Nežádoucí Context Menu Platinum

[martin65]

150 - 600 $. Viz http://www.contextmenu.net/register_win ... _menu.html
Tuto stránku mi otevírá klik na "Register Now". Jsou to lumpi - ani tam nechoďte...

M

[martin65]

Asi mě čeká reinstal OS.
M

[vyosek]

Nemuzou Vas nutit to koupit...zkuste jim napsat jak to odinstalovat, je to program nejake treti strany, vir ne, ale otravuje...

[vyosek]

Jeste muzete zkusit obnovu k datu kdy system fungovat korektne

[Budovi]

Nebude to tak, že ten program manipuluje s explorer.exe? Vtedy by vlastne stačilo obnoviť pôvodný súbor explorer.exe napr. z inštalačného média... Za pokus to podľa mňa stojí problém bude ak bol aktualizovaný to sa mi teraz nechce nejak hľadať možno ho obnoviť od niekoho s rovnakým OS a SP... Lepšie ako reinštalácia ak to vyjde (P.S.: nejak sa dá zistiť čo je zavesené na procese explorer.exe - zdroje, nechcem byť chytrý možno ste to už pozreli ja sa nevyznám mám len logicko - deštruktívne úvahy )

Ešte som si všimol toto: /možno pomoc pri hľadaní

Windows Explorer Shell Context Menu (.NET Component)

Here you can download latest version of Windows Explorer Shell Context Menu, it's manuals and materials, related to it.

Add custom items to Windows Explorer shell context menu easily with Explorer Shell context menu .NET Component. Easy to start (just install), easy to add your menu items (just one line of template code for every menu item), easy to use (.Net C#, VB.NET, etc.) easy to deploy (just add 1 small file to your installation pack).
Download the industry's best tool for adding of custom items to Windows Explorer Shell context menu using the link below:

Download Windows Explorer Shell Context Menu

Alebo: /kontaktný formulár

Kód: Vybrat vše

http://www.idealsorter.com/component/option,com_contact/Itemid,3/task,view/contact_id,2/

a support email:

Kód: Vybrat vše

Support@ContextMenu.net

[martin65]

Přepsání souboru explorer.exe nepomohlo. Díky za snahu. M

[vyosek]

Zkuste preventivne MBAM
Stahnete Malwarebytes' Anti-Malware (zkracene MBAM) (viz muj podpis)

• Provedte aktualizaci - treti zalozka
• Provedte uplny sken - nic nemazte
• MBAM miva obcas falesne detekce, proto vlozte log do prispevku a pockejte na posouzeni

[vyosek]

Mate v PC program FILEminimizer Zkuste jej odinstalovat

[chodnik74]

Přesně jak píše vyosek...Zkuste odinstalovat FILEminimizer..

Pokud nezabere,zkuste tento program,najděte příslušnou položku a odstraňte
http://www.nirsoft.net/utils/shexview.html

Více na google nepíší

[martin65]

