preventivka & problém z cpu

[David777]

ComboFix 11-06-05.06 - David 06.06.2011 15:02:46.4.2 - x64
Microsoft Windows 7 Home Premium 6.1.7600.0.1250.420.1029.18.4061.2292 [GMT 2:00]
Spuštěný z: c:\users\David\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\David\Desktop\CFScript.txt
AV: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 4.2 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
FILE ::
"c:\windows\system32\sfrem02.exe"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000Core.job"
"c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000UA.job"
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\sfrem02.exe
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000Core.job
c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2239340465-1001483360-3508777747-1000UA.job
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Service_gupdate
-------\Service_gupdatem
-------\Service_sfrem02
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-05-06 do 2011-06-06 )))))))))))))))))))))))))))))))
.
.
2011-06-06 13:13 . 2011-06-06 13:13 -------- d-----w- c:\users\Public\AppData\Local\temp
2011-06-06 13:13 . 2011-06-06 13:13 -------- d-----w- c:\users\Guest\AppData\Local\temp
2011-06-06 13:13 . 2011-06-06 13:13 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-06-05 18:32 . 2011-06-05 18:32 -------- d-----w- C:\sss
2011-06-05 18:23 . 2011-06-05 19:11 -------- d-----w- c:\users\David\AppData\Roaming\Google Chrome Backup
2011-06-05 18:23 . 2011-06-05 18:23 -------- d-----w- c:\program files (x86)\Google Chrome Backup
2011-06-05 15:51 . 2011-06-05 15:51 -------- d-----w- c:\program files (x86)\LogMeIn Hamachi
2011-06-05 07:32 . 2011-06-05 07:32 -------- d-----w- C:\_OTL
2011-06-04 19:55 . 2011-06-04 19:56 -------- d-----w- c:\program files (x86)\DiskCheckup
2011-06-04 19:35 . 2011-06-05 18:43 -------- d-----w- c:\users\David\AppData\Local\Cooliris
2011-06-04 18:55 . 2011-06-04 18:55 77824 --sha-r- c:\windows\SysWow64\MSVCP50G.dll
2011-06-04 16:57 . 2011-06-04 16:57 -------- d-----w- c:\program files\BatteryBar
2011-06-03 20:00 . 2011-05-09 22:00 8718160 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{0FB73C8E-A358-4973-BACF-506BF0455888}\mpengine.dll
2011-05-27 19:13 . 2011-04-22 20:18 27008 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-05-24 18:47 . 2011-05-24 18:47 -------- d-----w- c:\program files (x86)\GamePark2
2011-05-22 18:39 . 2011-05-22 18:39 -------- d-----w- c:\program files (x86)\Common Files\xing shared
2011-05-22 18:39 . 2011-05-22 18:39 -------- d-----w- c:\program files (x86)\Real
2011-05-15 20:08 . 2009-03-18 15:35 33856 ---ha-w- c:\windows\system32\hamachi.sys
2011-05-15 20:04 . 2011-06-06 13:16 -------- d-----w- c:\users\David\AppData\Local\LogMeIn Hamachi
2011-05-13 20:18 . 2011-05-13 20:18 -------- d-----w- c:\program files (x86)\WinSCP
2011-05-12 19:05 . 2011-05-12 21:21 -------- d-----w- c:\users\David\VirtualBox VMs
2011-05-12 19:04 . 2011-05-27 21:34 -------- d-----w- c:\users\David\.VirtualBox
2011-05-12 19:02 . 2011-04-26 12:38 231600 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2011-05-12 19:02 . 2011-04-26 12:37 56816 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2011-05-12 19:02 . 2011-05-12 19:02 -------- d-----w- c:\program files\VirtualBox
2011-05-11 18:18 . 2011-04-09 06:58 142336 ----a-w- c:\windows\system32\poqexec.exe
2011-05-11 18:18 . 2011-04-09 05:56 123904 ----a-w- c:\windows\SysWow64\poqexec.exe
2011-05-11 18:18 . 2011-01-17 06:17 197120 ----a-w- c:\windows\system32\d3d10_1.dll
2011-05-11 18:18 . 2011-01-17 05:38 161792 ----a-w- c:\windows\SysWow64\d3d10_1.dll
2011-05-11 12:49 . 2011-04-09 06:45 5509504 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-05-11 12:49 . 2011-04-09 06:13 3957632 ----a-w- c:\windows\SysWow64\ntkrnlpa.exe
2011-05-11 12:49 . 2011-04-09 06:13 3901824 ----a-w- c:\windows\SysWow64\ntoskrnl.exe
