Prosím o kontrolu logu

Zpráva

Ivošisko · #1 Příspěvek od **Ivošisko** » 10 led 2011 01:21

Logfile of random's system information tool 1.08 (written by random/random)
Run by uzivatel at 2011-01-10 01:18:50
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 16 GB (15%) free of 102 GB
Total RAM: 2047 MB (56% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 01:19, on 10.1.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.17093)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\Program Files\DivX\DivX Update\DivXUpdate.exe
C:\Program Files\TP-LINK\TWCU\TWCU.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe
C:\Program Files\Pure Networks\Network Magic\nmapp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\acs.exe
C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\WINDOWS\SYSTEM32\astsrv.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Ergonomic Soft\Ergonomic Setup Center\firebird\bin\fbserver.exe
C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Stardock\ThinkDesk\Multiplicity\MULTISRV32.EXE
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\WINDOWS\system32\nlssrv32.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\IoctlSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
C:\Program Files\RocketDock\RocketDock.exe
C:\Program Files\Dude\dude.exe
C:\Program Files\WinOrganizer\WinOrganizer.exe
C:\Program Files\Mozilla Firefox 4.0 Beta 8\firefox.exe
C:\Program Files\Mozilla Firefox 4.0 Beta 8\plugin-container.exe
C:\Documents and Settings\uzivatel\Plocha\RSIT.exe
C:\Program Files\trend micro\uzivatel.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com?o=14597&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://windowsupdate.microsoft.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = http=;ftp=;https=;
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: QuickStores-Toolbar - {10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [IconSaver] "C:\Program Files\IconSaver\IconSaver.exe" -restore -quit
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
O4 - HKLM\..\Run: [MPlayerForWindows_UpdateReminder] "C:\Program Files\MPlayer for Windows\AutoUpdate.exe" /L=1033 /TASK
O4 - HKLM\..\Run: [AdobeAAMUpdater-1.0] "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe"
O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [SwitchBoard] C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O4 - HKLM\..\Run: [TWCU] "C:\Program Files\TP-LINK\TWCU\TWCU.exe" -nogui
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [nmctxth] "C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe"
O4 - HKLM\..\Run: [nmapp] "C:\Program Files\Pure Networks\Network Magic\nmapp.exe" -autorun -nosplash
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [DudeServer] C:\Program Files\Dude\dude.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [WinOrganizer] C:\Program Files\WinOrganizer\WinOrganizer.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [RocketDock] "C:\Program Files\RocketDock\RocketDock.exe"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: YoWindow.lnk = C:\WINDOWS\system32\yowindow.scr
O4 - Global Startup: Mozilla Thunderbird.lnk = C:\Program Files\Mozilla Thunderbird\thunderbird.exe
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} (DivXBrowserPlugin Object) - http://download.divx.com/player/DivXBrowserPlugin.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} -
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O20 - Winlogon Notify: Multi - C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: TP-LINK Configuration Service (ACS) - Unknown owner - C:\WINDOWS\system32\acs.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: AST Service (astcc) - Nalpeiron Ltd. - C:\WINDOWS\SYSTEM32\astsrv.exe
O23 - Service: Nalpeiron Licensing Service (ASTSRV) - Nalpeiron Ltd. - C:\WINDOWS\system32\ASTSRV.EXE
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Canon Camera Access Library 8 (CCALib8) - Canon Inc. - C:\Program Files\Canon\CAL\CALMAIN.exe
O23 - Service: ergonomic_firebird - Firebird Project - C:\Program Files\Ergonomic Soft\Ergonomic Setup Center\firebird\bin\fbserver.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Free Proxy Service (FreeProxy) - Unknown owner - C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: Stardock Multiplicity (Multiplicity) - Unknown owner - C:\Program Files\Stardock\ThinkDesk\Multiplicity\MULTISRV32.EXE
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Nalpeiron Licensing Service V6 (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\system32\nlssrv32.exe
O23 - Service: NMIndexingService - Unknown owner - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (file missing)
O23 - Service: Pure Networks Platform Service (nmservice) - Cisco Systems, Inc. - C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag 2000 (OOD2000) - O&O Software GmbH - C:\WINDOWS\system32\OOD2000.exe
O23 - Service: PLFlash DeviceIoControl Service - Prolific Technology Inc. - C:\WINDOWS\system32\IoctlSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Radmin Server V3 (RServer3) - Famatech Corp. - C:\WINDOWS\system32\rserver30\RServer3.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: SureThing Labelflash service - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
O23 - Service: Synergy+ Server - Unknown owner - C:\Program Files\Synergy+\bin\synergys.exe (file missing)

--
End of file - 11637 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1647877149-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-861567501-1647877149-725345543-1003UA.job
C:\WINDOWS\tasks\RegistryBooster.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{10EDB994-47F8-43F7-AE96-F2EA63E9F90F}]
QuickStores-Toolbar - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-07-17 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-07-17 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{10EDB994-47F8-43F7-AE96-F2EA63E9F90F} - QuickStores-Toolbar - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2007-06-29 81920]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-03 1603152]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2008-06-27 16875008]
"IconSaver"=C:\Program Files\IconSaver\IconSaver.exe [2004-01-14 110592]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-09-07 2838912]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-06-29 8466432]
"DivXUpdate"=C:\Program Files\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584]
"MPlayerForWindows_UpdateReminder"=C:\Program Files\MPlayer for Windows\AutoUpdate.exe [2010-10-17 235005]
"AdobeAAMUpdater-1.0"=C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [2010-03-06 500208]
"AdobeCS5ServiceManager"=C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe [2010-02-22 406992]
"SwitchBoard"=C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
"TWCU"=C:\Program Files\TP-LINK\TWCU\TWCU.exe [2006-03-29 364544]
"nwiz"=nwiz.exe /install []
"nmctxth"=C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe [2009-07-07 647216]
"nmapp"=C:\Program Files\Pure Networks\Network Magic\nmapp.exe [2010-10-22 472112]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2010-11-29 421888]
"DudeServer"=C:\Program Files\Dude\dude.exe [2010-04-06 4142080]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Google Update"=C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe [2010-11-17 136176]
"WinOrganizer"=C:\Program Files\WinOrganizer\WinOrganizer.exe [2010-01-28 3613696]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-12-26 395640]
"RocketDock"=C:\Program Files\RocketDock\RocketDock.exe [2007-09-02 495616]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
[]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
Mozilla Thunderbird.lnk - C:\Program Files\Mozilla Thunderbird\thunderbird.exe

C:\Documents and Settings\uzivatel\Nabídka Start\Programy\Po spuštění
YoWindow.lnk - C:\WINDOWS\system32\yowindow.scr

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2007-04-19 294912]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Multi]
C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll [2005-04-17 90112]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2006-12-20 77824]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDrives"=0
"NoDriveAutoRun"=67108863
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\totalcmd\TOTALCMD.EXE"="C:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\Program Files\ImageJ\jre\bin\javaw.exe"="C:\Program Files\ImageJ\jre\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe"="C:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe"="C:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio"
"C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe"="C:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ6"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\BitComet\BitComet.exe"="C:\Program Files\BitComet\BitComet.exe:*:Enabled:BitComet.exe"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:uTorrent.exe"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\RM.exe:*:Enabled:Render Manager"
"C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\umi.exe:*:Enabled:umi"
"C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe"="C:\Program Files\Pinnacle\VideoSpin\Programs\VideoSpin.exe:*:Enabled:Pinnacle VideoSpin"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Google\Google Earth\client\googleearth.exe"="C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth"
"C:\Program Files\Java\jre6\launch4j-tmp\Jubler.exe"="C:\Program Files\Java\jre6\launch4j-tmp\Jubler.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\aMule\amule.exe"="C:\Program Files\aMule\amule.exe:*:Enabled:amule"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype. Take a deep breath "
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\10-Strike LANState\LANState.exe"="C:\Program Files\10-Strike LANState\LANState.exe:*:Enabled:10-Strike_LANState"
"C:\Program Files\Dude\dude.exe"="C:\Program Files\Dude\dude.exe:*:Enabled:dude"
"C:\Program Files\Synergy+\bin\synergys.exe"="C:\Program Files\Synergy+\bin\synergys.exe:*:Enabled:synergys"
"C:\WINDOWS\system32\rserver30\rserver3.exe"="C:\WINDOWS\system32\rserver30\rserver3.exe:*:Enabled:Radmin Server 3"
"C:\Program Files\Stardock\ThinkDesk\Multiplicity\Multipl.exe"="C:\Program Files\Stardock\ThinkDesk\Multiplicity\Multipl.exe:*:Enabled:Stardock Multiplicity (Primary)"
"C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe"="C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe:*:Enabled:Stardock Multiplicity (Secondary)"
"C:\Program Files\Stardock\Multiplicity\multipl.exe"="C:\Program Files\Stardock\Multiplicity\multipl.exe:*:Enabled:Stardock Multiplicity (Primary)"
"C:\Program Files\Stardock\Multiplicity\MultiSrv32.exe"="C:\Program Files\Stardock\Multiplicity\MultiSrv32.exe:*:Enabled:Stardock Multiplicity (Secondary)"
"MULTIPL.EXE"="MULTIPL.EXE:LocalSubNet:Enabled:Multiplicity"
"C:\Program Files\Vivotek\Installation Wizard\InstallationWizard.exe"="C:\Program Files\Vivotek\Installation Wizard\InstallationWizard.exe:*:Enabled:Installation Wizard"
"C:\WINDOWS\system32\java.exe"="C:\WINDOWS\system32\java.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Vivotek Inc\Installation Wizard 2\IW2.exe"="C:\Program Files\Vivotek Inc\Installation Wizard 2\IW2.exe:*:Enabled:Installation Wizard 2"
"C:\Program Files\NutsAboutNets\NetStress\NetStress.exe"="C:\Program Files\NutsAboutNets\NetStress\NetStress.exe:*:Enabled:NetStress"
"C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe"="C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe:LocalSubNet,0.0.0.0/255.255.255.255:Enabled:Pure Networks Platform Service"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