Děkuji za radu použít shexview. Zdá se, že "ContextMenu Platinum je pryč". Tady je nový log z RSITu. Do dalšího příspěvku se pokusím opatřit a vložit log z MBAM, jak radil vyosek.
==========================
Logfile of random's system information tool 1.08 (written by random/random)
Run by martin at 2011-07-03 16:59:48
Systém Microsoft Windows XP Professional Service Pack 3
System drive E: has 14 GB (33%) free of 44 GB
Total RAM: 3071 MB (78% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 16:59:49, on 3.7.2011
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
E:\WINDOWS\System32\smss.exe
E:\WINDOWS\system32\winlogon.exe
E:\WINDOWS\system32\services.exe
E:\WINDOWS\system32\lsass.exe
E:\WINDOWS\system32\nvsvc32.exe
E:\WINDOWS\system32\svchost.exe
E:\WINDOWS\System32\svchost.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\Alwil Software\Avast5\AvastSvc.exe
E:\WINDOWS\system32\spoolsv.exe
E:\WINDOWS\Explorer.EXE
E:\Program Files\Alwil Software\Avast5\avastUI.exe
E:\WINDOWS\system32\RUNDLL32.EXE
E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
E:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer.exe
E:\Program Files\HP\HP UT LEDM\bin\hppusg.exe
E:\Program Files\Common Files\Java\Java Update\jusched.exe
E:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
E:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
E:\WINDOWS\system32\ctfmon.exe
E:\Documents and Settings\martin\Data aplikací\Dropbox\bin\Dropbox.exe
E:\WINDOWS\system32\HPSIsvc.exe
E:\Program Files\Java\jre6\bin\jqs.exe
E:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
E:\Program Files\Nero\Update\NASvc.exe
E:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
E:\WINDOWS\system32\svchost.exe
E:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe
E:\WINDOWS\system32\SearchIndexer.exe
E:\WINDOWS\system32\devldr32.exe
E:\Program Files\PC Connectivity Solution\ServiceLayer.exe
E:\Program Files\PC Connectivity Solution\Transports\NclUSBSrv.exe
E:\Program Files\PC Connectivity Solution\Transports\NclRSSrv.exe
E:\Program Files\PC Connectivity Solution\Transports\NclMSBTSrv.exe
E:\Program Files\Common Files\Nokia\NoA\nokiaaserver.exe
E:\Documents and Settings\martin\Plocha\RSIT.exe
E:\WINDOWS\system32\SearchProtocolHost.exe
e:\Program Files\trend micro\martin.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - E:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [JMB36X Configure] E:\WINDOWS\system32\JMRaidTool.exe boot
O4 - HKLM\..\Run: [avast5] "E:\Program Files\Alwil Software\Avast5\avastUI.exe" /nogui
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [nwiz] E:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE E:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [GrooveMonitor] "E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NokiaMServer] E:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup
O4 - HKLM\..\Run: [QuickTime Task] "E:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [HPUsageTrackingLEDM] "E:\Program Files\HP\HP UT LEDM\bin\hppusg.exe" "E:\Program Files\HP\HP UT LEDM\"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "E:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [NokiaOviSuite2] E:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe -tray
O4 - HKCU\..\Run: [ctfmon.exe] E:\WINDOWS\system32\ctfmon.exe
O4 - S-1-5-18 Startup: Dropbox.lnk = ? (User 'SYSTEM')
O4 - .DEFAULT Startup: Dropbox.lnk = ? (User 'Default user')
O4 - Startup: Dropbox.lnk = ?
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://E:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - E:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - E:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - E:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7255294640
O17 - HKLM\System\CS2\Services\Tcpip\..\{5E838971-4A8F-4223-B85B-C5495333F549}: NameServer = 193.179.143.3,193.179.143.5
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - E:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - E:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - E:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - E:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - E:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - E:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: HP LaserJet Service - HP - E:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe
O23 - Service: HP SI Service (HPSIService) - HP - E:\WINDOWS\system32\HPSIsvc.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - E:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: @E:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - E:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - E:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ServiceLayer - Nokia - E:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: TeamViewer 6 (TeamViewer6) - TeamViewer GmbH - E:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe

--
End of file - 7534 bytes

======Scheduled tasks folder======

E:\WINDOWS\tasks\AppleSoftwareUpdate.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
E:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - E:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - E:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-05-04 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - E:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-05-04 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"JMB36X Configure"=E:\WINDOWS\system32\JMRaidTool.exe [2006-08-14 352256]
"avast5"=E:\Program Files\Alwil Software\Avast5\avastUI.exe [2011-05-10 3459712]
"Adobe Reader Speed Launcher"=E:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2011-06-08 37296]
"Adobe ARM"=E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2011-03-30 937920]
"nwiz"=E:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2010-07-07 1753192]
"NvMediaCenter"=E:\WINDOWS\system32\NvMcTray.dll [2010-07-09 110696]
"NvCplDaemon"=E:\WINDOWS\system32\NvCpl.dll [2010-07-09 13923432]
"GrooveMonitor"=E:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
"NokiaMServer"=E:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
"QuickTime Task"=E:\Program Files\QuickTime\qttask.exe [2010-11-29 421888]
"HPUsageTrackingLEDM"=E:\Program Files\HP\HP UT LEDM\bin\hppusg.exe [2009-08-04 30264]
"SunJavaUpdateSched"=E:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-04-08 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"NokiaOviSuite2"=E:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2011-01-31 703360]
"ctfmon.exe"=E:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

