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension\components\FirefoxExtension.dll
FF - component: c:\users\Petr\AppData\Roaming\Mozilla\Firefox\Profiles\xilzmbho.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}\components\IBitCometExtension.dll
FF - plugin: c:\program files\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\users\Petr\AppData\Local\Google\Update\1.2.183.39\npGoogleOneClick8.dll
FF - plugin: c:\windows\system32\Wat\npWatWeb.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
FF - user.js: browser.cache.disk.capacity - 1024000
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
HKCU-Run-WindowsWelcomeCenter - (no file)
MSConfigStartUp-Mega Manager - c:\program files\Megaupload\Mega Manager\MegaManager.exe
AddRemove-CursorFX - c:\programdata\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}\CursorFX_setup.exe
AddRemove-Nokia Ovi Suite - c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
AddRemove-Nokia PC Suite - c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze_web.exe
AddRemove-{C1080852-065E-4991-9260-F3756E3CC182} - c:\programdata\{7D93B3B9-36B7-4383-9666-CFAD7F2AC87E}\CursorFX_setup.exe
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\{49DE1C67-83F8-4102-99E0-C16DCC7EEC796}]
"ImagePath"="\??\c:\program files\Acer Arcade Deluxe\PlayMovie\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_USERS\S-1-5-21-1611992166-1054670808-751486312-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{4E085142-9303-D942-372C-B709CD58809A}*]
"iagjlcmhdjpbpfkffn"=hex:6b,61,63,6d,66,63,62,61,6f,68,68,67,6f,63,70,62,62,67,
6d,62,6e,70,00,00
"hamibfgbnfacbdnd"=hex:6b,61,63,6d,66,63,62,61,6f,68,68,67,6f,63,70,62,62,67,
6d,62,6e,70,00,00
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
"MSCurrentCountry"=dword:0000002e
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0006\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0007\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0008\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'Explorer.exe'(2800)
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\PSDProtect.dll
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\sysenv.dll
c:\program files\DAEMON Tools Pro\DTShl32.dll
c:\program files\WIDCOMM\Bluetooth Software\btncopy.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\atieclxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Acer\Empowering Technology\eDataSecurity\x86\eDSService.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
c:\windows\system32\taskhost.exe
c:\windows\system32\WUDFHost.exe
c:\windows\system32\conhost.exe
c:\windows\system32\sppsvc.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\program files\DAEMON Tools Pro\DTShellHlp.exe
c:\\?\c:\windows\system32\wbem\WMIADAP.EXE
.
**************************************************************************
.
Celkový čas: 2010-11-17 21:55:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-11-17 20:55
ComboFix2.txt 2010-08-30 20:23
Před spuštěním: Volných bajtů: 87 172 550 656
Po spuštění: Volných bajtů: 86 895 812 608
- - End Of File - - 29102F0D63D5D0F70D2ACC18E6DB1D60
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: prosim o preventivku sem tam se seka
2 položky smazány, zbytek logu vypadá OK. Zkuste ještě čištění CCleanerem: http://www.viry.cz/forum/viewtopic.php?f=46&t=7478 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?