======List of files/folders created in the last 1 months======

2011-01-10 01:18:50 ----D---- C:\rsit
2011-01-09 21:42:01 ----N---- C:\WINDOWS\system32\WanPacket.dll
2011-01-09 21:42:01 ----D---- C:\Program Files\Makayama
2011-01-09 21:22:57 ----SHD---- C:\Config.Msi
2011-01-09 19:30:17 ----D---- C:\Program Files\Dude
2011-01-09 18:46:02 ----D---- C:\Program Files\RocketDock
2011-01-08 23:12:51 ----D---- C:\Program Files\Zamzom
2011-01-08 08:27:20 ----D---- C:\Program Files\Mozilla Firefox 4.0 Beta 8
2011-01-08 07:14:06 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Toolbar4
2011-01-08 07:14:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\SpeedBit
2011-01-07 21:41:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\ALM
2011-01-07 01:56:59 ----D---- C:\WINDOWS\pss
2011-01-06 18:58:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\YoWindow
2011-01-06 18:57:16 ----D---- C:\Program Files\YoWindow
2011-01-06 18:49:18 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\YoWindow
2011-01-06 17:11:51 ----D---- C:\Program Files\PatchBeam
2011-01-06 16:32:00 ----D---- C:\Program Files\QuickTime
2011-01-06 12:22:53 ----D---- C:\Program Files\Vivotek Inc
2011-01-05 18:04:42 ----D---- C:\Program Files\Vivotek
2011-01-04 18:57:53 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Thinstall
2011-01-04 17:15:03 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\PlatinumHideIP
2011-01-04 17:15:03 ----D---- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
2011-01-04 17:14:57 ----D---- C:\Program Files\PlatinumHideIP
2011-01-04 09:13:53 ----D---- C:\Program Files\Common Files\Pure Networks Shared
2011-01-04 03:56:32 ----D---- C:\Program Files\Pure Networks
2011-01-04 03:55:48 ----D---- C:\Program Files\WebEx
2011-01-04 03:55:32 ----N---- C:\WINDOWS\system32\drivers\pnarp.sys
2011-01-04 03:55:25 ----N---- C:\WINDOWS\system32\drivers\purendis.sys
2011-01-04 03:54:49 ----D---- C:\Documents and Settings\All Users\Data aplikací\Pure Networks
2011-01-04 01:23:44 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Radmin
2011-01-04 01:20:18 ----D---- C:\Program Files\Radmin Viewer 3
2011-01-04 00:57:43 ----D---- C:\WINDOWS\system32\rserver30
2011-01-03 13:58:16 ----D---- C:\Program Files\Synergy+
2010-12-29 20:57:35 ----N---- C:\WINDOWS\system32\drivers\NANSp50.sys
2010-12-29 20:57:35 ----N---- C:\WINDOWS\system32\drivers\NANMp50.sys
2010-12-29 17:32:58 ----D---- C:\Program Files\FPinger
2010-12-26 23:25:34 ----A---- C:\WINDOWS\netMedic.INI
2010-12-26 21:57:06 ----N---- C:\WINDOWS\system32\vshook.dll
2010-12-26 21:57:06 ----D---- C:\Program Files\VitalSigns
2010-12-26 20:39:41 ----D---- C:\Program Files\Atelier Web
2010-12-26 17:27:40 ----D---- C:\Program Files\VisualRoute
2010-12-26 15:23:38 ----D---- C:\Program Files\Basta Computing
2010-12-26 06:45:08 ----D---- C:\Program Files\NutsAboutNets
2010-12-25 19:42:14 ----D---- C:\Program Files\TrafMeter
2010-12-25 14:00:15 ----D---- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2010-12-25 12:12:17 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\SeriousBit
2010-12-25 12:01:46 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Ethereal
2010-12-25 11:56:58 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Wireshark
2010-12-25 11:55:20 ----D---- C:\Program Files\WinPcap
2010-12-25 11:47:45 ----D---- C:\Program Files\Manison Softworks
2010-12-25 00:10:20 ----N---- C:\WINDOWS\system32\drivers\ar5211.sys
2010-12-25 00:10:20 ----N---- C:\WINDOWS\system32\ar5211.sys
2010-12-25 00:10:17 ----N---- C:\WINDOWS\system32\results.txt
2010-12-25 00:10:17 ----N---- C:\WINDOWS\system32\acs.exe
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\wgapi.dll
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\wcapi.dll
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\drivers\AegisP.sys
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\athcfg11res.dll
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\athcfg11.dll
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\AegisI5.exe
2010-12-25 00:10:09 ----N---- C:\WINDOWS\system32\AegisE5.dll
2010-12-25 00:10:01 ----D---- C:\Program Files\TP-LINK
2010-12-23 23:00:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
2010-12-23 22:55:51 ----D---- C:\Program Files\Adobe Media Player
2010-12-16 19:58:43 ----D---- C:\Program Files\Common Files\Skype
2010-12-16 19:58:39 ----RD---- C:\Program Files\Skype
2010-12-15 03:05:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$
2010-12-15 03:05:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2010-12-15 03:05:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2010-12-15 03:05:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2010-12-15 03:05:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$
2010-12-15 03:04:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2010-12-15 03:00:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2010-12-14 03:00:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-12-13 11:10:58 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\aMule

======List of files/folders modified in the last 1 months======

2011-01-10 01:18:56 ----D---- C:\Program Files\Trend Micro
2011-01-10 01:18:51 ----D---- C:\WINDOWS\temp
2011-01-10 00:57:36 ----D---- C:\Program Files\PowerArchiver
2011-01-09 21:46:05 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\uTorrent
2011-01-09 21:42:01 ----RD---- C:\Program Files
2011-01-09 21:42:01 ----D---- C:\WINDOWS\system32
2011-01-09 21:35:35 ----SHD---- C:\WINDOWS\Installer
2011-01-09 21:35:11 ----D---- C:\Program Files\Microsoft ActiveSync
2011-01-09 21:35:10 ----D---- C:\WINDOWS\Help
2011-01-09 21:30:29 ----D---- C:\Program Files\Google
2011-01-09 21:23:16 ----D---- C:\Documents and Settings\All Users\Data aplikací\Installations
2011-01-09 21:23:08 ----D---- C:\Program Files\Nokia
2011-01-09 21:23:08 ----D---- C:\Program Files\Common Files
2011-01-09 21:23:07 ----HD---- C:\WINDOWS\inf
2011-01-09 21:22:58 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-01-09 21:22:57 ----AD---- C:\WINDOWS
2011-01-09 21:22:03 ----D---- C:\WINDOWS\system32\drivers
2011-01-09 21:21:05 ----D---- C:\Program Files\Pinnacle
2011-01-09 21:17:09 ----D---- C:\Program Files\Boris FX, Inc
2011-01-09 20:44:44 ----D---- C:\WINDOWS\system32\CatRoot2
2011-01-09 20:15:00 ----D---- C:\WINDOWS\Prefetch
2011-01-09 16:03:57 ----A---- C:\WINDOWS\SchedLgU.Txt
2011-01-08 21:11:03 ----D---- C:\Program Files\WinOrganizer
2011-01-08 17:02:40 ----D---- C:\Program Files\Mozilla Firefox
2011-01-07 21:41:23 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Adobe
2011-01-07 21:41:17 ----D---- C:\Program Files\Adobe
2011-01-07 21:40:58 ----RSD---- C:\WINDOWS\Fonts
2011-01-07 21:40:56 ----D---- C:\Program Files\Common Files\Adobe
2011-01-07 21:27:58 ----D---- C:\Program Files\MPlayer for Windows
2011-01-07 21:16:24 ----HD---- C:\Program Files\InstallShield Installation Information
2011-01-07 10:34:41 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\Skype
2011-01-07 10:33:32 ----D---- C:\Documents and Settings\uzivatel\Data aplikací\skypePM
2011-01-07 03:20:35 ----D---- C:\WINDOWS\system32\NtmsData
2011-01-07 02:03:27 ----RASH---- C:\boot.ini
2011-01-07 02:03:27 ----A---- C:\WINDOWS\win.ini
2011-01-07 02:03:27 ----A---- C:\WINDOWS\system.ini
2011-01-06 08:41:56 ----A---- C:\WINDOWS\NeroDigital.ini
2011-01-05 18:04:22 ----D---- C:\WINDOWS\Downloaded Installations
2011-01-05 15:09:08 ----D---- C:\Program Files\CCleaner
2011-01-05 08:57:25 ----DC---- C:\WINDOWS\system32\dllcache
2011-01-05 08:57:24 ----D---- C:\WINDOWS\system32\cs-cz
2011-01-05 08:57:23 ----D---- C:\WINDOWS\system32\CatRoot
2011-01-05 08:49:01 ----D---- C:\WINDOWS\Cursors
2011-01-04 18:00:15 ----D---- C:\Program Files\Stardock
2011-01-03 11:49:59 ----SD---- C:\WINDOWS\Tasks
2010-12-31 12:16:49 ----A---- C:\WINDOWS\wincmd.ini
2010-12-31 12:07:06 ----A---- C:\WINDOWS\wcx_ftp.ini
2010-12-29 19:26:31 ----D---- C:\WINDOWS\Debug
2010-12-27 09:43:05 ----D---- C:\Program Files\uTorrent
2010-12-25 15:25:00 ----D---- C:\Program Files\Histogrammar
2010-12-25 13:30:44 ----N---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-12-25 12:09:32 ----RSD---- C:\WINDOWS\assembly
2010-12-25 09:08:40 ----D---- C:\Program Files\Advanced IP Scanner
2010-12-25 09:07:16 ----A---- C:\WINDOWS\wininit.ini
2010-12-25 00:11:09 ----D---- C:\WINDOWS\security
2010-12-25 00:10:58 ----ASD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-12-25 00:08:42 ----HD---- C:\TEMP
2010-12-24 22:16:27 ----SD---- C:\Documents and Settings\uzivatel\Data aplikací\Microsoft
2010-12-24 02:00:00 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-12-23 22:53:16 ----D---- C:\WINDOWS\WinSxS
2010-12-17 12:48:18 ----D---- C:\Program Files\Mozilla Thunderbird
2010-12-16 19:58:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-12-15 03:05:19 ----A---- C:\WINDOWS\imsins.BAK
2010-12-15 03:05:11 ----HD---- C:\WINDOWS\$hf_mig$
2010-12-15 03:04:00 ----D---- C:\Program Files\Internet Explorer
2010-12-15 03:03:51 ----D---- C:\WINDOWS\ie7updates
2010-12-15 03:00:50 ----N---- C:\WINDOWS\system32\MRT.exe
2010-12-15 03:00:44 ----D---- C:\Program Files\Outlook Express

