Systém se odpojuje od internetu - virus?

[Cody-cz]

Prosím o pomoc, ačkoliv jsem v práci s počítačem velmi zběhlý, narazil jsme na své limity.

Mám počítač s relativně nově nainstalovanými Windows 7, před pár dny mi začal dělat problém antivirus Comodo, zdálo se, že se jedná o bug. V té době se mi začal počítač odpojovat od internetu. Posléze různým testováním jsem zjistil, že mě odpojí patrně vždy, když nainstaluju nějaký antivirový systém. Zkoušel jsem již výše zmiňované Comodo, Eset i Aviru.

Jednou se mě odpojil i když jsme momentálně žádný antivrus nainstalovaný neměl. Momentálně jsem antivirus odinstaloval a jsem online. Zvláštní je, že když mě to odpojí, funguje mi ICQ.

Můj soukromý odhad je, že něco - možná virus? - při detekci antiviru mne odpojí, ale asi jen některé porty, protže icq jede. Překlady z názvu url na ip funguje - ping na Seznam převede na ip adresu, ale pak to napíše že je dlouhý response.

Prosím můžete mi poradit jak problém vyřešit? Antivirus nenainstaluju, tedy nainstaluju, ale nestáhnu aktuální databázi o virech protže mě to odpojí. Nevím jestli je to virus nebo něco jiného. Napadá vás řešení?

Budu vděčný za jakoukoliv pomoc!

PS: Kamarád říká, že by to mohly být i špatně konfigurovaný pravidla pro dns v antivirech.

Log níže:

mLogfile of random's system information tool 1.08 (written by random/random)
Run by Cody at 2011-01-10 22:11:27
Microsoft Windows 7 Ultimate
System drive C: has 200 GB (65%) free of 305 GB
Total RAM: 3575 MB (63% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:12:35, on 10.1.2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Grafika\Adobe\Acrobat 9.0\Acrobat\acrotray.exe
C:\Internet\FeedDemon\FeedDemon.exe
C:\Tools\MMTaskbar\MultiMon.exe
C:\Tools\Launchy\Launchy.exe
C:\Users\Cody\AppData\Local\RockMelt\Update\1.2.189.1\RockMeltCrashHandler.exe
C:\Users\Cody\AppData\Local\Google\Update\1.2.183.39\GoogleCrashHandler.exe
C:\Internet\Gladinet Cloud Desktop\GladinetClient.exe
C:\Internet\Miranda IM\miranda32.exe
C:\Internet\Mozilla Firefox\firefox.exe
C:\Internet\Mozilla Thunderbird\thunderbird.exe
C:\Users\Cody\AppData\Roaming\Thunderbird\Profiles\k8cciv1j.default\extensions\thunderbayes@continued\spambayes\python26_portable_win32\sbpython++.exe
C:\Internet\Mozilla Firefox\plugin-container.exe
C:\Tools\Total Commander\TOTALCMD.EXE
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Cody\Downloads\RSIT.exe
C:\Program Files\trend micro\Cody.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = proxy.ataxo.com:8080
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: (no name) - AutorunsDisabled - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe -s
O4 - HKLM\..\Run: [NUSB3MON] "C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe"
O4 - HKLM\..\Run: [P17RunE] RunDll32 P17RunE.dll,RunDLLEntry
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [WinSys2] C:\Windows\system32\startup.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Grafika\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Grafika\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [FeedDemon] "C:\Internet\FeedDemon\FeedDemon.exe" /startminimized
O4 - HKCU\..\Run: [Google Update] "C:\Users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RockMelt Update] "C:\Users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe" /c
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: Launchy.lnk = C:\Tools\Launchy\Launchy.exe
O4 - Global Startup: Gladinet Cloud Desktop.lnk = C:\Internet\Gladinet Cloud Desktop\GladLauncher.exe
O4 - Global Startup: MultiMon Taskbar.lnk = C:\Tools\MMTaskbar\MultiMon.exe
O8 - Extra context menu item: Prevést cíl vazby do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Prevést cíl vazby do existujícího PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Prevést do Adobe PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Pridat do stávajícího PDF - res://C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
O9 - Extra button: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O16 - DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... PIDPDE.cab
O16 - DPF: {F6ACF75C-C32C-447B-9BEF-46B766368D29} (Creative Software AutoUpdate Support Package) - http://ccfiles.creative.com/Web/softwar ... /CTPID.cab
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs:
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: Creative ALchemy AL6 Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: Device Error Recovery Service (dgdersvc) - Devguru Co., Ltd. - C:\Windows\system32\dgdersvc.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
O23 - Service: GladFileMonSvc - Gladinet, INC - C:\Internet\Gladinet Cloud Desktop\GladFileMonSvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Canon Inkjet Printer/Scanner/Fax Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: Realtek11nSU - Realtek - C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtlService.exe
O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

--
End of file - 8981 bytes

======Scheduled tasks folder======

C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001UA.job
C:\Windows\tasks\Paragon Archive name diff_080111202444901.job
C:\Windows\tasks\RockMeltUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001Core.job
C:\Windows\tasks\RockMeltUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001UA.job
C:\Windows\tasks\SmartDefrag.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\AutorunsDisabled]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-12-18 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F4971EE7-DAA0-4053-9964-665D8EE6A077}]
SmartSelect Class - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22 349640]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll [2010-09-22 349640]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"BCU"=C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-08-04 346320]
"RtHDVCpl"=C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe [2010-01-19 8452640]
"NUSB3MON"=C:\Program Files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [2009-10-21 106496]
"P17RunE"=RunDll32 P17RunE.dll,RunDLLEntry []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"WinSys2"=C:\Windows\system32\startup.exe [2006-06-01 53248]
"Adobe Acrobat Speed Launcher"=C:\Grafika\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe [2010-09-23 38840]
""= []
"Acrobat Assistant 8.0"=C:\Grafika\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe [2010-09-22 640440]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"FeedDemon"=C:\Internet\FeedDemon\FeedDemon.exe [2010-12-16 7503360]
"Google Update"=C:\Users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-23 136176]
"RockMelt Update"=C:\Users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe [2011-01-09 136336]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Gladinet Cloud Desktop.lnk - C:\Internet\Gladinet Cloud Desktop\GladLauncher.exe
MultiMon Taskbar.lnk - C:\Tools\MMTaskbar\MultiMon.exe

C:\Users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
Launchy.lnk - C:\Tools\Launchy\Launchy.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\prwntdrv]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\prwntdrv]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
.txt - open - C:\Windows\NOTEPAD.EXE %1

======List of files/folders created in the last 1 months======

2011-01-10 22:11:27 ----D---- C:\rsit
2011-01-10 22:11:27 ----D---- C:\Program Files\trend micro
2011-01-09 14:04:09 ----D---- C:\Program Files\Cisco
2011-01-09 13:51:52 ----A---- C:\Windows\system32\drivers\RTL8192su.sys
2011-01-09 13:51:51 ----R---- C:\Windows\system32\RtlUI2.exe
2011-01-09 13:51:51 ----R---- C:\Windows\system32\Rtlihvs.dll
2011-01-09 13:51:51 ----R---- C:\Windows\system32\RTLExtUI.dll
2011-01-09 13:51:51 ----R---- C:\Windows\RtlUI2.exe
2011-01-09 13:51:51 ----R---- C:\Windows\Rtlihvs.dll
2011-01-09 13:51:51 ----R---- C:\Windows\RTLExtUI.dll
2011-01-09 13:51:48 ----A---- C:\Windows\system32\ISSRemoveSP.exe
2011-01-09 12:34:09 ----D---- C:\Windows\system32\appmgmt
2011-01-09 12:16:26 ----D---- C:\Users\Cody\AppData\Roaming\ESET
2011-01-09 12:14:43 ----D---- C:\ProgramData\ESET
2011-01-09 01:27:49 ----A---- C:\Windows\system32\d3dx9_27.dll
2011-01-08 18:35:49 ----RA---- C:\Windows\system32\AdobePDFUI.dll
2011-01-08 18:33:22 ----D---- C:\_AcroTemp
2011-01-08 17:13:28 ----A---- C:\Windows\system32\CmdLineExt.dll
2011-01-08 16:18:36 ----D---- C:\Users\Cody\AppData\Roaming\Adobe Mini Bridge CS5
2011-01-08 16:18:35 ----D---- C:\Users\Cody\AppData\Roaming\StageManager.BD092818F67280F4B42B04877600987F0111B594.1
2011-01-08 15:52:37 ----A---- C:\Windows\system32\AdobePDF.dll
2011-01-07 22:05:14 ----N---- C:\Windows\Setup1.exe
2011-01-07 22:05:13 ----A---- C:\Windows\ST6UNST.EXE
2011-01-07 17:21:25 ----D---- C:\Users\Cody\AppData\Roaming\Zoner
2011-01-03 21:39:20 ----D---- C:\Users\Cody\AppData\Roaming\Software Informer
2011-01-03 08:34:08 ----D---- C:\Program Files\MSXML 4.0
2011-01-02 13:44:30 ----D---- C:\Users\Cody\AppData\Roaming\Canneverbe Limited
2011-01-02 13:44:30 ----D---- C:\ProgramData\Canneverbe Limited
2011-01-02 12:14:42 ----A---- C:\Windows\system32\d3dx9_26.dll
2011-01-02 12:14:37 ----A---- C:\Windows\system32\d3dx9_25.dll
2011-01-02 12:11:20 ----D---- C:\Games
2011-01-02 11:45:54 ----D---- C:\Program Files\DAEMON Tools Toolbar
2011-01-02 11:45:53 ----A---- C:\Windows\system32\drivers\sptd.sys
2011-01-02 11:44:27 ----D---- C:\Users\Cody\AppData\Roaming\DAEMON Tools Lite
2011-01-02 11:44:25 ----D---- C:\ProgramData\DAEMON Tools Lite
2010-12-30 18:17:39 ----D---- C:\Users\Cody\AppData\Roaming\Notepad++
2010-12-30 16:24:09 ----D---- C:\ProgramData\FLEXnet
2010-12-30 16:04:16 ----D---- C:\Program Files\Common Files\Macrovision Shared
2010-12-30 10:48:04 ----D---- C:\ProgramData\regid.1986-12.com.adobe
2010-12-30 10:42:43 ----D---- C:\Program Files\Adobe Media Player
2010-12-30 10:40:20 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-12-30 10:40:19 ----D---- C:\Program Files\Adobe
2010-12-30 10:35:35 ----D---- C:\ProgramData\Adobe
2010-12-30 10:35:32 ----D---- C:\Program Files\Common Files\Adobe
2010-12-27 15:51:31 ----D---- C:\Users\Cody\AppData\Roaming\UbuntuOneClient
2010-12-27 10:35:06 ----D---- C:\Users\Cody\AppData\Roaming\Skype
2010-12-27 10:34:55 ----D---- C:\ProgramData\Skype
2010-12-26 17:22:33 ----D---- C:\Windows\system32\Adobe
2010-12-24 11:51:23 ----D---- C:\Program Files\Anti-Vibrate Oscar Editor
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bwhnt.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bwh.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bserd.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bmdm.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bmdfl.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bcmnt.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bcm.sys
2010-12-24 11:48:16 ----A---- C:\Windows\system32\drivers\ss_bbus.sys
2010-12-24 11:47:57 ----D---- C:\Program Files\OscarX7
2010-12-24 11:47:23 ----A---- C:\Windows\system32\FsUsbExService.Exe
2010-12-24 11:47:23 ----A---- C:\Windows\system32\FsUsbExDisk.Sys
2010-12-24 11:47:23 ----A---- C:\Windows\system32\FsUsbExDevice.Dll
2010-12-24 11:46:57 ----D---- C:\Program Files\PC Connectivity Solution
2010-12-24 11:46:47 ----D---- C:\Users\Cody\AppData\Roaming\Samsung
2010-12-24 11:46:47 ----D---- C:\Program Files\MarkAny
2010-12-24 11:46:46 ----D---- C:\ProgramData\Samsung
2010-12-24 11:45:49 ----D---- C:\Program Files\Common Files\Samsung
2010-12-23 17:27:44 ----D---- C:\Users\Cody\AppData\Roaming\Opera
2010-12-23 00:06:29 ----A---- C:\Windows\system32\msvcp100.dll
2010-12-22 18:49:33 ----D---- C:\Users\Cody\AppData\Roaming\Windows Live Writer
2010-12-22 08:45:38 ----HD---- C:\Gladinet
2010-12-21 14:50:20 ----D---- C:\Users\Cody\AppData\Roaming\Miranda
2010-12-21 09:06:19 ----D---- C:\ProgramData\scripts
2010-12-21 00:55:52 ----A---- C:\Windows\system32\LogVss.txt
2010-12-21 00:55:52 ----A---- C:\Windows\system32\LogMsg.txt
2010-12-21 00:09:09 ----D---- C:\Users\Cody\AppData\Roaming\Postbox
2010-12-21 00:03:40 ----D---- C:\Users\Cody\AppData\Roaming\IObit
2010-12-20 23:08:49 ----A---- C:\Windows\system32\drivers\eufs.sys
2010-12-20 23:08:09 ----A---- C:\Windows\system32\drivers\eudskacs.sys
2010-12-20 23:08:09 ----A---- C:\Windows\system32\drivers\eubakup.sys
2010-12-20 23:08:07 ----A---- C:\Windows\system32\drivers\EuDisk.sys
2010-12-20 23:08:00 ----A---- C:\Windows\system32\fbnative.exe
2010-12-20 22:41:48 ----D---- C:\Users\Cody\AppData\Roaming\Launchy
2010-12-20 22:01:10 ----D---- C:\Users\Cody\AppData\Roaming\Dropbox
2010-12-20 21:56:04 ----D---- C:\Users\Cody\AppData\Roaming\SpiderOak
2010-12-20 21:45:26 ----D---- C:\Users\Cody\AppData\Roaming\Tonido
2010-12-20 20:05:12 ----D---- C:\Users\Cody\AppData\Roaming\LibreOffice
2010-12-19 23:06:47 ----D---- C:\Users\Cody\AppData\Roaming\vlc
2010-12-19 21:23:19 ----D---- C:\Users\Cody\AppData\Roaming\FileZilla
2010-12-19 21:16:46 ----D---- C:\ProgramData\CanonIJ
2010-12-19 21:16:18 ----D---- C:\Users\Cody\AppData\Roaming\Foxit Software
2010-12-19 21:04:42 ----HD---- C:\ProgramData\CanonIJScan
2010-12-19 21:03:27 ----D---- C:\Users\Cody\AppData\Roaming\Canon
2010-12-19 18:51:07 ----D---- C:\ProgramData\launcher
2010-12-19 18:18:17 ----D---- C:\Windows\cs
2010-12-19 18:12:19 ----A---- C:\Windows\system32\drivers\hotcore3.sys
2010-12-19 14:52:24 ----A---- C:\Windows\system32\deleteme.txt-nv32514
2010-12-19 14:49:03 ----A---- C:\Windows\system32\drivers\fssfltr.sys
2010-12-19 14:49:02 ----DC---- C:\Windows\system32\DRVSTORE
2010-12-19 14:48:31 ----A---- C:\Windows\system32\SETDFD2.tmp
2010-12-19 14:42:48 ----D---- C:\Program Files\Microsoft SQL Server Compact Edition
2010-12-19 14:38:47 ----A---- C:\Windows\BcdLog.txt
2010-12-19 14:38:29 ----D---- C:\Windows\PCHEALTH
2010-12-19 14:37:03 ----SHD---- C:\Config.Msi
2010-12-19 14:36:38 ----D---- C:\Program Files\Windows Live
2010-12-19 14:36:08 ----A---- C:\Windows\system32\XAudio2_5.dll
2010-12-19 14:36:08 ----A---- C:\Windows\system32\XAPOFX1_3.dll
2010-12-19 14:36:07 ----A---- C:\Windows\system32\d3dx10_42.dll
2010-12-19 14:35:42 ----A---- C:\Windows\system32\d3dx9_32.dll
2010-12-19 14:35:02 ----D---- C:\Program Files\Microsoft Silverlight
2010-12-19 14:34:32 ----A---- C:\Windows\system32\UIRibbonRes.dll
2010-12-19 14:34:32 ----A---- C:\Windows\system32\UIRibbon.dll
2010-12-19 14:34:01 ----A---- C:\Windows\system32\EuEpmGdi.dll
2010-12-19 14:34:01 ----A---- C:\Windows\system32\BootMan.exe
2010-12-19 14:34:00 ----A---- C:\Windows\system32\setupempdrv03.exe
2010-12-19 14:34:00 ----A---- C:\Windows\system32\EuGdiDrv.sys
2010-12-19 14:34:00 ----A---- C:\Windows\system32\epmntdrv.sys
2010-12-19 14:33:32 ----A---- C:\Windows\system32\mfreadwrite.dll
2010-12-19 14:33:32 ----A---- C:\Windows\system32\mf.dll
2010-12-19 14:33:31 ----A---- C:\Windows\system32\WMVDECOD.DLL
2010-12-19 14:31:32 ----D---- C:\Program Files\Common Files\Windows Live
2010-12-19 10:46:05 ----D---- C:\ProgramData\Plugins
2010-12-19 10:40:33 ----D---- C:\Grafika
2010-12-19 09:55:17 ----A---- C:\Windows\system32\msicpl.dll
2010-12-19 09:55:17 ----A---- C:\Windows\system32\d3dx9_28.dll
2010-12-19 09:55:16 ----A---- C:\Windows\system32\smdll.dll
2010-12-19 09:55:16 ----A---- C:\Windows\system32\HookShield.dll
2010-12-19 09:55:16 ----A---- C:\Windows\system32\executeosd.exe
2010-12-19 09:55:15 ----A---- C:\Windows\system32\Auxiliary.dll
2010-12-19 09:55:14 ----A---- C:\Windows\system32\MadCHook.dll
2010-12-19 09:55:13 ----A---- C:\Windows\system32\sysinfo.dll
2010-12-19 09:55:13 ----A---- C:\Windows\system32\startup.exe
2010-12-19 09:55:13 ----A---- C:\Windows\system32\nvudisp.exe-nv32521
2010-12-19 09:55:12 ----A---- C:\Windows\system32\HookMap.dll
2010-12-19 09:48:10 ----A---- C:\Windows\system32\NVUNINST.EXE
2010-12-19 09:43:14 ----HD---- C:\ProgramData\CanonIJSolutionMenu
2010-12-19 09:43:11 ----HD---- C:\ProgramData\CanonIJMyPrinter
2010-12-19 09:43:05 ----D---- C:\ProgramData\CanonIJPLM
2010-12-19 09:42:04 ----D---- C:\Program Files\Common Files\CANON
2010-12-19 09:41:13 ----HD---- C:\ProgramData\CanonBJ
2010-12-19 09:40:57 ----HD---- C:\Windows\system32\CanonIJ Uninstaller Information
2010-12-19 09:40:50 ----A---- C:\Windows\system32\CNC250U.dll
2010-12-19 09:40:50 ----A---- C:\Windows\system32\CNC250L.dll
2010-12-19 09:40:50 ----A---- C:\Windows\system32\CNC250I.dll
2010-12-19 09:40:50 ----A---- C:\Windows\system32\CNC250C.dll
2010-12-19 09:40:49 ----A---- C:\Windows\system32\CNHMCA.dll
2010-12-19 09:40:14 ----N---- C:\Windows\system32\CNMLM9W.DLL
2010-12-19 09:40:09 ----A---- C:\Windows\system32\CNC250O.dll
2010-12-19 09:40:06 ----A---- C:\Windows\system32\CNMIU9W.DLL
2010-12-19 09:40:00 ----HD---- C:\Program Files\CanonBJ
2010-12-19 09:36:35 ----D---- C:\Program Files\Canon
2010-12-19 09:34:55 ----A---- C:\Windows\system32\drivers\IT9135BDA.sys
2010-12-19 09:34:42 ----D---- C:\ProgramData\BlazeVideo
2010-12-19 09:34:42 ----A---- C:\Windows\system32\systeminfo.dll
2010-12-19 02:30:57 ----D---- C:\Windows\Panther
2010-12-18 23:36:54 ----D---- C:\Users\Cody\AppData\Roaming\Creative
2010-12-18 22:09:13 ----D---- C:\Downloads
2010-12-18 22:08:30 ----D---- C:\Users\Cody\AppData\Roaming\BitComet
2010-12-18 21:57:37 ----D---- C:\Users\Cody\AppData\Roaming\VitySoft
2010-12-18 21:57:15 ----D---- C:\ProgramData\Sun
2010-12-18 21:57:13 ----D---- C:\Program Files\Common Files\Java
2010-12-18 21:56:56 ----A---- C:\Windows\system32\javaws.exe
2010-12-18 21:56:56 ----A---- C:\Windows\system32\javaw.exe
2010-12-18 21:56:56 ----A---- C:\Windows\system32\java.exe
2010-12-18 21:56:56 ----A---- C:\Windows\system32\deployJava1.dll
2010-12-18 21:56:30 ----D---- C:\Program Files\Java
2010-12-18 21:46:49 ----D---- C:\Program Files\Ask.com
2010-12-18 21:44:45 ----D---- C:\Editory
2010-12-18 21:24:30 ----D---- C:\Users\Cody\AppData\Roaming\Thunderbird
2010-12-18 21:11:11 ----D---- C:\ProgramData\Creative Labs
2010-12-18 21:10:43 ----N---- C:\Windows\Ctregrun.exe
2010-12-18 21:06:54 ----D---- C:\Program Files\Common Files\Creative
2010-12-18 21:06:52 ----HD---- C:\Program Files\Creative Installation Information
2010-12-18 21:05:58 ----D---- C:\Audio
2010-12-18 20:53:02 ----D---- C:\Program Files\Microsoft.NET
2010-12-18 20:47:20 ----A---- C:\Windows\system32\tzres.dll
2010-12-18 20:30:09 ----D---- C:\ProgramData\NVIDIA
2010-12-18 20:25:53 ----D---- C:\Windows\cs-CZ
2010-12-18 20:25:49 ----D---- C:\Windows\system32\cs
2010-12-18 20:25:33 ----D---- C:\Windows\system32\XPSViewer
2010-12-18 20:25:32 ----D---- C:\Windows\system32\drivers\cs-CZ
2010-12-18 20:11:17 ----D---- C:\Users\Cody\AppData\Roaming\Macromedia
2010-12-18 20:11:16 ----D---- C:\Users\Cody\AppData\Roaming\Adobe
2010-12-18 20:11:07 ----D---- C:\Windows\system32\Macromed
2010-12-18 20:09:22 ----A---- C:\Windows\system32\msv1_0.dll
2010-12-18 20:00:09 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2010-12-18 20:00:09 ----A---- C:\Windows\system32\PresentationHost.exe
2010-12-18 20:00:09 ----A---- C:\Windows\system32\netfxperf.dll
2010-12-18 20:00:09 ----A---- C:\Windows\system32\mscoree.dll
2010-12-18 20:00:09 ----A---- C:\Windows\system32\dfshim.dll
2010-12-18 19:49:07 ----D---- C:\ProgramData\NVIDIA Corporation
2010-12-18 19:49:03 ----D---- C:\Program Files\NVIDIA Corporation
2010-12-18 19:48:19 ----A---- C:\Windows\system32\wrap_oal.dll
2010-12-18 19:48:19 ----A---- C:\Windows\system32\OpenAL32.dll
2010-12-18 19:48:18 ----N---- C:\Windows\system32\Sens_oal.dll
2010-12-18 19:48:09 ----D---- C:\Program Files\Common Files\Creative Labs Shared
2010-12-18 19:47:51 ----D---- C:\Program Files\Creative
2010-12-18 19:47:35 ----D---- C:\ProgramData\Creative
2010-12-18 19:47:31 ----A---- C:\Windows\system32\CmdRtr.DLL
2010-12-18 19:47:31 ----A---- C:\Windows\system32\APOMngr.DLL
2010-12-18 19:18:04 ----D---- C:\ProgramData\InstallShield
2010-12-18 19:18:00 ----D---- C:\Program Files\GIGABYTE
2010-12-18 19:18:00 ----A---- C:\Windows\system32\drivers\AppleCharger.sys
2010-12-18 19:17:34 ----D---- C:\Program Files\NEC Electronics
2010-12-18 19:17:07 ----D---- C:\Program Files\Marvell
2010-12-18 19:16:15 ----A---- C:\Windows\system32\RTNUninst32.dll
2010-12-18 19:16:15 ----A---- C:\Windows\system32\RtNicProp32.dll
2010-12-18 19:16:15 ----A---- C:\Windows\system32\drivers\Rt86win7.sys
2010-12-18 19:15:17 ----D---- C:\Windows\system32\RTCOM
2010-12-18 19:14:46 ----A---- C:\Windows\system32\WavesLib.dll
2010-12-18 19:14:46 ----A---- C:\Windows\system32\SRSWOW.dll
2010-12-18 19:14:46 ----A---- C:\Windows\system32\SRSTSXT.dll
2010-12-18 19:14:45 ----A---- C:\Windows\system32\SRSTSHD.dll
2010-12-18 19:14:45 ----A---- C:\Windows\system32\SRSHP360.dll
2010-12-18 19:14:45 ----A---- C:\Windows\system32\RtkPgExt.dll
2010-12-18 19:14:44 ----A---- C:\Windows\system32\RtkCoInst.dll
2010-12-18 19:14:44 ----A---- C:\Windows\system32\RtkApoApi.dll
2010-12-18 19:14:44 ----A---- C:\Windows\system32\RtkAPO.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\RTEEP32A.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\RTEEL32A.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\RTEEG32A.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\RTEED32A.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\RP3DHT32.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\RP3DAA32.dll
2010-12-18 19:14:43 ----A---- C:\Windows\system32\drivers\RTKVHDA.sys
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MBWrp32.dll
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MBppld32.dll
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MBPPCn32.dll
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MBAPO32.dll
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2010-12-18 19:14:42 ----A---- C:\Windows\system32\MaxxAudioAPO.dll
2010-12-18 19:14:39 ----A---- C:\Windows\system32\FMAPO.dll
2010-12-18 19:14:37 ----HD---- C:\Program Files\Temp
2010-12-18 19:14:37 ----A---- C:\Windows\system32\AERTARen.dll
2010-12-18 19:14:37 ----A---- C:\Windows\system32\AERTACap.dll
2010-12-18 19:14:36 ----R---- C:\Windows\RtlExUpd.dll
2010-12-18 19:14:35 ----D---- C:\Program Files\Realtek
2010-12-18 19:14:22 ----D---- C:\Program Files\Common Files\InstallShield
2010-12-18 19:13:20 ----RA---- C:\Windows\system32\CSVer.dll
2010-12-18 19:13:20 ----D---- C:\Program Files\Intel
2010-12-18 19:12:56 ----D---- C:\Intel
2010-12-18 19:12:40 ----HD---- C:\Program Files\DeviceVM
2010-12-18 19:12:39 ----HD---- C:\Program Files\InstallShield Installation Information
2010-12-18 19:07:16 ----A---- C:\Windows\system32\browserchoice.exe
2010-12-18 19:02:33 ----A---- C:\Windows\GSetup.ini
2010-12-18 18:57:35 ----A---- C:\Windows\system32\drivers\sffp_sd.sys
2010-12-18 18:57:30 ----A---- C:\Windows\system32\drivers\ks.sys
2010-12-18 18:55:42 ----A---- C:\Windows\system32\MRT.exe
2010-12-18 18:54:09 ----A---- C:\Windows\system32\msxml3.dll
2010-12-18 18:54:04 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2010-12-18 18:54:04 ----A---- C:\Windows\system32\CertEnroll.dll
2010-12-18 18:54:03 ----A---- C:\Windows\system32\winresume.exe
2010-12-18 18:54:03 ----A---- C:\Windows\system32\winload.exe
2010-12-18 18:53:56 ----A---- C:\Windows\system32\spoolsv.exe
2010-12-18 18:53:48 ----A---- C:\Windows\system32\mshtml.dll
2010-12-18 18:53:47 ----A---- C:\Windows\system32\iertutil.dll
2010-12-18 18:53:46 ----A---- C:\Windows\system32\ieframe.dll
2010-12-18 18:53:45 ----A---- C:\Windows\system32\mstime.dll
2010-12-18 18:53:45 ----A---- C:\Windows\system32\msfeeds.dll
2010-12-18 18:53:44 ----A---- C:\Windows\system32\wininet.dll
2010-12-18 18:53:44 ----A---- C:\Windows\system32\urlmon.dll
2010-12-18 18:53:44 ----A---- C:\Windows\system32\iedkcs32.dll
2010-12-18 18:53:43 ----A---- C:\Windows\system32\mshtmled.dll
2010-12-18 18:53:43 ----A---- C:\Windows\system32\msfeedssync.exe
2010-12-18 18:53:43 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-12-18 18:53:43 ----A---- C:\Windows\system32\licmgr10.dll
2010-12-18 18:53:43 ----A---- C:\Windows\system32\jsproxy.dll
2010-12-18 18:53:43 ----A---- C:\Windows\system32\ieui.dll
2010-12-18 18:53:43 ----A---- C:\Windows\system32\iepeers.dll
2010-12-18 18:53:34 ----A---- C:\Windows\system32\shell32.dll
2010-12-18 18:53:32 ----A---- C:\Windows\system32\winlogon.exe
2010-12-18 18:53:32 ----A---- C:\Windows\explorer.exe
2010-12-18 18:53:29 ----A---- C:\Windows\system32\lsasrv.dll
2010-12-18 18:53:29 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2010-12-18 18:53:28 ----A---- C:\Windows\system32\ir32_32.dll
2010-12-18 18:53:28 ----A---- C:\Windows\system32\iccvid.dll
2010-12-18 18:53:26 ----A---- C:\Windows\system32\CPFilters.dll
2010-12-18 18:53:25 ----A---- C:\Windows\system32\msdri.dll
2010-12-18 18:53:24 ----A---- C:\Windows\system32\t2embed.dll
2010-12-18 18:53:24 ----A---- C:\Windows\system32\psisdecd.dll
2010-12-18 18:53:23 ----A---- C:\Windows\system32\mfc40u.dll
2010-12-18 18:53:23 ----A---- C:\Windows\system32\mfc40.dll
2010-12-18 18:53:21 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2010-12-18 18:53:21 ----A---- C:\Windows\system32\secproc_ssp.dll
2010-12-18 18:53:21 ----A---- C:\Windows\system32\secproc_isv.dll
2010-12-18 18:53:21 ----A---- C:\Windows\system32\secproc.dll
2010-12-18 18:53:21 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2010-12-18 18:53:21 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2010-12-18 18:53:21 ----A---- C:\Windows\system32\RMActivate_isv.exe
2010-12-18 18:53:21 ----A---- C:\Windows\system32\RMActivate.exe
2010-12-18 18:53:20 ----A---- C:\Windows\system32\wmicmiplugin.dll
2010-12-18 18:53:20 ----A---- C:\Windows\system32\taskschd.dll
2010-12-18 18:53:20 ----A---- C:\Windows\system32\schedsvc.dll
2010-12-18 18:53:19 ----A---- C:\Windows\system32\taskeng.exe
2010-12-18 18:53:19 ----A---- C:\Windows\system32\taskcomp.dll
2010-12-18 18:53:19 ----A---- C:\Windows\system32\schtasks.exe
2010-12-18 18:53:17 ----A---- C:\Windows\system32\wmp.dll
2010-12-18 18:53:15 ----A---- C:\Windows\system32\wmploc.DLL
2010-12-18 18:53:13 ----A---- C:\Windows\system32\ole32.dll
2010-12-18 18:53:12 ----A---- C:\Windows\system32\fontsub.dll
2010-12-18 18:53:12 ----A---- C:\Windows\system32\atmlib.dll
2010-12-18 18:53:12 ----A---- C:\Windows\system32\atmfd.dll
2010-12-18 18:53:10 ----A---- C:\Windows\system32\ntoskrnl.exe
2010-12-18 18:53:09 ----A---- C:\Windows\system32\ntkrnlpa.exe
2010-12-18 18:53:08 ----A---- C:\Windows\system32\srvsvc.dll
2010-12-18 18:53:08 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-12-18 18:53:08 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-12-18 18:53:08 ----A---- C:\Windows\system32\drivers\srv.sys
2010-12-18 18:53:07 ----A---- C:\Windows\system32\kernel32.dll
2010-12-18 18:53:04 ----A---- C:\Windows\system32\apphelp.dll
2010-12-18 18:53:03 ----A---- C:\Windows\system32\schannel.dll
2010-12-18 18:53:02 ----A---- C:\Windows\system32\wintrust.dll
2010-12-18 18:53:01 ----A---- C:\Windows\system32\comctl32.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\tsbyuv.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\quartz.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\msyuv.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\msvidc32.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\msrle32.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\mciavi32.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\iyuv_32.dll
2010-12-18 18:53:00 ----A---- C:\Windows\system32\avifil32.dll
2010-12-18 18:52:59 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-12-18 18:52:58 ----A---- C:\Windows\system32\asycfilt.dll
2010-12-18 18:52:57 ----A---- C:\Windows\system32\drivers\fvevol.sys
2010-12-18 18:52:56 ----A---- C:\Windows\system32\drivers\tcpip.sys
2010-12-18 18:52:55 ----A---- C:\Windows\system32\ntdll.dll
2010-12-18 18:52:54 ----A---- C:\Windows\system32\rtutils.dll
2010-12-18 18:52:53 ----A---- C:\Windows\system32\msasn1.dll
2010-12-18 18:52:53 ----A---- C:\Windows\system32\cabview.dll
2010-12-18 18:52:52 ----A---- C:\Windows\system32\wmpmde.dll
2010-12-18 18:52:51 ----A---- C:\Windows\system32\drivers\mrxsmb20.sys
2010-12-18 18:52:51 ----A---- C:\Windows\system32\drivers\mrxsmb10.sys
2010-12-18 18:52:51 ----A---- C:\Windows\system32\drivers\mrxsmb.sys
2010-12-18 18:52:49 ----A---- C:\Windows\system32\inetcomm.dll
2010-12-18 18:52:46 ----A---- C:\Windows\system32\webio.dll
2010-12-18 18:52:46 ----A---- C:\Windows\system32\jscript.dll
2010-12-18 18:52:45 ----A---- C:\Windows\system32\consent.exe
2010-12-18 18:52:44 ----A---- C:\Windows\system32\vbscript.dll
2010-12-18 18:52:43 ----A---- C:\Windows\system32\oleaut32.dll
2010-12-18 18:52:42 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-12-18 18:52:19 ----A---- C:\Windows\system32\win32k.sys
2010-12-18 18:52:09 ----D---- C:\Video
2010-12-18 18:52:09 ----D---- C:\ProgramData\Apple Computer
2010-12-18 18:50:52 ----D---- C:\Program Files\Common Files\Apple
2010-12-18 18:50:38 ----D---- C:\ProgramData\Apple
2010-12-18 18:50:38 ----D---- C:\Program Files\Apple Software Update
2010-12-18 18:39:05 ----SHD---- C:\Windows\Installer
2010-12-18 18:39:04 ----D---- C:\ProgramData\Comodo
2010-12-18 18:39:02 ----A---- C:\Windows\system32\mfc71.dll
2010-12-18 18:39:02 ----A---- C:\Windows\system32\gdiplus.dll
2010-12-18 18:13:05 ----A---- C:\Windows\UC.PIF
2010-12-18 18:13:05 ----A---- C:\Windows\RAR.PIF
2010-12-18 18:13:05 ----A---- C:\Windows\PKZIP.PIF
2010-12-18 18:13:05 ----A---- C:\Windows\PKUNZIP.PIF
2010-12-18 18:13:05 ----A---- C:\Windows\NOCLOSE.PIF
2010-12-18 18:13:05 ----A---- C:\Windows\LHA.PIF
2010-12-18 18:13:05 ----A---- C:\Windows\ARJ.PIF
2010-12-18 18:07:02 ----N---- C:\Windows\system32\MpSigStub.exe
2010-12-18 18:03:10 ----D---- C:\Tools
2010-12-18 17:56:47 ----D---- C:\Users\Cody\AppData\Roaming\Mozilla
2010-12-18 17:56:21 ----D---- C:\Internet
2010-12-18 17:44:57 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-12-18 17:42:49 ----D---- C:\Users\Cody\AppData\Roaming\Identities
2010-12-18 17:42:12 ----SD---- C:\Users\Cody\AppData\Roaming\Microsoft
2010-12-18 17:42:12 ----D---- C:\Users\Cody\AppData\Roaming\Media Center Programs
2010-12-18 17:41:46 ----SHD---- C:\Recovery
2010-12-18 17:34:36 ----D---- C:\Windows\SoftwareDistribution
2010-12-18 17:32:31 ----D---- C:\Windows\Prefetch
2010-12-18 17:32:03 ----ASH---- C:\pagefile.sys
2010-12-18 17:31:54 ----SHD---- C:\System Volume Information
2010-12-18 17:31:54 ----ASH---- C:\hiberfil.sys

======List of files/folders modified in the last 1 months======

2011-01-10 22:11:33 ----D---- C:\Windows\Temp
2011-01-10 22:11:27 ----RD---- C:\Program Files
2011-01-10 21:36:57 ----D---- C:\Windows\system32\config
2011-01-10 21:21:40 ----D---- C:\Windows\system32\DriverStore
2011-01-10 21:21:40 ----D---- C:\Windows\system32\catroot
2011-01-10 21:21:39 ----D---- C:\Windows\inf
2011-01-10 21:06:34 ----D---- C:\Windows\system32\NDF
2011-01-10 20:57:08 ----D---- C:\Windows\system32\catroot2
2011-01-10 20:56:54 ----D---- C:\Windows
2011-01-10 20:55:35 ----D---- C:\Windows\system32\drivers
2011-01-10 20:05:25 ----HD---- C:\ProgramData
2011-01-10 19:18:24 ----D---- C:\Windows\winsxs
2011-01-10 19:18:09 ----D---- C:\Program Files\Common Files\microsoft shared
2011-01-09 14:29:25 ----SD---- C:\ProgramData\Microsoft
2011-01-09 13:51:51 ----D---- C:\Windows\System32
2011-01-09 11:33:13 ----D---- C:\Windows\Tasks
2011-01-09 11:33:13 ----D---- C:\Windows\system32\wfp
2011-01-09 11:33:12 ----D---- C:\Windows\system32\wbem
2011-01-09 11:31:54 ----D---- C:\Windows\system32\CodeIntegrity
2011-01-09 11:31:50 ----D---- C:\Windows\registration
2011-01-09 01:18:26 ----D---- C:\Windows\system32\Tasks
2011-01-02 12:14:43 ----RSD---- C:\Windows\assembly
2011-01-02 12:14:40 ----D---- C:\Windows\Microsoft.NET
2011-01-02 11:52:50 ----SHD---- C:\$Recycle.Bin
2011-01-02 11:52:33 ----RD---- C:\Users
2010-12-30 16:04:16 ----D---- C:\Program Files\Common Files
2010-12-30 16:02:55 ----RSD---- C:\Windows\Fonts
2010-12-30 10:30:14 ----D---- C:\Windows\system32\drivers\etc
2010-12-28 14:41:52 ----D---- C:\Windows\Help
2010-12-27 15:38:30 ----D---- C:\Windows\system32\cs-CZ
2010-12-26 22:32:59 ----D---- C:\Windows\Logs
2010-12-24 11:51:58 ----D---- C:\Windows\system32\drivers\UMDF
2010-12-24 10:51:20 ----D---- C:\Windows\system32\wdi
2010-12-23 00:06:22 ----D---- C:\Windows\system
2010-12-20 14:49:58 ----D---- C:\Windows\rescache
2010-12-19 22:52:00 ----D---- C:\Windows\ShellNew
2010-12-19 13:05:40 ----D---- C:\Windows\Downloaded Program Files
2010-12-19 09:42:36 ----RSD---- C:\Windows\Media
2010-12-19 09:42:27 ----D---- C:\Windows\twain_32
2010-12-19 02:30:32 ----D---- C:\Windows\Setup
2010-12-18 22:46:06 ----D---- C:\Windows\system32\LogFiles
2010-12-18 20:53:03 ----D---- C:\Windows\system32\en-US
2010-12-18 20:47:48 ----D---- C:\Windows\AppPatch
2010-12-18 20:26:04 ----D---- C:\Windows\system32\migration
2010-12-18 20:26:04 ----D---- C:\Windows\ehome
2010-12-18 20:26:04 ----D---- C:\Program Files\Windows Mail
2010-12-18 20:26:04 ----D---- C:\Program Files\Internet Explorer
2010-12-18 20:26:02 ----D---- C:\Windows\system32\Boot
2010-12-18 20:26:02 ----D---- C:\Program Files\Windows Media Player
2010-12-18 20:25:57 ----D---- C:\Program Files\Windows Sidebar
2010-12-18 20:25:56 ----D---- C:\Program Files\Windows Journal
2010-12-18 20:25:56 ----D---- C:\Program Files\DVD Maker
2010-12-18 20:25:56 ----D---- C:\Program Files\Common Files\System
2010-12-18 20:25:55 ----D---- C:\Windows\servicing
2010-12-18 20:25:55 ----D---- C:\Program Files\Windows Photo Viewer
2010-12-18 20:25:55 ----D---- C:\Program Files\Windows Defender
2010-12-18 20:25:53 ----D---- C:\Windows\IME
2010-12-18 20:25:50 ----D---- C:\Windows\system32\winrm
2010-12-18 20:25:50 ----D---- C:\Windows\PolicyDefinitions
2010-12-18 20:25:49 ----D---- C:\Windows\system32\sysprep
2010-12-18 20:25:49 ----D---- C:\Windows\system32\slmgr
2010-12-18 20:25:49 ----D---- C:\Windows\system32\oobe
2010-12-18 20:25:49 ----D---- C:\Windows\system32\migwiz
2010-12-18 20:25:32 ----D---- C:\Windows\system32\WCN
2010-12-18 20:25:32 ----D---- C:\Windows\system32\MUI
2010-12-18 20:25:32 ----D---- C:\Windows\system32\Dism
2010-12-18 20:25:28 ----D---- C:\Windows\system32\Printing_Admin_Scripts
2010-12-18 20:25:26 ----D---- C:\Windows\system32\com
2010-12-18 18:55:44 ----D---- C:\Windows\debug
2010-12-18 18:06:51 ----D---- C:\Windows\system32\restore
2010-12-18 17:41:50 ----A---- C:\Windows\system32\systemcpl.dll
2010-12-18 17:41:50 ----A---- C:\Windows\system32\slwga.dll
2010-12-18 17:32:28 ----D---- C:\Windows\CSC

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 EUBAKUP;EUBAKUP; C:\Windows\system32\drivers\eubakup.sys [2010-11-27 31112]
R0 EUFS;EUFS; C:\Windows\system32\drivers\eufs.sys [2010-11-27 21896]
R0 hotcore3;hc3ServiceName; C:\Windows\system32\DRIVERS\hotcore3.sys [2010-08-25 56208]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-01-02 691696]
R1 AppleCharger;AppleCharger; C:\Windows\system32\DRIVERS\AppleCharger.sys [2010-03-01 18472]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 EUDSKACS;EUDSKACS; \??\C:\Windows\system32\drivers\eudskacs.sys [2010-11-27 15240]
R1 Uim_IM;UIM Drive Backup Image Plugin; C:\Windows\System32\Drivers\Uim_IM.sys [2010-08-25 395464]
R1 UimBus;Universal Image Mounter Controller; C:\Windows\system32\DRIVERS\UimBus.sys [2010-08-25 37080]
R1 vwififlt;Virtual WiFi Filter Driver; C:\Windows\system32\DRIVERS\vwififlt.sys [2009-07-14 48128]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 dgderdrv;dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [2010-10-25 18120]
R3 EuDisk;EASEUS Disk Enumerator; C:\Windows\system32\DRIVERS\EuDisk.sys [2010-11-27 188296]
R3 FsUsbExDisk;FsUsbExDisk; \??\C:\Windows\system32\FsUsbExDisk.SYS [2010-10-25 36640]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2010-01-19 2991328]
R3 IT9135BDA;IT9135 BDA Devices; C:\Windows\System32\Drivers\IT9135BDA.sys [2010-12-19 94336]
R3 nusb3hub;NEC Electronics USB 3.0 Hub Driver; C:\Windows\system32\DRIVERS\nusb3hub.sys [2009-10-26 58240]
R3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver; C:\Windows\system32\DRIVERS\nusb3xhc.sys [2009-10-26 136704]
R3 P17;SB Live! 24-bit; C:\Windows\system32\drivers\P17.sys [2009-08-03 1148416]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-11-27 233472]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter; C:\Windows\system32\DRIVERS\RTL8192su.sys [2010-01-18 583680]
S3 af3d9hkx;af3d9hkx; C:\Windows\system32\drivers\af3d9hkx.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 epmntdrv;epmntdrv; \??\C:\Windows\system32\epmntdrv.sys [2010-07-15 14216]
S3 EuGdiDrv;EuGdiDrv; \??\C:\Windows\system32\EuGdiDrv.sys [2010-07-15 8456]
S3 fssfltr;FssFltr; C:\Windows\system32\DRIVERS\fssfltr.sys [2010-09-23 39272]
S3 gdrv;gdrv; \??\C:\Windows\gdrv.sys []
S3 GMSIPCI;GMSIPCI; \??\H:\INSTALL\GMSIPCI.SYS []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 ss_bbus;SAMSUNG USB Mobile Device (WDM); C:\Windows\system32\DRIVERS\ss_bbus.sys [2010-08-27 98432]
S3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter); C:\Windows\system32\DRIVERS\ss_bmdfl.sys [2010-08-27 14848]
S3 ss_bmdm;SAMSUNG USB Mobile Modem; C:\Windows\system32\DRIVERS\ss_bmdm.sys [2010-08-27 123648]
S3 ss_bserd;SAMSUNG USB Mobile Logging Driver; C:\Windows\system32\DRIVERS\ss_bserd.sys [2010-08-27 100224]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
S3 WinUsb;WinUsb; C:\Windows\system32\DRIVERS\WinUsb.sys [2009-07-14 34944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 BCUService;Browser Configuration Utility Service; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-11-18 307200]
R2 dgdersvc;Device Error Recovery Service; C:\Windows\system32\dgdersvc.exe [2010-10-25 95568]
R2 FsUsbExService;FsUsbExService; C:\Windows\system32\FsUsbExService.Exe [2010-10-25 217088]
R2 GladFileMonSvc;GladFileMonSvc; C:\Internet\Gladinet Cloud Desktop\GladFileMonSvc.exe [2010-11-17 27496]
R2 IJPLMSVC;Canon Inkjet Printer/Scanner/Fax Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2009-02-10 116104]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2010-07-09 129640]
R2 Realtek11nSU;Realtek11nSU; C:\Program Files\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2009-12-07 40960]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2010-09-21 1710464]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-12-18 79360]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-12-18 79360]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-12-30 651720]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 SwitchBoard;SwitchBoard; C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S4 EaseUs Agent;EaseUs Agent; C:\Tools\EASEUS Todo Backup 2.0 Beta\bin\Agent.exe [2010-11-27 55176]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 wlcrasvc;Windows Live Mesh remote connections service; C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]

-----------------EOF-----------------

[Roli]

Zdravím, tohle fixni v HJT :

O2 - BHO: (no name) - AutorunsDisabled - (no file)
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [WinSys2] C:\Windows\system32\startup.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Grafika\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Grafika\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [RockMelt Update] "C:\Users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe" /c

HJT najdeš zde :

C:\Program Files\trend micro\Cody.exe

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Tohle :

C:\Windows\system32\startup.exe

otestuj na VIRUSTOTAL

(po načtení stránky klikni na tlačítko Procházet, najdi cestu k výše zmíněnému souboru a klikni na tlačítko Odeslat soubor

trvá to okolo deseti minut pak mi sem zkopíruj link, to je ten řádek nahoře v prohlížeči)

Pokud ti to napíše že soubor již byl testován nech otestovat znovu.

[Cody-cz]

Díky, vše jsem provedl a odkaz na Virus Total je zde http://www.virustotal.com/file-scan/rep ... 1294781267

[Roli]

Nyní použijeme větší kalibr tak že pozorně číst, protože tenhle softík netolruje chyby.

Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.

[Cody-cz]

Napsalo mi to Instalace se nezdařila. Poté se to spustilo a protože mám nainstalované Comodo Internet Security objevilo se mi toto.

Centrum jsem vypnul, ale nevím jak vypnut rezidentní procesy na pozadí? To mám CIS odinstalovat nebo restartovat do nozové režímu a pustit to tam?

//edit: Spustil jsem v nouzovém režimu, sice to hlásilo opět rezidentně CIS, ale nějak to proběhlo. Log níže:

ComboFix 11-01-10.08 - Cody 11.01.2011 23:10:17.2.4 - x86 MINIMAL
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1033.18.3575.2941 [GMT 1:00]
Spuštěný z: c:\users\Cody\Desktop\ComboFix.exe
AV: COMODO Antivirus *Enabled/Updated* {675CEE69-9702-A524-3989-6D7CC8BF3695}
FW: COMODO Firewall *Enabled* {5F676F4C-DD6D-A47C-12D6-C449366C71EE}
SP: COMODO Defense+ *Enabled/Updated* {DC3D0F8D-B138-AAAA-0339-560EB3387C28}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-12-11 do 2011-01-11 )))))))))))))))))))))))))))))))
.

2011-01-11 22:12 . 2011-01-11 22:12 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2011-01-11 22:12 . 2011-01-11 22:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-10 23:04 . 2011-01-10 23:04 -------- d-----w- C:\VritualRoot
2011-01-10 22:25 . 2011-01-10 22:25 -------- d-----w- c:\program files\COMODO
2011-01-10 22:07 . 2011-01-10 22:07 -------- d-----w- c:\program files\CCleaner
2011-01-10 21:11 . 2011-01-11 21:21 -------- d-----w- c:\program files\trend micro
2011-01-10 21:11 . 2011-01-10 21:12 -------- d-----w- C:\rsit
2011-01-09 13:04 . 2011-01-09 13:04 -------- d-----w- c:\program files\Cisco
2011-01-09 12:51 . 2010-01-18 06:10 583680 ----a-w- c:\windows\system32\drivers\RTL8192su.sys
2011-01-09 12:51 . 2009-10-08 03:42 614400 ------r- c:\windows\system32\Rtlihvs.dll
2011-01-09 12:51 . 2009-10-08 03:42 614400 ------r- c:\windows\Rtlihvs.dll
2011-01-09 12:51 . 2009-10-08 03:42 380928 ------r- c:\windows\system32\RtlUI2.exe
2011-01-09 12:51 . 2009-10-08 03:42 380928 ------r- c:\windows\RtlUI2.exe
2011-01-09 12:51 . 2009-10-08 03:42 188416 ------r- c:\windows\system32\RTLExtUI.dll
2011-01-09 12:51 . 2009-10-08 03:42 188416 ------r- c:\windows\RTLExtUI.dll
2011-01-09 12:51 . 2009-02-05 01:49 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
2011-01-09 11:41 . 2008-01-07 13:29 352 ---ha-w- c:\windows\nod32fixtemdono.reg
2011-01-09 11:10 . 2010-11-16 11:01 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A87278BF-6B4C-49F8-9D24-B52ED46F2667}\mpengine.dll
2011-01-08 17:33 . 2011-01-09 10:31 -------- d-----w- C:\_AcroTemp
2011-01-08 16:13 . 2011-01-08 16:13 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2011-01-07 21:05 . 2011-01-07 21:05 286720 ------w- c:\windows\Setup1.exe
2011-01-07 21:05 . 2011-01-07 21:05 73216 ----a-w- c:\windows\ST6UNST.EXE
2011-01-03 07:34 . 2011-01-03 07:34 -------- d-----w- c:\program files\MSXML 4.0
2011-01-02 12:44 . 2011-01-02 12:44 -------- d-----w- c:\programdata\Canneverbe Limited
2011-01-02 11:14 . 2005-05-26 14:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2011-01-02 11:11 . 2011-01-08 15:55 -------- d-----w- C:\Games
2011-01-02 10:52 . 2011-01-09 10:31 -------- d-----w- c:\users\Administrator
2011-01-02 10:45 . 2011-01-05 12:44 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2011-01-02 10:45 . 2011-01-02 10:45 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-01-02 10:44 . 2011-01-02 10:44 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-12-30 15:24 . 2010-12-30 15:24 -------- d-----w- c:\programdata\FLEXnet
2010-12-30 15:04 . 2010-12-30 15:04 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-12-30 09:48 . 2010-12-30 09:48 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2010-12-30 09:42 . 2010-12-30 09:42 -------- d-----w- c:\program files\Adobe Media Player
2010-12-30 09:40 . 2010-12-30 09:40 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-12-30 09:35 . 2011-01-08 14:49 -------- d-----w- c:\program files\Common Files\Adobe
2010-12-29 00:42 . 2010-12-29 00:42 285480 ----a-w- c:\windows\system32\guard32.dll
2010-12-29 00:41 . 2011-01-11 16:40 80064 ----a-w- c:\windows\system32\drivers\inspect.sys
2010-12-29 00:41 . 2011-01-11 16:40 35768 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2010-12-29 00:41 . 2011-01-11 16:40 17256 ----a-w- c:\windows\system32\drivers\cmderd.sys
2010-12-29 00:41 . 2011-01-11 16:40 236600 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2010-12-27 09:34 . 2010-12-27 09:34 -------- d-----w- c:\programdata\Skype
2010-12-26 16:22 . 2010-12-26 16:22 -------- d-----w- c:\windows\system32\Adobe
2010-12-24 10:51 . 2010-12-27 11:29 -------- d-----w- c:\program files\Anti-Vibrate Oscar Editor
2010-12-24 10:48 . 2010-08-27 04:32 98432 ----a-w- c:\windows\system32\drivers\ss_bbus.sys
2010-12-24 10:48 . 2010-08-27 04:32 14848 ----a-w- c:\windows\system32\drivers\ss_bmdfl.sys
2010-12-24 10:48 . 2010-08-27 04:32 12416 ----a-w- c:\windows\system32\drivers\ss_bcmnt.sys
2010-12-24 10:48 . 2010-08-27 04:32 12416 ----a-w- c:\windows\system32\drivers\ss_bcm.sys
2010-12-24 10:48 . 2010-08-27 04:32 123648 ----a-w- c:\windows\system32\drivers\ss_bmdm.sys
2010-12-24 10:48 . 2010-08-27 04:32 12288 ----a-w- c:\windows\system32\drivers\ss_bwhnt.sys
2010-12-24 10:48 . 2010-08-27 04:32 12288 ----a-w- c:\windows\system32\drivers\ss_bwh.sys
2010-12-24 10:48 . 2010-08-27 04:32 100224 ----a-w- c:\windows\system32\drivers\ss_bserd.sys
2010-12-24 10:47 . 2010-12-24 10:48 -------- d-----w- c:\program files\OscarX7
2010-12-24 10:47 . 2010-10-25 09:03 36640 ----a-w- c:\windows\system32\FsUsbExDisk.Sys
2010-12-24 10:47 . 2010-10-25 09:03 217088 ----a-w- c:\windows\system32\FsUsbExService.Exe
2010-12-24 10:47 . 2010-10-25 09:03 110592 ----a-w- c:\windows\system32\FsUsbExDevice.Dll
2010-12-24 10:46 . 2010-12-24 10:47 -------- d-----w- c:\program files\PC Connectivity Solution
2010-12-24 10:46 . 2010-12-24 10:46 -------- d-----w- c:\program files\MarkAny
2010-12-24 10:46 . 2010-12-24 10:47 -------- d-----w- c:\programdata\Samsung
2010-12-24 10:45 . 2010-12-24 10:46 -------- d-----w- c:\program files\Common Files\Samsung
2010-12-22 23:06 . 2009-09-23 15:48 431936 ----a-w- c:\windows\system32\msvcp100.dll
2010-12-22 23:06 . 2009-09-23 15:48 431936 ----a-w- c:\windows\system\msvcp100.dll
2010-12-22 07:45 . 2010-12-22 07:45 -------- d-----w- C:\Gladinet
2010-12-21 08:06 . 2010-12-21 08:06 -------- d-----w- c:\programdata\scripts
2010-12-20 22:08 . 2010-11-27 18:54 21896 ----a-w- c:\windows\system32\drivers\eufs.sys
2010-12-20 22:08 . 2010-11-27 18:54 15240 ----a-w- c:\windows\system32\drivers\eudskacs.sys
2010-12-20 22:08 . 2010-11-27 18:54 31112 ----a-w- c:\windows\system32\drivers\eubakup.sys
2010-12-20 22:08 . 2010-11-27 18:54 188296 ----a-w- c:\windows\system32\drivers\EuDisk.sys
2010-12-20 22:08 . 2010-11-27 18:54 18824 ----a-w- c:\windows\system32\fbnative.exe
2010-12-19 21:29 . 2011-01-09 10:31 -------- d-----w- c:\users\Prastaří
2010-12-19 20:16 . 2010-12-19 20:16 -------- d-----w- c:\programdata\CanonIJ
2010-12-19 17:51 . 2010-12-19 17:51 -------- d-----w- c:\programdata\launcher
2010-12-19 17:18 . 2010-12-19 17:18 -------- d-----w- c:\windows\cs
2010-12-19 17:12 . 2010-08-25 13:45 56208 ----a-w- c:\windows\system32\drivers\hotcore3.sys
2010-12-19 13:49 . 2010-09-22 23:21 39272 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2010-12-19 13:49 . 2010-12-19 17:12 -------- dc----w- c:\windows\system32\DRVSTORE
2010-12-19 13:48 . 2010-04-24 04:00 272384 ----a-w- c:\windows\system32\SETDFD2.tmp
2010-12-19 13:42 . 2010-12-19 13:42 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-12-19 13:38 . 2010-12-19 13:38 -------- d-----w- c:\windows\PCHEALTH
2010-12-19 13:36 . 2010-12-19 17:18 -------- d-----w- c:\program files\Windows Live
2010-12-19 13:36 . 2009-09-04 16:44 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2010-12-19 13:36 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-12-19 13:36 . 2009-09-04 16:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2010-12-19 13:35 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2010-12-19 13:35 . 2010-12-28 13:50 -------- d-----w- c:\program files\Microsoft Silverlight
2010-12-19 13:34 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\system32\UIRibbon.dll
2010-12-19 13:34 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2010-12-19 13:34 . 2010-10-28 11:23 2217088 ----a-w- c:\windows\system32\BootMan.exe
2010-12-19 13:34 . 2010-07-15 07:44 14848 ----a-w- c:\windows\system32\EuEpmGdi.dll
2010-12-19 13:34 . 2010-07-15 07:44 86408 ----a-w- c:\windows\system32\setupempdrv03.exe
2010-12-19 13:34 . 2010-07-15 07:44 8456 ----a-w- c:\windows\system32\EuGdiDrv.sys
2010-12-19 13:34 . 2010-07-15 07:44 14216 ----a-w- c:\windows\system32\epmntdrv.sys
2010-12-19 13:33 . 2010-05-23 10:11 196608 ----a-w- c:\windows\system32\mfreadwrite.dll
2010-12-19 13:33 . 2010-05-23 10:11 3181568 ----a-w- c:\windows\system32\mf.dll
2010-12-19 13:33 . 2010-05-23 10:15 1619456 ----a-w- c:\windows\system32\WMVDECOD.DLL
2010-12-19 13:31 . 2010-12-19 13:31 -------- d-----w- c:\program files\Common Files\Windows Live
2010-12-19 09:46 . 2010-12-19 09:46 -------- d-----w- c:\programdata\Plugins
2010-12-19 09:40 . 2011-01-07 16:19 -------- d-----w- C:\Grafika
2010-12-19 08:55 . 2007-07-25 08:21 1781760 ----a-w- c:\windows\system32\msicpl.dll
2010-12-19 08:55 . 2007-07-25 08:58 483328 ----a-w- c:\windows\system32\HookShield.dll
2010-12-19 08:55 . 2006-11-06 02:54 134504 ----a-w- c:\windows\system32\smdll.dll
2010-12-19 08:55 . 2006-01-02 17:45 40960 ----a-w- c:\windows\system32\executeosd.exe
2010-12-19 08:55 . 2006-11-06 02:41 36200 ----a-w- c:\windows\system32\Auxiliary.dll
2010-12-19 08:55 . 2007-05-28 15:13 130048 ----a-w- c:\windows\system32\MadCHook.dll
2010-12-19 08:55 . 2010-07-10 04:37 604776 ----a-w- c:\windows\system32\nvudisp.exe-nv32521
2010-12-19 08:55 . 2006-11-02 12:02 188416 ----a-w- c:\windows\system32\sysinfo.dll
2010-12-19 08:55 . 2007-07-25 08:58 462848 ----a-w- c:\windows\system32\HookMap.dll
2010-12-19 08:48 . 2010-07-10 04:37 604776 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-12-19 08:42 . 2010-12-19 08:42 -------- d-----w- c:\program files\Common Files\CANON
2010-12-19 08:41 . 2010-12-19 08:41 -------- d--h--w- c:\programdata\CanonBJ
2010-12-19 08:41 . 2010-04-24 04:00 70656 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPP9W.DLL
2010-12-19 08:41 . 2010-04-24 04:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPD9W.DLL
2010-12-19 08:41 . 2009-03-17 04:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\1_CNMPD9W.DLL
2010-12-19 08:40 . 2010-12-19 08:40 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2010-12-19 08:40 . 2009-04-03 15:00 1310720 ----a-w- c:\windows\system32\CNC250C.dll
2010-12-19 08:40 . 2009-04-03 14:59 110592 ----a-w- c:\windows\system32\CNC250I.dll
2010-12-19 08:40 . 2009-04-03 14:57 106496 ----a-w- c:\windows\system32\CNC250U.dll
2010-12-19 08:40 . 2009-03-11 10:34 303104 ----a-w- c:\windows\system32\CNC250L.dll
2010-12-19 08:40 . 2008-08-25 17:02 15872 ----a-w- c:\windows\system32\CNHMCA.dll
2010-12-19 08:40 . 2009-03-17 04:00 272384 ------w- c:\windows\system32\CNMLM9W.DLL
2010-12-19 08:40 . 2009-02-04 13:17 90112 ----a-w- c:\windows\system32\CNC250O.dll
2010-12-19 08:40 . 2009-03-18 09:09 178176 ----a-w- c:\windows\system32\CNMIU9W.DLL
2010-12-19 08:36 . 2010-12-19 08:43 -------- d-----w- c:\program files\Canon
2010-12-19 08:34 . 2010-12-19 08:34 356 ----a-w- c:\windows\system32\AF15IRTBL.bin
2010-12-19 08:34 . 2010-12-19 08:34 94336 ----a-w- c:\windows\system32\drivers\IT9135BDA.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-18 16:41 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-12-18 16:41 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-10 01:54 . 2010-11-10 01:54 49016 ----a-w- c:\windows\system32\sirenacm.dll
2010-11-10 01:28 . 2010-11-10 01:28 301936 ----a-w- c:\windows\WLXPGSS.SCR
2010-11-02 04:39 . 2010-12-18 17:53 749056 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-02 04:34 . 2010-12-18 17:53 179712 ----a-w- c:\windows\system32\schtasks.exe
2010-10-25 09:09 . 2010-10-25 09:09 974848 ----a-w- c:\windows\system32\cis-2.4.dll
2010-10-25 09:09 . 2010-10-25 09:09 81920 ----a-w- c:\windows\system32\issacapi_bs-2.3.dll
2010-10-25 09:09 . 2010-10-25 09:09 65536 ----a-w- c:\windows\system32\issacapi_pe-2.3.dll
2010-10-25 09:09 . 2010-10-25 09:09 57344 ----a-w- c:\windows\system32\MTXSYNCICON.dll
2010-10-25 09:09 . 2010-10-25 09:09 57344 ----a-w- c:\windows\system32\MK_Lyric.dll
2010-10-25 09:09 . 2010-10-25 09:09 57344 ----a-w- c:\windows\system32\issacapi_se-2.3.dll
2010-10-25 09:09 . 2010-10-25 09:09 569344 ----a-w- c:\windows\system32\muzdecode.ax
2010-10-25 09:09 . 2010-10-25 09:09 491520 ----a-w- c:\windows\system32\muzapp.dll
2010-10-25 09:09 . 2010-10-25 09:09 49152 ----a-w- c:\windows\system32\MaJGUILib.dll
2010-10-25 09:09 . 2010-10-25 09:09 45056 ----a-w- c:\windows\system32\MaXMLProto.dll
2010-10-25 09:09 . 2010-10-25 09:09 45056 ----a-w- c:\windows\system32\MACXMLProto.dll
2010-10-25 09:09 . 2010-10-25 09:09 413696 ----a-w- c:\programdata\Microsoft\Windows\Templates\msvcp60.dll
2010-10-25 09:09 . 2010-10-25 09:09 40960 ----a-w- c:\windows\system32\MTTELECHIP.dll
2010-10-25 09:09 . 2010-10-25 09:09 40960 ----a-w- c:\windows\system32\MAMACExtract.dll
2010-10-25 09:09 . 2010-10-25 09:09 352256 ----a-w- c:\windows\system32\MSLUR71.dll
2010-10-25 09:09 . 2010-10-25 09:09 258048 ----a-w- c:\windows\system32\muzoggsp.ax
2010-10-25 09:09 . 2010-10-25 09:09 245760 ----a-w- c:\windows\system32\MSCLib.dll
2010-10-25 09:09 . 2010-10-25 09:09 24576 ----a-w- c:\windows\system32\MASetupCleaner.exe
2010-10-25 09:09 . 2010-10-25 09:09 243576 ----a-w- c:\windows\system32\MASetupCaller.dll
2010-10-25 09:09 . 2010-10-25 09:09 23040 ----a-w- c:\programdata\Microsoft\Windows\Templates\psapi.dll
2010-10-25 09:09 . 2010-10-25 09:09 200704 ----a-w- c:\windows\system32\muzwmts.dll
2010-10-25 09:09 . 2010-10-25 09:09 155648 ----a-w- c:\windows\system32\MSFLib.dll
2010-10-25 09:09 . 2010-10-25 09:09 135168 ----a-w- c:\windows\system32\muzaf1.dll
2010-10-25 09:09 . 2010-10-25 09:09 131072 ----a-w- c:\windows\system32\muzmpgsp.ax
2010-10-25 09:09 . 2010-10-25 09:09 122880 ----a-w- c:\windows\system32\muzeffect.ax
2010-10-25 09:09 . 2010-10-25 09:09 118784 ----a-w- c:\windows\system32\MaDRM.dll
2010-10-25 09:09 . 2010-10-25 09:09 110592 ----a-w- c:\windows\system32\muzmp4sp.ax
2010-10-25 09:09 . 2010-10-25 09:09 511328 ----a-w- c:\windows\system32\Synchronization2.dll
2010-10-25 09:09 . 2010-10-25 09:09 288608 ----a-w- c:\windows\system32\Microsoft.Synchronization.dll
2010-10-25 09:09 . 2010-10-25 09:09 253280 ----a-w- c:\windows\system32\MetaStore2.dll
2010-10-25 09:07 . 2010-10-25 09:07 95568 ----a-w- c:\windows\system32\dgdersvc.exe
2010-10-25 09:07 . 2010-10-25 09:07 763216 ----a-w- c:\windows\system32\dgderapi.dll
2010-10-25 09:07 . 2010-10-25 09:07 319456 ----a-w- c:\programdata\Microsoft\Windows\Templates\DIFxAPI.dll
2010-10-25 09:07 . 2010-10-25 09:07 18120 ----a-w- c:\windows\system32\drivers\dgderdrv.sys
2010-10-22 11:43 . 2010-10-22 11:43 499712 ----a-w- c:\windows\system32\msvcp71.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-09-28 1400712]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2010-09-28 1400712]

[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay]
@="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}"
[HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}]
2010-11-17 21:06 193896 ----a-w- c:\internet\Gladinet Cloud Desktop\GlOverlayIcon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading]
@="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}"
[HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}]
2010-11-17 21:10 193896 ----a-w- c:\internet\Gladinet Cloud Desktop\GlOverlayIconU.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FeedDemon"="c:\internet\FeedDemon\FeedDemon.exe" [2010-12-16 7503360]
"Google Update"="c:\users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-12-23 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCU"="c:\program files\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-01-19 8452640]
"NUSB3MON"="c:\program files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-10-21 106496]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"COMODO Internet Security"="c:\tools\COMODO Internet Security\COMODO\COMODO Internet Security\cfp.exe" [2011-01-11 2548040]
"CanonMyPrinter"="c:\program files\Canon\MyPrinter\BJMyPrt.exe" [2009-07-27 1983816]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"GrpConv"="grpconv -o" [X]

c:\users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Launchy.lnk - c:\tools\Launchy\Launchy.exe [2010-12-20 405504]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Gladinet Cloud Desktop.lnk - c:\internet\Gladinet Cloud Desktop\GladLauncher.exe [2010-11-17 87400]
MultiMon Taskbar.lnk - c:\tools\MMTaskbar\MultiMon.exe [2010-12-29 294912]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\prwntdrv]
@=""

R0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-01-02 691696]
R1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2010-03-01 18472]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2011-01-11 236600]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2011-01-11 35768]
R1 EUDSKACS;EUDSKACS;c:\windows\system32\drivers\eudskacs.sys [2010-11-27 15240]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
R2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
R2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO GeekBuddy\CLPSLS.exe [2010-11-19 151432]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 95568]
R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-10-25 217088]
R2 GladFileMonSvc;GladFileMonSvc;c:\internet\Gladinet Cloud Desktop\GladFileMonSvc.exe [2010-11-17 27496]
R2 Realtek11nSU;Realtek11nSU;c:\program files\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2009-12-07 40960]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-12-18 79360]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-12-18 79360]
R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 18120]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2010-07-15 14216]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2010-07-15 8456]
R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2010-10-25 36640]
R3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys [2010-12-19 94336]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-11-27 233472]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2010-01-18 583680]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2010-08-27 98432]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2010-08-27 14848]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2010-08-27 123648]
R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys [2010-08-27 100224]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R4 EaseUs Agent;EaseUs Agent;c:\tools\EASEUS Todo Backup 2.0 Beta\bin\Agent.exe [2010-11-27 55176]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 EUBAKUP;EUBAKUP;c:\windows\system32\drivers\eubakup.sys [2010-11-27 31112]
S0 EUFS;EUFS;c:\windows\system32\drivers\eufs.sys [2010-11-27 21896]
S0 hotcore3;hc3ServiceName;c:\windows\system32\DRIVERS\hotcore3.sys [2010-08-25 56208]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2011-01-11 17256]
S3 EuDisk;EASEUS Disk Enumerator;c:\windows\system32\DRIVERS\EuDisk.sys [2010-11-27 188296]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2009-10-26 58240]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2009-10-26 136704]

.
Obsah adresáře 'Naplánované úlohy'

2011-01-11 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001UA.job
- c:\users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-23 15:38]

2011-01-09 c:\windows\Tasks\Paragon Archive name diff_080111202444901.job
- c:\tools\Backup and Recovery 2010 Free Advanced\program\scripts.exe [2010-08-25 13:45]

2011-01-11 c:\windows\Tasks\RockMeltUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001Core.job
- c:\users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe [2011-01-09 00:18]

2011-01-11 c:\windows\Tasks\RockMeltUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001UA.job
- c:\users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe [2011-01-09 00:18]
.
.
------- Doplňkový sken -------
.
uInternet Settings,ProxyServer = proxy.ataxo.com:8080
IE: Prevést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
FF - ProfilePath - c:\users\Cody\AppData\Roaming\Mozilla\Firefox\Profiles\038txsvi.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\internet\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\internet\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Echofon: twitternotifier@naan.net - %profile%\extensions\twitternotifier@naan.net
FF - Ext: DownThemAll! *nightly*: dta@downthemall.net - %profile%\extensions\dta@downthemall.net
FF - Ext: Element Hiding Helper for Adblock Plus: elemhidehelper@adblockplus.org - %profile%\extensions\elemhidehelper@adblockplus.org
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - Ext: Xmarks: foxmarks@kei.com - %profile%\extensions\foxmarks@kei.com
FF - Ext: Read It Later: isreaditlater@ideashower.com - %profile%\extensions\isreaditlater@ideashower.com
FF - Ext: Organize Status Bar: {35106bca-6c78-48c7-ac28-56df30b51d2c} - %profile%\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2c}
FF - Ext: HttpFox: {4093c4de-454a-4329-8aff-c6b0b123c386} - %profile%\extensions\{4093c4de-454a-4329-8aff-c6b0b123c386}
FF - Ext: Google Shortcuts: {5C46D283-ABDE-4dce-B83C-08881401921C} - %profile%\extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: Pixlr Grabber: {d47a9f51-8281-43fa-f450-f28ef8735e9a} - %profile%\extensions\{d47a9f51-8281-43fa-f450-f28ef8735e9a}
FF - Ext: Download Statusbar: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} - %profile%\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: Web Developer: {c45c406e-ab73-11d8-be73-000a95be3b12} - %profile%\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
FF - Ext: All-in-One Sidebar: {097d3191-e6fa-4728-9826-b533d755359d} - %profile%\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
FF - Ext: MeasureIt: {75CEEE46-9B64-46f8-94BF-54012DE155F0} - %profile%\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}
FF - Ext: MR Tech Toolkit: {9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC} - %profile%\extensions\{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}
FF - Ext: Add-on Collector: sharing@addons.mozilla.org - %profile%\extensions\sharing@addons.mozilla.org
FF - Ext: App Tabs: apptabs@frankyan.com - %profile%\extensions\apptabs@frankyan.com
FF - Ext: Shorten URL: ShortenURL@loucypher - %profile%\extensions\ShortenURL@loucypher
FF - Ext: GA?: {7c6d11c6-41b5-11dc-8314-0800200c9a66} - %profile%\extensions\{7c6d11c6-41b5-11dc-8314-0800200c9a66}
FF - Ext: WCAG Contrast checker: colorchecker@colorcheckerniquelao.net - %profile%\extensions\colorchecker@colorcheckerniquelao.net
FF - Ext: SEOProfesional: seo@profesional - %profile%\extensions\seo@profesional
FF - Ext: DT Whois: beysim@beysim.net - %profile%\extensions\beysim@beysim.net
FF - Ext: Phoenity Next (formerly Phoenity Reborn): {069FB356-C69F-7349-D092-AB28AF836D0E} - %profile%\extensions\{069FB356-C69F-7349-D092-AB28AF836D0E}
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
.
------- Asociace souborů -------
.
txtfile=c:\windows\NOTEPAD.EXE %1
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

HKLM-RunOnce-<NO NAME> - (no file)


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,f7,26,52,40,9a,92,e0,48,80,20,ae,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,f7,26,52,40,9a,92,e0,48,80,20,ae,\

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(1104)
c:\internet\Gladinet Cloud Desktop\GlOverlayIcon.dll
c:\internet\Gladinet Cloud Desktop\GlOverlayIconU.dll

- - - - - - - > 'Explorer.exe'(508)
c:\internet\Gladinet Cloud Desktop\GlOverlayIcon.dll
c:\internet\Gladinet Cloud Desktop\GlOverlayIconU.dll
.
Celkový čas: 2011-01-11 23:13:55
ComboFix-quarantined-files.txt 2011-01-11 22:13

Před spuštěním: Volných bajtů: 230 194 319 360
Po spuštění: Volných bajtů: 230 133 702 656

- - End Of File - - 14DA8322EFADA6136932DF9E70E5C065

[Roli]

Nic ze zabezpečení odinstalovat nemusíš, prostě tu hlášku ignoruj.

Pokud jsi tak ještě neučinil, přesuň Combofix na plochu

otevři si Poznámkový blok

do něj zkopíruj skript z následujícího okna:

Kód: Vybrat vše

File::  
c:\windows\nod32fixtemdono.reg
c:\windows\system32\SETDFD2.tmp

Folder::
c:\program files\Ask.com

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-
[-HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[-HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"=-

RegLock::
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]

ulož Tebou vytvořený TXT soubor jako CFScript.txt na plochu,

po uložení uchop vytvořený skript levým myšítkem a přesuň ho nad ikonu Combofixu, kde ho upustíš:



Po aplikaci na Tebe vypadne další log, zkopíruj ho sem

Upozornění : může se stát, že po aplikaci skriptu a restartu Windows nenaběhnou,

v tom případě znovu restartuj a přitom mačkej F8 poté zvol Poslední známou funkční konfiguraci

[Cody-cz]

Můžu se zeptata, co konkrétně ten skript dělá? Tuším něco o mazání Ask toolbaru, ale víc jsme neodhadl.

[Roli]

Smaže to co jsem tam napsal (Ask toolbar, crack na Nod, nepořádek v registrech).

[Cody-cz]

Díky za vysvětlení, provedl jsem a výsledek je zde:

ComboFix 11-01-10.08 - Cody 15.01.2011 9:36.3.4 - x86
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1033.18.3575.2167 [GMT 1:00]
Spuštěný z: c:\users\Cody\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\Cody\Desktop\CFScript.txt.txt
AV: COMODO Antivirus *Enabled/Updated* {675CEE69-9702-A524-3989-6D7CC8BF3695}
FW: COMODO Firewall *Enabled* {5F676F4C-DD6D-A47C-12D6-C449366C71EE}
SP: COMODO Defense+ *Enabled/Updated* {DC3D0F8D-B138-AAAA-0339-560EB3387C28}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

FILE ::
"c:\windows\nod32fixtemdono.reg"
"c:\windows\system32\SETDFD2.tmp"
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Ask.com
c:\program files\Ask.com\cobrand.ico
c:\program files\Ask.com\config.xml
c:\program files\Ask.com\favicon.ico
c:\program files\Ask.com\fv_8e1c.ico
c:\program files\Ask.com\GenericAskToolbar.dll
c:\program files\Ask.com\mupcfg.xml
c:\program files\Ask.com\SaUpdate.exe
c:\program files\Ask.com\UpdateTask.exe
c:\windows\nod32fixtemdono.reg
c:\windows\system32\SETDFD2.tmp

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-12-15 do 2011-01-15 )))))))))))))))))))))))))))))))
.

