VIRY.CZ

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 0:31:06, on 8.12.2011
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe
C:\Program Files (x86)\Lenovo\RobustIntelligentCompanion\LenovoR.I.C.Tray.exe
C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe
C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe
C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe
C:\windows\SysWOW64\RunDll32.exe
C:\Program Files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe
C:\Program Files (x86)\Opera\opera.exe
C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60747
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [YouCam Mirage] "C:\Program Files (x86)\Lenovo\YouCam\YCMMirage.exe"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
O4 - HKLM\..\Run: [VeriFaceManager] C:\Program Files (x86)\Lenovo\VeriFace\PManage.exe
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [LenovoR.I.C.Tray] C:\Program Files (x86)\Lenovo\RobustIntelligentCompanion\LenovoR.I.C.Tray.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [NokiaSuite.exe] C:\Program Files (x86)\Nokia\Nokia Suite\NokiaSuite.exe -tray
O4 - HKCU\..\Run: [OscarX7Mouse5Mode] "C:\Program Files (x86)\OscarX7Editor5Mode\OscarX7Editor5Mode\OscarEditor.exe" Minimum
O4 - HKCU\..\Run: [dnb system restore] %TEMP%\sgvtbs.exe
O4 - HKCU\..\Run: [divxupdater] %TEMP%\rvfktc.exe
O4 - HKCU\..\Run: [Media Streamer] %TEMP%\tgbssm.exe
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2567127309-3558950632-4008851899-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2567127309-3558950632-4008851899-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - Global Startup: Bluetooth.lnk = ?
O4 - Global Startup: Kaspersky Anti-Hacker.lnk = C:\Program Files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe
O8 - Extra context menu item: Crawler Search - tbr:iemenu
O8 - Extra context menu item: Odeslat obrázek do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Odeslat stránku do zařízení &Bluetooth... - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1004 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Windows Live\Writer\WindowsLiveWriterShortcuts.dll,-1003 - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\Lenovo\Bluetooth Software\btsendto_ie.htm
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
O20 - AppInit_DLLs: C:\windows\SysWOW64\nvinit.dll
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\windows\System32\alg.exe (file missing)
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\Lenovo\Bluetooth Software\btwdins.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\windows\System32\lsass.exe (file missing)
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\x86\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel(R) Corporation - C:\Program Files\Intel\WiFi\bin\EvtEng.exe
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Intel(R) Rapid Storage Technology (IAStorDataMgrSvc) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) Management and Security Application Local Management Service (LMS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe
O23 - Service: McAfee SiteAdvisor Service - Unknown owner - c:\PROGRA~2\mcafee\SITEAD~1\mcsacore.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\windows\System32\msdtc.exe (file missing)
O23 - Service: Wireless PAN DHCP Server (MyWiFiDHCPDNS) - Unknown owner - C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel(R) Corporation - C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\windows\system32\UI0Detect.exe (file missing)
O23 - Service: Intel(R) Management and Security Application User Notification Service (UNS) - Intel Corporation - C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 13770 bytes

Zdravím.

Dej mi minutku, hnedle se na to mrknu.

Předpokládám, že ten ESET je legální = zakoupená licence?!

Příště si pečlivě pročti pravidla fóra. Zjistil bys, že už delší dobu nepoužíváme HJT, ale RSIT.

Doporučuji svižně odinstalovat Advanced SystemCare 3 a následně i vše od IObit. Jsou to čínské programy, které hledají nesmyslné a neexistující problémy. Tvůrci software ukradli databázi havěti jiné renomované společnosti a účinek na PC je spíše nulový až negativní.

Odinstaluj vše z tohoto, co najdeš v Přidat nebo odebrat programy: Conduit Engine, &Crawler Toolbar, Google Toolbar, uTorrentBar, ICQToolBar.

Fixni v HJT tyto položky:

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.crawler.com/search/dispatche ... p=aus&qkw=%s&tbid=60747
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.conduit.com?SearchSource= ... =CT2786678
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://lenovo.msn.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.crawler.com/search/ie.aspx?tb_id=60747
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://dnl.crawler.com/support/sa_custo ... TbId=60747
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: &Crawler Toolbar Helper - {1CB20BF0-BBAE-40A7-93F4-6435FF3D0411} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: uTorrentBar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files (x86)\uTorrentBar\prxtbuTor.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: &Crawler lišta - {4B3803EA-5230-4DC3-A7FC-33638F3D3542} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files (x86)\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [UpdateP2GShortCut] "C:\Program Files (x86)\Lenovo\Power2Go\MUITransfer\MUIStartMenu.exe" "C:\Program Files (x86)\Lenovo\Power2Go" UpdateWithCreateOnce "SOFTWARE\CyberLink\Power2Go\5.0"
O4 - HKLM\..\Run: [YouCam Tray] "C:\Program Files (x86)\Lenovo\YouCam\YouCam.exe" /s
O4 - HKLM\..\Run: [UpdatePRCShortCut] "C:\Program Files\Lenovo\OneKey App\OneKey Recovery\MUITransfer\MUIStartMenu.exe" "C:\Program Files\Lenovo\OneKey App\OneKey Recovery" UpdateWithCreateOnce "Software\Lenovo\OneKey App\OneKey Recovery"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [VirtualCloneDrive] "C:\Program Files (x86)\Elaborate Bytes\VirtualCloneDrive\VCDDaemon.exe" /s
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [swg] "C:\Program Files (x86)\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [dnb system restore] %TEMP%\sgvtbs.exe
O4 - HKCU\..\Run: [divxupdater] %TEMP%\rvfktc.exe
O4 - HKCU\..\Run: [Media Streamer] %TEMP%\tgbssm.exe
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files (x86)\IObit\Advanced SystemCare 3\Sup_SmartRAM.exe" /m
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-2567127309-3558950632-4008851899-1005\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-2567127309-3558950632-4008851899-1005\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O18 - Protocol: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - C:\PROGRA~2\Crawler\Toolbar\ctbr.dll

"Fixnout" znamená, že spustíš HJT, zvolíš možnost [Do a system scan only] a zaškrtneš čtvereček vlevo od mnou vypsaných položek. Poté klikneš na [Fix checked] a odsouhlasíš [ANO].
HJT najdeš zde: C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

Po fixu stáhni a nainstaluj Malwarebytes' Anti-Malware (zkráceně MBAM) podle návodu z tohoto topicu.

Proveď aktualizaci virové databáze.
V záložce Kontrolor zvol Úplná kontrola a zaškrtni všechny pevné disky, které máš na počítači.
Předem nic nemaž!!
MBAM mívá občas falešné detekce, proto vlož jeho log do příspěvku a počkej na posouzení!

Dekuji za vas cas pri vasi pomoci jinak eset je legal trial verze

Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Verze databáze: 8336

Windows 6.1.7601 Service Pack 1
Internet Explorer 9.0.8112.16421

9.12.2011 0:59:27
mbam-log-2011-12-09 (00-59-27).txt

Typ: Úplná kontrola (C:\|D:\|E:\|F:\|Q:\|)
Kontrolované objekty: 321126
Uplynulý čas: 26 minut, 59 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

psal sem sem protoze pred tim sem mel microsoft esentials a ten naesel bracdoor a na netu sem cetl ze tento trojan nebo vir maa tendenci se skryvat
proto sem stahl eset a odinstaloval microsoft esentials
a proto sem sem dal radeji log
a pokud sem ho dal spatne se omlouvam

OK, v pořádku. Jen, abys tu trial licenci neudržoval pořád dokola, jako to dělají někteří jedinci, protože to je nelegální a v rozporu s EULA ujednáními s firmou ESET, se kterými souhlasíš při instalaci jejich produktů. Takže až vyprší trial licence, tak šup s tím pryč z PC!

Log z MBAM je čistý, to je dobře. Backdoor tam pravděpodobně nebude, protože MBAM by ho detekoval.