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 mv61xx;mv61xx; C:\WINDOWS\system32\DRIVERS\mv61xx.sys [2007-05-25 137728]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2010-07-12 45648]
R0 TPkd;TPkd; C:\WINDOWS\system32\drivers\TPkd.sys [2006-10-05 72608]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-01-18 77696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-09-07 28880]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 raddrvv3;raddrvv3; \??\C:\WINDOWS\system32\rserver30\raddrvv3.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.10.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2010-12-25 21275]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-09-07 100176]
R2 NPF;NetGroup Packet Filter Driver; C:\WINDOWS\system32\drivers\npf.sys [2010-06-25 35088]
R2 P1C1394;Phase One 1394 Camera Driver; C:\WINDOWS\System32\Drivers\p1c1394.sys [2009-04-22 23808]
R2 pnarp;Pure Networks Device Discovery Driver; C:\WINDOWS\system32\DRIVERS\pnarp.sys [2009-07-07 25392]
R2 purendis;Pure Networks Wireless Driver; C:\WINDOWS\system32\DRIVERS\purendis.sys [2009-07-07 26672]
R3 AR5211;TP-LINK Wireless Network Adapter Service; C:\WINDOWS\system32\DRIVERS\ar5211.sys [2005-12-21 470048]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-09-07 23376]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2008-06-27 4742656]
R3 mirrorv3;mirrorv3; C:\WINDOWS\system32\DRIVERS\rminiv3.sys [2009-10-09 3328]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-06-29 6807328]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S0 BTHidEnum;Bluetooth HID Enumerator; C:\WINDOWS\System32\Drivers\vbtenum.sys []
S0 BTHidMgr;Bluetooth HID Manager Service; C:\WINDOWS\System32\Drivers\BTHidMgr.sys []
S3 ASFWHide;ASFWHide; C:\WINDOWS\system32\drivers\ASFWHide.sys []
S3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2007-03-15 38656]
S3 BlueletAudio;Bluetooth Audio Service; C:\WINDOWS\system32\DRIVERS\blueletaudio.sys []
S3 BlueletSCOAudio;Bluetooth SCO Audio Service; C:\WINDOWS\system32\DRIVERS\BlueletSCOAudio.sys []
S3 BT;Bluetooth PAN Network Adapter; C:\WINDOWS\system32\DRIVERS\btnetdrv.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\WINDOWS\System32\Drivers\btcusb.sys []
S3 catchme;catchme; \??\C:\COMBO\catchme.sys []
S3 EyeOneDp;EyeOneDp; C:\WINDOWS\system32\drivers\EyeOneDp.sys [2003-04-16 44344]
S3 MagicTune;MagicTune; C:\WINDOWS\system32\drivers\MTiCtwl.sys []
S3 MarvinBus;Pinnacle Marvin Bus; C:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-23 171520]
S3 NANMp50;NANMp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\NANMp50.sys [2010-03-25 36408]
S3 NANSp50;NANSp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\NANSp50.sys [2010-03-25 35384]
S3 Nbdrv;NetBalancer Service; C:\WINDOWS\system32\DRIVERS\nbdrv.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 pcouffin;VSO Software pcouffin; C:\WINDOWS\System32\Drivers\pcouffin.sys [2008-11-22 47360]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2001-10-25 5888]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys []
S3 usb_rndisx;USB RNDIS Adapter; C:\WINDOWS\system32\DRIVERS\usb8023x.sys [2008-04-13 12800]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 VComm;Virtual Serial port driver; C:\WINDOWS\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\WINDOWS\System32\Drivers\VcommMgr.sys []
S3 wceusbsh;Windows CE USB Serial Host Driver; C:\WINDOWS\system32\DRIVERS\wceusbsh.sys [2006-11-06 28672]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S4 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ACS;TP-LINK Configuration Service; C:\WINDOWS\system32\acs.exe [2005-12-30 36864]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-04-16 144672]
R2 astcc;AST Service; C:\WINDOWS\SYSTEM32\astsrv.exe [2008-11-26 57344]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2010-04-08 345376]
R2 CCALib8;Canon Camera Access Library 8; C:\Program Files\Canon\CAL\CALMAIN.exe [2006-03-30 96341]
R2 ergonomic_firebird;ergonomic_firebird; C:\Program Files\Ergonomic Soft\Ergonomic Setup Center\firebird\bin\fbserver.exe [2009-03-24 2719744]
R2 FreeProxy;Free Proxy Service; C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe [2007-09-02 356352]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-07-17 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-05-18 73728]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 Multiplicity;Stardock Multiplicity; C:\Program Files\Stardock\ThinkDesk\Multiplicity\MULTISRV32.EXE [2005-04-17 208896]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-29 935208]
R2 nlsX86cc;Nalpeiron Licensing Service V6; C:\WINDOWS\system32\nlssrv32.exe [2010-10-03 63488]
R2 nmservice;Pure Networks Platform Service; C:\Program Files\Common Files\Pure Networks Shared\Platform\nmsrvc.exe [2009-07-07 647216]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-06-29 155716]
R2 PLFlash DeviceIoControl Service;PLFlash DeviceIoControl Service; C:\WINDOWS\system32\IoctlSvc.exe [2006-12-19 81920]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 ASTSRV;Nalpeiron Licensing Service; C:\WINDOWS\system32\ASTSRV.EXE [2008-11-26 57344]
S2 gupdate;Google Update Service (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-17 136176]
S2 OOD2000;O&O Defrag 2000; C:\WINDOWS\system32\OOD2000.exe [2001-04-06 238080]
S2 Synergy+ Server;Synergy+ Server; C:\Program Files\Synergy+\bin\synergys.exe []
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2008-01-08 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe []
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2010-06-25 117264]
S3 RServer3;Radmin Server V3; C:\WINDOWS\system32\rserver30\RServer3.exe [2009-10-09 1242504]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-01-26 652800]
S3 SureThing Labelflash service;SureThing Labelflash service; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2009-07-15 74392]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

Ivošisko · #2 Příspěvek od **Ivošisko** » 10 led 2011 19:20

Něco jsem udělal špatně?

#3 Příspěvek od **motji** » 10 led 2011 19:47

Dobrý večer

Neudělal jste špatně nic, jen máme nejvíc času večer

.

Jaké jsou s počítačem problémy?

Ivošisko · #4 Příspěvek od **Ivošisko** » 10 led 2011 21:07

Je to především preventivka ale současně mám dojem, že se mi "ztratilo" pár programků (v poslední době jsem experimentoval se síťovými aplikacemi) a zejména jsem si upgradoval FireFox na 4.0b8, kde nekompatibilita s doplňky nadělala jistý zmatek..............takže bych asi potřeboval "uklidit"

Ještě do dalšího vlákna přidám log z notebooku, s kterým jsem se chtěl sesynchronizovat a kromě pozitivních výsledků jsem bohužel ztratil schopnost se připojit k netu

(to ale v dalším vlákně)

#5 Příspěvek od **motji** » 10 led 2011 22:51

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

Ivošisko · #6 Příspěvek od **Ivošisko** » 11 led 2011 00:56

Takže ComboFix proběhl (sice tam byla nějaká chybová hláška, ale nestihl jsem ji poznačit) a zde je výsledek:

ComboFix 11-01-10.04 - uzivatel 11.01.2011 0:37.15.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1422 [GMT 1:00]
Spuštěný z: c:\documents and settings\uzivatel\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\Thumbs.db
c:\windows\system32\HDREfexProFC32.dll
c:\windows\system32\Thumbs.db

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-12-10 do 2011-01-10 )))))))))))))))))))))))))))))))
.

