Prosím o odpověď na fandajinoch@seznam.cz
ComboFix 10-09-27.05 - Fanda 28.09.2010 18:55:54.1.2 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.3008.2097 [GMT 2:00]
Spuštěný z: c:\users\Fanda\Stažené soubory\ComboFix.exe
SP: Spyware Terminator *disabled* (Updated) {55EE49A8-16BE-4601-BBE6-607B7F7317DE}
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\users\Fanda\AppData\Roaming\logs.dat
c:\users\Fanda\b.o.b. - airplanes (ft. hayley williams) .mp3
c:\windows\Install
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\FiSH.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\gimp.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\hide.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\install.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\lag.hsh
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\microsoft.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\proc.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\proc32.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\process.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\radmin.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\random.ECL
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\remote.ini
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\restart.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\service32.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\services.dll
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\stuffmp3.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\telnet.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\temp\404.html
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\temp\index.html
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\unroot.bat
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\unroot.exe
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\vnc_bypauth.txt
c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\windows1337.dll
c:\windows\system32\Winbooterr
D:\explorer.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2010-08-28 do 2010-09-28 )))))))))))))))))))))))))))))))
.
2010-09-28 16:31 . 2010-09-28 16:31 -------- d-----w- c:\users\Fanda\AppData\Local\TaskManager
2010-09-28 16:31 . 2010-09-28 16:31 -------- d-----w- c:\program files\Free Extended Task Manager
2010-09-28 16:30 . 2010-09-28 16:30 -------- d-----w- c:\programdata\TaskManager
2010-09-28 14:48 . 2010-09-28 14:48 87489536 ----a-w- c:\windows\msgrd.exe
2010-09-28 14:48 . 2010-09-28 14:48 87489536 ----a-w- c:\windows\system32\mslsgw.exe
2010-09-27 17:52 . 2008-07-10 09:00 3851784 ----a-w- c:\windows\system32\D3DX9_39.dll
2010-09-27 16:18 . 2010-09-27 16:18 -------- d-----w- c:\users\Fanda\AppData\Roaming\Promixis
2010-09-27 16:17 . 2010-09-27 16:17 -------- d-----w- c:\program files\OpenMceIrService
2010-09-27 16:15 . 2010-09-27 16:17 -------- d-----w- c:\program files\Girder5
2010-09-27 13:35 . 2010-09-27 13:38 -------- d-----w- c:\program files\Pro Evolution Soccer 2011 DEMO
2010-09-27 08:21 . 2010-09-27 08:38 -------- d-----w- c:\users\Fanda\[PC Game-Multi5]Mafia 2-CLONEDVD-PC-ELiTE-Crackfix.PROPER-MEiGUO+Trad.Ita
2010-09-26 16:32 . 2006-06-19 13:53 1152 ---ha-w- C:\unroot.bat
2010-09-26 12:26 . 2010-09-26 12:27 -------- d-----w- c:\program files\DAEMON Tools Lite
2010-09-26 08:04 . 2010-09-26 08:04 -------- d--h--r- c:\users\Public\Libraries
2010-09-25 09:12 . 2009-07-14 16:23 343 ----a-w- c:\windows\FIN2.cmd
2010-09-25 09:07 . 2009-12-29 06:55 172032 ----a-w- c:\windows\system32\wintrust.dll
2010-09-25 09:07 . 2010-01-09 06:52 132608 ----a-w- c:\windows\system32\cabview.dll
2010-09-25 09:01 . 2009-11-25 10:47 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-09-25 09:01 . 2009-11-25 10:47 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-09-25 09:01 . 2009-11-25 10:47 49472 ----a-w- c:\windows\system32\netfxperf.dll