Pro jistotu tam tedy pustíme silnější nástroj.

PROSÍM, ČTI NÁVOD DŮKLADNĚ - TATO UTILITA MÁ VELKOU SCHOPNOST MAZAT A JE NUTNÉ JI APLIKOVAT JEN NA DOPORUČENÍ, JINAK TI MŮŽE JÍT SYSTÉM DO KYTEK

Stáhni a ulož na Plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

Vypni všechny rezidentní bezpečnostní programy - firewally, antiviry, antispywary apod.
Vypni všechny běžící aplikace - ICQ, Skype, browsery, prostě všechny programy, ať běží pouze ComboFix.
Pokud máš Win XP, spusť pod účtem Správce/Administrator.
Pokud máš Win Vista či Win 7, klikni na ComboFix pravým myšítkem a dej Run As Administrator či Spustit jako správce.
Ihned po startu se zobrazí stránka s licenčním ujednáním - pokračuj kliknutím na [Ano].
Pokud Ti ComboFix nabídne instalaci Konzoly pro zotavení, tak souhlas.
Dále postupuj dle pokynů. Během scanu nech PC naprosto v klidu - nespouštěj žádné aplikace a neklikej do zobrazujícího se okna!
Scan by měl trvat cca 10 min, ale pokud bude PC hodne zaneseno, může se čas samozřejmě prodloužit.
Po dokončení scanu a případném restartu ComboFix zobrazí log, který případně najdeš v C:\ComboFix.txt. Jeho obsah mi sem vlož.
Detailní postup včetně obrázků najdeš zde: http://www.bleepingcomputer.com/combofi ... t-combofix