2011-01-10 07:35 . 2011-01-10 07:35 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\Mikrotik
2011-01-10 00:36 . 2011-01-10 00:36 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\10-Strike
2011-01-10 00:36 . 2011-01-10 21:42 -------- d-----w- c:\program files\10-Strike LANState
2011-01-10 00:18 . 2011-01-10 00:19 -------- d-----w- C:\rsit
2011-01-09 21:22 . 2011-01-09 21:22 -------- d-----w- c:\documents and settings\uzivatel\dwhelper
2011-01-09 20:42 . 2011-01-09 20:42 -------- d-----w- c:\program files\Makayama
2011-01-09 20:42 . 2005-08-03 05:08 61440 ------w- c:\windows\system32\WanPacket.dll
2011-01-09 20:42 . 2004-11-01 11:38 57344 ------w- c:\windows\system32\XButton.ocx
2011-01-09 20:42 . 2004-02-05 19:53 389120 ------w- c:\windows\system32\actskn43.ocx
2011-01-09 18:30 . 2011-01-09 18:33 -------- d-----w- c:\program files\Dude
2011-01-09 17:46 . 2011-01-09 18:19 -------- d-----w- c:\program files\RocketDock
2011-01-08 22:12 . 2011-01-08 22:12 -------- d-----w- c:\program files\Zamzom
2011-01-08 07:27 . 2011-01-09 21:31 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 8
2011-01-08 06:14 . 2011-01-09 20:24 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\Toolbar4
2011-01-08 06:14 . 2011-01-09 20:24 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SpeedBit
2011-01-08 06:14 . 1998-12-05 12:18 172032 ------w- c:\windows\system32\AniGIF.ocx
2011-01-07 20:41 . 2011-01-07 20:41 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ALM
2011-01-06 17:58 . 2011-01-06 17:58 -------- d-----w- c:\documents and settings\All Users\Data aplikací\YoWindow
2011-01-06 17:57 . 2011-01-06 17:58 -------- d-----w- c:\program files\YoWindow
2011-01-06 17:49 . 2011-01-06 18:07 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\YoWindow
2011-01-06 16:11 . 2011-01-06 16:11 -------- d-----w- c:\program files\PatchBeam
2011-01-06 11:22 . 2011-01-06 11:22 -------- d-----w- c:\program files\Vivotek Inc
2011-01-05 17:04 . 2011-01-05 17:04 -------- d-----w- c:\program files\Vivotek
2011-01-04 17:57 . 2011-01-04 17:57 -------- d-----w- c:\documents and settings\uzivatel\Local Settings\Data aplikací\Thinstall
2011-01-04 17:57 . 2011-01-04 17:57 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\Thinstall
2011-01-04 16:15 . 2011-01-04 16:15 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\PlatinumHideIP
2011-01-04 16:15 . 2011-01-04 16:15 -------- d-----w- c:\documents and settings\All Users\Data aplikací\PlatinumHideIP
2011-01-04 16:14 . 2011-01-04 16:20 -------- d-----w- c:\program files\PlatinumHideIP
2011-01-04 08:13 . 2011-01-04 08:13 -------- d-----w- c:\program files\Common Files\Pure Networks Shared
2011-01-04 02:56 . 2011-01-04 10:09 -------- d-----w- c:\program files\Pure Networks
2011-01-04 02:55 . 2011-01-04 02:55 -------- d-----w- c:\program files\WebEx
2011-01-04 02:55 . 2011-01-04 10:08 8673792 ----a-w- c:\documents and settings\All Users\Data aplikací\atscie.msi
2011-01-04 02:55 . 2009-07-07 13:48 25392 ------w- c:\windows\system32\drivers\pnarp.sys
2011-01-04 02:55 . 2009-07-07 13:48 26672 ------w- c:\windows\system32\drivers\purendis.sys
2011-01-04 02:54 . 2011-01-04 10:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Pure Networks
2011-01-04 00:23 . 2011-01-04 00:23 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\Radmin
2011-01-04 00:20 . 2011-01-04 00:20 -------- d-----w- c:\program files\Radmin Viewer 3
2011-01-03 23:57 . 2011-01-04 14:45 -------- d-----w- c:\windows\system32\rserver30
2011-01-03 12:58 . 2011-01-03 12:58 -------- d-----w- c:\program files\Synergy+
2010-12-29 19:57 . 2010-03-25 10:05 36408 ------w- c:\windows\system32\drivers\NANMp50.sys
2010-12-29 19:57 . 2010-03-25 10:05 35384 ------w- c:\windows\system32\drivers\NANSp50.sys
2010-12-29 16:32 . 2010-12-29 21:18 -------- d-----w- c:\program files\FPinger
2010-12-26 20:57 . 2010-12-26 20:57 -------- d-----w- c:\program files\VitalSigns
2010-12-26 20:57 . 1997-06-20 15:53 24576 ------w- c:\windows\system32\vshook.dll
2010-12-26 19:39 . 2010-12-26 19:39 -------- d-----w- c:\program files\Atelier Web
2010-12-26 16:27 . 2010-12-26 16:27 -------- d--h--w- c:\documents and settings\uzivatel\vw
2010-12-26 16:27 . 2010-12-26 16:27 -------- d--h--w- c:\documents and settings\uzivatel\VisualRoute
2010-12-26 16:27 . 2010-12-26 22:33 -------- d-----w- c:\program files\VisualRoute
2010-12-26 14:23 . 2010-12-26 14:23 -------- d-----w- c:\program files\Basta Computing
2010-12-26 05:45 . 2011-01-08 22:19 -------- d-----w- c:\program files\NutsAboutNets
2010-12-25 18:42 . 2010-12-26 13:52 -------- d-----w- c:\program files\TrafMeter
2010-12-25 13:00 . 2010-12-25 13:01 -------- d-----w- c:\documents and settings\All Users\Data aplikací\NVIDIA
2010-12-25 11:12 . 2010-12-25 11:12 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\SeriousBit
2010-12-25 11:01 . 2010-12-25 11:01 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\Ethereal
2010-12-25 10:56 . 2010-12-25 10:56 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\Wireshark
2010-12-25 10:55 . 2010-12-25 10:55 -------- d-----w- c:\program files\WinPcap
2010-12-25 10:47 . 2010-12-25 10:47 -------- d-----w- c:\program files\Manison Softworks
2010-12-24 23:10 . 2005-12-21 09:16 470048 ------w- c:\windows\system32\drivers\ar5211.sys
2010-12-24 23:10 . 2005-12-21 09:16 470048 ------w- c:\windows\system32\ar5211.sys
2010-12-24 23:10 . 2005-12-30 07:15 36864 ------w- c:\windows\system32\acs.exe
2010-12-24 23:10 . 2010-12-24 23:10 21275 ------w- c:\windows\system32\drivers\AegisP.sys
2010-12-24 23:10 . 2006-03-21 08:52 249856 ------w- c:\windows\system32\wgapi.dll
2010-12-24 23:10 . 2005-12-30 07:15 385024 ------w- c:\windows\system32\athcfg11.dll
2010-12-24 23:10 . 2005-12-30 07:14 77824 ------w- c:\windows\system32\athcfg11res.dll
2010-12-24 23:10 . 2005-12-30 07:10 237568 ------w- c:\windows\system32\wcapi.dll
2010-12-24 23:10 . 2005-12-30 07:04 315392 ------w- c:\windows\system32\AegisI5.exe
2010-12-24 23:10 . 2005-12-30 07:04 1396835 ------w- c:\windows\system32\AegisE5.dll
2010-12-24 23:10 . 2010-12-24 23:10 -------- d-----w- c:\program files\TP-LINK
2010-12-23 22:00 . 2010-12-23 22:00 -------- d-----w- c:\documents and settings\All Users\Data aplikací\regid.1986-12.com.adobe
2010-12-23 21:55 . 2010-12-23 21:55 -------- d-----w- c:\program files\Adobe Media Player
2010-12-23 07:47 . 2010-12-23 07:47 -------- d--h--w- c:\documents and settings\uzivatel\.dvdcss
2010-12-16 18:58 . 2010-12-16 18:58 -------- d-----w- c:\program files\Common Files\Skype
2010-12-16 18:58 . 2010-12-16 18:58 -------- d-----r- c:\program files\Skype
2010-12-15 01:53 . 2010-11-02 15:17 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-15 01:53 . 2010-10-11 14:59 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2010-12-13 10:10 . 2010-12-13 10:21 -------- d-----w- c:\documents and settings\uzivatel\Data aplikací\aMule