E:\Documents and Settings\martin\Nabídka Start\Programy\Po spuštění
Dropbox.lnk - E:\Documents and Settings\martin\Data aplikací\Dropbox\bin\Dropbox.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
E:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - E:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=E:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=E:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"EnableLinkedConnections"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:1\Program Files\Common Files\Nero\Nero Web\SetupX.exe"="C:1\Program Files\Common Files\Nero\Nero Web\SetupX.exe:*:Enabled:Nero ControlCenter"
"C:1\Program Files\Sibelius Software\Sibelius 6\RegTool.exe"="C:1\Program Files\Sibelius Software\Sibelius 6\RegTool.exe:*:Enabled:RegTool.exe"
"C:1\Program Files\Sibelius Software\Sibelius 6\Sibelius.exe"="C:1\Program Files\Sibelius Software\Sibelius 6\Sibelius.exe:*:Enabled:Sibelius.exe"
"C:1\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:1\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:1\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:1\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"C:1\Program Files\totalcmd\TOTALCMD.EXE"="C:1\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:TOTALCMD.EXE"
"C:1\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe"="C:1\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:NokiaOviSuite.exe"
"C:1\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="C:1\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:nsl_host_process.exe"
"C:1\Program Files\Skype\Phone\Skype.exe"="C:1\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:1\Program Files\utorrent\utorrent.exe"="C:1\Program Files\utorrent\utorrent.exe:*:Enabled:µTorrent"
"C:1\Documents and Settings\martin\Data aplikací\Dropbox\bin\Dropbox.exe"="C:1\Documents and Settings\martin\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"C:1\Program Files\TeamViewer\Version6\TeamViewer.exe"="C:1\Program Files\TeamViewer\Version6\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:1\Program Files\TeamViewer\Version6\TeamViewer_Service.exe"="C:1\Program Files\TeamViewer\Version6\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:1\Program Files\Skype\Plugin Manager\skypePM.exe"="C:1\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"E:\Program Files\utorrent\utorrent.exe"="E:\Program Files\utorrent\utorrent.exe:*:Enabled:µTorrent"
"E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\RM.exe:*:Enabled:Render Manager"
"E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\Studio.exe:*:Enabled:Studio"
"E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe"="E:\Program Files\Pinnacle\Studio 12\Programs\umi.exe:*:Enabled:umi"
"E:\Program Files\Skype\Plugin Manager\skypePM.exe"="E:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"E:\Documents and Settings\martin\Plocha\Odorik.exe"="E:\Documents and Settings\martin\Plocha\Odorik.exe:*:Enabled:Odorik.exe"
"E:\Program Files\totalcmd\TOTALCMD.EXE"="E:\Program Files\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit"
"J:\portable\skype\App\Skype\Phone\Skype.exe"="J:\portable\skype\App\Skype\Phone\Skype.exe:*:Enabled:Skype "
"E:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe"="E:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe:*:Enabled:Nokia Ovi Suite"
"E:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe"="E:\Program Files\Common Files\Nokia\Service Layer\A\nsl_host_process.exe:*:Enabled:Nokia Service Layer Host Process "
"E:\Program Files\Skype\Phone\Skype.exe"="E:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"J:\portable\OPERA\App\Opera\opera.exe"="J:\portable\OPERA\App\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"E:\Documents and Settings\martin\Data aplikací\Dropbox\bin\Dropbox.exe"="E:\Documents and Settings\martin\Data aplikací\Dropbox\bin\Dropbox.exe:*:Enabled:Dropbox"
"E:\WINDOWS\system32\spoolsv.exe"="E:\WINDOWS\system32\spoolsv.exe:*:Enabled:Spooler SubSystem App"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2011-06-30 20:43:56 ----D---- E:\Program Files\TheSage
2011-06-29 22:05:36 ----A---- E:\WINDOWS\system32\drivers\aswSnx.sys
2011-06-20 08:56:24 ----A---- E:\WINDOWS\explorer.exe
2011-06-18 22:03:08 ----SHD---- E:\RECYCLER
2011-06-18 17:19:05 ----A---- E:\ComboFix.txt
2011-06-18 16:27:08 ----A---- E:\WINDOWS\zip.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\SWXCACLS.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\SWSC.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\SWREG.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\sed.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\PEV.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\NIRCMD.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\MBR.exe
2011-06-18 16:27:08 ----A---- E:\WINDOWS\grep.exe
2011-06-18 16:15:06 ----D---- E:\WINDOWS\ERDNT
2011-06-18 16:12:04 ----D---- E:\Qoobox
2011-06-17 15:39:26 ----D---- E:\Config.Msi
2011-06-16 08:39:38 ----HDC---- E:\WINDOWS\$NtUninstallKB2476490$
2011-06-16 08:39:34 ----HDC---- E:\WINDOWS\$NtUninstallKB2503665$
2011-06-16 08:39:29 ----HDC---- E:\WINDOWS\$NtUninstallKB2535512$
2011-06-16 08:39:00 ----HDC---- E:\WINDOWS\$NtUninstallKB2536276$
2011-06-16 08:38:38 ----HDC---- E:\WINDOWS\$NtUninstallKB2544893$
2011-06-10 23:27:12 ----D---- E:\Program Files\Common Files\Java
2011-06-10 23:26:56 ----A---- E:\WINDOWS\system32\javaws.exe
2011-06-10 23:26:56 ----A---- E:\WINDOWS\system32\javaw.exe
2011-06-10 23:26:56 ----A---- E:\WINDOWS\system32\java.exe
2011-06-10 12:12:31 ----D---- E:\Documents and Settings\martin\Data aplikací\SkypePM