2010-09-25 09:01 . 2009-11-25 10:47 297808 ----a-w- c:\windows\system32\mscoree.dll
2010-09-25 09:01 . 2009-11-25 10:47 1130824 ----a-w- c:\windows\system32\dfshim.dll
2010-09-25 08:58 . 2010-09-26 12:20 -------- d-----w- c:\windows\system32\wbem\Performance
2010-09-25 08:55 . 2010-09-25 08:55 109240 ----a-w- c:\users\Fanda\AppData\Local\GDIPFONTCACHEV1.DAT
2010-09-25 08:50 . 2010-09-25 08:41 -------- d-----w- c:\windows\Panther
2010-09-25 08:24 . 2010-09-25 08:24 -------- d-----w- c:\users\Default\AppData\Local\Microsoft Help
2010-09-25 08:03 . 2010-09-28 16:49 -------- d-----r- c:\users\Fanda\Stažené soubory
2010-09-25 08:00 . 2010-09-25 08:00 -------- d-----w- c:\windows\system32\RTCOM
2010-09-25 08:00 . 2010-09-25 08:00 -------- d-----w- c:\program files\Realtek
2010-09-24 09:23 . 2010-09-06 12:20 11776 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{d9284e50-81fc-11da-a72b-0800200c9a66}\lib\WINNT_x86-msvc\1.9.1\yoono.dll
2010-09-23 10:11 . 2010-09-25 08:10 -------- d-----w- c:\programdata\Nokia
2010-09-23 10:05 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\NokiaAccount
2010-09-23 09:12 . 2008-08-26 08:26 18816 ----a-w- c:\windows\system32\drivers\pccsmcfd.sys
2010-09-23 09:12 . 2010-09-25 08:08 -------- d-----w- c:\program files\PC Connectivity Solution
2010-09-23 09:09 . 2010-09-23 09:09 38912 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx86.exe
2010-09-23 09:09 . 2010-09-23 09:09 38912 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\WMF11Runx64.exe
2010-09-23 09:09 . 2010-09-23 09:09 77824 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\Run_XML6_SP1.exe
2010-09-23 09:09 . 2010-09-23 09:09 50000 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer\CommonCustomActions\pcswpc.exe
2010-09-23 09:09 . 2010-09-23 09:06 102913480 ----a-w- c:\programdata\NokiaInstallerCache\ProductCache\{D5878294-C113-43c5-A24F-FC333C52015A}\Installer.exe
2010-09-23 09:06 . 2010-09-25 08:10 -------- d-----w- c:\programdata\NokiaInstallerCache
2010-09-21 07:42 . 2010-09-25 08:11 -------- d-----w- c:\windows\RegistryBooster 2
2010-09-21 07:42 . 2010-09-25 08:08 -------- d-----w- c:\program files\RegistryBooster 2
2010-09-21 07:32 . 2010-09-25 08:09 -------- d-----w- c:\program files\Uniblue
2010-09-20 16:41 . 2010-09-25 08:06 -------- d-----w- c:\program files\GRID
2010-09-20 07:35 . 2010-09-26 10:43 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-09-20 05:50 . 2010-09-20 05:50 56 ---ha-w- c:\windows\system32\ezsidmv.dat
2010-09-20 05:30 . 2010-06-08 16:10 790528 ----a-w- c:\windows\system32\xvidcore.dll
2010-09-20 05:30 . 2010-06-08 16:10 134144 ----a-w- c:\windows\system32\xvidvfw.dll
2010-09-20 05:30 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-09-20 05:30 . 2010-09-14 08:00 108032 ----a-w- c:\windows\system32\ff_vfw.dll
2010-09-18 17:55 . 2010-09-18 17:55 -------- d-----w- c:\users\Fanda\AppData\Roaming\DAEMON Tools Pro
2010-09-16 02:03 . 2010-09-25 08:07 -------- d-----w- c:\program files\Microsoft Works
2010-09-16 01:55 . 2010-09-25 08:07 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2010-09-15 08:03 . 2010-09-25 08:09 -------- d-----w- c:\programdata\Codemasters
2010-09-15 06:30 . 2010-09-25 08:08 -------- d-----w- c:\program files\OpenAL
2010-09-15 06:30 . 2010-09-15 06:30 444952 ----a-w- c:\windows\system32\wrap_oal.dll
2010-09-15 06:30 . 2010-09-15 06:30 109080 ----a-w- c:\windows\system32\OpenAL32.dll
2010-09-15 03:26 . 2010-09-15 03:26 -------- d-sh--w- c:\windows\ftpcache
2010-09-14 03:22 . 2010-09-25 08:08 -------- d-----w- c:\program files\PC Drivers HeadQuarters
2010-09-14 03:06 . 2010-09-25 08:10 -------- d-----w- c:\programdata\UAB
2010-09-14 03:06 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\PC_Drivers_Headquarters