2011-05-11 12:48 . 2011-03-25 03:23 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-05-11 12:48 . 2011-03-25 03:23 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-05-11 12:48 . 2011-03-25 03:23 324608 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-05-11 12:48 . 2011-03-25 03:22 52224 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-05-11 12:48 . 2011-03-25 03:22 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-05-11 12:48 . 2011-03-25 03:22 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-05-11 12:48 . 2011-03-25 03:22 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-05-09 16:04 . 2011-05-09 16:04 25608 ----a-w- c:\windows\SysWow64\drivers\DKbFltr.sys
2011-05-09 16:02 . 2011-05-09 16:02 132648 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2011-05-09 16:00 . 2011-05-09 16:00 63016 ----a-w- c:\windows\system32\drivers\L1E60x64.sys
2011-05-09 15:41 . 2011-05-09 15:41 -------- d-----w- c:\programdata\Uniblue
2011-05-08 10:27 . 2011-05-08 10:30 -------- d-----w- c:\program files (x86)\ICQ7.1
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-06-04 22:37 . 2010-06-07 12:30 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.exe
2011-06-04 22:37 . 2010-06-07 12:30 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.xtr
2011-06-04 21:53 . 2010-06-07 12:30 214520 ----a-w- c:\windows\SysWow64\PnkBstrB.ex0
2011-05-29 07:11 . 2010-09-28 14:09 39984 ----a-w- c:\windows\SysWow64\drivers\mbamswissarmy.sys
2011-05-29 07:11 . 2010-09-28 14:09 25912 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-05-24 17:14 . 2010-09-26 19:46 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-05-22 18:39 . 2009-10-16 05:09 499712 ----a-w- c:\windows\SysWow64\msvcp71.dll
2011-05-22 18:39 . 2009-10-16 05:09 348160 ----a-w- c:\windows\SysWow64\msvcr71.dll
2011-05-14 20:40 . 2010-04-30 16:20 48648 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\Markup.dll
2011-05-14 20:30 . 2010-04-30 16:20 484160 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2011-05-05 19:08 . 2010-06-07 12:30 75136 ----a-w- c:\windows\SysWow64\PnkBstrA.exe
2011-04-26 12:37 . 2011-04-26 12:37 156912 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2011-04-26 12:37 . 2011-04-26 12:37 320816 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2011-04-26 12:37 . 2011-04-26 12:37 176560 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2011-04-07 20:31 . 2010-07-01 13:35 310728 ----a-w- c:\windows\system32\drivers\atksgt.sys
2011-04-02 10:41 . 2011-04-02 10:41 86016 ----a-w- c:\windows\SysWow64\frapsvid.dll
2011-04-02 10:41 . 2011-04-02 10:41 84992 ----a-w- c:\windows\system32\frapsv64.dll
2011-03-29 11:48 . 2010-07-31 21:26 669184 ----a-w- c:\windows\SysWow64\pbsvc.exe
2011-03-15 14:45 . 2011-03-15 14:45 74752 ----a-w- c:\windows\SysWow64\RegisterIEPKEYs.exe
2011-03-15 14:45 . 2011-03-15 14:45 1797632 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-03-15 14:45 . 2011-03-15 14:45 161792 ----a-w- c:\windows\SysWow64\msls31.dll
2011-03-15 14:45 . 2011-03-15 14:45 1126912 ----a-w- c:\windows\SysWow64\wininet.dll
2011-03-15 14:45 . 2011-03-15 14:45 89088 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2011-03-15 14:45 . 2011-03-15 14:45 86528 ----a-w- c:\windows\SysWow64\iesysprep.dll
2011-03-15 14:45 . 2011-03-15 14:45 76800 ----a-w- c:\windows\SysWow64\SetIEInstalledDate.exe
2011-03-15 14:45 . 2011-03-15 14:45 74752 ----a-w- c:\windows\SysWow64\iesetup.dll
2011-03-15 14:45 . 2011-03-15 14:45 63488 ----a-w- c:\windows\SysWow64\tdc.ocx
2011-03-15 14:45 . 2011-03-15 14:45 48640 ----a-w- c:\windows\SysWow64\mshtmler.dll
2011-03-15 14:45 . 2011-03-15 14:45 420864 ----a-w- c:\windows\SysWow64\vbscript.dll
2011-03-15 14:45 . 2011-03-15 14:45 367104 ----a-w- c:\windows\SysWow64\html.iec
2011-03-15 14:45 . 2011-03-15 14:45 35840 ----a-w- c:\windows\SysWow64\imgutil.dll
2011-03-15 14:45 . 2011-03-15 14:45 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-03-15 14:45 . 2011-03-15 14:45 23552 ----a-w- c:\windows\SysWow64\licmgr10.dll
2011-03-15 14:45 . 2011-03-15 14:45 222208 ----a-w- c:\windows\system32\msls31.dll
2011-03-15 14:45 . 2011-03-15 14:45 152064 ----a-w- c:\windows\SysWow64\wextract.exe
2011-03-15 14:45 . 2011-03-15 14:45 150528 ----a-w- c:\windows\SysWow64\iexpress.exe
2011-03-15 14:45 . 2011-03-15 14:45 142848 ----a-w- c:\windows\SysWow64\ieUnatt.exe