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-01 13:26 . 2010-12-01 13:26 684544 ------w- c:\windows\system32\yowindow.scr
2010-11-29 16:38 . 2010-11-29 16:38 94208 ------w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ------w- c:\windows\system32\QuickTime.qts
2010-11-18 18:15 . 2007-12-11 09:13 81920 ------w- c:\windows\system32\isign32.dll
2010-11-06 00:25 . 2004-08-17 13:49 832512 ------w- c:\windows\system32\wininet.dll
2010-11-06 00:25 . 2004-08-17 13:49 1830912 ------w- c:\windows\system32\inetcpl.cpl
2010-11-06 00:25 . 2004-08-17 13:49 78336 ------w- c:\windows\system32\ieencode.dll
2010-11-06 00:25 . 2004-08-17 13:49 17408 ------w- c:\windows\system32\corpol.dll
2010-11-03 12:25 . 2004-08-17 13:44 389120 ------w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2001-10-25 12:00 40960 ------w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:09 . 2004-08-17 13:48 290048 ------w- c:\windows\system32\atmfd.dll
2010-10-27 15:25 . 2010-10-27 15:25 1312120 ------w- c:\windows\system32\WBOCX.OCX
2010-10-26 13:58 . 2004-08-17 13:44 1853312 ------w- c:\windows\system32\win32k.sys
2007-11-07 16:58 . 2007-11-06 18:59 1859584 ----a-w- c:\program files\EXIF Viewer.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="c:\documents and settings\uzivatel\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-11-17 136176]
"WinOrganizer"="c:\program files\WinOrganizer\WinOrganizer.exe" [2010-01-28 3613696]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-12-26 395640]
"RocketDock"="c:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-28 81920]
"CanonSolutionMenu"="c:\program files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 644696]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 1603152]
"RTHDCPL"="RTHDCPL.EXE" [2008-06-27 16875008]
"IconSaver"="c:\program files\IconSaver\IconSaver.exe" [2004-01-14 110592]
"avast5"="c:\progra~1\ALWILS~1\Avast5\avastUI.exe" [2010-09-07 2838912]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-28 8466432]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 1164584]
"MPlayerForWindows_UpdateReminder"="c:\program files\MPlayer for Windows\AutoUpdate.exe" [2010-10-17 235005]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"SwitchBoard"="c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 517096]
"TWCU"="c:\program files\TP-LINK\TWCU\TWCU.exe" [2006-03-29 364544]
"nwiz"="nwiz.exe" [2007-06-28 1626112]
"nmctxth"="c:\program files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 647216]
"nmapp"="c:\program files\Pure Networks\Network Magic\nmapp.exe" [2010-10-22 472112]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-29 421888]
"DudeServer"="c:\program files\Dude\dude.exe" [2010-04-06 4142080]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

c:\documents and settings\uzivatel\Nabˇdka Start\Programy\Po spuçtŘnˇ\
LANState.lnk - c:\program files\10-Strike LANState\LANState.exe [2011-1-10 5652480]
YoWindow.lnk - c:\windows\system32\yowindow.scr [2010-12-1 684544]

c:\documents and settings\uzivatel\Nabˇdka Start\Programy\Po spuçtŘnˇ\
LANState.lnk - c:\program files\10-Strike LANState\LANState.exe [2011-1-10 5652480]
YoWindow.lnk - c:\windows\system32\yowindow.scr [2010-12-1 684544]

c:\documents and settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Mozilla Thunderbird.lnk - c:\program files\Mozilla Thunderbird\thunderbird.exe [2010-2-19 12584112]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2006-12-20 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 10:41 294912 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Multi]
2005-04-17 14:36 90112 ----a-w- c:\program files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"c:\\Program Files\\ImageJ\\jre\\bin\\javaw.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Java\\jre6\\launch4j-tmp\\Jubler.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Dude\\dude.exe"=
"c:\\WINDOWS\\system32\\rserver30\\rserver3.exe"=
"c:\\Program Files\\Stardock\\ThinkDesk\\Multiplicity\\Multipl.exe"=
"c:\\Program Files\\Stardock\\ThinkDesk\\Multiplicity\\MultiSrv32.exe"=
"c:\\Program Files\\Vivotek\\Installation Wizard\\InstallationWizard.exe"=
"c:\\WINDOWS\\system32\\java.exe"=
"c:\\Program Files\\Vivotek Inc\\Installation Wizard 2\\IW2.exe"=
"c:\\Program Files\\NutsAboutNets\\NetStress\\NetStress.exe"=
"c:\\Program Files\\10-Strike LANState\\LANState.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"22580:TCP"= 22580:TCP:BitComet 22580 TCP
"22580:UDP"= 22580:UDP:BitComet 22580 UDP

R0 mv61xx;mv61xx;c:\windows\system32\drivers\mv61xx.sys [25.5.2007 4:35 137728]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [4.9.2010 9:12 165584]
R1 raddrvv3;raddrvv3;c:\windows\system32\rserver30\raddrvv3.sys [9.10.2009 14:00 46304]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [29.2.2008 15:03 8944]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [29.2.2008 15:03 51440]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [4.9.2010 9:12 17744]
R2 ergonomic_firebird;ergonomic_firebird;c:\program files\Ergonomic Soft\Ergonomic Setup Center\firebird\bin\fbserver.exe [24.3.2009 11:33 2719744]
R2 nlsX86cc;Nalpeiron Licensing Service V6;c:\windows\system32\nlssrv32.exe [3.10.2010 23:16 63488]
R2 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [25.6.2010 18:07 35088]
R2 P1C1394;Phase One 1394 Camera Driver;c:\windows\system32\drivers\p1c1394.sys [1.4.2009 21:52 23808]
S2 ASTSRV;Nalpeiron Licensing Service;c:\windows\system32\ASTSRV.EXE [16.7.2008 23:44 57344]
S2 FreeProxy;Free Proxy Service;c:\program files\Hand-Crafted Software\FreeProxy\FreeProxy.exe -{BeginFreeProxyService} -C"c:\program files\Hand-Crafted Software\FreeProxy\Default.cfg" --> c:\program files\Hand-Crafted Software\FreeProxy\FreeProxy.exe -{BeginFreeProxyService} -Cc:\program files\Hand-Crafted Software\FreeProxy\Default.cfg [?]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [17.11.2010 14:19 136176]
S2 Multiplicity;Stardock Multiplicity;c:\program files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe [5.1.2011 15:57 208896]
S2 Synergy+ Server;Synergy+ Server;c:\program files\Synergy+\bin\synergys.exe --> c:\program files\Synergy+\bin\synergys.exe [?]
S3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [11.12.2007 10:33 38656]
S3 EyeOneDp;EyeOneDp;c:\windows\system32\drivers\EyeOneDp.sys [17.2.2003 16:24 44344]
S3 NANMp50;NANMp50 NDIS Protocol Driver;c:\windows\system32\drivers\NANMp50.sys [29.12.2010 20:57 36408]
S3 NANSp50;NANSp50 NDIS Protocol Driver;c:\windows\system32\drivers\NANSp50.sys [29.12.2010 20:57 35384]
S3 Nbdrv;NetBalancer Service;c:\windows\system32\DRIVERS\nbdrv.sys --> c:\windows\system32\DRIVERS\nbdrv.sys [?]
S3 RServer3;Radmin Server V3;c:\windows\system32\rserver30\rserver3.exe [9.10.2009 14:00 1242504]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [16.2.2006 15:51 4096]
S3 SureThing Labelflash service;SureThing Labelflash service;c:\program files\Common Files\SureThing Shared\stllssvr.exe [20.10.2010 15:38 74392]
S3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-05-18 15:54 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2011-01-10 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50]

2011-01-10 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-11-17 13:18]

2011-01-10 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-11-17 13:18]

2011-01-10 c:\windows\Tasks\RegistryBooster.job
- c:\program files\Uniblue\RegistryBooster\rbmonitor.exe [2010-10-28 11:18]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://eu.ask.com?o=14597&l=dis
uInternet Settings,ProxyServer = http=;ftp=;https=;
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\fp9k39cr.default\
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox 4.0 Beta 8\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Xmarks: foxmarks@kei.com - %profile%\extensions\foxmarks@kei.com
FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
FF - Ext: Smart Bookmarks Bar: smartbookmarksbar@remy.juteau - %profile%\extensions\smartbookmarksbar@remy.juteau
FF - Ext: FaviconizeTab: faviconizetab@espion.just-size.jp - %profile%\extensions\faviconizetab@espion.just-size.jp
FF - Ext: Favicon Picker 3: {446c03e0-2c35-11db-a98b-0800200c9a67} - %profile%\extensions\{446c03e0-2c35-11db-a98b-0800200c9a67}
FF - Ext: Forecastfox Weather: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3} - %profile%\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
FF - Ext: MinimizeToTray revived (MinTrayR): mintrayr@tn123.ath.cx - %profile%\extensions\mintrayr@tn123.ath.cx
FF - Ext: DownloadHelper: {b9db16a4-6edc-47ec-a1f4-b86292ed211d} - %profile%\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: QuickStores-Toolbar: quickstores@quickstores.de - %profile%\extensions\quickstores@quickstores.de
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: FlashGot: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} - %profile%\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
FF - Ext: Flash and Video Download: {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - %profile%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF - Ext: Platinum Hide IP: support@platinumhideip.com - %profile%\extensions\support@platinumhideip.com
FF - Ext: Tab Mix Plus: {dc572301-7619-498c-a57d-39143191b318} - %profile%\extensions\{dc572301-7619-498c-a57d-39143191b318}
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-11 00:42
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(592)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\program files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll
.
Celkový čas: 2011-01-11 00:44:20
ComboFix-quarantined-files.txt 2011-01-10 23:44

Před spuštěním: Volných bajtů: 16 790 114 304
Po spuštění: Volných bajtů: 21 434 437 632

- - End Of File - - 38584384F89CF5CCA9B2CEF164AE399F

#7 Příspěvek od **motji** » 11 led 2011 22:11

Znáte tohle?
c:\program files\Makayama
c:\windows\system32\AniGIF.ocx
c:\documents and settings\All Users\Data aplikací\ALM

Jinak jak se chová počítač?