ComboFix 11-12-09.02 - Lenovo 09.12.2011 15:56:51.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4040.2382 [GMT 1:00]
Spuštěný z: c:\users\Lenovo\Desktop\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
FW: ESET personal firewall *Disabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA}
SP: ESET Smart Security 5.0 *Disabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\LP
c:\program files (x86)\LP\C7A4\6411.tmp
c:\program files (x86)\LP\C7A4\D79.tmp
c:\program files (x86)\LP\C7A4\E214.tmp
c:\program files (x86)\LP\D814\C495.tmp
c:\program files (x86)\T
c:\program files (x86)\T\binkw32.dll
c:\program files (x86)\T\D3DCompiler_43.dll
c:\program files (x86)\T\D3DX9_43.dll
c:\program files (x86)\T\data\data_10_enviro.bin
c:\program files (x86)\T\data\data_10_chars.bin
c:\program files (x86)\T\data\data_10_levels.bin
c:\program files (x86)\T\data\data_10_misc.bin
c:\program files (x86)\T\data\data_10_scripts.bin
c:\program files (x86)\T\data\data_10_shaders.bin
c:\program files (x86)\T\data\data_10_textures.bin
c:\program files (x86)\T\data\data_10_thumbs.bin
c:\program files (x86)\T\data\data_11_loca.bin
c:\program files (x86)\T\data\data_11_locb.bin
c:\program files (x86)\T\data\sound\ambient.fsb
c:\program files (x86)\T\data\sound\ambient_comp.fsb
c:\program files (x86)\T\data\sound\ambient_comp_ad.fsb
c:\program files (x86)\T\data\sound\EN\placeableVO.fsb
c:\program files (x86)\T\data\sound\EN\VO.fsb
c:\program files (x86)\T\data\sound\footsteps.fsb
c:\program files (x86)\T\data\sound\gui_sfx.fsb
c:\program files (x86)\T\data\sound\gui_sfx_comp.fsb
c:\program files (x86)\T\data\sound\character_bird.fsb
c:\program files (x86)\T\data\sound\character_bird_comp_ad.fsb
c:\program files (x86)\T\data\sound\character_concretemixer.fsb
c:\program files (x86)\T\data\sound\character_gorilla.fsb
c:\program files (x86)\T\data\sound\level2_comp.fsb
c:\program files (x86)\T\data\sound\menu_machine.fsb
c:\program files (x86)\T\data\sound\music_stream_combat.fsb
c:\program files (x86)\T\data\sound\music_stream_menu.fsb
c:\program files (x86)\T\data\sound\musicsys.fsb
c:\program files (x86)\T\data\sound\placeable.fsb
c:\program files (x86)\T\data\sound\placeable_comp.fsb
c:\program files (x86)\T\data\sound\placeable_comp_ad.fsb
c:\program files (x86)\T\data\sound\player.fsb
c:\program files (x86)\T\data\sound\player_comp.fsb
c:\program files (x86)\T\fmod_event.dll
c:\program files (x86)\T\fmodex.dll
c:\program files (x86)\T\hardreset.exe
c:\program files (x86)\T\uninstall.exe
c:\programdata\Roaming
c:\windows\msxml4-KB954430-enu.LOG
c:\windows\msxml4-KB973688-enu.LOG
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\s.bat
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-11-09 do 2011-12-09 )))))))))))))))))))))))))))))))
.
.
2011-12-09 15:01 . 2011-12-09 15:01 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-12-09 10:21 . 2011-12-09 10:21 69000 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{49D3A282-710F-4726-BDCC-BC6653B0423C}\offreg.dll
2011-12-09 10:21 . 2011-11-21 11:40 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{49D3A282-710F-4726-BDCC-BC6653B0423C}\mpengine.dll
2011-12-08 22:57 . 2011-12-08 22:57 -------- d-----w- c:\programdata\Malwarebytes
2011-12-08 22:57 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-08 22:57 . 2011-12-08 22:57 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2011-12-07 23:20 . 2011-12-07 23:20 -------- d-----w- c:\program files (x86)\Trend Micro
2011-12-07 21:21 . 2011-12-07 21:21 -------- d-----w- c:\program files (x86)\Common Files\Kaspersky Lab
2011-12-07 21:21 . 2011-12-07 21:21 -------- d-----w- C:\kav
2011-12-06 04:22 . 2011-12-06 04:22 -------- d-----w- c:\program files\ESET
2011-12-05 15:34 . 2011-12-05 15:34 -------- d-----w- c:\programdata\IObit
2011-12-05 15:32 . 2011-12-05 15:32 -------- d-----w- c:\program files\IObit
2011-12-05 15:32 . 2011-12-05 15:32 -------- d-----w- c:\program files (x86)\IObit
2011-12-05 13:19 . 2011-12-05 13:19 55384 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-12-05 13:19 . 2011-12-05 13:19 51496 ----a-w- c:\windows\system32\drivers\stflt.sys
2011-12-05 13:17 . 2011-12-07 09:38 -------- d-----w- c:\program files (x86)\Spyware Terminator
2011-12-05 13:16 . 2011-12-05 13:16 -------- d-----w- c:\program files (x86)\Toolbar Cleaner
2011-12-05 13:16 . 2011-12-05 13:21 -------- d-----w- c:\programdata\Lavasoft
2011-12-05 12:51 . 2011-12-05 12:51 -------- d-----w- c:\program files (x86)\ESET
2011-12-05 06:48 . 2011-12-05 12:47 -------- d-----w- c:\program files (x86)\Common Files\McAfee
2011-12-05 06:48 . 2011-12-05 12:47 -------- d-----w- c:\program files\Common Files\McAfee
2011-12-05 06:48 . 2011-12-05 12:47 -------- d-----w- c:\program files\McAfee
2011-12-03 03:04 . 2011-12-03 03:04 -------- d-----w- c:\program files (x86)\THQ
2011-12-03 01:56 . 2011-12-03 01:56 -------- d-----w- c:\program files (x86)\Common Files\Skype
2011-12-01 14:49 . 2011-12-05 12:47 -------- d-----w- C:\totalcmd
2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\UC.PIF
2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\RAR.PIF
2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\NOCLOSE.PIF
2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\LHA.PIF
2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\ARJ.PIF
2011-12-01 06:35 . 2011-12-01 06:35 -------- d-----w- c:\programdata\Energy Management
2011-11-30 16:53 . 2011-09-09 17:23 2469760 ----a-w- c:\windows\SysWow64\BootMan.exe
2011-11-30 16:53 . 2011-09-07 16:06 3321728 ----a-w- c:\windows\system32\BootMan.exe
2011-11-30 16:53 . 2011-07-29 12:54 19840 ----a-w- c:\windows\SysWow64\EuEpmGdi.dll
2011-11-30 16:53 . 2011-07-29 12:54 16256 ----a-w- c:\windows\system32\EuEpmGdi.dll
2011-11-30 16:53 . 2011-07-29 12:54 9096 ----a-w- c:\windows\system32\EuGdiDrv.sys
2011-11-30 16:53 . 2011-07-29 12:54 16776 ----a-w- c:\windows\system32\epmntdrv.sys
2011-11-30 16:53 . 2011-07-29 12:54 100232 ----a-w- c:\windows\system32\setupempdrvx64.exe
2011-11-30 16:53 . 2011-07-29 12:54 86408 ----a-w- c:\windows\SysWow64\setupempdrv03.exe
2011-11-30 16:53 . 2011-07-29 12:54 8456 ----a-w- c:\windows\SysWow64\EuGdiDrv.sys
2011-11-30 16:53 . 2011-07-29 12:54 14216 ----a-w- c:\windows\SysWow64\epmntdrv.sys
2011-11-30 16:53 . 2011-11-30 16:53 -------- d-----w- c:\program files (x86)\EASEUS
2011-11-30 16:49 . 2011-11-30 16:49 276576 ----a-w- c:\windows\system32\drivers\snapman.sys
2011-11-30 16:48 . 2011-11-30 16:48 -------- d-----w- c:\program files (x86)\Acronis
2011-11-30 16:48 . 2011-11-30 16:48 -------- d-----w- c:\program files (x86)\Common Files\Acronis
2011-11-30 16:38 . 2011-11-30 16:39 -------- d-----w- C:\CPM
2011-11-28 12:41 . 2011-12-05 12:51 -------- d-----w- c:\users\UpdatusUser
2011-11-27 22:05 . 2011-11-27 22:05 -------- d-----w- c:\program files (x86)\Lavalys
2011-11-27 21:08 . 2011-11-27 21:20 -------- d-----w- c:\programdata\VirtualizedApplications
2011-11-25 21:12 . 2011-11-26 19:47 -------- d-----w- c:\program files (x86)\Microsoft Application Virtualization Client
2011-11-21 17:00 . 2011-11-08 16:07 1458176 ------w- c:\programdata\Microsoft\Windows\Templates\A4Tech\OscarX7Editor5Mode\Setup.exe
2011-11-21 16:59 . 2011-11-21 17:00 -------- d-----w- c:\program files (x86)\OscarX7Editor5Mode
2011-11-21 16:59 . 2011-11-21 16:59 -------- d-----w- c:\program files (x86)\5-Mode Oscar Editor
2011-11-20 20:50 . 2011-11-20 20:50 -------- d-----w- c:\programdata\EA Core
2011-11-20 20:50 . 2011-11-20 20:50 -------- d-----w- c:\programdata\Electronic Arts
2011-11-20 04:44 . 2011-11-20 04:52 -------- d-----w- c:\program files (x86)\Saints Row 2
2011-11-20 04:35 . 2011-11-20 04:35 -------- d-----w- c:\program files (x86)\MSXML 4.0
2011-11-19 18:23 . 2011-11-19 18:23 -------- d-----w- c:\programdata\PC Suite
2011-11-19 18:22 . 2011-11-19 18:22 -------- d-----w- c:\program files (x86)\Common Files\Nokia
2011-11-19 18:22 . 2011-11-19 18:22 -------- d-----w- c:\programdata\Nokia
2011-11-19 18:22 . 2008-08-28 11:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys
2011-11-19 18:22 . 2011-12-05 13:21 -------- dc----w- c:\windows\system32\DRVSTORE
2011-11-19 18:22 . 2011-11-19 18:22 -------- d-----w- c:\program files (x86)\PC Connectivity Solution
2011-11-19 18:22 . 2011-08-17 11:59 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll
2011-11-19 18:16 . 2011-11-19 18:22 -------- d-----w- c:\program files (x86)\Nokia
2011-11-19 02:18 . 2011-11-24 04:59 801088 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2011-11-19 02:18 . 2011-11-24 04:59 2095424 ----a-w- c:\windows\SysWow64\nvapi.dll
2011-11-19 02:18 . 2011-11-24 04:59 14854464 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2011-11-18 19:29 . 2011-11-18 19:29 -------- d-----w- c:\program files (x86)\Valve
2011-11-18 17:34 . 2011-11-18 17:34 -------- d-----w- c:\program files (x86)\ICQ6Toolbar
2011-11-18 17:34 . 2011-11-18 17:34 -------- d-----w- c:\programdata\ICQ
2011-11-18 17:34 . 2011-11-23 13:57 -------- d-----w- c:\program files (x86)\ICQ7.7
2011-11-18 17:27 . 2011-11-18 17:27 -------- d-----w- c:\programdata\Rockstar Games
2011-11-18 16:27 . 2011-11-30 15:39 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller
2011-11-18 16:09 . 2011-12-01 07:16 -------- d-----w- c:\program files (x86)\Nová složka
2011-11-18 15:29 . 2011-11-18 15:29 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll
2011-11-18 15:28 . 2011-11-18 15:28 -------- d-----w- c:\windows\SysWow64\xlive
2011-11-18 15:28 . 2011-11-18 15:28 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE
2011-11-18 14:32 . 2011-11-18 17:27 -------- d-----w- c:\program files (x86)\Rockstar Games