2011-03-15 14:45 . 2011-03-15 14:45 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-03-15 14:45 . 2011-03-15 14:45 1389056 ----a-w- c:\windows\system32\wininet.dll
2011-03-15 14:45 . 2011-03-15 14:45 11776 ----a-w- c:\windows\SysWow64\mshta.exe
2011-03-15 14:45 . 2011-03-15 14:45 110592 ----a-w- c:\windows\SysWow64\IEAdvpack.dll
2011-03-15 14:45 . 2011-03-15 14:45 101888 ----a-w- c:\windows\SysWow64\admparse.dll
2011-03-15 14:45 . 2011-03-15 14:45 91648 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2011-03-15 14:45 . 2011-03-15 14:45 85504 ----a-w- c:\windows\system32\iesetup.dll
2011-03-15 14:45 . 2011-03-15 14:45 76800 ----a-w- c:\windows\system32\tdc.ocx
2011-03-15 14:45 . 2011-03-15 14:45 603648 ----a-w- c:\windows\system32\vbscript.dll
2011-03-15 14:45 . 2011-03-15 14:45 49664 ----a-w- c:\windows\system32\imgutil.dll
2011-03-15 14:45 . 2011-03-15 14:45 48640 ----a-w- c:\windows\system32\mshtmler.dll
2011-03-15 14:45 . 2011-03-15 14:45 448512 ----a-w- c:\windows\system32\html.iec
2011-03-15 14:45 . 2011-03-15 14:45 30720 ----a-w- c:\windows\system32\licmgr10.dll
2011-03-15 14:45 . 2011-03-15 14:45 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-03-15 14:45 . 2011-03-15 14:45 2303488 ----a-w- c:\windows\system32\jscript9.dll
2011-03-15 14:45 . 2011-03-15 14:45 173056 ----a-w- c:\windows\system32\ieUnatt.exe
2011-03-15 14:45 . 2011-03-15 14:45 165888 ----a-w- c:\windows\system32\iexpress.exe
2011-03-15 14:45 . 2011-03-15 14:45 160256 ----a-w- c:\windows\system32\wextract.exe
2011-03-15 14:45 . 2011-03-15 14:45 1492992 ----a-w- c:\windows\system32\inetcpl.cpl
2011-03-15 14:45 . 2011-03-15 14:45 135168 ----a-w- c:\windows\system32\IEAdvpack.dll
2011-03-15 14:45 . 2011-03-15 14:45 12288 ----a-w- c:\windows\system32\mshta.exe
2011-03-15 14:45 . 2011-03-15 14:45 114176 ----a-w- c:\windows\system32\admparse.dll
2011-03-15 14:45 . 2011-03-15 14:45 111616 ----a-w- c:\windows\system32\iesysprep.dll
2011-03-14 22:44 . 2011-03-14 22:44 1386496 ----a-w- c:\windows\SysWow64\GLaux.dll
2011-03-14 22:44 . 2011-03-14 22:44 710796 ----a-w- c:\windows\SysWow64\Matrix2Screensaver.scr
2011-03-12 12:03 . 2011-04-28 13:59 662528 ----a-w- c:\windows\system32\XpsPrint.dll
2011-03-12 11:31 . 2011-04-28 13:59 442880 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-03-11 06:23 . 2011-04-28 13:59 187264 ----a-w- c:\windows\system32\drivers\storport.sys
2011-03-11 06:23 . 2011-04-28 13:59 1657216 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-03-11 06:23 . 2011-04-28 13:59 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-03-11 06:23 . 2011-04-28 13:59 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-03-11 06:23 . 2011-04-28 13:59 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-03-11 06:22 . 2011-04-28 13:59 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-03-11 06:22 . 2011-04-28 13:59 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-03-11 06:19 . 2011-04-12 17:18 1359872 ----a-w- c:\windows\system32\mfc42u.dll
2011-03-11 06:19 . 2011-04-12 17:18 1395712 ----a-w- c:\windows\system32\mfc42.dll
2011-03-11 06:18 . 2011-04-28 13:59 2566144 ----a-w- c:\windows\system32\esent.dll
2011-03-11 06:15 . 2011-04-28 13:59 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-03-11 05:40 . 2011-04-12 17:18 1164288 ----a-w- c:\windows\SysWow64\mfc42u.dll
2011-03-11 05:40 . 2011-04-12 17:18 1137664 ----a-w- c:\windows\SysWow64\mfc42.dll
2011-03-11 05:39 . 2011-04-28 13:59 1686016 ----a-w- c:\windows\SysWow64\esent.dll
2011-03-11 05:37 . 2011-04-28 13:59 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2009-04-08 18:31 . 2009-04-08 18:31 106496 ----a-w- c:\program files (x86)\Common Files\CPInstallAction.dll
2008-08-12 05:45 . 2008-08-12 05:45 155648 ----a-w- c:\program files (x86)\Common Files\MSIactionall.dll
.
.
((((((((((((((((((((((((((((( SnapShot_2011-06-06_12.29.32 )))))))))))))))))))))))))))))))))))))))))
.
- 2009-07-14 04:54 . 2011-06-06 11:51 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-06-06 13:16 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2009-07-14 04:54 . 2011-06-06 13:16 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-06-06 11:51 32768 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:54 . 2011-06-06 11:51 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-06 13:16 16384 c:\windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 05:10 . 2011-06-06 11:53 51944 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 05:10 . 2011-06-06 13:18 51944 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-04-29 21:20 . 2011-06-06 13:18 19070 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2239340465-1001483360-3508777747-1000_UserData.bin
- 2010-04-29 21:20 . 2011-06-06 11:53 19070 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2239340465-1001483360-3508777747-1000_UserData.bin
- 2010-04-30 06:13 . 2011-06-06 12:01 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-04-30 06:13 . 2011-06-06 13:16 16384 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-04-30 06:13 . 2011-06-06 12:01 49152 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2010-04-30 06:13 . 2011-06-06 13:16 49152 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
+ 2009-07-14 04:54 . 2011-06-06 13:16 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:54 . 2011-06-06 12:01 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-04-30 18:15 . 2011-06-05 11:44 12450 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2010-04-30 18:15 . 2011-06-06 13:14 12450 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\Bluetooth\bthservsdp.dat
+ 2011-06-06 13:15 . 2011-06-06 13:15 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-06-06 11:50 . 2011-06-06 11:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-06-06 13:15 . 2011-06-06 13:15 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2011-06-06 11:50 . 2011-06-06 11:50 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2009-07-14 05:12 . 2011-06-06 13:16 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:12 . 2011-06-06 11:52 262144 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
- 2009-07-14 05:01 . 2011-06-06 04:43 518104 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2009-07-14 05:01 . 2011-06-06 13:14 518104 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2010-05-04 20:14 . 2011-05-02 19:11 4028768 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
+ 2010-05-04 20:14 . 2011-06-06 13:14 4028768 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache3.0.0.0.dat
- 2010-11-01 21:04 . 2011-06-06 04:43 7556455 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2239340465-1001483360-3508777747-1000-8192.dat
+ 2010-11-01 21:04 . 2011-06-06 13:14 7556455 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2239340465-1001483360-3508777747-1000-8192.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 01:08 143360 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x86\OverlayIconShlExt1.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"Mousotron"="c:\program files (x86)\Mousotron\Mousotron.exe" [2011-02-02 525312]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [BU]
"ShowBatteryBar"="c:\program files\BatteryBar\ShowBatteryBar.exe" [2009-05-28 89600]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"HDAudDeck"="c:\program files (x86)\VIA\VIAudioi\VDeck\VDeck.exe" [2009-09-17 2245120]
"HControlUser"="c:\program files (x86)\ASUS\ATK Hotkey\HControlUser.exe" [2009-06-19 105016]
"ATKOSD2"="c:\program files (x86)\ASUS\ATKOSD2\ATKOSD2.exe" [2009-08-17 6859392]
"ATKMEDIA"="c:\program files (x86)\ASUS\ATK Media\DMedia.exe" [2009-08-20 170624]
"jswtrayutil"="c:\program files (x86)\TP-LINK\QSS\jswtrayutil.exe" [2009-09-24 32871]
"LogMeIn Hamachi Ui"="c:\program files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" [2011-05-25 1951112]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
FancyStart daemon.lnk - c:\windows\Installer\{2B81872B-A054-48DA-BE3B-FA5C164C303A}\_C4A2FC3E3722966204FDD8.exe [2010-2-10 12862]
GamePark klient 2.lnk - c:\program files (x86)\GamePark2\gpcl.exe [2011-5-24 399872]
HP Digital Imaging Monitor.lnk - c:\program files (x86)\HP\Digital Imaging\bin\hpqtra08.exe [2009-11-18 275072]
SRS Premium Sound.lnk - c:\windows\Installer\{E5CF6B9C-3ABE-43C9-9413-AD5FFC98F049}\NewShortcut5_21C7B668029A47458B27645FE6E4A715.exe [2010-2-10 156952]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 ioloFileInfoList;iolo FileInfoList Service;c:\program files (x86)\iolo\common\lib\ioloServiceManager.exe [x]
R3 AmUStor;AM USB Stroage Driver;c:\windows\system32\drivers\AmUStor.SYS [x]
R3 BITCOMET_HELPER_SERVICE;BitComet Disk Boost Service;c:\program files (x86)\BitComet\tools\BitCometService.exe [2010-12-28 1296728]
R3 DAUpdaterSvc;Dragon Age: Origins - Content Updater;d:\hry\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64 [2010-03-30 26752]
R3 ipswuio;ipswuio;c:\windows\system32\DRIVERS\ipswuio.sys [x]
R3 jswpsapi;JumpStart Wi-Fi Protected Setup;c:\program files (x86)\TP-LINK\QSS\jswpsapi.exe [2009-08-14 954368]
R3 RTCore;RTCore;c:\program files (x86)\RMClock\RTCore.sys [x]
R3 RTCore64;RTCore64;c:\users\David\Downloads\rmclock_230_bin\RTCore64.sys [x]
R3 SiSGbeLH;SiS191/SiS190 Ethernet Device NDIS 6.0 Driver;c:\windows\system32\DRIVERS\SiSG664.sys [x]
R3 SwitchBoard;SwitchBoard;c:\program files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R3 teamviewervpn;TeamViewer VPN Adapter;c:\windows\system32\DRIVERS\teamviewervpn.sys [x]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
S0 lullaby;lullaby;c:\windows\system32\DRIVERS\lullaby.sys [x]
S0 sfdrv01a;StarForce Protection Environment Driver (version 1.x.a);c:\windows\System32\drivers\sfdrv01a.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 JSWPSLWF;JumpStart Wireless Filter Driver;c:\windows\system32\DRIVERS\jswpslwfx.sys [x]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [x]
S1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\DRIVERS\VBoxUSBMon.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AFBAgent;AFBAgent;c:\windows\system32\FBAgent.exe [x]
S2 ASMMAP64;ASMMAP64;c:\program files\ATKGFNEX\ASMMAP64.sys [2007-07-24 14904]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2010-08-12 810144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [x]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;c:\program files (x86)\LogMeIn Hamachi\hamachi-2.exe [2011-05-25 2275720]
S2 jswpbapi;JumpStart Push-Button Service;c:\program files (x86)\TP-LINK\QSS\jswpbapi.exe [2009-08-14 265216]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-05-29 366640]
S2 OberonGameConsoleService;Oberon Media Game Console service;c:\program files (x86)\Asus\Game Park\GameConsole\OberonGameConsoleService.exe [2009-09-15 44312]
S2 TeamViewer6;TeamViewer 6;c:\program files (x86)\TeamViewer\Version6\TeamViewer_Service.exe [2011-04-15 2280312]
S3 athur;Atheros AR9271 Wireless Network Adapter Service;c:\windows\system32\DRIVERS\athurx.sys [x]
S3 ETD;ELAN PS/2 Port Input Device;c:\windows\system32\DRIVERS\ETD.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 VBoxNetFlt;VBoxNetFlt Service;c:\windows\system32\DRIVERS\VBoxNetFlt.sys [x]
S3 VIAHdAudAddService;VIA High Definition Audio Driver Service;c:\windows\system32\drivers\viahduaa.sys [x]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\svchost]
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\ADSMOverlayIcon1]
@="{A8D448F4-0431-45AC-9F5E-E1B434AB2249}"
[HKEY_CLASSES_ROOT\CLSID\{A8D448F4-0431-45AC-9F5E-E1B434AB2249}]
2007-06-02 00:52 159744 ----a-w- c:\program files (x86)\ASUS\ASUS Data Security Manager\ShlExt\x64\OverlayIconShlExt1_64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_B]
@="{6D4133E5-0742-4ADC-8A8C-9303440F7190}"
[HKEY_CLASSES_ROOT\CLSID\{6D4133E5-0742-4ADC-8A8C-9303440F7190}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\AsusWSShellExt_O]
@="{64174815-8D98-4CE6-8646-4C039977D808}"
[HKEY_CLASSES_ROOT\CLSID\{64174815-8D98-4CE6-8646-4C039977D808}]
2009-11-26 05:49 70656 ----a-w- c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSShellExt64.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"combofix"="c:\combofix\CF27544.cfxxe" [X]
"ETDWare"="c:\program files\Elantech\ETDCtrl.exe" [2009-09-30 621440]
"EeeStorageBackup"="c:\program files (x86)\ASUS\ASUS WebStorage\SERVICE\AsusWSService.exe" [2009-11-26 1732608]
"AmIcoSinglun64"="c:\program files (x86)\AmIcoSingLun\AmIcoSinglun64.exe" [2009-09-01 323584]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2010-08-12 2916584]
"AdobeAAMUpdater-1.0"="c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-02-11 162328]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-02-11 386584]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-02-11 417304]
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uSearchAssistant =
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~2\MICROS~1\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - d:\novslo~1\OFFICE11\EXCEL.EXE/3000
IE: Stáhnout odkaz s použitím BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddLink.htm
IE: Stáhnout všechny odkazy s použitím BitCometu - c:\program files (x86)\BitComet\BitComet.exe/AddAllLink.htm
IE: ????3?? - c:\users\David\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: ????3?????? - c:\users\David\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
IE: {{71BFC818-0CED-42D6-9C87-5142918957EE} - c:\program files (x86)\ICQ7.1\ICQ.exe
TCP: DhcpNameServer = 192.168.1.254
FF - ProfilePath - c:\users\David\AppData\Roaming\Mozilla\Firefox\Profiles\udgekhel.default\
FF - prefs.js: browser.search.selectedEngine -
FF - prefs.js: browser.startup.homepage -
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
BHO-{30F9B915-B755-4826-820B-08FBA6BD249D} - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files (x86)\Lavalys\EVEREST Ultimate Edition\kerneld.amd64"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}Ź]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\David\\AppData\\Roaming\\FlashGetBHO\\GetUrl.htm"
"contexts"=dword:00000022
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Internet Explorer\MenuExt\O(uë_fŹ3*N}ŹhQčţ”Ąc]
@Allowed: (Read) (RestrictedCode)
@="c:\\Users\\David\\AppData\\Roaming\\FlashGetBHO\\GetAllUrl.htm"
"contexts"=dword:000000f3
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved\{304F5804-9504-88F6-5949-C74AF24A1F65}*]
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
@Allowed: (Read) (RestrictedCode)
"??"=hex:97,c2,1d,2e,f6,ae,cc,3a,5b,7d,d5,c3,77,3d,23,2e,24,2f,da,9d,bc,71,bd,
d5,3f,2a,34,92,77,57,ed,c8,bf,59,c6,0d,67,02,31,c2,90,8a,4f,c3,c8,b7,bc,59,\
"??"=hex:fb,09,2f,39,5b,29,52,8f,5e,51,85,2b,21,78,fd,45
.
[HKEY_USERS\S-1-5-21-2239340465-1001483360-3508777747-1000\Software\SecuROM\License information*]
"datasecu"=hex:ee,44,46,49,cd,3f,6c,4c,cd,26,35,ba,15,7d,07,37,56,da,c1,8d,08,
ff,fc,eb,1a,69,42,99,f4,9c,07,4d,cb,de,08,19,95,b5,31,4f,0b,94,54,38,d0,d6,\
"rkeysecu"=hex:56,b7,27,92,cd,97,f6,10,d1,50,ba,38,3d,a4,3c,80
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files (x86)\ASUS\SmartLogon\smartlogon.exe
c:\program files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe
c:\program files\ATKGFNEX\GFNEXSrv.exe
c:\windows\SysWOW64\rundll32.exe
c:\program files (x86)\ASUS\ATK Hotkey\HControl.exe
c:\program files (x86)\ASUS\ATK Hotkey\Atouch64.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\ASUS\ControlDeck\ControlDeckStartUp.exe
c:\program files (x86)\ASUS\SmartLogon\sensorsrv.exe
c:\program files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
c:\windows\AsScrPro.exe
c:\program files (x86)\Google\Update\1.3.21.57\GoogleCrashHandler.exe
c:\program files (x86)\CyberLink\Power2Go\CLMLSvc.exe
c:\windows\SysWOW64\PnkBstrA.exe
c:\program files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files (x86)\ASUS\ASUS Data Security Manager\ADSMSrv.exe
c:\program files\ASUS\NB Probe\SPM\spmgr.exe
c:\program files (x86)\ASUS\ATK Hotkey\ATKOSD.exe
c:\program files (x86)\ASUS\ATK Hotkey\WDC.exe
c:\program files (x86)\Common Files\Adobe\OOBE\PDApp\UWA\AAM Updates Notifier.exe
c:\program files (x86)\DAEMON Tools Lite\DTShellHlp.exe
c:\program files (x86)\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files (x86)\HP\Digital Imaging\bin\hpqbam08.exe
c:\program files (x86)\HP\Digital Imaging\bin\hpqgpc01.exe
.
**************************************************************************
.
Celkový čas: 2011-06-06 15:36:20 - počítač byl restartován
ComboFix-quarantined-files.txt 2011-06-06 13:36
.
Před spuštěním: Volných bajtů: 72 571 363 328
Po spuštění: Volných bajtů: 72 210 079 744
.
- - End Of File - - E939472B5B687C04A04664B1A3CA29F9