Ivošisko · #8 Příspěvek od **Ivošisko** » 11 led 2011 22:39

Díky:

1. Makayama = čerstvě nainstalovaný WiFi radar, ale půjde pryč - je to kravina
2. AniGif neznám, ale mohlo by to mít souvislost s PhotoScapem, který sice používám zřídka, ale má pár vychýtavek, které se mi líbí - pokud to bude potřebné, tak je oželím
3. ......Data aplikací\ALM neznám, ale je to prázdná složka (alespoň se tak tváří)

Zdá se, že chování je poměrně "slušné"

, jen si nevím rady s jednou věcí: snažím se stáhnout 10-Strike LANState (příjemný prográmek na monitorování sítě) a ať jej stáhnu odkudkoliv, tak Avast řve jako blázen - když ten soubor posílám na Virustotal, tak 1/3 antivirů jej označuje jako škodnou - já bych si ovšem rád ověřil, zda nejde o falešný poplach (jenže nevím jak)

#9 Příspěvek od **motji** » 12 led 2011 08:56

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše

DDS::
uStart Page = hxxp://eu.ask.com?o=14597&l=dis

Dirlook::
c:\documents and settings\All Users\Data aplikací\ALM

-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

Obrázek

-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci

Ivošisko · #10 Příspěvek od **Ivošisko** » 12 led 2011 09:56

Aplikace scriptu zrealizována, avšak log nebyl vyplivnut - složka ALM prázdná

#11 Příspěvek od **motji** » 12 led 2011 11:15

Zkuste combofix spustit jen tak, bez skriptu.

Ivošisko · #12 Příspěvek od **Ivošisko** » 12 led 2011 11:52

Tak to vypadá, že ten poslední upgrade Combofixu nepodporuje výstupní logy

- opět nic a ve složce ComboFix za řeč stál snad jen combofix.txt - zde je výpis:

ComboFix 11-01-11.01 - uzivatel 12.01.2011 11:38:29.17.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2047.1476 [GMT 1:00]
Spuštěný z: C:\Documents and Settings\uzivatel\Plocha\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-12-12 do 2011-01-12 )))))))))))))))))))))))))))))))
.

2011-01-10 07:35:08 . 2011-01-10 07:35:08 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\Mikrotik
2011-01-10 00:36:43 . 2011-01-10 00:36:43 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\10-Strike
2011-01-10 00:36:39 . 2011-01-12 09:44:43 -------- d-----w- C:\Program Files\10-Strike LANState
2011-01-10 00:18:50 . 2011-01-10 00:19:06 -------- d-----w- C:\rsit
2011-01-09 21:22:37 . 2011-01-09 21:22:37 -------- d-----w- C:\Documents and Settings\uzivatel\dwhelper
2011-01-09 18:30:17 . 2011-01-09 18:33:18 -------- d-----w- C:\Program Files\Dude
2011-01-09 17:46:02 . 2011-01-09 18:19:30 -------- d-----w- C:\Program Files\RocketDock
2011-01-08 22:12:51 . 2011-01-08 22:12:51 -------- d-----w- C:\Program Files\Zamzom
2011-01-08 07:27:20 . 2011-01-09 21:31:13 -------- d-----w- C:\Program Files\Mozilla Firefox 4.0 Beta 8
2011-01-08 06:14:06 . 2011-01-09 20:24:30 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\Toolbar4
2011-01-08 06:14:05 . 2011-01-09 20:24:33 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\SpeedBit
2011-01-08 06:14:05 . 1998-12-05 12:18:12 172032 ------w- C:\WINDOWS\system32\AniGIF.ocx
2011-01-06 17:58:07 . 2011-01-06 17:58:07 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\YoWindow
2011-01-06 17:57:16 . 2011-01-06 17:58:07 -------- d-----w- C:\Program Files\YoWindow
2011-01-06 17:49:18 . 2011-01-06 18:07:31 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\YoWindow
2011-01-06 16:11:51 . 2011-01-06 16:11:51 -------- d-----w- C:\Program Files\PatchBeam
2011-01-06 11:22:53 . 2011-01-06 11:22:53 -------- d-----w- C:\Program Files\Vivotek Inc
2011-01-05 17:04:42 . 2011-01-05 17:04:42 -------- d-----w- C:\Program Files\Vivotek
2011-01-04 17:57:53 . 2011-01-04 17:57:53 -------- d-----w- C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Thinstall
2011-01-04 17:57:53 . 2011-01-04 17:57:53 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\Thinstall
2011-01-04 16:15:03 . 2011-01-04 16:15:03 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\PlatinumHideIP
2011-01-04 16:15:03 . 2011-01-04 16:15:03 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\PlatinumHideIP
2011-01-04 16:14:57 . 2011-01-04 16:20:37 -------- d-----w- C:\Program Files\PlatinumHideIP
2011-01-04 08:13:53 . 2011-01-04 08:13:53 -------- d-----w- C:\Program Files\Common Files\Pure Networks Shared
2011-01-04 02:56:32 . 2011-01-04 10:09:21 -------- d-----w- C:\Program Files\Pure Networks
2011-01-04 02:55:48 . 2011-01-04 02:55:50 -------- d-----w- C:\Program Files\WebEx
2011-01-04 02:55:43 . 2011-01-04 10:08:59 8673792 ----a-w- C:\Documents and Settings\All Users\Data aplikací\atscie.msi
2011-01-04 02:55:32 . 2009-07-07 13:48:44 25392 ------w- C:\WINDOWS\system32\drivers\pnarp.sys
2011-01-04 02:55:25 . 2009-07-07 13:48:44 26672 ------w- C:\WINDOWS\system32\drivers\purendis.sys
2011-01-04 02:54:49 . 2011-01-04 10:09:34 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\Pure Networks
2011-01-04 00:23:44 . 2011-01-04 00:23:44 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\Radmin
2011-01-04 00:20:18 . 2011-01-04 00:20:18 -------- d-----w- C:\Program Files\Radmin Viewer 3
2011-01-03 23:57:43 . 2011-01-04 14:45:00 -------- d-----w- C:\WINDOWS\system32\rserver30
2011-01-03 12:58:16 . 2011-01-03 12:58:17 -------- d-----w- C:\Program Files\Synergy+
2010-12-29 19:57:35 . 2010-03-25 10:05:16 36408 ------w- C:\WINDOWS\system32\drivers\NANMp50.sys
2010-12-29 19:57:35 . 2010-03-25 10:05:10 35384 ------w- C:\WINDOWS\system32\drivers\NANSp50.sys
2010-12-29 16:32:58 . 2010-12-29 21:18:40 -------- d-----w- C:\Program Files\FPinger
2010-12-26 20:57:06 . 2010-12-26 20:57:19 -------- d-----w- C:\Program Files\VitalSigns
2010-12-26 20:57:06 . 1997-06-20 15:53:46 24576 ------w- C:\WINDOWS\system32\vshook.dll
2010-12-26 19:39:41 . 2010-12-26 19:39:41 -------- d-----w- C:\Program Files\Atelier Web
2010-12-26 16:27:46 . 2010-12-26 16:27:51 -------- d--h--w- C:\Documents and Settings\uzivatel\vw
2010-12-26 16:27:46 . 2010-12-26 16:27:46 -------- d--h--w- C:\Documents and Settings\uzivatel\VisualRoute
2010-12-26 16:27:40 . 2010-12-26 22:33:31 -------- d-----w- C:\Program Files\VisualRoute
2010-12-26 14:23:38 . 2010-12-26 14:23:38 -------- d-----w- C:\Program Files\Basta Computing
2010-12-26 05:45:08 . 2011-01-08 22:19:03 -------- d-----w- C:\Program Files\NutsAboutNets
2010-12-25 18:42:14 . 2010-12-26 13:52:46 -------- d-----w- C:\Program Files\TrafMeter
2010-12-25 13:00:15 . 2010-12-25 13:01:19 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\NVIDIA
2010-12-25 11:12:17 . 2010-12-25 11:12:17 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\SeriousBit
2010-12-25 11:01:46 . 2010-12-25 11:01:46 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\Ethereal
2010-12-25 10:56:58 . 2010-12-25 10:56:58 -------- d-----w- C:\Documents and Settings\uzivatel\Data aplikací\Wireshark
2010-12-25 10:55:20 . 2010-12-25 10:55:21 -------- d-----w- C:\Program Files\WinPcap
2010-12-25 10:47:45 . 2010-12-25 10:47:45 -------- d-----w- C:\Program Files\Manison Softworks
2010-12-24 23:10:20 . 2005-12-21 09:16:34 470048 ------w- C:\WINDOWS\system32\drivers\ar5211.sys
2010-12-24 23:10:20 . 2005-12-21 09:16:34 470048 ------w- C:\WINDOWS\system32\ar5211.sys
2010-12-24 23:10:17 . 2005-12-30 07:15:16 36864 ------w- C:\WINDOWS\system32\acs.exe
2010-12-24 23:10:09 . 2010-12-24 23:10:09 21275 ------w- C:\WINDOWS\system32\drivers\AegisP.sys
2010-12-24 23:10:09 . 2006-03-21 08:52:30 249856 ------w- C:\WINDOWS\system32\wgapi.dll
2010-12-24 23:10:09 . 2005-12-30 07:15:10 385024 ------w- C:\WINDOWS\system32\athcfg11.dll
2010-12-24 23:10:09 . 2005-12-30 07:14:00 77824 ------w- C:\WINDOWS\system32\athcfg11res.dll
2010-12-24 23:10:09 . 2005-12-30 07:10:42 237568 ------w- C:\WINDOWS\system32\wcapi.dll
2010-12-24 23:10:09 . 2005-12-30 07:04:56 315392 ------w- C:\WINDOWS\system32\AegisI5.exe
2010-12-24 23:10:09 . 2005-12-30 07:04:38 1396835 ------w- C:\WINDOWS\system32\AegisE5.dll
2010-12-24 23:10:01 . 2010-12-24 23:10:01 -------- d-----w- C:\Program Files\TP-LINK
2010-12-23 22:00:34 . 2010-12-23 22:00:34 -------- d-----w- C:\Documents and Settings\All Users\Data aplikací\regid.1986-12.com.adobe
2010-12-23 21:55:51 . 2010-12-23 21:55:51 -------- d-----w- C:\Program Files\Adobe Media Player
2010-12-23 07:47:40 . 2010-12-23 07:47:40 -------- d--h--w- C:\Documents and Settings\uzivatel\.dvdcss
2010-12-16 18:58:43 . 2010-12-16 18:58:43 -------- d-----w- C:\Program Files\Common Files\Skype
2010-12-16 18:58:39 . 2010-12-16 18:58:43 -------- d-----r- C:\Program Files\Skype
2010-12-15 01:53:40 . 2010-11-02 15:17:02 40960 -c----w- C:\WINDOWS\system32\dllcache\ndproxy.sys
2010-12-15 01:53:19 . 2010-10-11 14:59:30 45568 -c----w- C:\WINDOWS\system32\dllcache\wab.exe