2011-01-15 08:49 . 2011-01-15 08:49 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2011-01-15 08:49 . 2011-01-15 08:49 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-01-10 23:04 . 2011-01-10 23:04 -------- d-----w- C:\VritualRoot
2011-01-10 22:25 . 2011-01-10 22:25 -------- d-----w- c:\program files\COMODO
2011-01-10 22:07 . 2011-01-10 22:07 -------- d-----w- c:\program files\CCleaner
2011-01-10 21:11 . 2011-01-11 21:21 -------- d-----w- c:\program files\trend micro
2011-01-10 21:11 . 2011-01-10 21:12 -------- d-----w- C:\rsit
2011-01-09 13:04 . 2011-01-09 13:04 -------- d-----w- c:\program files\Cisco
2011-01-09 12:51 . 2010-01-18 06:10 583680 ----a-w- c:\windows\system32\drivers\RTL8192su.sys
2011-01-09 12:51 . 2009-10-08 03:42 614400 ------r- c:\windows\system32\Rtlihvs.dll
2011-01-09 12:51 . 2009-10-08 03:42 614400 ------r- c:\windows\Rtlihvs.dll
2011-01-09 12:51 . 2009-10-08 03:42 380928 ------r- c:\windows\system32\RtlUI2.exe
2011-01-09 12:51 . 2009-10-08 03:42 380928 ------r- c:\windows\RtlUI2.exe
2011-01-09 12:51 . 2009-10-08 03:42 188416 ------r- c:\windows\system32\RTLExtUI.dll
2011-01-09 12:51 . 2009-10-08 03:42 188416 ------r- c:\windows\RTLExtUI.dll
2011-01-09 12:51 . 2009-02-05 01:49 451072 ----a-w- c:\windows\system32\ISSRemoveSP.exe
2011-01-09 11:10 . 2010-11-16 11:01 6273872 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{A87278BF-6B4C-49F8-9D24-B52ED46F2667}\mpengine.dll
2011-01-08 17:33 . 2011-01-09 10:31 -------- d-----w- C:\_AcroTemp
2011-01-08 16:13 . 2011-01-08 16:13 98304 ----a-w- c:\windows\system32\CmdLineExt.dll
2011-01-07 21:05 . 2011-01-07 21:05 286720 ------w- c:\windows\Setup1.exe
2011-01-07 21:05 . 2011-01-07 21:05 73216 ----a-w- c:\windows\ST6UNST.EXE
2011-01-03 07:34 . 2011-01-03 07:34 -------- d-----w- c:\program files\MSXML 4.0
2011-01-02 12:44 . 2011-01-02 12:44 -------- d-----w- c:\programdata\Canneverbe Limited
2011-01-02 11:14 . 2005-05-26 14:34 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2011-01-02 11:11 . 2011-01-08 15:55 -------- d-----w- C:\Games
2011-01-02 10:52 . 2011-01-09 10:31 -------- d-----w- c:\users\Administrator
2011-01-02 10:45 . 2011-01-05 12:44 -------- d-----w- c:\program files\DAEMON Tools Toolbar
2011-01-02 10:45 . 2011-01-02 10:45 691696 ----a-w- c:\windows\system32\drivers\sptd.sys
2011-01-02 10:44 . 2011-01-02 10:44 -------- d-----w- c:\programdata\DAEMON Tools Lite
2010-12-30 15:24 . 2010-12-30 15:24 -------- d-----w- c:\programdata\FLEXnet
2010-12-30 15:04 . 2010-12-30 15:04 -------- d-----w- c:\program files\Common Files\Macrovision Shared
2010-12-30 09:48 . 2010-12-30 09:48 -------- d-----w- c:\programdata\regid.1986-12.com.adobe
2010-12-30 09:42 . 2010-12-30 09:42 -------- d-----w- c:\program files\Adobe Media Player
2010-12-30 09:40 . 2010-12-30 09:40 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-12-30 09:35 . 2011-01-08 14:49 -------- d-----w- c:\program files\Common Files\Adobe
2010-12-29 00:42 . 2010-12-29 00:42 285480 ----a-w- c:\windows\system32\guard32.dll
2010-12-29 00:41 . 2011-01-11 16:40 80064 ----a-w- c:\windows\system32\drivers\inspect.sys
2010-12-29 00:41 . 2011-01-11 16:40 35768 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2010-12-29 00:41 . 2011-01-11 16:40 17256 ----a-w- c:\windows\system32\drivers\cmderd.sys
2010-12-29 00:41 . 2011-01-11 16:40 236600 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2010-12-27 09:34 . 2010-12-27 09:34 -------- d-----w- c:\programdata\Skype
2010-12-26 16:22 . 2010-12-26 16:22 -------- d-----w- c:\windows\system32\Adobe
2010-12-24 10:51 . 2010-12-27 11:29 -------- d-----w- c:\program files\Anti-Vibrate Oscar Editor
2010-12-24 10:48 . 2010-08-27 04:32 98432 ----a-w- c:\windows\system32\drivers\ss_bbus.sys
2010-12-24 10:48 . 2010-08-27 04:32 14848 ----a-w- c:\windows\system32\drivers\ss_bmdfl.sys
2010-12-24 10:48 . 2010-08-27 04:32 12416 ----a-w- c:\windows\system32\drivers\ss_bcmnt.sys
2010-12-24 10:48 . 2010-08-27 04:32 12416 ----a-w- c:\windows\system32\drivers\ss_bcm.sys
2010-12-24 10:48 . 2010-08-27 04:32 123648 ----a-w- c:\windows\system32\drivers\ss_bmdm.sys
2010-12-24 10:48 . 2010-08-27 04:32 12288 ----a-w- c:\windows\system32\drivers\ss_bwhnt.sys
2010-12-24 10:48 . 2010-08-27 04:32 12288 ----a-w- c:\windows\system32\drivers\ss_bwh.sys
2010-12-24 10:48 . 2010-08-27 04:32 100224 ----a-w- c:\windows\system32\drivers\ss_bserd.sys
2010-12-24 10:47 . 2010-12-24 10:48 -------- d-----w- c:\program files\OscarX7
2010-12-24 10:47 . 2010-10-25 09:03 36640 ----a-w- c:\windows\system32\FsUsbExDisk.Sys
2010-12-24 10:47 . 2010-10-25 09:03 217088 ----a-w- c:\windows\system32\FsUsbExService.Exe
2010-12-24 10:47 . 2010-10-25 09:03 110592 ----a-w- c:\windows\system32\FsUsbExDevice.Dll
2010-12-24 10:46 . 2010-12-24 10:47 -------- d-----w- c:\program files\PC Connectivity Solution
2010-12-24 10:46 . 2010-12-24 10:46 -------- d-----w- c:\program files\MarkAny
2010-12-24 10:46 . 2010-12-24 10:47 -------- d-----w- c:\programdata\Samsung
2010-12-24 10:45 . 2010-12-24 10:46 -------- d-----w- c:\program files\Common Files\Samsung
2010-12-22 23:06 . 2009-09-23 15:48 431936 ----a-w- c:\windows\system32\msvcp100.dll
2010-12-22 23:06 . 2009-09-23 15:48 431936 ----a-w- c:\windows\system\msvcp100.dll
2010-12-22 07:45 . 2010-12-22 07:45 -------- d-----w- C:\Gladinet
2010-12-21 08:06 . 2010-12-21 08:06 -------- d-----w- c:\programdata\scripts
2010-12-20 22:08 . 2010-11-27 18:54 21896 ----a-w- c:\windows\system32\drivers\eufs.sys
2010-12-20 22:08 . 2010-11-27 18:54 15240 ----a-w- c:\windows\system32\drivers\eudskacs.sys
2010-12-20 22:08 . 2010-11-27 18:54 31112 ----a-w- c:\windows\system32\drivers\eubakup.sys
2010-12-20 22:08 . 2010-11-27 18:54 188296 ----a-w- c:\windows\system32\drivers\EuDisk.sys
2010-12-20 22:08 . 2010-11-27 18:54 18824 ----a-w- c:\windows\system32\fbnative.exe
2010-12-19 21:29 . 2011-01-09 10:31 -------- d-----w- c:\users\Prastaří
2010-12-19 20:16 . 2010-12-19 20:16 -------- d-----w- c:\programdata\CanonIJ
2010-12-19 17:51 . 2010-12-19 17:51 -------- d-----w- c:\programdata\launcher
2010-12-19 17:18 . 2010-12-19 17:18 -------- d-----w- c:\windows\cs
2010-12-19 17:12 . 2010-08-25 13:45 56208 ----a-w- c:\windows\system32\drivers\hotcore3.sys
2010-12-19 13:49 . 2010-09-22 23:21 39272 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2010-12-19 13:49 . 2010-12-19 17:12 -------- dc----w- c:\windows\system32\DRVSTORE
2010-12-19 13:42 . 2010-12-19 13:42 -------- d-----w- c:\program files\Microsoft SQL Server Compact Edition
2010-12-19 13:38 . 2010-12-19 13:38 -------- d-----w- c:\windows\PCHEALTH
2010-12-19 13:36 . 2010-12-19 17:18 -------- d-----w- c:\program files\Windows Live
2010-12-19 13:36 . 2009-09-04 16:44 69464 ----a-w- c:\windows\system32\XAPOFX1_3.dll
2010-12-19 13:36 . 2009-09-04 16:44 515416 ----a-w- c:\windows\system32\XAudio2_5.dll
2010-12-19 13:36 . 2009-09-04 16:29 453456 ----a-w- c:\windows\system32\d3dx10_42.dll
2010-12-19 13:35 . 2006-11-29 12:06 3426072 ----a-w- c:\windows\system32\d3dx9_32.dll
2010-12-19 13:35 . 2010-12-28 13:50 -------- d-----w- c:\program files\Microsoft Silverlight
2010-12-19 13:34 . 2010-08-11 04:44 2983424 ----a-w- c:\windows\system32\UIRibbon.dll
2010-12-19 13:34 . 2010-08-11 04:35 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2010-12-19 13:34 . 2010-10-28 11:23 2217088 ----a-w- c:\windows\system32\BootMan.exe
2010-12-19 13:34 . 2010-07-15 07:44 14848 ----a-w- c:\windows\system32\EuEpmGdi.dll
2010-12-19 13:34 . 2010-07-15 07:44 86408 ----a-w- c:\windows\system32\setupempdrv03.exe
2010-12-19 13:34 . 2010-07-15 07:44 8456 ----a-w- c:\windows\system32\EuGdiDrv.sys
2010-12-19 13:34 . 2010-07-15 07:44 14216 ----a-w- c:\windows\system32\epmntdrv.sys
2010-12-19 13:33 . 2010-05-23 10:11 196608 ----a-w- c:\windows\system32\mfreadwrite.dll
2010-12-19 13:33 . 2010-05-23 10:11 3181568 ----a-w- c:\windows\system32\mf.dll
2010-12-19 13:33 . 2010-05-23 10:15 1619456 ----a-w- c:\windows\system32\WMVDECOD.DLL
2010-12-19 13:31 . 2010-12-19 13:31 -------- d-----w- c:\program files\Common Files\Windows Live
2010-12-19 09:46 . 2010-12-19 09:46 -------- d-----w- c:\programdata\Plugins
2010-12-19 09:40 . 2011-01-07 16:19 -------- d-----w- C:\Grafika
2010-12-19 08:55 . 2007-07-25 08:21 1781760 ----a-w- c:\windows\system32\msicpl.dll
2010-12-19 08:55 . 2007-07-25 08:58 483328 ----a-w- c:\windows\system32\HookShield.dll
2010-12-19 08:55 . 2006-11-06 02:54 134504 ----a-w- c:\windows\system32\smdll.dll
2010-12-19 08:55 . 2006-01-02 17:45 40960 ----a-w- c:\windows\system32\executeosd.exe
2010-12-19 08:55 . 2006-11-06 02:41 36200 ----a-w- c:\windows\system32\Auxiliary.dll
2010-12-19 08:55 . 2007-05-28 15:13 130048 ----a-w- c:\windows\system32\MadCHook.dll
2010-12-19 08:55 . 2010-07-10 04:37 604776 ----a-w- c:\windows\system32\nvudisp.exe-nv32521
2010-12-19 08:55 . 2006-11-02 12:02 188416 ----a-w- c:\windows\system32\sysinfo.dll
2010-12-19 08:55 . 2007-07-25 08:58 462848 ----a-w- c:\windows\system32\HookMap.dll
2010-12-19 08:48 . 2010-07-10 04:37 604776 ----a-w- c:\windows\system32\NVUNINST.EXE
2010-12-19 08:42 . 2010-12-19 08:42 -------- d-----w- c:\program files\Common Files\CANON
2010-12-19 08:41 . 2010-12-19 08:41 -------- d--h--w- c:\programdata\CanonBJ
2010-12-19 08:41 . 2010-04-24 04:00 70656 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPP9W.DLL
2010-12-19 08:41 . 2010-04-24 04:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\CNMPD9W.DLL
2010-12-19 08:41 . 2009-03-17 04:00 27648 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\1_CNMPD9W.DLL
2010-12-19 08:40 . 2010-12-19 08:40 -------- d--h--w- c:\windows\system32\CanonIJ Uninstaller Information
2010-12-19 08:40 . 2009-04-03 15:00 1310720 ----a-w- c:\windows\system32\CNC250C.dll
2010-12-19 08:40 . 2009-04-03 14:59 110592 ----a-w- c:\windows\system32\CNC250I.dll
2010-12-19 08:40 . 2009-04-03 14:57 106496 ----a-w- c:\windows\system32\CNC250U.dll
2010-12-19 08:40 . 2009-03-11 10:34 303104 ----a-w- c:\windows\system32\CNC250L.dll
2010-12-19 08:40 . 2008-08-25 17:02 15872 ----a-w- c:\windows\system32\CNHMCA.dll
2010-12-19 08:40 . 2009-03-17 04:00 272384 ------w- c:\windows\system32\CNMLM9W.DLL
2010-12-19 08:40 . 2009-02-04 13:17 90112 ----a-w- c:\windows\system32\CNC250O.dll
2010-12-19 08:40 . 2009-03-18 09:09 178176 ----a-w- c:\windows\system32\CNMIU9W.DLL
2010-12-19 08:36 . 2010-12-19 08:43 -------- d-----w- c:\program files\Canon
2010-12-19 08:34 . 2010-12-19 08:34 356 ----a-w- c:\windows\system32\AF15IRTBL.bin
2010-12-19 08:34 . 2010-12-19 08:34 94336 ----a-w- c:\windows\system32\drivers\IT9135BDA.sys
2010-12-19 08:34 . 2010-12-19 08:34 -------- d-----w- c:\programdata\BlazeVideo
2010-12-19 01:30 . 2010-12-18 16:41 -------- d-----w- c:\windows\Panther

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-18 16:41 . 2009-07-13 23:40 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-12-18 16:41 . 2009-07-13 23:36 13824 ----a-w- c:\windows\system32\slwga.dll
2010-11-29 16:38 . 2010-11-29 16:38 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-11-29 16:38 . 2010-11-29 16:38 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-11-10 01:54 . 2010-11-10 01:54 49016 ----a-w- c:\windows\system32\sirenacm.dll
2010-11-10 01:28 . 2010-11-10 01:28 301936 ----a-w- c:\windows\WLXPGSS.SCR
2010-11-02 04:39 . 2010-12-18 17:53 749056 ----a-w- c:\windows\system32\schedsvc.dll
2010-11-02 04:34 . 2010-12-18 17:53 179712 ----a-w- c:\windows\system32\schtasks.exe
2010-10-25 09:09 . 2010-10-25 09:09 974848 ----a-w- c:\windows\system32\cis-2.4.dll
2010-10-25 09:09 . 2010-10-25 09:09 81920 ----a-w- c:\windows\system32\issacapi_bs-2.3.dll
2010-10-25 09:09 . 2010-10-25 09:09 65536 ----a-w- c:\windows\system32\issacapi_pe-2.3.dll
2010-10-25 09:09 . 2010-10-25 09:09 57344 ----a-w- c:\windows\system32\MTXSYNCICON.dll
2010-10-25 09:09 . 2010-10-25 09:09 57344 ----a-w- c:\windows\system32\MK_Lyric.dll
2010-10-25 09:09 . 2010-10-25 09:09 57344 ----a-w- c:\windows\system32\issacapi_se-2.3.dll
2010-10-25 09:09 . 2010-10-25 09:09 569344 ----a-w- c:\windows\system32\muzdecode.ax
2010-10-25 09:09 . 2010-10-25 09:09 491520 ----a-w- c:\windows\system32\muzapp.dll
2010-10-25 09:09 . 2010-10-25 09:09 49152 ----a-w- c:\windows\system32\MaJGUILib.dll
2010-10-25 09:09 . 2010-10-25 09:09 45056 ----a-w- c:\windows\system32\MaXMLProto.dll
2010-10-25 09:09 . 2010-10-25 09:09 45056 ----a-w- c:\windows\system32\MACXMLProto.dll
2010-10-25 09:09 . 2010-10-25 09:09 413696 ----a-w- c:\programdata\Microsoft\Windows\Templates\msvcp60.dll
2010-10-25 09:09 . 2010-10-25 09:09 40960 ----a-w- c:\windows\system32\MTTELECHIP.dll
2010-10-25 09:09 . 2010-10-25 09:09 40960 ----a-w- c:\windows\system32\MAMACExtract.dll
2010-10-25 09:09 . 2010-10-25 09:09 352256 ----a-w- c:\windows\system32\MSLUR71.dll
2010-10-25 09:09 . 2010-10-25 09:09 258048 ----a-w- c:\windows\system32\muzoggsp.ax
2010-10-25 09:09 . 2010-10-25 09:09 245760 ----a-w- c:\windows\system32\MSCLib.dll
2010-10-25 09:09 . 2010-10-25 09:09 24576 ----a-w- c:\windows\system32\MASetupCleaner.exe
2010-10-25 09:09 . 2010-10-25 09:09 243576 ----a-w- c:\windows\system32\MASetupCaller.dll
2010-10-25 09:09 . 2010-10-25 09:09 23040 ----a-w- c:\programdata\Microsoft\Windows\Templates\psapi.dll
2010-10-25 09:09 . 2010-10-25 09:09 200704 ----a-w- c:\windows\system32\muzwmts.dll
2010-10-25 09:09 . 2010-10-25 09:09 155648 ----a-w- c:\windows\system32\MSFLib.dll
2010-10-25 09:09 . 2010-10-25 09:09 135168 ----a-w- c:\windows\system32\muzaf1.dll
2010-10-25 09:09 . 2010-10-25 09:09 131072 ----a-w- c:\windows\system32\muzmpgsp.ax
2010-10-25 09:09 . 2010-10-25 09:09 122880 ----a-w- c:\windows\system32\muzeffect.ax
2010-10-25 09:09 . 2010-10-25 09:09 118784 ----a-w- c:\windows\system32\MaDRM.dll
2010-10-25 09:09 . 2010-10-25 09:09 110592 ----a-w- c:\windows\system32\muzmp4sp.ax
2010-10-25 09:09 . 2010-10-25 09:09 511328 ----a-w- c:\windows\system32\Synchronization2.dll
2010-10-25 09:09 . 2010-10-25 09:09 288608 ----a-w- c:\windows\system32\Microsoft.Synchronization.dll
2010-10-25 09:09 . 2010-10-25 09:09 253280 ----a-w- c:\windows\system32\MetaStore2.dll
2010-10-25 09:07 . 2010-10-25 09:07 95568 ----a-w- c:\windows\system32\dgdersvc.exe
2010-10-25 09:07 . 2010-10-25 09:07 763216 ----a-w- c:\windows\system32\dgderapi.dll
2010-10-25 09:07 . 2010-10-25 09:07 319456 ----a-w- c:\programdata\Microsoft\Windows\Templates\DIFxAPI.dll
2010-10-25 09:07 . 2010-10-25 09:07 18120 ----a-w- c:\windows\system32\drivers\dgderdrv.sys
2010-10-22 11:43 . 2010-10-22 11:43 499712 ----a-w- c:\windows\system32\msvcp71.dll
.

((((((((((((((((((((((((((((( SnapShot@2011-01-11_22.04.10 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-12-18 19:45 . 2011-01-15 07:31 39182 c:\windows\System32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin
+ 2009-07-14 04:55 . 2011-01-15 07:31 36234 c:\windows\System32\wdi\BootPerformanceDiagnostics_SystemData.bin
+ 2010-12-18 16:50 . 2011-01-15 07:31 10060 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3197407790-1271769977-2128133938-1001_UserData.bin
+ 2010-12-18 16:37 . 2011-01-15 07:27 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-12-18 16:37 . 2011-01-11 17:03 32768 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2011-01-11 22:19 . 2011-01-15 07:27 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat
- 2009-07-14 04:41 . 2011-01-11 17:03 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2009-07-14 04:41 . 2011-01-15 07:27 32768 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2009-07-14 04:34 . 2011-01-10 19:57 72408 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
+ 2009-07-14 04:34 . 2011-01-13 07:59 72408 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\Cache\cache.dat
- 2010-12-18 16:49 . 2011-01-11 21:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
+ 2010-12-18 16:49 . 2011-01-15 08:00 16384 c:\windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Windows\Cookies\index.dat
- 2010-12-18 16:49 . 2011-01-11 21:10 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
+ 2010-12-18 16:49 . 2011-01-15 08:00 16384 c:\windows\ServiceProfiles\LocalService\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat
- 2010-12-23 22:04 . 2011-01-11 21:53 2692 c:\windows\System32\wdi\ERCQueuedResolutions.dat
+ 2010-12-23 22:04 . 2011-01-14 22:59 2692 c:\windows\System32\wdi\ERCQueuedResolutions.dat
+ 2010-12-20 08:08 . 2011-01-13 12:24 4986 c:\windows\System32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-3197407790-1271769977-2128133938-1003_UserData.bin
- 2011-01-11 21:56 . 2011-01-11 21:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2011-01-15 07:27 . 2011-01-15 07:27 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2011-01-11 21:56 . 2011-01-11 21:56 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-01-15 07:27 . 2011-01-15 07:27 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2011-01-12 07:29 . 2010-11-02 04:28 442880 c:\windows\winsxs\x86_microsoft-windows-printing-xpsprint_31bf3856ad364e35_6.1.7600.20830_none_ac342bda8b986ebf\XpsPrint.dll
+ 2011-01-12 07:29 . 2010-11-02 04:41 442880 c:\windows\winsxs\x86_microsoft-windows-printing-xpsprint_31bf3856ad364e35_6.1.7600.16699_none_ab72b03b72a35d83\XpsPrint.dll
+ 2011-01-12 07:29 . 2010-10-16 04:31 208896 c:\windows\winsxs\x86_microsoft-windows-m..rds-datacontrol-dll_31bf3856ad364e35_6.1.7600.20818_none_c4b9220cb0088378\msadco.dll
+ 2011-01-12 07:29 . 2010-10-16 04:33 208896 c:\windows\winsxs\x86_microsoft-windows-m..rds-datacontrol-dll_31bf3856ad364e35_6.1.7600.16688_none_c3e3d3e79723aa1e\msadco.dll
+ 2011-01-12 07:29 . 2010-10-16 04:31 352256 c:\windows\winsxs\x86_microsoft-windows-m..o-multi-dimensional_31bf3856ad364e35_6.1.7600.20818_none_1f5595b82027c9b0\msadomd.dll
+ 2011-01-12 07:29 . 2010-10-16 04:33 352256 c:\windows\winsxs\x86_microsoft-windows-m..o-multi-dimensional_31bf3856ad364e35_6.1.7600.16688_none_1e8047930742f056\msadomd.dll
+ 2011-01-12 07:29 . 2010-10-16 04:33 987136 c:\windows\winsxs\x86_microsoft-windows-m..ents-mdac-ado15-dll_31bf3856ad364e35_6.1.7600.16688_none_0c0a3f39d1f789c1\msado15.dll
+ 2011-01-12 07:29 . 2010-10-16 04:32 573440 c:\windows\winsxs\x86_microsoft-windows-m..c-drivermanager-dll_31bf3856ad364e35_6.1.7600.20818_none_10e15d12642ed613\odbc32.dll
+ 2011-01-12 07:29 . 2010-10-16 04:34 573440 c:\windows\winsxs\x86_microsoft-windows-m..c-drivermanager-dll_31bf3856ad364e35_6.1.7600.16688_none_100c0eed4b49fcb9\odbc32.dll
+ 2011-01-12 07:29 . 2010-10-16 04:31 372736 c:\windows\winsxs\x86_microsoft-windows-m..ac-ado-ddl-security_31bf3856ad364e35_6.1.7600.20818_none_b2dd41b4ba983680\msadox.dll
+ 2011-01-12 07:29 . 2010-10-16 04:33 372736 c:\windows\winsxs\x86_microsoft-windows-m..ac-ado-ddl-security_31bf3856ad364e35_6.1.7600.16688_none_b207f38fa1b35d26\msadox.dll
+ 2011-01-12 07:29 . 2010-11-02 02:33 211968 c:\windows\winsxs\x86_microsoft-windows-lddmcore_31bf3856ad364e35_6.1.7600.20830_none_ac59a14f5dd9e4eb\dxgmms1.sys
+ 2011-01-12 07:29 . 2010-11-02 04:32 728448 c:\windows\winsxs\x86_microsoft-windows-lddmcore_31bf3856ad364e35_6.1.7600.20830_none_ac59a14f5dd9e4eb\dxgkrnl.sys
+ 2011-01-12 07:29 . 2010-11-02 04:16 107520 c:\windows\winsxs\x86_microsoft-windows-lddmcore_31bf3856ad364e35_6.1.7600.20830_none_ac59a14f5dd9e4eb\cdd.dll
+ 2011-01-12 07:29 . 2010-11-02 02:37 211968 c:\windows\winsxs\x86_microsoft-windows-lddmcore_31bf3856ad364e35_6.1.7600.16699_none_ab9825b044e4d3af\dxgmms1.sys
+ 2011-01-12 07:29 . 2010-11-02 04:46 728448 c:\windows\winsxs\x86_microsoft-windows-lddmcore_31bf3856ad364e35_6.1.7600.16699_none_ab9825b044e4d3af\dxgkrnl.sys
+ 2011-01-12 07:29 . 2010-11-02 04:23 107520 c:\windows\winsxs\x86_microsoft-windows-lddmcore_31bf3856ad364e35_6.1.7600.16699_none_ab9825b044e4d3af\cdd.dll
+ 2011-01-12 07:29 . 2010-11-02 04:25 218624 c:\windows\winsxs\x86_microsoft-windows-directx-direct3d10.1_31bf3856ad364e35_6.1.7600.20830_none_50ba861623df3669\d3d10_1core.dll
+ 2011-01-12 07:29 . 2010-11-02 04:25 161792 c:\windows\winsxs\x86_microsoft-windows-directx-direct3d10.1_31bf3856ad364e35_6.1.7600.20830_none_50ba861623df3669\d3d10_1.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 218624 c:\windows\winsxs\x86_microsoft-windows-directx-direct3d10.1_31bf3856ad364e35_6.1.7600.16699_none_4ff90a770aea252d\d3d10_1core.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 161792 c:\windows\winsxs\x86_microsoft-windows-directx-direct3d10.1_31bf3856ad364e35_6.1.7600.16699_none_4ff90a770aea252d\d3d10_1.dll
+ 2011-01-12 07:29 . 2010-11-02 04:26 804864 c:\windows\winsxs\x86_microsoft-windows-directwrite-fontcache_31bf3856ad364e35_6.1.7600.20830_none_053b16fc8b9c548b\FntCache.dll
+ 2011-01-12 07:29 . 2010-11-02 04:36 801792 c:\windows\winsxs\x86_microsoft-windows-directwrite-fontcache_31bf3856ad364e35_6.1.7600.16699_none_04799b5d72a7434f\FntCache.dll
+ 2011-01-12 07:29 . 2010-11-02 04:25 739840 c:\windows\winsxs\x86_microsoft-windows-d2d_31bf3856ad364e35_6.1.7600.20830_none_a82def74d63e18a1\d2d1.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 739840 c:\windows\winsxs\x86_microsoft-windows-d2d_31bf3856ad364e35_6.1.7600.16699_none_a76c73d5bd490765\d2d1.dll
+ 2011-01-12 07:29 . 2010-11-02 04:28 135168 c:\windows\winsxs\x86_microsoft-windows-c..nt-xpsrasterservice_31bf3856ad364e35_6.1.7600.20830_none_1b2e65b1a64e1e58\XpsRasterService.dll
+ 2011-01-12 07:29 . 2010-11-02 04:41 135168 c:\windows\winsxs\x86_microsoft-windows-c..nt-xpsrasterservice_31bf3856ad364e35_6.1.7600.16699_none_1a6cea128d590d1c\XpsRasterService.dll
+ 2011-01-12 07:29 . 2010-11-02 04:28 283648 c:\windows\winsxs\x86_microsoft-windows-c..ent-xpsgdiconverter_31bf3856ad364e35_6.1.7600.20830_none_137d7e3a659de6f8\XpsGdiConverter.dll
+ 2011-01-12 07:29 . 2010-11-02 04:41 283648 c:\windows\winsxs\x86_microsoft-windows-c..ent-xpsgdiconverter_31bf3856ad364e35_6.1.7600.16699_none_12bc029b4ca8d5bc\XpsGdiConverter.dll
+ 2011-01-12 07:29 . 2010-06-26 05:06 309760 c:\windows\winsxs\x86_microsoft-windows-activexproxy_31bf3856ad364e35_6.1.7600.20743_none_12976b2c649ce0d4\actxprxy.dll
- 2009-07-14 00:15 . 2009-07-14 01:16 135168 c:\windows\System32\XpsRasterService.dll
+ 2011-01-12 07:29 . 2010-11-02 04:41 135168 c:\windows\System32\XpsRasterService.dll
+ 2011-01-12 07:29 . 2010-11-02 04:41 442880 c:\windows\System32\XpsPrint.dll
+ 2011-01-12 07:29 . 2010-11-02 04:41 283648 c:\windows\System32\XpsGdiConverter.dll
+ 2011-01-12 07:29 . 2010-10-16 04:34 573440 c:\windows\System32\odbc32.dll
+ 2011-01-12 07:29 . 2010-11-02 04:36 801792 c:\windows\System32\FntCache.dll
+ 2011-01-12 07:29 . 2010-11-02 02:37 211968 c:\windows\System32\drivers\dxgmms1.sys
- 2009-07-13 23:25 . 2009-07-13 23:25 211968 c:\windows\System32\drivers\dxgmms1.sys
+ 2011-01-12 07:29 . 2010-11-02 04:46 728448 c:\windows\System32\drivers\dxgkrnl.sys
+ 2011-01-12 07:29 . 2010-11-02 04:35 218624 c:\windows\System32\d3d10_1core.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 161792 c:\windows\System32\d3d10_1.dll
- 2009-07-13 23:27 . 2009-07-14 01:15 161792 c:\windows\System32\d3d10_1.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 739840 c:\windows\System32\d2d1.dll
- 2010-12-18 16:42 . 2011-01-06 20:06 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2010-12-18 16:42 . 2011-01-14 08:25 262144 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\IETldCache\index.dat
+ 2011-01-12 07:29 . 2010-11-02 04:23 107520 c:\windows\System32\cdd.dll
+ 2009-07-14 04:47 . 2011-01-14 22:59 367108 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2011-01-12 07:29 . 2010-10-16 04:31 1019904 c:\windows\winsxs\x86_microsoft-windows-m..ents-mdac-ado15-dll_31bf3856ad364e35_6.1.7600.20818_none_0cdf8d5eeadc631b\msado15.dll
+ 2011-01-12 07:29 . 2010-06-26 05:07 1495552 c:\windows\winsxs\x86_microsoft-windows-explorerframe_31bf3856ad364e35_6.1.7600.20743_none_c306411fee237118\ExplorerFrame.dll
+ 2011-01-12 07:29 . 2010-06-26 05:14 1495040 c:\windows\winsxs\x86_microsoft-windows-explorerframe_31bf3856ad364e35_6.1.7600.16623_none_c292442cd4f5996c\ExplorerFrame.dll
+ 2011-01-12 07:29 . 2010-11-02 04:25 1170944 c:\windows\winsxs\x86_microsoft-windows-directx-warp10_31bf3856ad364e35_6.1.7600.20830_none_eaf4ac94d0f97df0\d3d10warp.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 1170944 c:\windows\winsxs\x86_microsoft-windows-directx-warp10_31bf3856ad364e35_6.1.7600.16699_none_ea3330f5b8046cb4\d3d10warp.dll
+ 2011-01-12 07:29 . 2010-11-02 04:26 1076736 c:\windows\winsxs\x86_microsoft-windows-directwrite_31bf3856ad364e35_6.1.7600.20830_none_d32e77d279bc2f23\DWrite.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 1074176 c:\windows\winsxs\x86_microsoft-windows-directwrite_31bf3856ad364e35_6.1.7600.16699_none_d26cfc3360c71de7\DWrite.dll
+ 2009-07-14 02:03 . 2011-01-15 07:47 7077888 c:\windows\System32\SMI\Store\Machine\schema.dat
- 2009-07-14 02:03 . 2011-01-11 17:26 7077888 c:\windows\System32\SMI\Store\Machine\schema.dat
+ 2011-01-12 07:29 . 2010-06-26 05:14 1495040 c:\windows\System32\ExplorerFrame.dll
- 2009-07-13 23:44 . 2009-07-14 01:15 1495040 c:\windows\System32\ExplorerFrame.dll
+ 2011-01-12 07:29 . 2010-11-02 04:35 1074176 c:\windows\System32\DWrite.dll
- 2010-12-18 19:27 . 2011-01-11 21:53 1474832 c:\windows\System32\drivers\sfi.dat
+ 2010-12-18 19:27 . 2011-01-15 08:47 1474832 c:\windows\System32\drivers\sfi.dat
+ 2011-01-12 07:29 . 2010-11-02 04:35 1170944 c:\windows\System32\d3d10warp.dll
+ 2009-07-14 04:34 . 2011-01-12 16:00 3602726 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
- 2009-07-14 04:34 . 2011-01-10 19:18 3602726 c:\windows\ServiceProfiles\NetworkService\AppData\Roaming\Microsoft\SoftwareProtectionPlatform\tokens.dat
+ 2009-07-14 07:18 . 2011-01-12 07:51 34168770 c:\windows\winsxs\ManifestCache\e4e8be02b8fae2a7_blobs.bin
+ 2010-12-18 17:55 . 2011-01-12 07:51 37403080 c:\windows\System32\MRT.exe
.
-- Snímek resetován k současnému datu --
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetIconOverlay]
@="{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}"
[HKEY_CLASSES_ROOT\CLSID\{3C3DC57A-7535-48AF-BB9E-C3576A4F34D0}]
2010-11-17 21:06 193896 ----a-w- c:\internet\Gladinet Cloud Desktop\GlOverlayIcon.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\GladinetUploading]
@="{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}"
[HKEY_CLASSES_ROOT\CLSID\{959A18D3-9CC9-41e8-B76F-34ED9A89D4EA}]
2010-11-17 21:10 193896 ----a-w- c:\internet\Gladinet Cloud Desktop\GlOverlayIconU.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"FeedDemon"="c:\internet\FeedDemon\FeedDemon.exe" [2010-12-16 7503360]
"Google Update"="c:\users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe" [2010-12-23 136176]
"RockMelt Update"="c:\users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe" [2011-01-14 136336]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BCU"="c:\program files\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2010-01-19 8452640]
"NUSB3MON"="c:\program files\NEC Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2009-10-21 106496]
"P17RunE"="P17RunE.dll" [2008-03-28 14848]
"COMODO Internet Security"="c:\tools\COMODO Internet Security\COMODO\COMODO Internet Security\cfp.exe" [2011-01-11 2548040]