======List of files/folders modified in the last 1 months======

2011-07-03 16:59:48 ----D---- E:\Program Files\trend micro
2011-07-03 16:58:23 ----D---- E:\WINDOWS\Temp
2011-07-03 16:48:18 ----D---- E:\WINDOWS\system32
2011-07-03 16:48:18 ----A---- E:\WINDOWS\system32\PerfStringBackup.INI
2011-07-03 16:46:29 ----D---- E:\WINDOWS\Prefetch
2011-07-03 16:44:11 ----D---- E:\Documents and Settings\martin\Data aplikací\Dropbox
2011-07-03 16:42:18 ----A---- E:\WINDOWS\SchedLgU.Txt
2011-06-30 20:43:56 ----RD---- E:\Program Files
2011-06-30 14:18:37 ----D---- E:\Documents and Settings\martin\Data aplikací\Skype
2011-06-30 13:04:02 ----D---- E:\Documents and Settings\All Users\Data aplikací\Skype Extras
2011-06-29 22:05:36 ----D---- E:\WINDOWS\system32\drivers
2011-06-29 22:05:33 ----D---- E:\WINDOWS
2011-06-29 09:02:40 ----D---- E:\Program Files\Mozilla Firefox
2011-06-26 17:02:17 ----D---- E:\Documents and Settings\martin\Data aplikací\Mozilla
2011-06-24 08:32:03 ----D---- E:\Documents and Settings\martin\Data aplikací\gtk-2.0
2011-06-24 08:17:44 ----D---- E:\Documents and Settings\martin\Data aplikací\Canon
2011-06-18 22:13:33 ----D---- E:\WINDOWS\system32\CatRoot2
2011-06-18 22:03:08 ----D---- E:\WINDOWS\Debug
2011-06-18 18:51:15 ----D---- E:\Program Files\T-Mobile SFN III
2011-06-18 17:16:02 ----A---- E:\WINDOWS\system.ini
2011-06-18 17:15:41 ----D---- E:\WINDOWS\system32\drivers\etc
2011-06-18 16:36:51 ----D---- E:\WINDOWS\system32\config
2011-06-18 16:35:16 ----D---- E:\WINDOWS\AppPatch
2011-06-18 16:35:14 ----D---- E:\Program Files\Common Files
2011-06-17 15:39:43 ----SHD---- E:\WINDOWS\Installer
2011-06-17 09:40:46 ----A---- E:\WINDOWS\CSTBox.INI
2011-06-16 08:53:26 ----D---- E:\Program Files\Microsoft Silverlight
2011-06-16 08:44:16 ----D---- E:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-06-16 08:40:51 ----A---- E:\WINDOWS\system32\MRT.exe
2011-06-16 08:40:21 ----D---- E:\WINDOWS\WinSxS
2011-06-16 08:39:40 ----RSHDC---- E:\WINDOWS\system32\dllcache
2011-06-16 08:39:40 ----HD---- E:\WINDOWS\inf
2011-06-16 08:39:33 ----HD---- E:\WINDOWS\$hf_mig$
2011-06-16 08:38:54 ----D---- E:\Program Files\Internet Explorer
2011-06-16 08:38:44 ----D---- E:\WINDOWS\ie8updates
2011-06-10 23:26:54 ----D---- E:\Program Files\Java
2011-06-10 10:56:48 ----D---- E:\Documents and Settings\All Users\Data aplikací\T-Mobile SFN III