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-20 17:09:00 . 2009-05-01 13:34:14 38224 ----a-w- C:\WINDOWS\system32\drivers\mbamswissarmy.sys
2010-12-20 17:08:40 . 2009-05-01 13:34:16 20952 ----a-w- C:\WINDOWS\system32\drivers\mbam.sys
2010-12-01 13:26:34 . 2010-12-01 13:26:34 684544 ------w- C:\WINDOWS\system32\yowindow.scr
2010-11-29 16:38:30 . 2010-11-29 16:38:30 94208 ------w- C:\WINDOWS\system32\QuickTimeVR.qtx
2010-11-29 16:38:30 . 2010-11-29 16:38:30 69632 ------w- C:\WINDOWS\system32\QuickTime.qts
2010-11-18 18:15:47 . 2007-12-11 09:13:40 81920 ------w- C:\WINDOWS\system32\isign32.dll
2010-11-09 14:52:35 . 2004-08-17 13:49:16 249856 ----a-w- C:\WINDOWS\system32\odbc32.dll
2010-11-06 00:25:04 . 2004-08-17 13:49:22 832512 ------w- C:\WINDOWS\system32\wininet.dll
2010-11-06 00:25:03 . 2004-08-17 13:49:30 1830912 ------w- C:\WINDOWS\system32\inetcpl.cpl
2010-11-06 00:25:03 . 2004-08-17 13:49:10 78336 ------w- C:\WINDOWS\system32\ieencode.dll
2010-11-06 00:25:02 . 2004-08-17 13:49:04 17408 ------w- C:\WINDOWS\system32\corpol.dll
2010-11-03 12:25:53 . 2004-08-17 13:44:08 389120 ------w- C:\WINDOWS\system32\html.iec
2010-11-02 15:17:02 . 2001-10-25 12:00:00 40960 ------w- C:\WINDOWS\system32\drivers\ndproxy.sys
2010-10-28 13:09:00 . 2004-08-17 13:48:06 290048 ------w- C:\WINDOWS\system32\atmfd.dll
2010-10-27 15:25:18 . 2010-10-27 15:25:18 1312120 ------w- C:\WINDOWS\system32\WBOCX.OCX
2010-10-26 13:58:35 . 2004-08-17 13:44:44 1853312 ------w- C:\WINDOWS\system32\win32k.sys
2007-11-07 16:58:53 . 2007-11-06 18:59:45 1859584 ----a-w- C:\Program Files\EXIF Viewer.exe
.

((((((((((((((((((((((((((((( SnapShot@2011-01-10_23.42.33 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-01-12 09:45:04 . 2011-01-12 09:45:04 16384 C:\WINDOWS\temp\Perflib_Perfdata_eb4.dat
+ 2010-11-09 14:52:35 . 2010-11-09 14:52:35 249856 C:\WINDOWS\system32\dllcache\odbc32.dll
+ 2010-11-09 14:52:35 . 2010-11-09 14:52:35 102400 C:\WINDOWS\system32\dllcache\msjro.dll
+ 2010-11-09 14:52:35 . 2010-11-09 14:52:35 200704 C:\WINDOWS\system32\dllcache\msadox.dll
+ 2010-11-09 14:52:35 . 2010-11-09 14:52:35 180224 C:\WINDOWS\system32\dllcache\msadomd.dll
+ 2010-11-09 14:52:35 . 2010-11-09 14:52:35 536576 C:\WINDOWS\system32\dllcache\msado15.dll
+ 2010-11-09 14:52:35 . 2010-11-09 14:52:35 143360 C:\WINDOWS\system32\dllcache\msadco.dll
+ 2007-12-11 10:18:06 . 2011-01-12 09:36:28 37403080 C:\WINDOWS\system32\MRT.exe
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Google Update"="C:\Documents and Settings\uzivatel\Local Settings\Data aplikací\Google\Update\GoogleUpdate.exe" [2010-11-17 13:18:58 136176]
"WinOrganizer"="C:\Program Files\WinOrganizer\WinOrganizer.exe" [2010-01-28 08:11:28 3613696]
"uTorrent"="C:\Program Files\uTorrent\uTorrent.exe" [2010-12-26 17:05:20 395640]
"RocketDock"="C:\Program Files\RocketDock\RocketDock.exe" [2007-09-02 12:58:52 495616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvMediaCenter"="C:\WINDOWS\system32\NvMcTray.dll" [2007-06-28 23:43:00 81920]
"CanonSolutionMenu"="C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe" [2007-05-14 16:01:00 644696]
"CanonMyPrinter"="C:\Program Files\Canon\MyPrinter\BJMyPrt.exe" [2007-04-03 16:50:00 1603152]
"RTHDCPL"="RTHDCPL.EXE" [2008-06-27 09:23:54 16875008]
"IconSaver"="C:\Program Files\IconSaver\IconSaver.exe" [2004-01-14 12:14:32 110592]
"avast5"="C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe" [2010-09-07 15:12:02 2838912]
"NvCplDaemon"="C:\WINDOWS\system32\NvCpl.dll" [2007-06-28 23:43:00 8466432]
"DivXUpdate"="C:\Program Files\DivX\DivX Update\DivXUpdate.exe" [2010-09-16 20:04:06 1164584]
"MPlayerForWindows_UpdateReminder"="C:\Program Files\MPlayer for Windows\AutoUpdate.exe" [2010-10-17 14:32:10 235005]
"AdobeAAMUpdater-1.0"="C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 02:44:40 500208]
"AdobeCS5ServiceManager"="C:\Program Files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 03:57:06 406992]
"SwitchBoard"="C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe" [2010-02-19 12:37:14 517096]
"TWCU"="C:\Program Files\TP-LINK\TWCU\TWCU.exe" [2006-03-29 15:12:06 364544]
"nwiz"="nwiz.exe" [2007-06-28 23:43:00 1626112]
"nmctxth"="C:\Program Files\Common Files\Pure Networks Shared\Platform\nmctxth.exe" [2009-07-07 13:48:44 647216]
"nmapp"="C:\Program Files\Pure Networks\Network Magic\nmapp.exe" [2010-10-22 21:53:32 472112]
"QuickTime Task"="C:\Program Files\QuickTime\QTTask.exe" [2010-11-29 16:38:18 421888]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 03:22:17 15360]

C:\Documents and Settings\uzivatel\Nabˇdka Start\Programy\Po spuçtŘnˇ\
LANState.lnk - C:\Program Files\10-Strike LANState\LANState.exe [2011-1-10 5652480]
YoWindow.lnk - C:\WINDOWS\system32\yowindow.scr [2010-12-1 684544]

C:\Documents and Settings\uzivatel\Nabˇdka Start\Programy\Po spuçtŘnˇ\
LANState.lnk - C:\Program Files\10-Strike LANState\LANState.exe [2011-1-10 5652480]
YoWindow.lnk - C:\WINDOWS\system32\yowindow.scr [2010-12-1 684544]