2010-09-14 03:05 . 2010-09-25 08:10 -------- d-----w- c:\programdata\PC Drivers HeadQuarters
2010-09-14 03:04 . 2010-09-25 08:04 -------- d-----w- c:\program files\Driver Detective
2010-09-13 10:44 . 2010-09-25 08:05 -------- d-----w- c:\program files\EVEREST Ultimate Edition
2010-09-13 10:28 . 2010-01-05 10:03 688640 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\plugins\npagent.dll
2010-09-13 10:28 . 2009-12-17 09:35 23456 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\DrvAgent32.sys
2010-09-13 10:28 . 2009-12-17 06:59 21712 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\DrvAgent64.sys
2010-09-13 07:13 . 2010-09-13 07:13 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-09-13 07:13 . 2010-09-25 08:21 -------- d-----w- c:\users\Fanda\AppData\Local\eSupport.com
2010-09-12 00:51 . 2010-06-08 09:33 52224 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{350e72a9-e6db-4967-9572-dd8e27d3e1b9}\components\FFExternalAlert.dll
2010-09-12 00:51 . 2010-06-08 09:33 101376 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{350e72a9-e6db-4967-9572-dd8e27d3e1b9}\components\RadioWMPCore.dll
2010-09-11 07:46 . 2010-09-25 08:09 -------- d-----w- c:\program files\Yahoo!
2010-09-11 07:46 . 2010-09-25 08:04 -------- d-----w- c:\program files\CCleaner
2010-09-09 08:56 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Uniblue
2010-09-09 08:55 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\TeroSoft_PC_Booster_Pack_v1_0
2010-09-09 07:47 . 2010-09-09 07:47 -------- d-----r- C:\MSOCache
2010-09-09 07:02 . 2010-09-25 08:09 -------- d-----w- c:\program files\WinClamAVShield
2010-09-09 06:58 . 2010-09-25 08:04 -------- d-----w- c:\program files\Crawler
2010-09-09 06:56 . 2010-09-09 06:56 6144 ----a-w- c:\programdata\Spyware Terminator\sp_rsdel.exe
2010-09-09 06:56 . 2010-09-09 06:56 5632 ----a-w- c:\programdata\Spyware Terminator\fileobjinfo.sys
2010-09-09 06:56 . 2010-09-09 06:56 142592 ----a-w- c:\windows\system32\drivers\sp_rsdrv2.sys
2010-09-09 06:56 . 2010-09-28 16:11 -------- d-----w- c:\users\Fanda\AppData\Roaming\Spyware Terminator
2010-09-09 06:56 . 2010-09-28 16:11 -------- d-----w- c:\programdata\Spyware Terminator
2010-09-09 06:55 . 2010-09-28 16:13 -------- d-----w- c:\program files\Spyware Terminator
2010-09-08 14:46 . 2010-08-18 14:18 1448448 ----a-w- c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{B042753D-F57E-4e8e-A01B-7379A6D4CEFB}-trash\components\IBitCometExtension.dll
2010-09-08 10:38 . 2010-09-25 08:09 -------- d-----w- c:\programdata\boost_interprocess
2010-09-08 10:38 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\TigerPlayer
2010-09-08 10:38 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\CometPlayer
2010-09-08 10:37 . 2010-09-09 06:53 -------- d-----w- c:\program files\MpcStar
2010-09-08 10:35 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\BitComet
2010-09-08 09:48 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Audacity
2010-09-08 07:34 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\Thunderbird
2010-09-08 07:34 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Local\Thunderbird
2010-09-08 07:28 . 2010-09-25 08:04 -------- d-----w- c:\program files\Audacity 1.3 Beta (Unicode)
2010-09-08 07:26 . 2010-09-25 08:05 -------- d-----w- c:\program files\FreeApps
2010-09-08 07:25 . 2010-09-25 08:09 -------- d-----w- c:\programdata\FreeApp
2010-09-07 10:25 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\AppData\Roaming\DisplayTune
2010-09-07 10:24 . 2004-11-22 10:07 2304 ----a-w- c:\windows\system32\Machnm32.sys
2010-09-07 10:22 . 2006-11-16 15:20 15920 ----a-w- c:\windows\system32\drivers\PdiPorts.sys
2010-09-07 10:20 . 2010-09-07 10:20 -------- d-----w- C:\Swsetup
2010-09-05 06:57 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido No Angel