c:\users\Cody\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
Launchy.lnk - c:\tools\Launchy\Launchy.exe [2010-12-20 405504]

c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Gladinet Cloud Desktop.lnk - c:\internet\Gladinet Cloud Desktop\GladLauncher.exe [2010-11-17 87400]
MultiMon Taskbar.lnk - c:\tools\MMTaskbar\MultiMon.exe [2010-12-29 294912]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\System32\guard32.dll

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"mixer1"=wdmaud.drv

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\CLPSLS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\prwntdrv]
@=""

R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R3 Creative ALchemy AL6 Licensing Service;Creative ALchemy AL6 Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\AL6Licensing.exe [2010-12-18 79360]
R3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2010-12-18 79360]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2010-07-15 14216]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2010-07-15 8456]
R3 ss_bbus;SAMSUNG USB Mobile Device (WDM);c:\windows\system32\DRIVERS\ss_bbus.sys [2010-08-27 98432]
R3 ss_bmdfl;SAMSUNG USB Mobile Modem (Filter);c:\windows\system32\DRIVERS\ss_bmdfl.sys [2010-08-27 14848]
R3 ss_bmdm;SAMSUNG USB Mobile Modem;c:\windows\system32\DRIVERS\ss_bmdm.sys [2010-08-27 123648]
R3 ss_bserd;SAMSUNG USB Mobile Logging Driver;c:\windows\system32\DRIVERS\ss_bserd.sys [2010-08-27 100224]
R3 SwitchBoard;SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-02-19 517096]
R4 EaseUs Agent;EaseUs Agent;c:\tools\EASEUS Todo Backup 2.0 Beta\bin\Agent.exe [2010-11-27 55176]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 51040]
S0 EUBAKUP;EUBAKUP;c:\windows\system32\drivers\eubakup.sys [2010-11-27 31112]
S0 EUFS;EUFS;c:\windows\system32\drivers\eufs.sys [2010-11-27 21896]
S0 hotcore3;hc3ServiceName;c:\windows\system32\DRIVERS\hotcore3.sys [2010-08-25 56208]
S0 sptd;sptd;c:\windows\System32\Drivers\sptd.sys [2011-01-02 691696]
S1 AppleCharger;AppleCharger;c:\windows\system32\DRIVERS\AppleCharger.sys [2010-03-01 18472]
S1 cmderd;COMODO Internet Security Eradication Driver;c:\windows\system32\DRIVERS\cmderd.sys [2011-01-11 17256]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2011-01-11 236600]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2011-01-11 35768]
S1 EUDSKACS;EUDSKACS;c:\windows\system32\drivers\eudskacs.sys [2010-11-27 15240]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [2009-07-13 48128]
S2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
S2 CLPSLS;COMODO livePCsupport Service;c:\program files\COMODO\COMODO GeekBuddy\CLPSLS.exe [2010-11-19 151432]
S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2010-10-25 95568]
S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2010-10-25 217088]
S2 GladFileMonSvc;GladFileMonSvc;c:\internet\Gladinet Cloud Desktop\GladFileMonSvc.exe [2010-11-17 27496]
S2 Realtek11nSU;Realtek11nSU;c:\program files\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2009-12-07 40960]
S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2010-10-25 18120]
S3 EuDisk;EASEUS Disk Enumerator;c:\windows\system32\DRIVERS\EuDisk.sys [2010-11-27 188296]
S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2010-10-25 36640]
S3 IT9135BDA;IT9135 BDA Devices;c:\windows\system32\Drivers\IT9135BDA.sys [2010-12-19 94336]
S3 nusb3hub;NEC Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2009-10-26 58240]
S3 nusb3xhc;NEC Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2009-10-26 136704]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [2009-11-27 233472]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2010-01-18 583680]

.
Obsah adresáře 'Naplánované úlohy'

2011-01-15 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001UA.job
- c:\users\Cody\AppData\Local\Google\Update\GoogleUpdate.exe [2010-12-23 15:38]

2011-01-09 c:\windows\Tasks\Paragon Archive name diff_080111202444901.job
- c:\tools\Backup and Recovery 2010 Free Advanced\program\scripts.exe [2010-08-25 13:45]

2011-01-14 c:\windows\Tasks\RockMeltUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001Core.job
- c:\users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe [2011-01-09 15:21]

2011-01-15 c:\windows\Tasks\RockMeltUpdateTaskUserS-1-5-21-3197407790-1271769977-2128133938-1001UA.job
- c:\users\Cody\AppData\Local\RockMelt\Update\RockMeltUpdate.exe [2011-01-09 15:21]
.
.
------- Doplňkový sken -------
.
IE: Prevést cíl vazby do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Prevést cíl vazby do existujícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Prevést do Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
IE: Pridat do stávajícího PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
DPF: {D4B68B83-8710-488B-A692-D74B50BA558E} - hxxp://ccfiles.creative.com/Web/softwareupdate/ocx/15113/CTPIDPDE.cab
FF - ProfilePath - c:\users\Cody\AppData\Roaming\Mozilla\Firefox\Profiles\038txsvi.default\
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\internet\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} - c:\internet\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
FF - Ext: Echofon: twitternotifier@naan.net - %profile%\extensions\twitternotifier@naan.net
FF - Ext: DownThemAll! *nightly*: dta@downthemall.net - %profile%\extensions\dta@downthemall.net
FF - Ext: Element Hiding Helper for Adblock Plus: elemhidehelper@adblockplus.org - %profile%\extensions\elemhidehelper@adblockplus.org
FF - Ext: Firebug: firebug@software.joehewitt.com - %profile%\extensions\firebug@software.joehewitt.com
FF - Ext: Xmarks: foxmarks@kei.com - %profile%\extensions\foxmarks@kei.com
FF - Ext: Read It Later: isreaditlater@ideashower.com - %profile%\extensions\isreaditlater@ideashower.com
FF - Ext: Organize Status Bar: {35106bca-6c78-48c7-ac28-56df30b51d2c} - %profile%\extensions\{35106bca-6c78-48c7-ac28-56df30b51d2c}
FF - Ext: HttpFox: {4093c4de-454a-4329-8aff-c6b0b123c386} - %profile%\extensions\{4093c4de-454a-4329-8aff-c6b0b123c386}
FF - Ext: Google Shortcuts: {5C46D283-ABDE-4dce-B83C-08881401921C} - %profile%\extensions\{5C46D283-ABDE-4dce-B83C-08881401921C}
FF - Ext: Adblock Plus: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} - %profile%\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
FF - Ext: Pixlr Grabber: {d47a9f51-8281-43fa-f450-f28ef8735e9a} - %profile%\extensions\{d47a9f51-8281-43fa-f450-f28ef8735e9a}
FF - Ext: Download Statusbar: {D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389} - %profile%\extensions\{D4DD63FA-01E4-46a7-B6B1-EDAB7D6AD389}
FF - Ext: Greasemonkey: {e4a8a97b-f2ed-450b-b12d-ee082ba24781} - %profile%\extensions\{e4a8a97b-f2ed-450b-b12d-ee082ba24781}
FF - Ext: Web Developer: {c45c406e-ab73-11d8-be73-000a95be3b12} - %profile%\extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}
FF - Ext: All-in-One Sidebar: {097d3191-e6fa-4728-9826-b533d755359d} - %profile%\extensions\{097d3191-e6fa-4728-9826-b533d755359d}
FF - Ext: MeasureIt: {75CEEE46-9B64-46f8-94BF-54012DE155F0} - %profile%\extensions\{75CEEE46-9B64-46f8-94BF-54012DE155F0}
FF - Ext: MR Tech Toolkit: {9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC} - %profile%\extensions\{9669CC8F-B388-42FE-86F4-CB5E7F5A8BDC}
FF - Ext: Add-on Collector: sharing@addons.mozilla.org - %profile%\extensions\sharing@addons.mozilla.org
FF - Ext: App Tabs: apptabs@frankyan.com - %profile%\extensions\apptabs@frankyan.com
FF - Ext: Shorten URL: ShortenURL@loucypher - %profile%\extensions\ShortenURL@loucypher
FF - Ext: GA?: {7c6d11c6-41b5-11dc-8314-0800200c9a66} - %profile%\extensions\{7c6d11c6-41b5-11dc-8314-0800200c9a66}
FF - Ext: WCAG Contrast checker: colorchecker@colorcheckerniquelao.net - %profile%\extensions\colorchecker@colorcheckerniquelao.net
FF - Ext: SEOProfesional: seo@profesional - %profile%\extensions\seo@profesional
FF - Ext: DT Whois: beysim@beysim.net - %profile%\extensions\beysim@beysim.net
FF - Ext: Phoenity Next (formerly Phoenity Reborn): {069FB356-C69F-7349-D092-AB28AF836D0E} - %profile%\extensions\{069FB356-C69F-7349-D092-AB28AF836D0E}
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: browser.display.show_image_placeholders - true
FF - user.js: browser.chrome.favicons - false
FF - user.js: browser.turbo.enabled - true
FF - user.js: browser.urlbar.autocomplete.enabled - true
FF - user.js: browser.urlbar.autofill - true
FF - user.js: browser.xul.error_pages.enabled - true
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 3000000
FF - user.js: content.maxtextrun - 8191
FF - user.js: content.notify.backoffcount - 5
FF - user.js: content.notify.interval - 750000
FF - user.js: content.notify.ontimer - true
FF - user.js: content.switch.threshold - 750000
FF - user.js: network.http.max-connections - 32
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 8
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: network.http.request.max-start-delay - 0
FF - user.js: nglayout.initialpaint.delay - 0
FF - user.js: plugin.expose_full_path - true
FF - user.js: ui.submenuDelay - 0
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

Toolbar-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)


.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_USERS\.Default\Software\Microsoft\Internet Explorer\User Preferences]
@Denied: (2) (LocalSystem)
"88D7D0879DAB32E14DE5B3A805A34F98AFF34F5977"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,f7,26,52,40,9a,92,e0,48,80,20,ae,\
"2D53CFFC5C1A3DD2E97B7979AC2A92BD59BC839E81"=hex:01,00,00,00,d0,8c,9d,df,01,15,
d1,11,8c,7a,00,c0,4f,c2,97,eb,01,00,00,00,f7,26,52,40,9a,92,e0,48,80,20,ae,\

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil10l_ActiveX.exe"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'lsass.exe'(636)
c:\windows\system32\guard32.dll
.
Celkový čas: 2011-01-15 10:01:50
ComboFix-quarantined-files.txt 2011-01-15 09:01
ComboFix2.txt 2011-01-11 22:13

Před spuštěním: Volných bajtů: 221 069 750 272
Po spuštění: Volných bajtů: 220 943 630 336

- - End Of File - - 61844931B4425405886D309712ED8B27

[Roli]

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


Pak dej vědět jaký je stav PC.

[Cody-cz]

OK, hotovo. Poslední výpadek jsem měl dnes ráno, tak uvidíme zda se to bude opakovat. Děkuji za pomoc.

[Roli]

Není zač a kdyby něco klidně písni.