C:\Documents and Settings\All Users\Nabˇdka Start\Programy\Po spuçtŘnˇ\
Mozilla Thunderbird.lnk - C:\Program Files\Mozilla Thunderbird\thunderbird.exe [2010-2-19 12584112]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "C:\Program Files\SUPERAntiSpyware\SASSEH.DLL" [2006-12-20 10:55:48 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2007-04-19 10:41:36 294912 ----a-w- C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\Multi]
2005-04-17 14:36:06 90112 ----a-w- C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiWin32.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"C:\\Program Files\\totalcmd\\TOTALCMD.EXE"=
"C:\\Program Files\\ImageJ\\jre\\bin\\javaw.exe"=
"C:\\Program Files\\ICQ6.5\\ICQ.exe"=
"C:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"C:\\Program Files\\uTorrent\\uTorrent.exe"=
"C:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"C:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"C:\\Program Files\\Java\\jre6\\launch4j-tmp\\Jubler.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=
"C:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"C:\\Program Files\\Dude\\dude.exe"=
"C:\\WINDOWS\\system32\\rserver30\\rserver3.exe"=
"C:\\Program Files\\Stardock\\ThinkDesk\\Multiplicity\\Multipl.exe"=
"C:\\Program Files\\Stardock\\ThinkDesk\\Multiplicity\\MultiSrv32.exe"=
"C:\\Program Files\\Vivotek\\Installation Wizard\\InstallationWizard.exe"=
"C:\\WINDOWS\\system32\\java.exe"=
"C:\\Program Files\\Vivotek Inc\\Installation Wizard 2\\IW2.exe"=
"C:\\Program Files\\NutsAboutNets\\NetStress\\NetStress.exe"=
"C:\\Program Files\\10-Strike LANState\\LANState.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"22580:TCP"= 22580:TCP:BitComet 22580 TCP
"22580:UDP"= 22580:UDP:BitComet 22580 UDP

R0 mv61xx;mv61xx;C:\WINDOWS\system32\drivers\mv61xx.sys [25.5.2007 4:35:32 137728]
R1 aswSP;aswSP;C:\WINDOWS\system32\drivers\aswSP.sys [4.9.2010 9:12:29 165584]
R1 raddrvv3;raddrvv3;C:\WINDOWS\system32\rserver30\raddrvv3.sys [9.10.2009 14:00:44 46304]
R1 SASDIFSV;SASDIFSV;C:\Program Files\SUPERAntiSpyware\sasdifsv.sys [29.2.2008 15:03:48 8944]
R1 SASKUTIL;SASKUTIL;C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS [29.2.2008 15:03:46 51440]
R2 aswFsBlk;aswFsBlk;C:\WINDOWS\system32\drivers\aswFsBlk.sys [4.9.2010 9:12:29 17744]
R2 ergonomic_firebird;ergonomic_firebird;C:\Program Files\Ergonomic Soft\Ergonomic Setup Center\firebird\bin\fbserver.exe [24.3.2009 11:33:00 2719744]
R2 nlsX86cc;Nalpeiron Licensing Service V6;C:\WINDOWS\system32\nlssrv32.exe [3.10.2010 23:16:26 63488]
R2 NPF;NetGroup Packet Filter Driver;C:\WINDOWS\system32\drivers\npf.sys [25.6.2010 18:07:14 35088]
R2 P1C1394;Phase One 1394 Camera Driver;C:\WINDOWS\system32\drivers\p1c1394.sys [1.4.2009 21:52:12 23808]
R2 The Dude Server;The Dude Server;C:\Program Files\Dude\dude.exe [6.4.2010 14:35:06 4142080]
S2 ASTSRV;Nalpeiron Licensing Service;C:\WINDOWS\system32\ASTSRV.EXE [16.7.2008 23:44:01 57344]
S2 FreeProxy;Free Proxy Service;C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe -{BeginFreeProxyService} -C"C:\Program Files\Hand-Crafted Software\FreeProxy\Default.cfg" --> C:\Program Files\Hand-Crafted Software\FreeProxy\FreeProxy.exe -{BeginFreeProxyService} -CC:\Program Files\Hand-Crafted Software\FreeProxy\Default.cfg [?]
S2 gupdate;Google Update Service (gupdate);C:\Program Files\Google\Update\GoogleUpdate.exe [17.11.2010 14:19:01 136176]
S2 Multiplicity;Stardock Multiplicity;C:\Program Files\Stardock\ThinkDesk\Multiplicity\MultiSrv32.exe [5.1.2011 15:57:47 208896]
S2 Synergy+ Server;Synergy+ Server;C:\Program Files\Synergy+\bin\synergys.exe --> C:\Program Files\Synergy+\bin\synergys.exe [?]
S3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;C:\WINDOWS\system32\drivers\atl01_xp.sys [11.12.2007 10:33:23 38656]
S3 EyeOneDp;EyeOneDp;C:\WINDOWS\system32\drivers\EyeOneDp.sys [17.2.2003 16:24:24 44344]
S3 NANMp50;NANMp50 NDIS Protocol Driver;C:\WINDOWS\system32\drivers\NANMp50.sys [29.12.2010 20:57:35 36408]
S3 NANSp50;NANSp50 NDIS Protocol Driver;C:\WINDOWS\system32\drivers\NANSp50.sys [29.12.2010 20:57:35 35384]
S3 Nbdrv;NetBalancer Service;C:\WINDOWS\system32\DRIVERS\nbdrv.sys --> C:\WINDOWS\system32\DRIVERS\nbdrv.sys [?]
S3 RServer3;Radmin Server V3;C:\WINDOWS\system32\rserver30\rserver3.exe [9.10.2009 14:00:44 1242504]
S3 SASENUM;SASENUM;C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [16.2.2006 15:51:08 4096]
S3 SureThing Labelflash service;SureThing Labelflash service;C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [20.10.2010 15:38:44 74392]
S3 SwitchBoard;SwitchBoard;C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [19.2.2010 13:37:14 517096]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-05-18 15:54:04 451872 ----a-w- C:\Program Files\Common Files\LightScribe\LSRunOnce.exe
.
Obsah adresáře 'Naplánované úlohy'

2011-01-10 C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
- C:\Program Files\Apple Software Update\SoftwareUpdate.exe [2009-10-22 09:50:20 . 2009-10-22 09:50:20]

2011-01-12 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-17 13:19:01 . 2010-11-17 13:18:58]

2011-01-12 C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
- C:\Program Files\Google\Update\GoogleUpdate.exe [2010-11-17 13:19:01 . 2010-11-17 13:18:58]

2011-01-12 C:\WINDOWS\Tasks\RegistryBooster.job
- C:\Program Files\Uniblue\RegistryBooster\rbmonitor.exe [2010-10-28 05:29:57 . 2010-09-15 11:18:42]
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyServer = http=;ftp=;https=;
IE: E&xportovat do aplikace Microsoft Office Excel - C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - C:\Documents and Settings\uzivatel\Data aplikací\Mozilla\Firefox\Profiles\fp9k39cr.default\
FF - prefs.js: network.proxy.type - 0
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - C:\Program Files\Mozilla Firefox 4.0 Beta 8\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Quick Starter: jqs@sun.com - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Xmarks: foxmarks@kei.com - %profile%\extensions\foxmarks@kei.com
FF - Ext: Flagfox: {1018e4d6-728f-4b20-ad56-37578a4de76b} - %profile%\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
FF - Ext: Smart Bookmarks Bar: smartbookmarksbar@remy.juteau - %profile%\extensions\smartbookmarksbar@remy.juteau
FF - Ext: FaviconizeTab: faviconizetab@espion.just-size.jp - %profile%\extensions\faviconizetab@espion.just-size.jp
FF - Ext: Favicon Picker 3: {446c03e0-2c35-11db-a98b-0800200c9a67} - %profile%\extensions\{446c03e0-2c35-11db-a98b-0800200c9a67}
FF - Ext: Forecastfox Weather: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3} - %profile%\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3}
FF - Ext: MinimizeToTray revived (MinTrayR): mintrayr@tn123.ath.cx - %profile%\extensions\mintrayr@tn123.ath.cx
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: QuickStores-Toolbar: quickstores@quickstores.de - %profile%\extensions\quickstores@quickstores.de
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: FlashGot: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34} - %profile%\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}
FF - Ext: Flash and Video Download: {bee6eb20-01e0-ebd1-da83-080329fb9a3a} - %profile%\extensions\{bee6eb20-01e0-ebd1-da83-080329fb9a3a}
FF - Ext: Platinum Hide IP: support@platinumhideip.com - %profile%\extensions\support@platinumhideip.com
FF - Ext: Tab Mix Plus: {dc572301-7619-498c-a57d-39143191b318} - %profile%\extensions\{dc572301-7619-498c-a57d-39143191b318}
.

#13 Příspěvek od **motji** » 12 led 2011 14:43

Nevadí, poprosím o nový log ze Rsitu. jak se chová počítač?

Ivošisko · #14 Příspěvek od **Ivošisko** » 13 led 2011 00:53

Jen co to napíšu, tak se ještě jednou pustím do Comba, ale:

1. tento comp se zhoršil v reakcích na myš a za druhé jej musím na dvakrát vypínat nebo restartovat - po prvním vypnutí "mlčí" (případně si vyžádá ukončení nějakého zatuhlého programu) a tak musím jít vypnout ještě jednou

2. to je to, co jsem si vzpomněl: někdy před půlrokem mi při podobném zápase Váš kolega říkal, že si mám udělat pořádek s Javou.....jenže ono to nějak v čase zapadlo - mohla byste se mi na to kouknout? Tvrdil, že tam mám nainstalené nějaké blbé Javy a ty, co tam mají být, schází

#15 Příspěvek od **motji** » 13 led 2011 08:38

Spustte ten combofix a pak mrkneme na tu javu

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu