Modrá obrazovka...

Zpráva

#16 Příspěvek od **motji** » 15 led 2011 16:56

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

vermont23 · #17 Příspěvek od **vermont23** » 15 led 2011 18:13

Zde je log z Combofixu

ComboFix 11-01-14.01 - Saldovi 15.01.2011 17:47:32.1.1 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.768.234 [GMT 1:00]
Spuštěný z: c:\users\Saldovi\Desktop\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files (x86)\Jookz Toolbar
c:\program files (x86)\Jookz Toolbar\jookztoolbar.dll
c:\program files (x86)\Jookz Toolbar\tbsvc.exe
c:\program files (x86)\Jookz Toolbar\uninstall.exe
c:\users\Saldovi\AppData\Roaming\completescan
c:\users\Saldovi\AppData\Roaming\install
c:\users\Saldovi\AppData\Roaming\scgdfgasfbh.bat

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_Jookz Toolbar Helper
-------\Service_Jookz Toolbar Helper

((((((((((((((((((((((((( Soubory vytvořené od 2010-12-15 do 2011-01-15 )))))))))))))))))))))))))))))))
.

2011-01-15 16:58 . 2011-01-15 16:58 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-14 13:37 . 2011-01-14 13:40 -------- d-----w- C:\rsit
2011-01-14 10:12 . 2011-01-14 10:12 -------- d-----w- c:\program files (x86)\Microsoft Windows 7 Upgrade Advisor
2011-01-14 06:32 . 2010-11-10 05:35 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0CC4F9F0-0B93-43E2-9F0A-4539920E908A}\mpengine.dll
2011-01-13 09:41 . 2011-01-13 09:41 -------- d-----w- c:\program files (x86)\Crawler
2011-01-12 06:40 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll
2011-01-12 06:40 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-01-12 06:40 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2011-01-12 06:40 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-01-12 06:40 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-01-12 06:40 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-01-12 06:40 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2011-01-12 06:40 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2011-01-12 06:40 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2011-01-12 06:40 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2011-01-07 10:47 . 2011-01-07 10:47 -------- d-----w- c:\users\Saldovi\AppData\Local\Microsoft Games
2011-01-06 21:57 . 2011-01-06 21:57 -------- d-----w- c:\program files (x86)\Prodigium Game Studios
2011-01-05 12:42 . 2011-01-15 09:14 -------- d-----w- c:\users\Saldovi\AppData\Roaming\GameTracker
2011-01-05 12:42 . 2011-01-05 12:42 -------- d-----w- c:\program files (x86)\GameTracker
2011-01-03 17:40 . 2011-01-05 06:36 -------- d-----w- c:\program files (x86)\ResultUrl
2011-01-03 17:40 . 2011-01-04 14:16 -------- d-----w- c:\programdata\ResultUrl
2011-01-03 13:19 . 2011-01-03 13:19 94208 ----a-w- c:\windows\DIIUnin.exe
2011-01-03 13:19 . 2011-01-03 13:19 2829 ----a-w- c:\windows\DIIUnin.pif
2011-01-03 12:25 . 2011-01-03 13:22 21840 ----atw- c:\windows\SysWow64\SIntfNT.dll
2011-01-03 12:25 . 2011-01-03 13:22 17212 ----atw- c:\windows\SysWow64\SIntf32.dll
2011-01-03 12:25 . 2011-01-03 13:22 12067 ----atw- c:\windows\SysWow64\SIntf16.dll
2011-01-02 10:04 . 2011-01-02 11:09 86528 ----a-w- c:\windows\bnetunin.exe
2010-12-27 08:38 . 2010-12-27 08:38 -------- d-----w- c:\program files (x86)\Winamp Detect
2010-12-23 16:12 . 2010-12-23 16:13 -------- d-----w- c:\users\Tomáš

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-15 09:15 . 2010-11-29 12:23 202448 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-01-14 11:31 . 2010-11-29 12:23 202448 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2010-12-31 20:06 . 2010-09-29 15:10 38848 ----a-w- c:\windows\avastSS.scr
2010-12-31 20:06 . 2010-09-29 15:10 188216 ----a-w- c:\windows\SysWow64\aswBoot.exe
2010-12-14 10:20 . 2010-12-14 09:41 323584 ----a-w- c:\windows\SysWow64\AUDIOGENIE2.DLL
2010-11-30 09:38 . 2010-11-29 16:49 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
2010-11-29 15:55 . 2010-10-05 08:28 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2010-11-14 08:55 . 2010-10-15 08:15 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2010-11-14 08:55 . 2010-10-15 08:15 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2010-11-14 08:55 . 2010-10-15 08:15 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2010-11-14 08:55 . 2010-10-15 08:15 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2010-11-09 03:55 . 2010-11-24 08:32 1502208 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-09 03:52 . 2010-11-24 08:32 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-11-03 11:09 . 2010-09-30 07:55 737280 ----a-w- c:\windows\iun6002.exe
2010-11-02 23:21 . 2010-11-02 23:21 128392 ----a-w- c:\program files (x86)\uninst.exe
2010-11-02 23:09 . 2010-11-02 23:09 2968376 ----a-w- c:\program files (x86)\CCleaner64.exe
2010-11-02 23:09 . 2010-11-02 23:09 1862456 ----a-w- c:\program files (x86)\CCleaner.exe
2010-11-02 05:18 . 2010-12-15 21:27 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-11-02 05:17 . 2010-12-15 21:27 1169408 ----a-w- c:\windows\system32\taskschd.dll
2010-11-02 05:17 . 2010-12-15 21:27 473600 ----a-w- c:\windows\system32\taskcomp.dll
2010-11-02 05:16 . 2010-12-15 21:27 1114624 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-02 05:10 . 2010-12-15 21:27 464384 ----a-w- c:\windows\system32\taskeng.exe
2010-11-02 05:10 . 2010-12-15 21:27 285696 ----a-w- c:\windows\system32\schtasks.exe
2010-11-02 04:40 . 2010-12-15 21:27 496128 ----a-w- c:\windows\SysWow64\taskschd.dll
2010-11-02 04:40 . 2010-12-15 21:27 305152 ----a-w- c:\windows\SysWow64\taskcomp.dll
2010-11-02 04:34 . 2010-12-15 21:27 192000 ----a-w- c:\windows\SysWow64\taskeng.exe
2010-11-02 04:34 . 2010-12-15 21:27 179712 ----a-w- c:\windows\SysWow64\schtasks.exe
2010-11-01 23:03 . 2010-11-24 08:32 1448448 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2010-11-01 22:59 . 2010-11-24 08:32 2381824 ----a-w- c:\windows\SysWow64\mshtml.tlb
2010-10-27 05:06 . 2010-12-15 21:27 2048 ----a-w- c:\windows\system32\tzres.dll
2010-10-27 04:32 . 2010-12-15 21:27 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2010-10-20 05:20 . 2010-12-15 21:28 46080 ----a-w- c:\windows\system32\atmlib.dll
2010-10-20 04:54 . 2010-12-15 21:28 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2010-10-20 03:09 . 2010-12-15 21:27 3124224 ----a-w- c:\windows\system32\win32k.sys
2010-10-20 03:05 . 2010-12-15 21:28 367104 ----a-w- c:\windows\system32\atmfd.dll
2010-10-20 02:58 . 2010-12-15 21:28 294400 ----a-w- c:\windows\SysWow64\atmfd.dll
2010-10-19 09:41 . 2010-09-29 15:17 270720 ------w- c:\windows\system32\MpSigStub.exe
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WeatherBugAlert"="c:\program files (x86)\AWS\WeatherBug Alert\WeatherBugAlert.exe" [2010-02-22 442368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-10-08 47904]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2010-12-13 421160]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-22 734872]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\appliand.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-30 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-04-28 55024]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-18 503352]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 61008]
S2 GS In-Game Service;GS In-Game Service;c:\program files (x86)\GameTracker\GSInGameService.exe [2010-11-09 1677096]
S3 Ph3xIB64;Philips 713x VU PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-09-28 395264]