2010-09-05 06:52 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido Live for rent
2010-09-05 06:48 . 2010-09-25 08:22 -------- d-----w- c:\users\Fanda\Dido Hunter
2010-09-01 14:43 . 2010-09-25 08:21 -------- d-----w- c:\users\Fanda\AppData\Local\2K Games
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-28 16:27 . 2010-09-28 16:26 -------- d-----w- c:\programdata\SecTaskMan
2010-09-28 16:11 . 2010-05-26 23:54 -------- d-----w- c:\users\Fanda\AppData\Roaming\uTorrent
2010-09-28 15:03 . 2010-06-02 12:48 -------- d-----w- c:\users\Fanda\AppData\Roaming\ICQ
2010-09-28 14:14 . 2009-07-14 02:37 -------- d-----w- c:\program files\Windows Mail
2010-09-27 17:25 . 2010-05-28 07:51 -------- d-----w- c:\program files\EA Sports
2010-09-26 12:20 . 2009-07-14 08:44 677286 ----a-w- c:\windows\system32\perfh005.dat
2010-09-26 12:20 . 2009-07-14 08:44 143982 ----a-w- c:\windows\system32\perfc005.dat
2010-09-26 09:12 . 2006-03-13 12:24 -------- d-sh--r- c:\users\Fanda\AppData\Roaming\winbooterr
2010-09-25 09:57 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-09-25 09:57 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2010-09-25 09:57 . 2009-07-13 23:24 811520 ----a-w- c:\windows\system32\user32.dll
2010-09-25 09:40 . 2010-05-26 23:37 -------- d-----w- c:\programdata\NVIDIA
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Plocha
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Oblíbené položky
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Šablony
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Nabídka Start
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Dokumenty
2010-09-25 08:40 . 2010-09-25 08:40 -------- d-sh--we c:\programdata\Data aplikací
2010-09-25 08:30 . 2010-08-28 06:44 21592 ----a-w- c:\windows\system32\emptyregdb.dat
2010-09-25 08:10 . 2010-08-17 06:58 -------- d-----w- c:\programdata\TuneUp Software
2010-09-25 08:10 . 2010-07-16 10:01 -------- d-----w- c:\programdata\TrackMania
2010-09-25 08:10 . 2010-07-29 13:50 -------- d-----w- c:\programdata\Soluto
2010-09-25 08:10 . 2010-07-03 07:28 -------- d-----w- c:\programdata\Synetic
2010-09-25 08:10 . 2010-05-29 08:13 -------- d-----w- c:\programdata\Tencent
2010-09-25 08:10 . 2010-06-28 18:48 -------- d-----w- c:\programdata\Skype
2010-09-25 08:10 . 2010-06-21 19:23 -------- d-----w- c:\programdata\NokiaMusic
2010-09-25 08:10 . 2010-05-30 12:25 -------- d-----w- c:\programdata\PC Suite
2010-09-25 08:10 . 2010-08-25 11:52 -------- d-----w- c:\programdata\Nitro PDF
2010-09-25 08:10 . 2010-08-28 08:49 -------- d-----w- c:\programdata\MicroWorld
2010-09-25 08:10 . 2010-05-27 13:09 -------- d-----w- c:\programdata\Microsoft Help
2010-09-25 08:10 . 2010-05-27 00:47 -------- d-----w- c:\programdata\Nero
2010-09-25 08:08 . 2010-06-04 06:01 -------- d-----w- c:\program files\Real
2010-09-25 08:08 . 2010-07-28 08:47 -------- d-----w- c:\program files\Pro Evolution Soccer 2010
2010-09-25 08:08 . 2010-07-27 15:59 -------- d-----w- c:\program files\PowerISO
2010-09-25 08:08 . 2010-09-07 10:21 -------- d-----w- c:\program files\Portrait Displays
2010-09-25 08:08 . 2010-08-04 07:44 -------- d-----w- c:\program files\PlayReady
2010-09-25 08:08 . 2010-05-30 12:24 -------- d-----w- c:\program files\Nokia
2010-09-25 08:08 . 2010-08-25 11:52 -------- d-----w- c:\program files\Nitro PDF
2010-09-25 08:07 . 2010-07-29 14:09 -------- d-----w- c:\program files\Mozilla Firefox 4.0 Beta 2
2010-09-25 08:07 . 2010-05-27 00:47 -------- d-----w- c:\program files\Nero
2010-09-25 08:07 . 2009-07-14 04:52 -------- d-----w- c:\program files\MSBuild
2010-09-25 08:07 . 2010-08-21 12:03 -------- d-----w- c:\program files\MotoGP2
2010-09-25 08:07 . 2010-05-27 13:16 -------- d-----w- c:\program files\Microsoft.NET
2010-09-25 08:07 . 2010-08-08 10:48 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-09-25 08:07 . 2010-06-19 19:55 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-25 08:07 . 2010-05-26 23:47 -------- d-----w- c:\program files\Microsoft Security Essentials
2010-09-25 08:07 . 2010-08-08 11:24 -------- d-----w- c:\program files\Microsoft
2010-09-25 08:07 . 2010-08-04 12:51 -------- d-----w- c:\program files\MediaCoder
2010-09-25 08:07 . 2010-07-01 09:57 -------- d-----w- c:\program files\Microsoft CAPICOM 2.1.0.2
2010-09-25 08:06 . 2010-08-28 18:24 -------- d-----w- c:\program files\Loco Mania
2010-09-25 08:06 . 2010-07-25 11:41 -------- d-----w- c:\program files\linguatec
2010-09-25 08:06 . 2010-06-28 18:57 -------- d-----w- c:\program files\Labtec
2010-09-25 08:06 . 2010-05-29 07:12 -------- d-----w- c:\program files\KWorld Multimedia
2010-09-25 08:06 . 2010-08-05 15:53 -------- d-----w- c:\program files\jv16 PowerTools 2010
2010-09-25 08:06 . 2010-05-30 07:10 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-09-25 08:06 . 2010-07-06 09:51 -------- d-----w- c:\program files\Java
2010-09-25 08:06 . 2010-05-31 05:15 -------- d-----w- c:\program files\IVT Corporation
2010-09-25 08:06 . 2010-05-27 07:19 -------- d-----w- c:\program files\IObit
2010-09-25 08:06 . 2010-05-27 01:38 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-09-25 08:05 . 2010-07-06 08:38 -------- d-----w- c:\program files\Google
2010-09-25 08:05 . 2010-08-07 01:41 -------- d-----w- c:\program files\Flock
2010-09-25 08:05 . 2010-05-27 00:21 -------- d-----w- c:\program files\Elaborate Bytes
2010-09-25 07:59 . 2010-09-25 07:59 0 ---ha-w- c:\windows\system32\drivers\Msft_User_WpdFs_01_09_00.Wdf
2010-09-23 08:05 . 2010-09-23 08:05 0 ---ha-w- c:\windows\system32\drivers\Msft_User_PCCSWpdDriver_01_09_00.Wdf
2010-09-23 08:03 . 2010-09-23 08:03 0 ---ha-w- c:\windows\system32\drivers\Msft_Kernel_ccdcmb_01009.Wdf
2010-08-28 08:49 . 2010-08-28 08:49 632064 ----a-w- c:\windows\system32\msvcr80.dll
2010-08-28 08:49 . 2010-08-28 08:49 554240 ----a-w- c:\windows\system32\msvcp80.dll
2010-08-28 08:49 . 2010-08-28 08:49 34048 ----a-w- c:\windows\system32\eEmpty.exe
2010-08-28 08:49 . 2010-08-28 08:49 -------- d-----w- c:\program files\Common Files\MicroWorld
2010-08-20 17:37 . 2010-08-20 18:03 969504 ----a-w- c:\users\Fanda\Windows7-USB-DVD-tool.exe
2010-08-17 06:59 . 2010-08-17 06:59 603904 ----a-w- c:\windows\system32\TUProgSt.exe
2010-08-17 06:59 . 2010-08-17 06:59 360192 ----a-w- c:\windows\system32\TuneUpDefragService.exe
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\windows\Sys3390 SettingsCollection.bin
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\users\Fanda\AppData\Roaming\Sys6925.Config Collection.sys
2010-08-05 16:03 . 2010-08-05 16:03 22 --sha-w- c:\users\Fanda\AppData\Roaming\Sys6925.Config Collection.sys
2010-07-29 12:59 . 2010-07-29 13:50 925960 ----a-w- c:\programdata\Soluto\Installer\SolutoInstaller.exe
2010-07-27 16:45 . 2010-07-27 16:24 1392304 ----a-w- c:\windows\system32\AutoPartNt.exe
2010-07-27 16:19 . 2010-07-27 15:35 114048 ----a-w- c:\windows\system32\drivers\snapman.sys
2010-07-23 04:13 . 2010-07-23 04:13 72488 ----a-w- c:\programdata\Apple Computer\Installer Cache\Safari 5.33.17.8\SetupAdmin.exe
2010-07-18 17:02 . 2010-07-18 17:02 479232 ---ha-w- C:\SZKGFS.dat
2010-07-17 03:00 . 2010-07-06 09:51 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-07-13 11:40 . 2010-07-13 11:32 528345264 ----a-w- c:\users\Fanda\trackmania_nations_forever.exe
2010-07-03 07:28 . 2010-07-03 07:28 3121624 ----a-w- c:\users\Fanda\AppData\Roaming\ProtectDisc\pe17af2e29.dll
2010-07-02 18:13 . 2010-07-02 18:13 50321 ----a-w- c:\users\Fanda\pardubice-20100701.zip
2010-07-02 07:42 . 2010-07-02 07:42 95232 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\pcswpcsi.exe
2010-07-02 07:42 . 2010-07-02 07:42 8192 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstCCD.exe
2010-07-02 07:42 . 2010-07-02 07:42 61440 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCSFEMsi.exe
2010-07-02 07:42 . 2010-07-02 07:42 10240 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Installer\CommonCustomActions\UninstPCS.exe
2010-07-02 07:41 . 2010-07-02 07:43 36684048 ----a-w- c:\programdata\Installations\{225DB4AA-3CFF-47E8-B3C8-6DAD713E986E}\Nokia_PC_Suite_cze.exe
2009-06-10 21:26 . 2009-07-14 02:04 9633792 --sha-r- c:\windows\Fonts\StaticCache.dat
2009-07-14 01:14 . 2009-07-13 23:42 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
.
------- Sigcheck -------
[-] 2010-09-25 . 7BD7F45FF37FA0669CD32CA0EF46E22C . 811520 . . [6.1.7600.16385] . . c:\windows\System32\user32.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1173504]
"RESTART_STICKY_NOTES"="c:\windows\System32\StikyNot.exe" [2009-07-14 354304]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-04-30 9210400]
"BtTray"="c:\program files\IVT Corporation\BlueSoleil\BtTray.exe" [2008-08-04 226816]
"MSSE"="c:\program files\Microsoft Security Essentials\msseces.exe" [2010-06-01 1093208]
"PWRISOVM.EXE"="c:\program files\PowerISO\PWRISOVM.EXE" [2009-07-27 180224]
"UnlockerAssistant"="c:\program files\Unlocker\UnlockerAssistant.exe" [2009-10-26 15872]
"VirtualCloneDrive"="c:\program files\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" [2009-06-17 85160]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13535776]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 92704]
"CTF Loader"="c:\windows\System32\ctfmon.exe" [2009-07-14 8704]
"Security Gateway"="c:\windows\system32\mslsgw.exe" [2010-09-28 87489536]
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Remote Control.lnk - c:\program files\KWorld Multimedia\TV Tuner Card Utilities\HMCP3XCtl.exe [2010-5-29 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLUA"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-06-09 08:06 976832 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2010-04-01 09:16 357696 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe"
"Service"=c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\Servicerun.exe c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\Winupdate\Service.exe
R2 SolutoService;Soluto PCGenome Core Service;c:\program files\Soluto\SolutoService.exe [2010-06-30 336728]
R3 DrvAgent32;DrvAgent32;c:\windows\system32\Drivers\DrvAgent32.sys [2010-09-13 23456]
R3 EverestDriver;Lavalys EVEREST Kernel Driver;c:\program files\EVEREST Ultimate Edition\kerneld.wnt [2010-03-30 27760]
R3 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 136176]
R3 IS360service;IS360service;c:\program files\IObit\IObit Security 360\IS360srv.exe [2010-06-11 312152]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [2010-08-28 1343400]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2010-09-26 691696]
S0 PCGenFAM;PCGenFAM;c:\windows\system32\DRIVERS\PCGenFAM.sys [2010-06-30 179144]
S1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2010-09-09 142592]
S2 BsMobileCS;BsMobileCS;c:\program files\IVT Corporation\BlueSoleil\BsMobileCS.exe [2008-08-01 143467]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 OpenMceIrService;OpenMceIrService;c:\program files\OpenMceIrService\OpenMceIrServiceX86.exe [2009-10-06 191488]
S2 PdiService;Portrait Displays SDK Service;c:\program files\Common Files\Portrait Displays\Drivers\pdisrvc.exe [2009-07-15 109168]
S2 UnsignedThemes;Unsigned Themes;c:\windows\UnsignedThemesSvc.exe [2009-07-12 21096]
S2 uxpatch;uxpatch;c:\windows\system32\drivers\uxpatch.sys [2009-07-12 25448]
S3 3xHybrid;3xHybrid service;c:\windows\system32\DRIVERS\3xHybrid.sys [2007-04-20 674048]
S3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\DRIVERS\MpNWMon.sys [2010-03-25 42368]
.