[vyosek]

Log vypada cisty, jak se chova PC

[David777]

no když zapnu chrome tak je to chvíli v pořádku, pak to ale zase vyskočí...

[David777]

teď jsem zapl chrome, 50 sekund bylo vše v pořádku, a te´d to zase jede na 60-70%

[David777]

mám další problém:

[David777]

tak mě napadá, reinstalace windowsu by asi pomohla ne? a vlastně když mám dva oddíly C a D, a na C mám windows a na D vše ostatní tak vlastně kdybych to nainstaloval do C tak by mi všechno zůstalo ne? já z tím moc skušenosti nemám, tak se raději ptám...

[David777]

tak mě napadá, reinstalace windowsu by asi pomohla ne? a vlastně když mám dva oddíly C a D, a na C mám windows a na D vše ostatní tak vlastně kdybych to nainstaloval do C tak by mi všechno zůstalo ne? já z tím moc skušenosti nemám, tak se raději ptám...

[David777]

další problém: když si v googlu něco vyhledám a kliknu na odkaz, tak mi někdy najede nějaké péčko místo toho co já chtěl, neivm co to je za stránku pač ju vždy hned zavřu a v historii procházení to není...
mno já bych to viděl na renistall, nebo myslíš že by se to nějak ještě dalo opravit?

[vyosek]

Pokud data zazalohujete na ne-systemovy oddil, tak ten systemovy muzete naformatovat a provest cistou instalaci - ono to asi bude v soucastne dobe nejrozumejsi - sam vidite, ze ten system pomalu ale jiste pada cely na hubu...

[David777]

ok. večer to udělám, tak mnohokrát vám děkuju jste vážně skvělé forum

[vyosek]

Nemate zac, rado se stalo

[David777]

tak už to mám přeinstalované, a tváří se to dobře tak ještě jednou děkuju

[David777]

jinač jestli bych mohl mít ještě jednu takovou malou prosbičku, hoď oko na ten sc, mě se zdá že tam je kapke bordel a některé věci bych mohl vymzat... co myslíš ty? jen tak když se na to podíváš?

[vyosek]

Provadel jste cistou instalaci = formati disku a nova instalace nebo jen opravna instalace...

Urcite slozka _OTL a Qoobox do pryc, jinak nic nebezpecneho nevidet

[David777]

noo nevim, ale asi jen tu opravnou, jinač je to špatné? jestli jo tak to dnes ještě jednou reinstallnu...