.
Obsah adresáře 'Naplánované úlohy'

2011-01-14 c:\windows\Tasks\Norton Security Scan for Saldovi.job
- c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe [2010-11-18 08:48]
.

--------- x86-64 -----------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"combofix"="c:\combofix\CF16169.cfxxe" [X]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-06 11057768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60347
uLocal Page = c:\windows\system32\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Crawler Search - tbr:iemenu
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\Saldovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~2\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.aspx?ctid=CT2481032&SearchSource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatcher.aspx? ... 60347&qkw=
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Jookz Toolbar: jookztoolbar2@jookz.com - c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com
FF - Ext: ResultUrl: {C8431CD2-C25A-45F3-BEA9-A9103C31409A} - c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\{C8431CD2-C25A-45F3-BEA9-A9103C31409A}
FF - Ext: vShare: vshare@toolbar - %profile%\extensions\vshare@toolbar
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: free-downloads.net Toolbar: {ecdee021-0d17-467f-a1ff-c7a115230949} - %profile%\extensions\{ecdee021-0d17-467f-a1ff-c7a115230949}
FF - Ext: BS Player Toolbar: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - %profile%\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
FF - Ext: DownThemAll!: {DDC359D1-844A-42a7-9AA1-88A850A938A8} - %profile%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com
FF - Ext: Ashampoo US Community Toolbar: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - %profile%\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
FF - Ext: Flash AX Control: npfax@microgaming.co.uk - %profile%\extensions\npfax@microgaming.co.uk
FF - Ext: Crawler Toolbar: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - c:\program files (x86)\Crawler\Toolbar\firefox
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

AddRemove-Jookz Toolbar - c:\program files (x86)\Jookz Toolbar\uninstall.exe

.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-2376831636-2619549142-1994448415-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files (x86)\Bonjour\mDNSResponder.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
.
**************************************************************************
.
Celkový čas: 2011-01-15 18:08:37 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-01-15 17:08

Před spuštěním: Volných bajtů: 58 986 217 472
Po spuštění: Volných bajtů: 59 040 321 536

- - End Of File - - DDEEF94226254F991B3BD53286577678

#18 Příspěvek od **motji** » 15 led 2011 20:44

Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka

Kód: Vybrat vše

Reglock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)

DDS::
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60347
uLocal Page = c:\windows\system32\blank.htm

Firefox::
FF - ProfilePath - c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\
FF - prefs.js: browser.search.defaulturl - hxxp://search.conduit.com/ResultsExt.as ... ource=3&q={searchTerms}
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://www.crawler.com/search/dispatche ... 60347&qkw=
FF - Ext: Jookz Toolbar: jookztoolbar2@jookz.com - c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com
FF - Ext: Conduit Engine : engine@conduit.com - %profile%\extensions\engine@conduit.com

File::
c:\windows\Tasks\Norton Security Scan for Saldovi.job

Folder::
c:\program files (x86)\Norton Security Scan

-uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:

Obrázek

-po aplikaci na Vás vypadne další log,vložte ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou, v tom případě znovu restartujte a přitom mačkejte F8, pak zvolte Poslední známou funkční konfiguraci

vermont23 · #19 Příspěvek od **vermont23** » 17 led 2011 10:16

Zdravim,tak tady je ten log.Pozdě,ale přece

ComboFix 11-01-16.03 - Saldovi 17.01.2011 9:25.2.1 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.768.228 [GMT 1:00]
Spuštěný z: c:\users\Saldovi\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Saldovi\Desktop\CFScript.txt
AV: avast! Antivirus *Disabled/Updated* {C37D8F93-0602-E43C-40AA-47DAD597F308}
SP: avast! Antivirus *Disabled/Updated* {781C6E77-2038-EBB2-7A1A-7CA8AE10B9B5}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FILE ::
"c:\windows\Tasks\Norton Security Scan for Saldovi.job"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\.svn\all-wcprops
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\.svn\entries
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\.svn\text-base\chrome.manifest.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\.svn\text-base\install.rdf.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome.manifest
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\.svn\all-wcprops
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\.svn\entries
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\all-wcprops
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\entries
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\constants.js.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\events.js.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\tbcore.js.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\toolbar.xul.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\weather.js.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\weatherLoc.js.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\.svn\text-base\weatherLoc.xul.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\constants.js
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\events.js
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\tbcore.js
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\toolbar.xul
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\weather.js
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\weatherLoc.js
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\content\weatherLoc.xul
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\all-wcprops
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\entries
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\arrow_partner.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\arrow_small.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\arrow_small_org.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\btn_68x30_hover.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\btn_68x30_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\button_bg_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\button_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\button_rollover.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\combined.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\feeditem.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\full_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\gripper.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\images.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\logo.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\logo_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\main.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\news_refresh.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\partner_item_icon.ico.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\search_watermark.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\watermark.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\prop-base\web.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\arrow_partner.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\arrow_small.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\arrow_small_org.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\btn_68x30_hover.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\btn_68x30_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\button_bg_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\button_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\button_rollover.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\combined.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\feeditem.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\full_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\gripper.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\images.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\logo.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\logo_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\main.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\news_refresh.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\partner_item_icon.ico.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\search_watermark.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\toolbar.css.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\watermark.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\.svn\text-base\web.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\arrow_partner.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\arrow_small.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\arrow_small_org.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\bg.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\btn_68x30_hover.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\btn_68x30_normal.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\button_bg_normal.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\button_normal.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\button_rollover.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\all-wcprops
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\entries
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\arrow.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\arrow_bg_hot.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\arrow_bg_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\edge.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\games.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\highlight.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\logo.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\logo_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\news.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\privacy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\searchbar_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\separator_line.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\shopping.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\stocks.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\prop-base\submit.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\arrow.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\arrow_bg_hot.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\arrow_bg_normal.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\edge.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\games.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\highlight.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\logo.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\logo_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\news.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\privacy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\searchbar_bg.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\separator_line.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\shopping.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\stocks.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\.svn\text-base\submit.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\arrow.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\arrow_bg_hot.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\arrow_bg_normal.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\edge.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\games.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\highlight.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\logo.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\logo_bg.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\news.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\privacy.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\searchbar_bg.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\separator_line.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\shopping.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\stocks.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\buttons\submit.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\combined.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\feeditem.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\full_bg.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\gripper.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\images.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\logo.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\logo_bg.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\main.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\news_refresh.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\partner_item_icon.ico
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\search_watermark.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\toolbar.css
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\watermark.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\all-wcprops
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\entries
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\cloudy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\flurries.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\hazy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\chance_of_rain.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\chance_of_snow.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\chance_of_storm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\chance_of_tstorm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\mist.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\mostly_cloudy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\mostly_sunny.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\rain.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\sleet.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\snow.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\storm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\sunny.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\thunderstorm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\weatherbug.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\prop-base\windy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\cloudy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\flurries.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\hazy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\chance_of_rain.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\chance_of_snow.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\chance_of_storm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\chance_of_tstorm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\mist.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\mostly_cloudy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\mostly_sunny.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\rain.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\sleet.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\snow.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\storm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\sunny.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\thunderstorm.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\weatherbug.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\.svn\text-base\windy.png.svn-base
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\cloudy.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\flurries.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\hazy.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\chance_of_rain.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\chance_of_snow.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\chance_of_storm.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\chance_of_tstorm.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\mist.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\mostly_cloudy.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\mostly_sunny.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\rain.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\sleet.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\snow.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\storm.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\sunny.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\thunderstorm.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\weatherbug.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\weather\windy.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\chrome\skin\web.png
c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\jookztoolbar2@jookz.com\install.rdf
c:\program files (x86)\Norton Security Scan
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\{2A85E335-7417-424d-AD89-31DED1689794}.dat
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\{407D1C08-B366-4aca-92FB-E04E97F6681D}.dat
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\BilBDRes.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ccL80U.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ccScanw.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ccVrTrst.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\dec_abi.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\DefLoad.exe
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\DefUtDCD.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\diLueCbk.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ecmldr32.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\HeartBt.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\help.htm
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\Microsoft.VC80.CRT.manifest
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\msl.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\msvcp80.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\msvcr80.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\Nss.exe
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\patch25d.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\PrdDtRes.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ReputationCacheDB.db
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\RevList.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\SAUpdt.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ScanCore.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ScanRes.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\ScanText.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\SKUCfg.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\SKURes.dll
c:\program files (x86)\Norton Security Scan\Engine\2.7.3.34\SymHTML.dll
c:\program files (x86)\Norton Security Scan\isolate.ini
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\ConduitAutoCompleteSearch.js
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\ConduitAutoCompleteSearch.xpt
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\ConduitToolbar.idl
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\ConduitToolbar.js
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\ConduitToolbar.xpt
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\RadioWMPCore.dll
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\RadioWMPCore.xpt
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\components\RadioWMPCoreGecko19.dll
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\alertSettingsComponent.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\appContextMenu.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\engineContextMenu.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\engineSettings.json
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\fbAlert.js
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\getAppsContextMenu.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\postAppsContextMenu.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\toolbarContextMenu.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\defaults\unsharedAppsContextMenu.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\DualPackage\install.rdf
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\chrome.manifest
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\chrome\conduitengine.jar
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\install.rdf
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\lib\xpcom.js
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\META-INF\manifest.mf
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\META-INF\zigbert.rsa
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\META-INF\zigbert.sf
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\searchplugin\conduit.gif
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\searchplugin\conduit.ico
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\searchplugin\conduit.PNG
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\searchplugin\conduit.src
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\searchplugin\conduit.xml
c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\extensions\engine@conduit.com\version.txt
c:\windows\Tasks\Norton Security Scan for Saldovi.job

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-12-17 do 2011-01-17 )))))))))))))))))))))))))))))))
.

2011-01-17 08:40 . 2011-01-17 08:40 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-14 13:37 . 2011-01-14 13:40 -------- d-----w- C:\rsit
2011-01-14 10:12 . 2011-01-14 10:12 -------- d-----w- c:\program files (x86)\Microsoft Windows 7 Upgrade Advisor
2011-01-14 06:32 . 2010-11-10 05:35 8199504 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0CC4F9F0-0B93-43E2-9F0A-4539920E908A}\mpengine.dll
2011-01-13 09:41 . 2011-01-13 09:41 -------- d-----w- c:\program files (x86)\Crawler
2011-01-12 06:40 . 2010-10-16 05:17 720896 ----a-w- c:\windows\system32\odbc32.dll
2011-01-12 06:40 . 2010-10-16 05:16 1425408 ----a-w- c:\program files\Common Files\System\ado\msado15.dll
2011-01-12 06:40 . 2010-10-16 04:34 573440 ----a-w- c:\windows\SysWow64\odbc32.dll
2011-01-12 06:40 . 2010-10-16 05:16 495616 ----a-w- c:\program files\Common Files\System\ado\msadox.dll
2011-01-12 06:40 . 2010-10-16 05:16 466944 ----a-w- c:\program files\Common Files\System\ado\msadomd.dll
2011-01-12 06:40 . 2010-10-16 05:16 258048 ----a-w- c:\program files\Common Files\System\msadc\msadco.dll
2011-01-12 06:40 . 2010-10-16 04:33 372736 ----a-w- c:\program files (x86)\Common Files\System\ado\msadox.dll
2011-01-12 06:40 . 2010-10-16 04:33 352256 ----a-w- c:\program files (x86)\Common Files\System\ado\msadomd.dll
2011-01-12 06:40 . 2010-10-16 04:33 987136 ----a-w- c:\program files (x86)\Common Files\System\ado\msado15.dll
2011-01-12 06:40 . 2010-10-16 04:33 208896 ----a-w- c:\program files (x86)\Common Files\System\msadc\msadco.dll
2011-01-07 10:47 . 2011-01-07 10:47 -------- d-----w- c:\users\Saldovi\AppData\Local\Microsoft Games
2011-01-06 21:57 . 2011-01-06 21:57 -------- d-----w- c:\program files (x86)\Prodigium Game Studios
2011-01-05 12:42 . 2011-01-15 09:14 -------- d-----w- c:\users\Saldovi\AppData\Roaming\GameTracker
2011-01-05 12:42 . 2011-01-05 12:42 -------- d-----w- c:\program files (x86)\GameTracker
2011-01-03 17:40 . 2011-01-05 06:36 -------- d-----w- c:\program files (x86)\ResultUrl
2011-01-03 17:40 . 2011-01-04 14:16 -------- d-----w- c:\programdata\ResultUrl
2011-01-03 13:19 . 2011-01-03 13:19 94208 ----a-w- c:\windows\DIIUnin.exe
2011-01-03 13:19 . 2011-01-03 13:19 2829 ----a-w- c:\windows\DIIUnin.pif
2011-01-03 12:25 . 2011-01-03 13:22 21840 ----atw- c:\windows\SysWow64\SIntfNT.dll
2011-01-03 12:25 . 2011-01-03 13:22 17212 ----atw- c:\windows\SysWow64\SIntf32.dll
2011-01-03 12:25 . 2011-01-03 13:22 12067 ----atw- c:\windows\SysWow64\SIntf16.dll
2011-01-02 10:04 . 2011-01-02 11:09 86528 ----a-w- c:\windows\bnetunin.exe
2010-12-27 08:38 . 2010-12-27 08:38 -------- d-----w- c:\program files (x86)\Winamp Detect
2010-12-23 16:12 . 2010-12-23 16:13 -------- d-----w- c:\users\Tomáš

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-15 09:15 . 2010-11-29 12:23 202448 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-01-14 11:31 . 2010-11-29 12:23 202448 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2010-12-31 20:06 . 2010-09-29 15:10 38848 ----a-w- c:\windows\avastSS.scr
2010-12-31 20:06 . 2010-09-29 15:10 188216 ----a-w- c:\windows\SysWow64\aswBoot.exe
2010-12-14 10:20 . 2010-12-14 09:41 323584 ----a-w- c:\windows\SysWow64\AUDIOGENIE2.DLL
2010-11-30 09:38 . 2010-11-29 16:49 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\SysWow64\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\SysWow64\QuickTime.qts
2010-11-29 15:55 . 2010-10-05 08:28 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2010-11-14 08:55 . 2010-10-15 08:15 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2010-11-14 08:55 . 2010-10-15 08:15 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2010-11-14 08:55 . 2010-10-15 08:15 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2010-11-14 08:55 . 2010-10-15 08:15 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2010-11-09 03:55 . 2010-11-24 08:32 1502208 ----a-w- c:\windows\system32\inetcpl.cpl
2010-11-09 03:52 . 2010-11-24 08:32 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-11-03 11:09 . 2010-09-30 07:55 737280 ----a-w- c:\windows\iun6002.exe
2010-11-02 23:21 . 2010-11-02 23:21 128392 ----a-w- c:\program files (x86)\uninst.exe
2010-11-02 23:09 . 2010-11-02 23:09 2968376 ----a-w- c:\program files (x86)\CCleaner64.exe
2010-11-02 23:09 . 2010-11-02 23:09 1862456 ----a-w- c:\program files (x86)\CCleaner.exe
2010-11-02 05:18 . 2010-12-15 21:27 524288 ----a-w- c:\windows\system32\wmicmiplugin.dll
2010-11-02 05:17 . 2010-12-15 21:27 1169408 ----a-w- c:\windows\system32\taskschd.dll
2010-11-02 05:17 . 2010-12-15 21:27 473600 ----a-w- c:\windows\system32\taskcomp.dll
2010-11-02 05:16 . 2010-12-15 21:27 1114624 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-02 05:10 . 2010-12-15 21:27 464384 ----a-w- c:\windows\system32\taskeng.exe
2010-11-02 05:10 . 2010-12-15 21:27 285696 ----a-w- c:\windows\system32\schtasks.exe
2010-11-02 04:40 . 2010-12-15 21:27 496128 ----a-w- c:\windows\SysWow64\taskschd.dll
2010-11-02 04:40 . 2010-12-15 21:27 305152 ----a-w- c:\windows\SysWow64\taskcomp.dll
2010-11-02 04:34 . 2010-12-15 21:27 192000 ----a-w- c:\windows\SysWow64\taskeng.exe
2010-11-02 04:34 . 2010-12-15 21:27 179712 ----a-w- c:\windows\SysWow64\schtasks.exe
2010-11-01 23:03 . 2010-11-24 08:32 1448448 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2010-11-01 22:59 . 2010-11-24 08:32 2381824 ----a-w- c:\windows\SysWow64\mshtml.tlb
2010-10-27 05:06 . 2010-12-15 21:27 2048 ----a-w- c:\windows\system32\tzres.dll
2010-10-27 04:32 . 2010-12-15 21:27 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2010-10-20 05:20 . 2010-12-15 21:28 46080 ----a-w- c:\windows\system32\atmlib.dll
2010-10-20 04:54 . 2010-12-15 21:28 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2010-10-20 03:09 . 2010-12-15 21:27 3124224 ----a-w- c:\windows\system32\win32k.sys
2010-10-20 03:05 . 2010-12-15 21:28 367104 ----a-w- c:\windows\system32\atmfd.dll
2010-10-20 02:58 . 2010-12-15 21:28 294400 ----a-w- c:\windows\SysWow64\atmfd.dll
2010-10-19 09:41 . 2010-09-29 15:17 270720 ------w- c:\windows\system32\MpSigStub.exe
.

((((((((((((((((((((((((((((( SnapShot@2011-01-15_17.02.02 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2011-01-15 17:02 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-01-17 06:34 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2009-07-14 04:54 . 2011-01-15 17:02 49152 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-01-17 06:34 49152 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-01-15 17:02 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-01-17 06:34 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 05:10 . 2011-01-17 06:35 36150 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-09-29 14:52 . 2011-01-17 06:35 12054 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2376831636-2619549142-1994448415-1001_UserData.bin
+ 2010-09-30 10:48 . 2011-01-16 22:21 9116 c:\windows\system32\wdi\ERCQueuedResolutions.dat
- 2010-09-30 10:48 . 2011-01-12 12:17 9116 c:\windows\system32\wdi\ERCQueuedResolutions.dat
+ 2010-12-24 07:55 . 2011-01-16 08:46 2540 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2376831636-2619549142-1994448415-1003_UserData.bin
- 2011-01-15 17:01 . 2011-01-15 17:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-01-17 06:32 . 2011-01-17 06:32 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-01-15 17:01 . 2011-01-15 17:01 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-01-17 06:32 . 2011-01-17 06:32 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2010-09-29 21:41 . 2011-01-17 07:30 296630 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_FastS4.bin
+ 2009-07-14 05:01 . 2011-01-16 22:21 273916 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2011-01-15 16:59 273916 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2010-12-23 16:44 . 2011-01-16 22:21 453360 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2376831636-2619549142-1994448415-1003-8192.dat
- 2010-12-23 16:44 . 2010-12-30 15:32 453360 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2376831636-2619549142-1994448415-1003-8192.dat
+ 2010-10-31 22:29 . 2011-01-16 00:35 3111180 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2376831636-2619549142-1994448415-1001-8192.dat
- 2010-10-31 22:29 . 2011-01-15 17:00 3111180 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2376831636-2619549142-1994448415-1001-8192.dat
+ 2009-07-14 02:34 . 2011-01-17 07:43 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
- 2009-07-14 02:34 . 2011-01-15 15:13 10223616 c:\windows\system32\SMI\Store\Machine\SCHEMA.DAT
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WeatherBugAlert"="c:\program files (x86)\AWS\WeatherBug Alert\WeatherBugAlert.exe" [2010-02-22 442368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"="c:\program files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe" [2010-03-04 311296]
"Adobe Reader Speed Launcher"="c:\program files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
"AppleSyncNotifier"="c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe" [2010-10-08 47904]
"QuickTime Task"="c:\program files (x86)\QuickTime\QTTask.exe" [2010-11-29 421888]
"iTunesHelper"="c:\program files (x86)\iTunes\iTunesHelper.exe" [2010-12-13 421160]

c:\users\Tom ç\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OpenOffice.org 3.2.lnk - c:\program files (x86)\OpenOffice.org 3\program\quickstart.exe [2010-6-7 1195520]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe [2006-10-23 40048]
Adobe Reader Synchronizer.lnk - c:\program files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe [2006-10-22 734872]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\appliand.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-09-30 1255736]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2009-04-28 55024]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2010-11-18 503352]
S1 aswSP;aswSP; [x]
S2 aswFsBlk;aswFsBlk; [x]
S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2010-09-07 61008]
S2 GS In-Game Service;GS In-Game Service;c:\program files (x86)\GameTracker\GSInGameService.exe [2010-11-09 1677096]
S3 Ph3xIB64;Philips 713x VU PCI TV Card;c:\windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]
S3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;c:\windows\system32\DRIVERS\yk62x64.sys [2009-09-28 395264]

.

--------- x86-64 -----------

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2010-07-06 11057768]
.
------- Doplňkový sken -------
.
uLocal Page = %SystemRoot%\system32\blank.htm
uInternet Settings,ProxyOverride = *.local
IE: Crawler Search - tbr:iemenu
IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\users\Saldovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~2\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\users\Saldovi\AppData\Roaming\Mozilla\Firefox\Profiles\oyaescb2.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: ResultUrl: {C8431CD2-C25A-45F3-BEA9-A9103C31409A} - c:\program files (x86)\Mozilla Firefox 4.0 Beta 6\extensions\{C8431CD2-C25A-45F3-BEA9-A9103C31409A}
FF - Ext: vShare: vshare@toolbar - %profile%\extensions\vshare@toolbar
FF - Ext: ICQ Toolbar: {800b5000-a755-47e1-992b-48a1c1357f07} - %profile%\extensions\{800b5000-a755-47e1-992b-48a1c1357f07}
FF - Ext: free-downloads.net Toolbar: {ecdee021-0d17-467f-a1ff-c7a115230949} - %profile%\extensions\{ecdee021-0d17-467f-a1ff-c7a115230949}
FF - Ext: BS Player Toolbar: {fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5} - %profile%\extensions\{fed66dc5-1b74-4a04-8f5c-15c5ace2b9a5}
FF - Ext: DownThemAll!: {DDC359D1-844A-42a7-9AA1-88A850A938A8} - %profile%\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
FF - Ext: Ashampoo US Community Toolbar: {124d001a-bdcb-472f-aa59-bbe7e4bc3204} - %profile%\extensions\{124d001a-bdcb-472f-aa59-bbe7e4bc3204}
FF - Ext: Flash AX Control: npfax@microgaming.co.uk - %profile%\extensions\npfax@microgaming.co.uk
FF - Ext: Crawler Toolbar: {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - c:\program files (x86)\Crawler\Toolbar\firefox
.
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\S-1-5-21-2376831636-2619549142-1994448415-1001\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.vcf\UserChoice]
@Denied: (2) (LocalSystem)
"Progid"="WindowsLiveMail.VCard.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx"
"ThreadingModel"="Apartment"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash10k.ocx, 1"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Celkový čas: 2011-01-17 09:58:26
ComboFix-quarantined-files.txt 2011-01-17 08:58
ComboFix2.txt 2011-01-15 17:08

Před spuštěním: Volných bajtů: 62 430 302 208
Po spuštění: Volných bajtů: 62 252 765 184

- - End Of File - - 836249C4EDF726B1DD7807BF1407DCCD

#20 Příspěvek od **motji** » 17 led 2011 18:43

Že jste ten soused, já Vám to odpustím

Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:

ComboFix /Uninstall

-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.

***********

Stáhněte T-Cleaner
http://sweb.cz/Marinus/T-Cleaner.exe

-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir

***********

Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru

Obrázek

záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner

Obrázek

záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy

ok

zavřít

Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.

Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.

***********

Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech

***********

Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?

vermont23 · #21 Příspěvek od **vermont23** » 17 led 2011 19:38

Zde je ten log ze Rsitu:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Saldovi at 2011-01-17 19:32:33
Microsoft Windows 7 Home Premium
System drive C: has 60 GB (52%) free of 116 GB
Total RAM: 768 MB (13% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 19:32:45, on 17.1.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v9.00 (9.00.7930.16406)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\firefox.exe
C:\PROGRA~2\Crawler\Toolbar\CToolbar.exe
C:\Program Files\trend micro\Saldovi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.crawler.com/homepage.aspx?tbid=60347
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60347
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60347
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId= ... nkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: (no name) - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: Search Helper - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll
O2 - BHO: Pomocná služba pro přihlášení ke službě Windows Live ID - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O2 - BHO: Bing Bar BHO - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: @C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - {8dcb7100-df86-4384-8842-8fa844297b3f} - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O4 - HKLM\..\Run: [ATICustomerCare] "C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [WeatherBugAlert] "C:\Program Files (x86)\AWS\WeatherBug Alert\WeatherBugAlert.exe" /st
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
O4 - Global Startup: Adobe Reader Synchronizer.lnk = C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files (x86)\ICQ7.2\ICQ.exe
O9 - Extra button: Run IMVU - {d9288080-1baa-4bc4-9cf8-a92d743db949} - C:\Users\Saldovi\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\IMVU\Run IMVU.lnk
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O16 - DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} (Windows Live OneCare safety scanner control) - http://cdn.scan.onecare.live.com/resour ... cctrl2.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: GS In-Game Service - ClanServers Hosting LLC - C:\Program Files (x86)\GameTracker\GSInGameService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MSCSPTISRV - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: PACSPTISVR - Unknown owner - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe
O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: SonicStage Back-End Service - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe
O23 - Service: SonicStage SCSI Service (SSScsiSV) - Sony Corporation - C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10183 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
"C:\Program Files\NVIDIA Corporation\Display\NvXDSync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\Alwil Software\Avast5\AvastSvc.exe"
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe" -s
"C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe"
"C:\Program Files (x86)\Bonjour\mDNSResponder.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\iTunes\iTunesHelper.exe"
"C:\Program Files (x86)\GameTracker\GSInGameService.exe"
C:\Windows\SysWOW64\PnkBstrA.exe
"C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe"
"C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe"
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 2336
"C:\Program Files\iPod\bin\iPodService.exe"
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-a7cf2f2e-339c-4ff3-b1f8-b43095ffae53 -SystemEventPortName:HostProcess-98e68a36-8b4a-4d59-a9f0-56ae484ecd79 -IoCancelEventPortName:HostProcess-5794f7fd-7ed3-4c6a-805d-fdb1822344da -NonStateChangingEventPortName:HostProcess-19a8ffda-dd2a-405b-9272-81b0c14be8cf -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:999254b8-5773-4f57-8479-5a8664f85825
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\SearchIndexer.exe /Embedding
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe1_ Global\UsGthrCtrlFltPipeMssGthrPipe1 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\DllHost.exe /Processid:{30D49246-D217-465F-B00B-AC9DDD652EB7}
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
"C:\Program Files (x86)\Mozilla Firefox 4.0 Beta 6\firefox.exe"
C:\PROGRA~2\Crawler\Toolbar\CToolbar.exe -Embedding
C:\Windows\servicing\TrustedInstaller.exe
taskeng.exe {D2FD2EDA-55F9-478B-87B2-83E33A2AAB30}
"C:\Windows\system32\SearchFilterHost.exe" 0 504 508 516 65536 512
"C:\Users\Saldovi\Desktop\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}]
C:\PROGRA~2\Crawler\Toolbar\ctbr.dll [2010-12-10 1254136]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6EBF7485-159F-4bff-A14F-B9E3AAC4465B}]
Search Helper - C:\Program Files (x86)\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll [2010-09-22 191792]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocná služba pro přihlášení ke službě Windows Live ID - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 439168]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9FDDE16B-836F-4806-AB1F-1455CBEFF289}]
Windows Live Messenger Companion Helper - C:\Program Files (x86)\Windows Live\Companion\companioncore.dll [2010-09-22 393600]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar BHO - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17}

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{8dcb7100-df86-4384-8842-8fa844297b3f} - @C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll,-100 - C:\Program Files (x86)\MSN Toolbar\Platform\6.3.2322.0\npwinext.dll [2010-09-22 612616]
{4B3803EA-5230-4DC3-A7FC-33638F3D3542} - &Crawler lišta - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll [2010-12-10 1254136]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2010-07-06 11057768]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"WeatherBugAlert"=C:\Program Files (x86)\AWS\WeatherBug Alert\WeatherBugAlert.exe [2010-02-22 442368]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files (x86)\Alcohol Soft\Alcohol 120\AxAutoMntSrv.exe [2010-08-20 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2010-09-16 1164584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files (x86)\ICQ7.2\ICQ.exe [2011-01-05 133432]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorShield.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
C:\Program Files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files (x86)\Winamp\winampa.exe [2010-12-07 74752]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Saldovi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^IMVU.lnk]
C:\Users\Saldovi\AppData\Roaming\IMVUClient\IMVUQualityAgent.exe --startup []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Saldovi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Joint Operations Typhoon Rising Registration.lnk]
C:\Users\Saldovi\AppData\Local\Temp\{CEEBEC87-1091-4B68-BD46-1D9FB4FAF653}\{0325F1C1-883A-41AB-8981-B27359ABDFAF}\NOVG.EXE /remind /language=CSY /PRNM=Joint Operations Typhoon Rising []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Saldovi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OpenOffice.org 3.2.lnk]
C:\PROGRA~2\OPENOF~1.ORG\program\QUICKS~1.EXE [2010-06-07 1195520]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"ATICustomerCare"=C:\Program Files (x86)\ATI\ATICustomerCare\ATICustomerCare.exe [2010-03-04 311296]
"Adobe Reader Speed Launcher"=C:\Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"AppleSyncNotifier"=C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2010-10-08 47904]
"QuickTime Task"=C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]
"iTunesHelper"=C:\Program Files (x86)\iTunes\iTunesHelper.exe [2010-12-13 421160]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files (x86)\Adobe\Reader 8.0\Reader\reader_sl.exe
Adobe Reader Synchronizer.lnk - C:\Program Files (x86)\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2010-09-01 250368]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=5
"ConsentPromptBehaviorUser"=3
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1

======List of files/folders created in the last 1 months======

2011-01-17 19:32:33 ----D---- C:\rsit
2011-01-17 16:42:53 ----SHD---- C:\$RECYCLE.BIN
2011-01-15 17:43:32 ----D---- C:\Windows\ERDNT
2011-01-15 17:43:02 ----D---- C:\Qoobox
2011-01-14 11:12:27 ----D---- C:\Program Files (x86)\Microsoft Windows 7 Upgrade Advisor
2011-01-13 10:41:23 ----D---- C:\Program Files (x86)\Crawler
2011-01-12 07:40:08 ----A---- C:\Windows\SYSWOW64\odbc32.dll
2011-01-12 07:40:08 ----A---- C:\Windows\system32\odbc32.dll
2011-01-12 07:39:58 ----A---- C:\Windows\SYSWOW64\d3d10warp.dll
2011-01-12 07:39:58 ----A---- C:\Windows\system32\d3d10warp.dll
2011-01-12 07:39:58 ----A---- C:\Windows\system32\d2d1.dll
2011-01-12 07:39:57 ----A---- C:\Windows\SYSWOW64\d2d1.dll
2011-01-12 07:39:57 ----A---- C:\Windows\system32\XpsPrint.dll
2011-01-12 07:39:56 ----A---- C:\Windows\SYSWOW64\XpsPrint.dll
2011-01-12 07:39:56 ----A---- C:\Windows\SYSWOW64\DWrite.dll
2011-01-12 07:39:56 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-01-12 07:39:56 ----A---- C:\Windows\system32\FntCache.dll
2011-01-12 07:39:56 ----A---- C:\Windows\system32\DWrite.dll
2011-01-12 07:39:55 ----A---- C:\Windows\SYSWOW64\XpsGdiConverter.dll
2011-01-12 07:39:55 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-01-12 07:39:55 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-01-12 07:39:54 ----A---- C:\Windows\SYSWOW64\d3d10_1core.dll
2011-01-12 07:39:54 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-01-12 07:39:53 ----A---- C:\Windows\SYSWOW64\XpsRasterService.dll
2011-01-12 07:39:53 ----A---- C:\Windows\SYSWOW64\d3d10_1.dll
2011-01-12 07:39:53 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-01-12 07:39:53 ----A---- C:\Windows\system32\d3d10_1.dll
2011-01-12 07:39:53 ----A---- C:\Windows\system32\cdd.dll
2011-01-06 22:57:02 ----D---- C:\Program Files (x86)\Prodigium Game Studios
2011-01-06 09:37:35 ----A---- C:\Windows\SYSWOW64\PerfStringBackup.INI
2011-01-05 13:42:36 ----D---- C:\Users\Saldovi\AppData\Roaming\GameTracker
2011-01-05 13:42:11 ----D---- C:\Program Files (x86)\GameTracker
2011-01-03 18:40:06 ----D---- C:\ProgramData\ResultUrl
2011-01-03 18:40:06 ----D---- C:\Program Files (x86)\ResultUrl
2011-01-03 14:19:32 ----A---- C:\Windows\DIIUnin.pif
2011-01-03 14:19:32 ----A---- C:\Windows\DIIUnin.exe
2011-01-03 13:25:19 ----AT---- C:\Windows\SYSWOW64\SIntfNT.dll
2011-01-03 13:25:19 ----AT---- C:\Windows\SYSWOW64\SIntf32.dll
2011-01-03 13:25:19 ----AT---- C:\Windows\SYSWOW64\SIntf16.dll
2011-01-02 11:04:13 ----A---- C:\Windows\bnetunin.exe
2010-12-27 09:38:55 ----D---- C:\Program Files (x86)\Winamp Detect