Obsah adresáře 'Naplánované úlohy'
2010-09-18 c:\windows\Tasks\1-Click Maintenance.job
- d:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]
2010-09-23 c:\windows\Tasks\AWC Update.job
- c:\program files\IObit\Advanced SystemCare 3\IObitUpdate.exe [2010-05-27 09:08]
2010-07-31 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 08:37]
2010-09-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-07-06 08:37]
2010-09-28 c:\windows\Tasks\Úklid 1 kliknutím.job
- d:\program files\TuneUp Utilities 2009\OneClickStarter.exe [2008-12-11 19:36]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
uInternet Settings,ProxyOverride = <local>
IE: Crawler Search - tbr:iemenu
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~3\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~3\Office14\ONBttnIE.dll/105
IE: Send by Bluetooth - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tsinfo.htm
IE: Send via &Message... - c:\program files\IVT Corporation\BlueSoleil\TransSend\IE\tssms.htm
IE: {{B1CF6225-211E-4B4C-B466-5F224E348FF3} - c:\program files\Crawler\Weather\CWeather.exe
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\Toolbar\ctbr.dll
FF - ProfilePath - c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xcomm.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xshared.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xsupport.dll
FF - component: c:\program files\Crawler\Toolbar\firefox\components\xwsg.dll
FF - component: c:\program files\Nokia\Nokia PC Suite 7\bkmrksync\components\BkMrkExt.dll
FF - component: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{d9284e50-81fc-11da-a72b-0800200c9a66}\lib\WINNT_x86-msvc\1.9.1\yoono.dll
FF - component: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\DTToolbar@toolbarnet.com\components\DTToolbarFF.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npBitCometAgent.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npnul32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\NPOFF12.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\nppdf32.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nppl3260.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nprjplug.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\nprpjplug.dll
FF - plugin: c:\program files\Windows Live\Photo Gallery\NPWLPG.dll
FF - plugin: c:\programdata\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
FF - plugin: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\{F8CC37C3-CBEB-4A00-8CBF-26A88693F0C5}\plugins\npagent.dll
FF - plugin: c:\users\Fanda\AppData\Roaming\Mozilla\Firefox\Profiles\cafgnenj.default\extensions\OberonGameHost@OberonGames.com\platform\WINNT_x86-msvc\plugins\npOberonGameHost.dll
---- NASTAVENÍ FIREFOXU ----
d:\program files\FIREFOX\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
d:\program files\FIREFOX\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
d:\program files\FIREFOX\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
d:\program files\FIREFOX\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
MSConfigStartUp-BCSSync - c:\program files\Microsoft Office\Office14\BCSSync.exe
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\EverestDriver]
"ImagePath"="\??\c:\program files\EVEREST Ultimate Edition\kerneld.wnt"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe,-101"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10i_ActiveX.exe"
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2010-09-28 19:07:38
ComboFix-quarantined-files.txt 2010-09-28 17:07
Před spuštěním: Volných bajtů: 10 411 941 888
Po spuštění: Volných bajtů: 10 020 425 728
- - End Of File - - BB3972B5236EC70E9BBE6ABB81D2ABDC
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Nešel správce úloh
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Nešel správce úloh
Několik položek bylo smazáno, zbytek logu vypadá čistý. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?