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 JGOGO;JMicron Hot-Plug Driver; E:\WINDOWS\system32\DRIVERS\JGOGO.sys [2006-02-07 6912]
R0 JRAID;JRAID; E:\WINDOWS\system32\DRIVERS\jraid.sys [2006-08-23 42752]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI VIA; E:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 uagp35;Filtr Microsoft AGPv3.5; E:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672]
R0 videX32;videX32; E:\WINDOWS\system32\DRIVERS\videX32.sys [2006-02-23 9728]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; E:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R0 xfilt;VIA SATA IDE Hot-plug Driver; E:\WINDOWS\system32\DRIVERS\xfilt.sys [2006-02-23 11264]
R1 Aavmker4;avast! Asynchronous Virus Monitor; E:\WINDOWS\system32\drivers\Aavmker4.sys [2011-05-10 30808]
R1 aswRdr;aswRdr; E:\WINDOWS\system32\drivers\aswRdr.sys [2011-05-10 25432]
R1 aswSnx;aswSnx; E:\WINDOWS\system32\drivers\aswSnx.sys [2011-05-10 441176]
R1 aswSP;aswSP; E:\WINDOWS\system32\drivers\aswSP.sys [2011-05-10 307928]
R1 aswTdi;avast! Network Shield Support; E:\WINDOWS\system32\drivers\aswTdi.sys [2011-05-10 49240]
R1 intelppm;Řadič procesoru Intel; E:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; E:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 PCLEPCI;PCLEPCI; \??\E:\WINDOWS\system32\drivers\pclepci.sys []
R2 aswFsBlk;aswFsBlk; E:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-05-10 19544]
R2 aswMon2;avast! Standard Shield Support; E:\WINDOWS\system32\drivers\aswMon2.sys [2011-05-10 102616]
R3 Arp1394;Protokol 1394 ARP Client; E:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 ctljystk;Game port pro zařízení Creative SB Live!; E:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 emu10k;Creative SB Live! (WDM); E:\WINDOWS\system32\drivers\emu10k1m.sys [2001-08-17 283904]
R3 emu10k1;Creative Interface Manager Driver (WDM); E:\WINDOWS\system32\drivers\ctlfacem.sys [2001-08-17 6912]
R3 HidUsb;Ovladač třídy standardu HID; E:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 L1e;Miniport Driver for Atheros AR8121/AR8113/AR8114 PCI-E Ethernet Controller; E:\WINDOWS\system32\DRIVERS\l1e51x86.sys [2009-08-05 39424]
R3 MarvinBus;Pinnacle Marvin Bus; E:\WINDOWS\system32\DRIVERS\MarvinBus.sys [2005-09-24 171520]
R3 mouhid;Ovladač myši standardu HID; E:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; E:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NIC1394;1394 Net Driver; E:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; E:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2010-07-10 10604128]
R3 rtl8185;Realtek RTL8185 54M Wireless LAN Network Adapter Driver; E:\WINDOWS\system32\DRIVERS\rtl8185.sys [2008-05-14 308992]
R3 sfman;Creative SoundFont Manager Driver (WDM); E:\WINDOWS\system32\drivers\sfmanm.sys [2001-08-17 36480]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; E:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbscan;Ovladač skeneru USB; E:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
R3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; E:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; E:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 61883;61883 Unit Device; E:\WINDOWS\system32\DRIVERS\61883.sys [2008-04-13 48128]
S3 Ambfilt;Ambfilt; E:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 Avc;AVC Device; E:\WINDOWS\system32\DRIVERS\avc.sys [2008-04-13 38912]
S3 catchme;catchme; \??\E:\ComboFix\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; E:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 ctsfm2k;Creative SoundFont Management Device Driver; E:\WINDOWS\system32\DRIVERS\ctsfm2k.sys [2005-01-10 138752]
S3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; E:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
S3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); E:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-07-28 5870080]
S3 Monfilt;Monfilt; E:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSDV;Microsoft DV Camera and VCR; E:\WINDOWS\system32\DRIVERS\msdv.sys [2008-04-13 51200]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; E:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 mvusbews;USB EWS Device; E:\WINDOWS\System32\Drivers\mvusbews.sys [2010-03-06 17408]
S3 NABTSFEC;NABTS/FEC VBI Codec; E:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; E:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent Driver; E:\WINDOWS\system32\drivers\ccdcmb.sys [2010-07-30 18048]
S3 nmwcdc;Nokia USB Communication Driver; E:\WINDOWS\system32\drivers\ccdcmbo.sys [2010-07-30 23040]