2011-11-18 13:44 . 2011-11-18 13:44 -------- d-----w- c:\program files (x86)\Geeks3D
2011-11-18 09:57 . 2010-11-09 14:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys
2011-11-18 09:57 . 2011-11-18 09:57 -------- d-----w- c:\program files\CPUID
2011-11-18 09:52 . 2011-11-18 09:52 -------- d-----w- c:\program files (x86)\VideoLAN
2011-11-17 01:48 . 2011-11-17 01:48 -------- d--h--w- c:\windows\msdownld.tmp
2011-11-17 00:21 . 2008-07-10 10:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll
2011-11-15 20:24 . 2011-11-15 20:24 -------- d-----w- c:\users\Public\CyberLink
2011-11-15 20:05 . 2011-11-15 20:05 -------- d-----w- c:\program files (x86)\Elaborate Bytes
2011-11-15 15:47 . 2011-11-24 04:59 1726272 ----a-w- c:\windows\system32\nvdispco64.dll
2011-11-15 15:47 . 2011-11-24 04:59 1466176 ----a-w- c:\windows\system32\nvgenco64.dll
2011-11-15 15:24 . 2011-11-15 15:24 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2011-11-15 15:24 . 2011-11-15 15:24 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2011-11-15 15:24 . 2011-11-15 15:24 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2011-11-15 15:24 . 2011-11-15 15:24 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2011-11-15 15:24 . 2011-11-15 15:24 -------- d-----w- c:\program files (x86)\OpenAL
2011-11-15 15:23 . 2011-11-15 15:23 -------- d-----w- c:\program files (x86)\Common Files\Futuremark Shared
2011-11-15 14:22 . 2011-10-03 04:06 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-11-15 13:35 . 2011-11-15 13:38 -------- d-----w- c:\windows\DirectX
2011-11-15 13:19 . 2011-04-28 03:55 552960 ----a-w- c:\windows\system32\drivers\bthport.sys
2011-11-15 13:19 . 2011-04-28 03:54 80384 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS
2011-11-15 13:11 . 2011-12-05 12:47 -------- d-----w- c:\users\Guest
2011-11-15 13:08 . 2011-11-15 13:08 -------- d-----w- c:\windows\system32\Wat
2011-11-15 12:54 . 2011-11-15 12:54 -------- d-----w- c:\program files\DirectX
2011-11-15 12:52 . 2011-11-15 12:52 627600 ----a-w- c:\windows\system32\deployJava1.dll
2011-11-15 12:48 . 2011-11-15 12:48 -------- d-----w- c:\programdata\Symantec
2011-11-15 12:48 . 2011-11-18 11:03 -------- d-----w- c:\programdata\Norton
2011-11-15 11:06 . 2011-11-15 11:06 -------- d-----w- C:\extensions
2011-11-15 11:06 . 2011-11-15 11:06 -------- d-----w- c:\program files (x86)\Conduit
2011-11-15 11:06 . 2011-11-15 11:06 -------- d-----w- c:\program files (x86)\uTorrent
2011-11-15 10:29 . 2011-09-29 16:29 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys
2011-11-15 10:29 . 2011-03-12 12:08 1465344 ----a-w- c:\windows\system32\XpsPrint.dll
2011-11-15 10:29 . 2011-03-12 11:23 870912 ----a-w- c:\windows\SysWow64\XpsPrint.dll
2011-11-15 10:29 . 2011-09-29 04:03 3144704 ----a-w- c:\windows\system32\win32k.sys
2011-11-15 10:29 . 2011-08-17 05:26 613888 ----a-w- c:\windows\system32\psisdecd.dll
2011-11-15 10:29 . 2011-08-17 05:25 108032 ----a-w- c:\windows\system32\psisrndr.ax
2011-11-15 10:29 . 2011-08-17 04:24 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll
2011-11-15 10:29 . 2011-08-17 04:19 75776 ----a-w- c:\windows\SysWow64\psisrndr.ax
2011-11-15 01:52 . 2011-11-15 04:00 -------- d-----w- c:\program files (x86)\Renesas Electronics
2011-11-15 01:51 . 2011-12-03 03:31 -------- d-----w- C:\Drivers
2011-11-15 00:49 . 2011-11-15 01:37 -------- d-----w- c:\program files (x86)\Futuremark
2011-11-14 19:50 . 2011-11-15 04:00 -------- d-----w- c:\program files (x86)\Skype
2011-11-14 19:50 . 2011-11-15 15:17 -------- d-----w- c:\programdata\Skype
2011-11-14 19:41 . 2011-11-14 19:41 -------- d-----w- c:\windows\Sun
2011-11-14 19:39 . 2011-11-14 19:39 -------- d-----w- c:\program files (x86)\Common Files\Java
2011-11-14 19:37 . 2011-11-15 14:56 -------- d-----w- c:\program files (x86)\Java
2011-11-14 19:36 . 2011-11-18 09:47 -------- d-----w- c:\program files (x86)\Common Files\Adobe
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-12-08 13:20 . 2010-11-21 03:27 270720 ------w- c:\windows\system32\MpSigStub.exe
2011-11-24 04:59 . 2011-10-14 23:38 949568 ----a-w- c:\windows\system32\nvumdshimx.dll
2011-11-24 04:59 . 2011-10-14 23:38 241984 ----a-w- c:\windows\system32\nvinitx.dll
2011-11-24 04:59 . 2011-10-14 23:38 203072 ----a-w- c:\windows\SysWow64\nvinit.dll
2011-11-24 04:59 . 2011-10-14 23:38 2403136 ----a-w- c:\windows\system32\nvapi64.dll
2011-11-24 02:52 . 2011-05-02 19:36 2417322 ----a-w- c:\windows\system32\nvcoproc.bin
2011-11-24 02:47 . 2011-05-02 19:35 6004544 ----a-w- c:\windows\system32\nvcpl.dll
2011-11-24 02:41 . 2011-05-02 19:35 3028800 ----a-w- c:\windows\system32\nvsvc64.dll
2011-11-24 02:38 . 2011-05-02 19:36 55616 ----a-w- c:\windows\system32\nv3dappshextr.dll
2011-11-24 02:38 . 2011-05-02 19:36 416064 ----a-w- c:\windows\SysWow64\oemdspif.dll
2011-11-24 02:38 . 2011-05-02 19:36 2562368 ----a-w- c:\windows\system32\nvsvcr.dll
2011-11-24 02:38 . 2011-05-02 19:36 889664 ----a-w- c:\windows\system32\nvvsvc.exe
2011-11-24 02:38 . 2011-05-02 19:36 839488 ----a-w- c:\windows\system32\nv3dappshext.dll
2011-11-24 02:38 . 2011-05-02 19:36 63296 ----a-w- c:\windows\system32\nvshext.dll
2011-11-24 02:38 . 2011-05-02 19:36 118080 ----a-w- c:\windows\system32\nvmctray.dll
2011-11-15 13:16 . 2010-06-24 11:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll
2011-10-15 00:31 . 2011-10-15 00:31 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys
2011-10-15 00:31 . 2011-10-15 00:31 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll
2011-10-15 00:31 . 2010-10-25 19:44 29792 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2011-10-15 00:28 . 2011-10-15 00:28 57952 ----a-w- c:\windows\system32\drivers\fbfmon.sys
2011-10-15 00:28 . 2011-10-15 00:28 44896 ----a-w- c:\windows\system32\FbDefrag.exe
2011-10-15 00:28 . 2011-10-15 00:28 15968 ----a-w- c:\windows\system32\NFbfmon.dll
2011-10-15 00:28 . 2011-10-15 00:28 13408 ----a-w- c:\windows\system32\drivers\BPntDrv.sys
2011-10-15 00:21 . 2011-10-15 00:21 783712 ----a-w- c:\windows\system32\EncIcons.dll
2011-10-15 00:21 . 2011-10-15 00:21 628064 ----a-w- c:\windows\system32\SimpleExt64.dll
2011-10-15 00:21 . 2011-10-15 00:21 562016 ----a-w- c:\windows\system32\Lenovo.VerifaceStub.dll
2011-10-15 00:21 . 2011-10-15 00:21 2819936 ----a-w- c:\windows\system32\TakeSnpshot.dll
2011-10-15 00:21 . 2011-10-15 00:21 2446176 ----a-w- c:\windows\system32\LenovoVeriface.Interface.dll
2011-10-15 00:21 . 2011-10-15 00:21 1769312 ----a-w- c:\windows\system32\imagereog.dll
2011-10-15 00:21 . 2011-10-15 00:21 1510752 ----a-w- c:\windows\system32\Apblend64.dll
2011-10-15 00:21 . 2011-10-15 00:21 1508192 ----a-w- c:\windows\system32\IcnOvrly.dll
2011-10-15 00:21 . 2011-10-15 00:21 583008 ----a-w- c:\windows\SysWow64\VeriFaceComServer.exe
2011-10-15 00:21 . 2011-10-15 00:21 472416 ----a-w- c:\windows\SysWow64\Lenovo.VerifaceStub.dll
2011-10-15 00:21 . 2011-10-15 00:21 25952 ----a-w- c:\windows\SysWow64\Lenovo.Veriface.dll
2011-10-15 00:21 . 2011-10-15 00:21 2278752 ----a-w- c:\windows\SysWow64\TakeSnpshot.dll
2011-10-15 00:21 . 2011-10-15 00:21 2086240 ----a-w- c:\windows\SysWow64\LenovoVeriface.Interface.dll
2011-10-15 00:21 . 2011-10-15 00:21 1500512 ----a-w- c:\windows\SysWow64\Apblend.dll
2011-10-15 00:21 . 2011-10-15 00:21 1394016 ----a-w- c:\windows\SysWow64\Imagereog.dll
2011-10-15 00:21 . 2011-10-15 00:21 1171456 ----a-w- c:\windows\SysWow64\PicNotify.dll
2011-10-15 00:21 . 2011-10-15 00:21 11104 ----a-w- c:\windows\SysWow64\biologon.dll
2011-10-15 00:21 . 2011-10-15 00:18 97472 ----a-w- c:\windows\SysWow64\gacutil.exe
2011-10-15 00:21 . 2011-10-15 00:18 1025376 ----a-w- c:\windows\SysWow64\CamOpEx.dll
2011-10-15 00:21 . 2011-10-15 00:21 628064 ----a-w- c:\windows\system32\SimpleExt.dll
2011-10-15 00:21 . 2011-10-15 00:21 876032 ----a-w- c:\windows\SysWow64\DevIL.dll
2011-10-15 00:21 . 2011-10-15 00:21 77824 ----a-w- c:\windows\SysWow64\ILU.dll
2011-10-15 00:21 . 2011-10-15 00:21 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll
2011-10-15 00:21 . 2011-10-15 00:21 32768 ----a-w- c:\windows\SysWow64\ILUT.dll
2011-10-15 00:21 . 2011-10-15 00:21 1044480 ----a-w- c:\windows\SysWow64\3DImageRenderer.dll
2011-10-15 00:20 . 2011-10-15 00:20 279968 ----a-w- c:\windows\system32\LenovoSdk.OKTDLL.dll
2011-10-15 00:18 . 2011-10-15 00:18 87392 ----a-w- c:\windows\SysWow64\LenovoRIC.interface.dll
2011-10-15 00:18 . 2011-10-15 00:18 83296 ----a-w- c:\windows\SysWow64\GetASData.dll
2011-10-15 00:18 . 2011-10-15 00:18 82944 ----a-w- c:\windows\system32\LenovoRIC.interface.dll
2011-10-15 00:18 . 2011-10-15 00:18 80480 ----a-w- c:\windows\SysWow64\WinIoEx.dll
2011-10-15 00:18 . 2011-10-15 00:18 74240 ----a-w- c:\windows\system32\GetASData.dll
2011-10-15 00:18 . 2011-10-15 00:18 58720 ----a-w- c:\windows\SysWow64\LenovoRIC.stub.dll
2011-10-15 00:18 . 2011-10-15 00:18 557056 ----a-w- c:\windows\system32\LenovoRIC.stub.dll
2011-10-15 00:18 . 2011-10-15 00:18 2353152 ----a-w- c:\windows\system32\ColorBlindnessDLL.dll
2011-10-15 00:18 . 2011-10-15 00:18 1771872 ----a-w- c:\windows\SysWow64\ColorBlindnessDLL.dll
2011-10-15 00:18 . 2011-10-15 00:18 15456 ----a-w- c:\windows\system32\drivers\winioex.sys
2011-10-15 00:18 . 2011-10-15 00:18 20064 ----a-w- c:\windows\system32\drivers\delayman.sys
2011-10-15 00:18 . 2011-10-15 00:18 15456 ----a-w- c:\windows\system32\codelayman.dll
2011-10-15 00:18 . 2011-10-15 00:18 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll
2011-10-14 15:14 . 2011-10-14 15:14 951680 ----a-w- c:\windows\system32\drivers\ndis.sys
2011-10-14 15:14 . 2011-10-14 15:14 96768 ----a-w- c:\windows\system32\fsutil.exe
2011-10-14 15:14 . 2011-10-14 15:14 74240 ----a-w- c:\windows\SysWow64\fsutil.exe
2011-10-14 15:14 . 2011-10-14 15:14 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys
2011-10-14 15:14 . 2011-10-14 15:14 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys
2011-10-14 15:14 . 2011-10-14 15:14 2565632 ----a-w- c:\windows\system32\esent.dll
2011-10-14 15:14 . 2011-10-14 15:14 189824 ----a-w- c:\windows\system32\drivers\storport.sys
2011-10-14 15:14 . 2011-10-14 15:14 1699328 ----a-w- c:\windows\SysWow64\esent.dll
2011-10-14 15:14 . 2011-10-14 15:14 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys
2011-10-14 15:14 . 2011-10-14 15:14 1659776 ----a-w- c:\windows\system32\drivers\ntfs.sys
2011-10-14 15:14 . 2011-10-14 15:14 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys
2011-10-14 15:14 . 2011-10-14 15:14 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys
2011-10-14 15:14 . 2011-10-14 15:14 246784 ----a-w- c:\windows\system32\input.dll
2011-10-14 15:14 . 2011-10-14 15:14 202240 ----a-w- c:\windows\SysWow64\input.dll
2011-10-14 15:13 . 2011-10-14 15:13 976896 ----a-w- c:\windows\system32\inetcomm.dll
2011-10-14 15:13 . 2011-10-14 15:13 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll
2011-10-14 15:13 . 2011-10-14 15:13 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2011-10-14 15:13 . 2011-10-14 15:13 158208 ----a-w- c:\windows\system32\drivers\mrxsmb.sys
2011-10-14 15:13 . 2011-10-14 15:13 128000 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys
2011-10-14 15:13 . 2011-10-14 15:13 467456 ----a-w- c:\windows\system32\drivers\srv.sys
2011-10-14 15:13 . 2011-10-14 15:13 410112 ----a-w- c:\windows\system32\drivers\srv2.sys
2011-10-14 15:13 . 2011-10-14 15:13 168448 ----a-w- c:\windows\system32\drivers\srvnet.sys
2011-10-14 15:12 . 2011-10-14 15:12 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2011-10-14 15:12 . 2011-10-14 15:12 7936 ----a-w- c:\windows\system32\drivers\usbd.sys
2011-10-14 15:12 . 2011-10-14 15:12 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys
2011-10-14 15:12 . 2011-10-14 15:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys
2011-10-14 15:12 . 2011-10-14 15:12 325120 ----a-w- c:\windows\system32\drivers\usbport.sys
2011-10-14 15:12 . 2011-10-14 15:12 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys
2011-10-14 15:12 . 2011-10-14 15:12 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys
2011-10-14 15:12 . 2011-10-14 15:12 2871808 ----a-w- c:\windows\explorer.exe
2011-10-14 15:12 . 2011-10-14 15:12 2616320 ----a-w- c:\windows\SysWow64\explorer.exe
2011-10-14 15:12 . 2011-10-14 15:12 476160 ----a-w- c:\windows\system32\XpsGdiConverter.dll
2011-10-14 15:12 . 2011-10-14 15:12 288256 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll
2011-10-14 15:11 . 2011-10-14 15:11 30208 ----a-w- c:\windows\system32\dnscacheugc.exe
2011-10-14 15:11 . 2011-10-14 15:11 28672 ----a-w- c:\windows\SysWow64\dnscacheugc.exe
2011-10-14 15:11 . 2011-10-14 15:11 183296 ----a-w- c:\windows\system32\dnsrslvr.dll
2011-10-14 15:11 . 2011-10-14 15:11 70656 ----a-w- c:\windows\SysWow64\fontsub.dll
2011-10-14 15:11 . 2011-10-14 15:11 46080 ----a-w- c:\windows\system32\atmlib.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NokiaSuite.exe"="c:\program files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" [2011-11-01 1053056]
"OscarX7Mouse5Mode"="c:\program files (x86)\OscarX7Editor5Mode\OscarX7Editor5Mode\OscarEditor.exe" [2011-11-10 3517952]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-12 283160]
"YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2011-01-28 136488]
"VeriFaceManager"="c:\program files (x86)\Lenovo\VeriFace\PManage.exe" [2011-10-15 329056]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes' Anti-Malware"="c:\program files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-08-31 449608]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2011-5-12 1211168]
Kaspersky Anti-Hacker.lnk - c:\program files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe [N/A]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"mixer2"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 gupdate;Google Update Service (gupdate);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\progra~2\mcafee\SITEAD~1\mcsacore.exe [x]
R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x]
R3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 cpuz130;cpuz130;c:\users\Lenovo\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x]
R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-07-29 16776]
R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-07-29 9096]
R3 gupdatem;Služba Google Update (gupdatem);c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-15 136176]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys [x]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184]
S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x]
S0 fbfmon;fbfmon;c:\windows\system32\drivers\fbfmon.sys [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys [x]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x]
S1 BPntDrv;BPntDrv;c:\windows\system32\drivers\BPntDrv.sys [x]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x]
S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S1 winioex;winioex;c:\windows\system32\drivers\winioex.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-06-06 64952]
S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x]
S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664]
S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]
S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944]
S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-12 13336]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-08-31 366152]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2011-11-24 2348864]
S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-09-14 508264]
S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys [x]
S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x]
S3 DelayMan;ACPI DelayMan Filter Service;c:\windows\system32\DRIVERS\delayman.sys [x]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x]
S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x]
S3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver;c:\windows\system32\DRIVERS\jmccgp.sys [x]
S3 JmUsbVideo;JMicron 31x Upper Filter Driver;c:\windows\system32\Drivers\jmcam.sys [x]
S3 JmUsbVideo2;JMicron 31x Lower Filter Driver;c:\windows\system32\Drivers\jmcam_lo.sys [x]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x]
S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x]
S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x]
S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x]
S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x]
S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x]
S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-09-14 219496]
S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x]
S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - MBAMPROTECTOR
.
Obsah adresáře 'Naplánované úlohy'
.
2011-12-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-15 00:14]
.
2011-12-09 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-10-15 00:14]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VeriFace Enc]
@="{771C7324-DA80-49D3-8017-753B0AF60951}"
[HKEY_CLASSES_ROOT\CLSID\{771C7324-DA80-49D3-8017-753B0AF60951}]
2011-10-15 00:21 1508192 ----a-w- c:\windows\System32\IcnOvrly.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
"IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-05-02 1935120]
"OnekeyStudio"="c:\program files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe" [2011-10-15 789920]
"Lenovo EE Boot Optimizer"="c:\program files (x86)\Lenovo\Boot Optimizer\PopWnd.exe" [2011-10-15 206176]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2011-10-15 9753024]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2011-10-15 5908928]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-31 167704]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-31 392472]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-31 416024]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 4035152]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x1
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 213.46.172.36 213.46.172.37
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
Toolbar-Locked - (no file)
Toolbar-Locked - (no file)
WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file)
HKLM-Run-SynTPEnh - c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe
HKLM-Run-SpywareTerminatorShield - c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe
HKLM-Run-SpywareTerminatorUpdater - c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
.
.
Binary file temp00 matches
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2567127309-3558950632-4008851899-1001\Software\SecuROM\License information*]
"datasecu"=hex:a6,4c,48,7c,7f,a5,0a,9e,6b,6e,34,8a,46,85,d6,52,72,24,7a,3f,31,
c3,1f,32,af,63,7d,47,e9,aa,9d,52,e2,79,fa,08,83,5e,ad,cc,26,ef,67,11,52,e7,\
"rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11e_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\windows\\SysWOW64\\Macromed\\Flash\\Flash11e.ocx, 1"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
"SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,
00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2011-12-09 16:03:33
ComboFix-quarantined-files.txt 2011-12-09 15:03
.
Před spuštěním: Volných bajtů: 178 483 884 032
Po spuštění: Volných bajtů: 178 351 607 808
.
- - End Of File - - 5D499B0426BD449D959EC8F3F0058652

Tak nějaký bordel ComboFix našel a smazal. Ještě drobně dočistíme.

MBAM odeber ze spouštění po startu systému, případně ho odinstaluj úplně.

Taky tam máš až nějak moc bezpečnostních programů - vyber si potom jen jeden antivir, jeden firewall a jeden antispy program, který ale nedávej jako rezident, ale jen na občasné scany.

Pokud jsi tak ještě neučinil, přesuň ComboFix na Plochu.

Otevři si Poznámkový blok (Start >> Spustit... (nebo Win+R) >> do okénka napiš notepad >> [Enter]).
Zkopíruj do něj tento script:

Kód: Vybrat vše

KillAll::

Driver::
gupdate
gupdatem
gusvc
McAfee SiteAdvisor Service
AdobeARMservice
ICQ Service

File::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Folder::
c:\programdata\Lavasoft
c:\program files\McAfee
c:\program files (x86)\ICQ6Toolbar
c:\program files (x86)\Conduit

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"=-
"Persistence"=-

RegNull::
[HKEY_USERS\S-1-5-21-2567127309-3558950632-4008851899-1001\Software\SecuROM\License information*]

RegLock::
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node]
[HKEY_LOCAL_MACHINE\SOFTWARE\McAfee]
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control]

DDS::
uLocal Page = c:\windows\system32\blank.htm
mLocal Page = c:\windows\SYSTEM32\blank.htm

Reboot::

Ulož vytvořený TXT jako CFScript.txt
Přetáhni vytvořený CFScript.txt nad ComboFix a pusť (viz obrázek).
Po aplikaci scriptu (a případném restartu PC) na Tebe vyskočí log. Jeho obsah mi sem vlož.

Může se stát, že po aplikaci scriptu nenaběhnou Windows. V tom případě restartuj PC, hned při náběhu mačkej klávesu F8 a zvol Poslední známou konfiguraci.

zde je log akorat ted nemam absolutni pristup k internetu nepomohl ani bod obnoveni pokud nebudete vedet napada me pak jen a pouze kompletni reinstal

log:
ComboFix 11-12-09.02 - Lenovo 10.12.2011 15:37:15.2.4 - x64 Microsoft Windows 7 Home Premium 6.1.7601.1.1250.420.1029.18.4040.2172 [GMT 1:00] Spu嗾�� z: c:\users\Lenovo\Desktop\ComboFix.exe Pou枴t� ovl疆ac� pp匤a鐺 :: c:\users\Lenovo\Desktop\CFScript.txt AV: ESET Smart Security 5.0 *Enabled/Updated* {77DEAFED-8149-104B-25A1-21771CA47CD1} FW: ESET personal firewall *Enabled* {4FE52EC8-CB26-1113-0EFE-8842E2773BAA} SP: ESET Smart Security 5.0 *Enabled/Updated* {CCBF4E09-A773-1FC5-1F11-1A056723366C} SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}  * Vytvon nov� Bod Obnoven�  * Rezidentn� 嗾咜 AV je zapnut� . . FILE :: "c:\windows\Tasks\GoogleUpdateTaskMachineCore.job" "c:\windows\Tasks\GoogleUpdateTaskMachineUA.job" . . ((((((((((((((((((((((((((((((((((((((( Ostatn� v�mazy ))))))))))))))))))))))))))))))))))))))))))))))))) . . c:\program files (x86)\Conduit c:\program files (x86)\Conduit\Community Alerts\Alert.dll c:\program files (x86)\ICQ6Toolbar c:\program files (x86)\ICQ6Toolbar\config.xml c:\program files (x86)\ICQ6Toolbar\Icons.bmp c:\program files (x86)\ICQ6Toolbar\ICQ Service.exe c:\program files (x86)\ICQ6Toolbar\icq6Toolbar.ico c:\program files (x86)\ICQ6Toolbar\ICQToolBar.dll c:\program files (x86)\ICQ6Toolbar\ICQUnToolbar.exe c:\program files (x86)\ICQ6Toolbar\logo_small.gif c:\program files (x86)\ICQ6Toolbar\ServiceStarter.exe c:\program files (x86)\ICQ6Toolbar\short.wav c:\program files (x86)\ICQ6Toolbar\Version.txt c:\program files (x86)\ICQ6Toolbar\voucher.bmp c:\program files (x86)\ICQ6Toolbar\voucher2.bmp c:\program files\McAfee c:\program files\McAfee\MPF\data\TS_CA.crt c:\program files\McAfee\MPF\data\TSClient.crt c:\program files\McAfee\MPF\data\TSClient.key c:\program files\McAfee\MSC\Help\mcafee.html c:\program files\McAfee\MSC\langmap.dat c:\program files\McAfee\MSC\license.txt c:\program files\McAfee\MSC\mcscindx.dat c:\program files\McAfee\MSC\mscuicfg.dat c:\program files\McAfee\MSC\oeminfo\mpf\mpfUC.cab c:\program files\McAfee\MSC\oeminfo\mqs\mqsUC.cab c:\program files\McAfee\MSC\oeminfo\msad\cs\714-11\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\da\714-12\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\de\714-4\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\el\714-14\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\en-AU\714-9\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\en-CA\714-10\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\en-GB\714-7\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\en-US\714-1\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\es-MX\714-19\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\es\714-3\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\fi\714-13\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\fr-CA\714-17\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\fr\714-5\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\hu\714-22\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\it\714-6\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\jp\714-18\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\ko\714-15\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\nl\714-20\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\no\714-21\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\pl\714-16\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\pt-BR\714-8\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\pt\714-23\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\ru\714-24\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\sv\714-28\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\tr\714-26\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\zh-CN\714-2\msaduc.cab c:\program files\McAfee\MSC\oeminfo\msad\zh-TW\714-27\msaduc.cab c:\program files\McAfee\MSC\oeminfo\MSC\cs\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\cs\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\cs\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\cs\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\da\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\da\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\da\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\da\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\de\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\de\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\de\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\de\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\el\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\el\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\el\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\el\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-AU\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-AU\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-AU\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-AU\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-CA\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-CA\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-CA\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-CA\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-GB\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-GB\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-GB\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-GB\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-US\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-US\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-US\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\en-US\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\es-MX\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\es-MX\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\es-MX\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\es-MX\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\es\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\es\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\es\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\es\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\fi\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\fi\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\fi\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\fi\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr-CA\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr-CA\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr-CA\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr-CA\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\fr\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\hu\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\hu\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\hu\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\hu\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\it\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\it\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\it\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\it\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\jp\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\jp\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\jp\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\jp\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\ko\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\ko\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\ko\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\ko\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\nl\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\nl\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\nl\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\nl\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\no\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\no\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\no\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\no\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\pl\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\pl\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\pl\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\pl\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt-BR\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt-BR\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt-BR\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt-BR\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\pt\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\ru\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\ru\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\ru\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\ru\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\sv\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\sv\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\sv\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\sv\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\tr\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\tr\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\tr\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\tr\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-CN\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-CN\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-CN\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-CN\subst64.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-TW\Msccust.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-TW\msccust64.