======List of files/folders modified in the last 1 months======

2011-01-17 19:32:45 ----D---- C:\Windows\Prefetch
2011-01-17 19:32:41 ----D---- C:\Program Files\trend micro
2011-01-17 19:32:40 ----D---- C:\Windows\Temp
2011-01-17 19:29:22 ----D---- C:\Windows\system32\config
2011-01-17 19:25:53 ----D---- C:\Windows
2011-01-17 19:25:46 ----SHD---- C:\System Volume Information
2011-01-17 19:16:31 ----D---- C:\Users\Saldovi\AppData\Roaming\Winamp
2011-01-17 09:40:51 ----A---- C:\Windows\system.ini
2011-01-17 09:36:28 ----RD---- C:\Program Files (x86)
2011-01-17 09:36:27 ----D---- C:\Windows\Tasks
2011-01-17 09:31:20 ----D---- C:\Windows\SYSWOW64\drivers
2011-01-17 09:31:20 ----D---- C:\Windows\SysWOW64
2011-01-17 09:31:20 ----D---- C:\Windows\system32\drivers
2011-01-17 09:31:20 ----D---- C:\Windows\System32
2011-01-17 09:31:20 ----D---- C:\Windows\AppPatch
2011-01-17 09:31:17 ----D---- C:\Program Files\Common Files
2011-01-17 09:31:17 ----D---- C:\Program Files (x86)\Common Files
2011-01-17 09:21:58 ----D---- C:\Windows\system32\catroot2
2011-01-15 18:06:45 ----D---- C:\Windows\system32\Tasks
2011-01-15 10:15:02 ----A---- C:\Windows\SYSWOW64\PnkBstrB.exe
2011-01-14 19:25:42 ----D---- C:\Users\Saldovi\AppData\Roaming\ICQ
2011-01-14 18:45:05 ----D---- C:\Program Files (x86)\ICQ7.2
2011-01-14 11:12:34 ----SHD---- C:\Windows\Installer
2011-01-14 11:12:33 ----D---- C:\Config.Msi
2011-01-13 19:20:09 ----D---- C:\Windows\system32\catroot
2011-01-13 19:20:06 ----D---- C:\Windows\winsxs
2011-01-13 13:00:21 ----D---- C:\Windows\totalcmd
2011-01-13 13:00:21 ----D---- C:\totalcmd
2011-01-13 10:41:08 ----D---- C:\ProgramData
2011-01-13 10:33:11 ----D---- C:\Windows\debug
2011-01-13 10:21:35 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2011-01-13 10:20:09 ----RD---- C:\Program Files
2011-01-12 13:28:30 ----D---- C:\Windows\SYSWOW64\directx
2011-01-12 13:28:15 ----HD---- C:\Windows\msdownld.tmp
2011-01-12 12:46:04 ----D---- C:\Users\Saldovi\AppData\Roaming\AIMP
2011-01-12 12:02:41 ----A---- C:\Windows\system32\MRT.exe
2011-01-10 18:01:46 ----D---- C:\Program Files (x86)\Call of Duty
2011-01-08 19:22:11 ----D---- C:\Program Files (x86)\SopCast
2011-01-07 12:48:57 ----RSD---- C:\Windows\assembly
2011-01-07 12:48:57 ----D---- C:\Windows\Microsoft.NET
2011-01-07 12:16:40 ----D---- C:\Program Files (x86)\Internet Explorer
2011-01-07 12:06:04 ----D---- C:\Program Files\Internet Explorer
2011-01-07 11:59:21 ----D---- C:\Windows\system32\LogFiles
2011-01-07 09:08:55 ----D---- C:\Windows\inf
2011-01-07 09:07:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-01-06 07:48:15 ----D---- C:\Program Files (x86)\Microsoft Silverlight
2010-12-31 21:06:33 ----A---- C:\Windows\SYSWOW64\aswBoot.exe
2010-12-30 16:20:34 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2010-12-28 14:28:48 ----D---- C:\Program Files (x86)\Opera
2010-12-27 09:39:11 ----D---- C:\Program Files (x86)\Winamp
2010-12-25 16:37:37 ----D---- C:\Program Files\QIP
2010-12-23 17:12:23 ----RD---- C:\Users
2010-12-19 19:07:45 ----HD---- C:\Program Files (x86)\Temp
2010-12-19 08:25:30 ----D---- C:\Windows\system32\wdi

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 PxHlpa64;PxHlpa64; C:\Windows\System32\Drivers\PxHlpa64.sys [2009-04-28 55024]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-11-18 503352]
R1 aswRdr;aswRdr; C:\Windows\system32\drivers\aswRdr.sys [2010-09-07 28752]
R1 aswSP;aswSP; C:\Windows\system32\drivers\aswSP.sys [2010-09-07 121936]
R1 aswTdi;avast! Network Shield Support; C:\Windows\system32\drivers\aswTdi.sys [2010-09-07 51280]
R2 aswFsBlk;aswFsBlk; C:\Windows\system32\drivers\aswFsBlk.sys [2010-09-07 20048]
R2 aswMonFlt;aswMonFlt; \??\C:\Windows\system32\drivers\aswMonFlt.sys [2010-09-07 61008]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 34152]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2010-07-06 2419176]
R3 Ph3xIB64;Philips 713x VU PCI TV Card; C:\Windows\system32\DRIVERS\Ph3xIB64.sys [2009-06-10 1627520]
S3 a1n3zb2g;a1n3zb2g; C:\Windows\system32\drivers\a1n3zb2g.sys []
S3 appliandMP;appliandMP; C:\Windows\system32\DRIVERS\appliand.sys []
S3 azggwzlc;azggwzlc; C:\Windows\system32\drivers\azggwzlc.sys []
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-22 48488]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2010-10-16 37664]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-12-31 40384]
R2 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-10-07 345376]
R2 GS In-Game Service;GS In-Game Service; C:\Program Files (x86)\GameTracker\GSInGameService.exe [2010-11-09 1677096]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-09-10 990312]
R2 PnkBstrA;PnkBstrA; C:\Windows\syswow64\PnkBstrA.exe [2010-11-29 75136]
R2 SeaPort;SeaPort; C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe [2010-09-22 249136]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 2286976]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2010-12-13 932640]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-12-31 40384]
S3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-12-31 40384]
S3 fsssvc;Windows Live Family Safety Service; C:\Program Files (x86)\Windows Live\Family Safety\fsssvc.exe [2010-09-22 1493352]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632]
S3 MSCSPTISRV;MSCSPTISRV; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\MSCSPTISRV.exe [2006-12-14 45056]
S3 PACSPTISVR;PACSPTISVR; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\PACSPTISVR.exe [2006-12-14 57344]
S3 SonicStage Back-End Service;SonicStage Back-End Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SsBeSvc.exe [2007-02-05 112184]
S3 SPTISRV;Sony SPTI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SPTISRV.exe [2006-12-14 69632]
S3 SSScsiSV;SonicStage SCSI Service; C:\Program Files (x86)\Common Files\Sony Shared\AVLib\SSScsiSV.exe [2007-02-05 75320]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-09-30 1255736]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]

-----------------EOF-----------------

Jinak je vše v pořádku a počítač šlape jak hodinke

#22 Příspěvek od **motji** » 17 led 2011 21:42

Mě hanáčtina nikdy nešla, i když se tak u nás mluvilo, prej na to nemám zobák

Otevřete si Poznámkový blok a zkopírujte do něj text

Kód: Vybrat vše

Windows Registry Editor Version 5.00

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=-
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^Saldovi^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^IMVU.lnk]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
[-HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminatorUpdate]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{32099AAC-C132-4136-9E9A-4E364A424E17}"=-
[-HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]

-uložte jako (typ: všechny soubory) kde za název souboru zadáte "smazani.reg" bez uvozovek,
klikněte na uložit, pak na soubor standardně 2X klikněte a potvrďte dialogové okno.

smažte
C:\Qoobox

Pokud nejsou problémy, je to vše

vermont23 · #23 Příspěvek od **vermont23** » 18 led 2011 09:27

Já taky moc neumim hanácky,jenom pár slov.Jinak počítač funguje dobře.
Děkuji moc za vyřešení problému

#24 Příspěvek od **motji** » 18 led 2011 09:33

Není zač

VIRY.CZ

Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...

Re: Modrá obrazovka...