S3 nmwcdnsu;Nokia USB Flashing Phone Parent; E:\WINDOWS\system32\drivers\nmwcdnsu.sys [2010-07-26 137600]
S3 nmwcdnsuc;Nokia USB Flashing Generic; E:\WINDOWS\system32\drivers\nmwcdnsuc.sys [2010-07-26 8576]
S3 ossrv;Creative OS Services Driver; E:\WINDOWS\system32\DRIVERS\ctoss2k.sys [2005-01-10 106496]
S3 P17;Sound Blaster Audigy; E:\WINDOWS\system32\drivers\P17.sys []
S3 pccsmcfd;PCCS Mode Change Filter Driver; E:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; E:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2006-08-31 81280]
S3 SLIP;BDA Slip De-Framer; E:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 streamip;BDA IPSink; E:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 upperdev;upperdev; E:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2010-07-30 8192]
S3 usbprint;Třída USB Printer; E:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbser;Nokia USB Serial Port Driver ; E:\WINDOWS\system32\DRIVERS\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; E:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2010-07-30 8192]
S3 Wdf01000;Kernel Mode Driver Frameworks service; E:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]
S3 WpdUsb;WpdUsb; E:\WINDOWS\system32\DRIVERS\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;Dálnopisný kodek světového standardu; E:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; E:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S4 RsFx0150;RsFx0150 Driver; E:\WINDOWS\system32\DRIVERS\RsFx0150.sys [2010-04-03 240608]
S4 sptd;sptd; E:\WINDOWS\System32\Drivers\sptd.sys [2011-04-30 691696]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; E:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2011-05-10 42184]
R2 HP LaserJet Service;HP LaserJet Service; E:\Program Files\HP\HPLaserJetService\HPLaserJetService.exe [2009-06-24 136704]
R2 HPSIService;HP SI Service; E:\WINDOWS\system32\HPSIsvc.exe [2010-04-07 99896]
R2 JavaQuickStarterService;Java Quick Starter; E:\Program Files\Java\jre6\bin\jqs.exe [2011-05-04 153376]
R2 MDM;Machine Debug Manager; E:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe [2006-10-26 335872]
R2 MSSQL$SFN;SQL Server (SFN); E:\Program Files\Microsoft SQL Server\MSSQL10_50.SFN\MSSQL\Binn\sqlservr.exe [2010-04-03 42884448]
R2 NAUpdate;@E:\Program Files\Nero\Update\NASvc.exe,-200; E:\Program Files\Nero\Update\NASvc.exe [2010-03-25 490280]
R2 nvsvc;NVIDIA Display Driver Service; E:\WINDOWS\system32\nvsvc32.exe [2010-07-09 155752]
R2 SQLBrowser;SQL Server Browser; E:\Program Files\Microsoft SQL Server\90\Shared\sqlbrowser.exe [2010-04-03 267616]
R2 SQLWriter;SQL Server VSS Writer; E:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe [2010-04-03 97632]
R2 TeamViewer6;TeamViewer 6; E:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe [2011-03-01 2296696]
R2 WSearch;Windows Search; E:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
R3 ServiceLayer;ServiceLayer; E:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2010-12-08 628736]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); E:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-16 136176]
S3 aspnet_state;Stavová služba ASP.NET; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; E:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); E:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-16 136176]
S3 idsvc;Služba Windows CardSpace; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; E:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; E:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; E:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 WinRM;Windows Remote Management (WS-Management); E:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; E:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S4 MSSQLServerADHelper100;SQL Active Directory Helper Service; E:\Program Files\Microsoft SQL Server\100\Shared\SQLADHLP.EXE [2010-04-03 44896]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; E:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 SQLAgent$SFN;SQL Server Agent (SFN); E:\Program Files\Microsoft SQL Server\MSSQL10_50.SFN\MSSQL\Binn\SQLAGENT.EXE [2010-04-03 367456]

-----------------EOF-----------------

[chodnik74]

Jsem rád,že shexview zabral log z RSITu vypadá již v pořádku,jen je tam pár zbytečností po startu PC které můžeme vypnout..počkáme na MBAM

[martin65]

Program běží asi 2 hodiny, zkontroluje 500000 souborů, pak spadne. Napadených souborů ukazuje během testu 0. Takže myslím, že je to v pořádku. Děkuji za pomoc. Posílám SMSku.

[vyosek]

I za kolegu nemate zac, za podporu fora jmenem tymu dekuji

[chodnik74]

Jak již napsal kolega,nemáte zač a děkujeme