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-TW\subst.cab c:\program files\McAfee\MSC\oeminfo\MSC\zh-TW\subst64.cab c:\program files\McAfee\MSC\oeminfo\nmc\nmcuc.cab c:\program files\McAfee\MSC\oeminfo\vso\oobe\vsodis.cab c:\program files\McAfee\MSC\oeminfo\vso\oobe\vsoena.cab c:\program files\McAfee\MSC\oeminfo\vso\oobe\vsoUC.cab c:\program files\McAfee\VirusScan\DAT\6308.0\avvclean.dat c:\program files\McAfee\VirusScan\DAT\6308.0\avvnames.dat c:\program files\McAfee\VirusScan\DAT\6308.0\avvscan.dat c:\program files\McAfee\VirusScan\DAT\6308.0\bootclean.dat c:\program files\McAfee\VirusScan\DAT\6308.0\bootnames.dat c:\program files\McAfee\VirusScan\DAT\6308.0\bootscan.dat c:\program files\McAfee\VirusScan\Engine\5400.1158\config.dat c:\program files\McAfee\VirusScan\Engine\5400.1158\signlic.txt c:\program files\McAfee\VirusScan\mvsuicfg.dat c:\programdata\Lavasoft c:\programdata\Lavasoft\License\adaware.da2 c:\programdata\Lavasoft\License\guid.dat c:\windows\Tasks\GoogleUpdateTaskMachineCore.job c:\windows\Tasks\GoogleUpdateTaskMachineUA.job . . ((((((((((((((((((((((((((((((((((((((( Ovlada鐺/Slu枌y ))))))))))))))))))))))))))))))))))))))))))))))))) . . -------\Service_AdobeARMservice -------\Service_gupdate -------\Service_gupdatem -------\Service_McAfee SiteAdvisor Service . . ((((((((((((((((((((((((( Soubory vytvon� od 2011-11-10 do 2011-12-10 ))))))))))))))))))))))))))))))) . . 2011-12-10 14:41 . 2011-12-10 14:41 -------- d-----w- c:\users\Default\AppData\Local\temp 2011-12-08 22:57 . 2011-12-08 22:57 -------- d-----w- c:\programdata\Malwarebytes 2011-12-08 22:57 . 2011-08-31 16:00 25416 ----a-w- c:\windows\system32\drivers\mbam.sys 2011-12-07 23:20 . 2011-12-07 23:20 -------- d-----w- c:\program files (x86)\Trend Micro 2011-12-07 21:21 . 2011-12-07 21:21 -------- d-----w- c:\program files (x86)\Common Files\Kaspersky Lab 2011-12-07 21:21 . 2011-12-07 21:21 -------- d-----w- C:\kav 2011-12-06 04:22 . 2011-12-06 04:22 -------- d-----w- c:\program files\ESET 2011-12-05 15:34 . 2011-12-05 15:34 -------- d-----w- c:\programdata\IObit 2011-12-05 15:32 . 2011-12-05 15:32 -------- d-----w- c:\program files\IObit 2011-12-05 15:32 . 2011-12-05 15:32 -------- d-----w- c:\program files (x86)\IObit 2011-12-05 13:19 . 2011-12-05 13:19 55384 ----a-w- c:\windows\system32\drivers\SBREDrv.sys 2011-12-05 13:19 . 2011-12-05 13:19 51496 ----a-w- c:\windows\system32\drivers\stflt.sys 2011-12-05 13:17 . 2011-12-07 09:38 -------- d-----w- c:\program files (x86)\Spyware Terminator 2011-12-05 13:16 . 2011-12-05 13:16 -------- d-----w- c:\program files (x86)\Toolbar Cleaner 2011-12-05 12:51 . 2011-12-05 12:51 -------- d-----w- c:\program files (x86)\ESET 2011-12-05 06:48 . 2011-12-05 12:47 -------- d-----w- c:\program files (x86)\Common Files\McAfee 2011-12-05 06:48 . 2011-12-05 12:47 -------- d-----w- c:\program files\Common Files\McAfee 2011-12-05 06:48 . 2011-12-05 06:48 -------- d-----w- c:\program files\McAfee.com 2011-12-03 03:04 . 2011-12-03 03:04 -------- d-----w- c:\program files (x86)\THQ 2011-12-03 01:56 . 2011-12-03 01:56 -------- d-----w- c:\program files (x86)\Common Files\Skype 2011-12-01 14:49 . 2011-12-05 12:47 -------- d-----w- C:\totalcmd 2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\UC.PIF 2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\RAR.PIF 2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\NOCLOSE.PIF 2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\LHA.PIF 2011-12-01 14:49 . 2008-04-22 06:03 545 ----a-w- c:\windows\ARJ.PIF 2011-12-01 06:35 . 2011-12-01 06:35 -------- d-----w- c:\programdata\Energy Management 2011-11-30 16:53 . 2011-09-09 17:23 2469760 ----a-w- c:\windows\SysWow64\BootMan.exe 2011-11-30 16:53 . 2011-09-07 16:06 3321728 ----a-w- c:\windows\system32\BootMan.exe 2011-11-30 16:53 . 2011-07-29 12:54 19840 ----a-w- c:\windows\SysWow64\EuEpmGdi.dll 2011-11-30 16:53 . 2011-07-29 12:54 16256 ----a-w- c:\windows\system32\EuEpmGdi.dll 2011-11-30 16:53 . 2011-07-29 12:54 9096 ----a-w- c:\windows\system32\EuGdiDrv.sys 2011-11-30 16:53 . 2011-07-29 12:54 16776 ----a-w- c:\windows\system32\epmntdrv.sys 2011-11-30 16:53 . 2011-07-29 12:54 100232 ----a-w- c:\windows\system32\setupempdrvx64.exe 2011-11-30 16:53 . 2011-07-29 12:54 86408 ----a-w- c:\windows\SysWow64\setupempdrv03.exe 2011-11-30 16:53 . 2011-07-29 12:54 8456 ----a-w- c:\windows\SysWow64\EuGdiDrv.sys 2011-11-30 16:53 . 2011-07-29 12:54 14216 ----a-w- c:\windows\SysWow64\epmntdrv.sys 2011-11-30 16:53 . 2011-11-30 16:53 -------- d-----w- c:\program files (x86)\EASEUS 2011-11-30 16:49 . 2011-11-30 16:49 276576 ----a-w- c:\windows\system32\drivers\snapman.sys 2011-11-30 16:48 . 2011-11-30 16:48 -------- d-----w- c:\program files (x86)\Acronis 2011-11-30 16:48 . 2011-11-30 16:48 -------- d-----w- c:\program files (x86)\Common Files\Acronis 2011-11-30 16:38 . 2011-11-30 16:39 -------- d-----w- C:\CPM 2011-11-28 12:41 . 2011-12-05 12:51 -------- d-----w- c:\users\UpdatusUser 2011-11-27 22:05 . 2011-11-27 22:05 -------- d-----w- c:\program files (x86)\Lavalys 2011-11-27 21:08 . 2011-11-27 21:20 -------- d-----w- c:\programdata\VirtualizedApplications 2011-11-25 21:12 . 2011-11-26 19:47 -------- d-----w- c:\program files (x86)\Microsoft Application Virtualization Client 2011-11-21 17:00 . 2011-11-08 16:07 1458176 ------w- c:\programdata\Microsoft\Windows\Templates\A4Tech\OscarX7Editor5Mode\Setup.exe 2011-11-21 16:59 . 2011-11-21 17:00 -------- d-----w- c:\program files (x86)\OscarX7Editor5Mode 2011-11-21 16:59 . 2011-11-21 16:59 -------- d-----w- c:\program files (x86)\5-Mode Oscar Editor 2011-11-20 20:50 . 2011-11-20 20:50 -------- d-----w- c:\programdata\EA Core 2011-11-20 20:50 . 2011-11-20 20:50 -------- d-----w- c:\programdata\Electronic Arts 2011-11-20 04:44 . 2011-11-20 04:52 -------- d-----w- c:\program files (x86)\Saints Row 2 2011-11-20 04:35 . 2011-11-20 04:35 -------- d-----w- c:\program files (x86)\MSXML 4.0 2011-11-19 18:23 . 2011-11-19 18:23 -------- d-----w- c:\programdata\PC Suite 2011-11-19 18:22 . 2011-11-19 18:22 -------- d-----w- c:\program files (x86)\Common Files\Nokia 2011-11-19 18:22 . 2011-11-19 18:22 -------- d-----w- c:\programdata\Nokia 2011-11-19 18:22 . 2008-08-28 11:44 25600 ----a-w- c:\windows\system32\drivers\pccsmcfdx64.sys 2011-11-19 18:22 . 2011-12-05 13:21 -------- dc----w- c:\windows\system32\DRVSTORE 2011-11-19 18:22 . 2011-11-19 18:22 -------- d-----w- c:\program files (x86)\PC Connectivity Solution 2011-11-19 18:22 . 2011-08-17 11:59 57856 ----a-w- c:\windows\system32\nmwcdclsX64.dll 2011-11-19 18:16 . 2011-11-19 18:22 -------- d-----w- c:\program files (x86)\Nokia 2011-11-19 02:18 . 2011-11-24 04:59 801088 ----a-w- c:\windows\SysWow64\nvumdshim.dll 2011-11-19 02:18 . 2011-11-24 04:59 2095424 ----a-w- c:\windows\SysWow64\nvapi.dll 2011-11-19 02:18 . 2011-11-24 04:59 14854464 ----a-w- c:\windows\SysWow64\nvd3dum.dll 2011-11-18 19:29 . 2011-11-18 19:29 -------- d-----w- c:\program files (x86)\Valve 2011-11-18 17:34 . 2011-11-18 17:34 -------- d-----w- c:\programdata\ICQ 2011-11-18 17:34 . 2011-11-23 13:57 -------- d-----w- c:\program files (x86)\ICQ7.7 2011-11-18 17:27 . 2011-11-18 17:27 -------- d-----w- c:\programdata\Rockstar Games 2011-11-18 16:27 . 2011-11-30 15:39 -------- d--h--w- c:\program files (x86)\Common Files\EAInstaller 2011-11-18 16:09 . 2011-12-01 07:16 -------- d-----w- c:\program files (x86)\Nov� slo枳a 2011-11-18 15:29 . 2011-11-18 15:29 178800 ----a-w- c:\windows\SysWow64\CmdLineExt_x64.dll 2011-11-18 15:28 . 2011-11-18 15:28 -------- d-----w- c:\windows\SysWow64\xlive 2011-11-18 15:28 . 2011-11-18 15:28 -------- d-----w- c:\program files (x86)\Microsoft Games for Windows - LIVE 2011-11-18 14:32 . 2011-11-18 17:27 -------- d-----w- c:\program files (x86)\Rockstar Games 2011-11-18 13:44 . 2011-11-18 13:44 -------- d-----w- c:\program files (x86)\Geeks3D 2011-11-18 09:57 . 2010-11-09 14:35 21992 ----a-w- c:\windows\system32\drivers\cpuz135_x64.sys 2011-11-18 09:57 . 2011-11-18 09:57 -------- d-----w- c:\program files\CPUID 2011-11-18 09:52 . 2011-11-18 09:52 -------- d-----w- c:\program files (x86)\VideoLAN 2011-11-17 01:48 . 2011-11-17 01:48 -------- d--h--w- c:\windows\msdownld.tmp 2011-11-17 00:21 . 2008-07-10 10:00 3851784 ----a-w- c:\windows\SysWow64\D3DX9_39.dll 2011-11-15 20:24 . 2011-11-15 20:24 -------- d-----w- c:\users\Public\CyberLink 2011-11-15 20:05 . 2011-11-15 20:05 -------- d-----w- c:\program files (x86)\Elaborate Bytes 2011-11-15 15:47 . 2011-11-24 04:59 1726272 ----a-w- c:\windows\system32\nvdispco64.dll 2011-11-15 15:47 . 2011-11-24 04:59 1466176 ----a-w- c:\windows\system32\nvgenco64.dll 2011-11-15 15:24 . 2011-11-15 15:24 466456 ----a-w- c:\windows\system32\wrap_oal.dll 2011-11-15 15:24 . 2011-11-15 15:24 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll 2011-11-15 15:24 . 2011-11-15 15:24 122904 ----a-w- c:\windows\system32\OpenAL32.dll 2011-11-15 15:24 . 2011-11-15 15:24 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll 2011-11-15 15:24 . 2011-11-15 15:24 -------- d-----w- c:\program files (x86)\OpenAL 2011-11-15 15:23 . 2011-11-15 15:23 -------- d-----w- c:\program files (x86)\Common Files\Futuremark Shared 2011-11-15 14:22 . 2011-10-03 04:06 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll 2011-11-15 13:35 . 2011-11-15 13:38 -------- d-----w- c:\windows\DirectX 2011-11-15 13:19 . 2011-04-28 03:55 552960 ----a-w- c:\windows\system32\drivers\bthport.sys 2011-11-15 13:19 . 2011-04-28 03:54 80384 ----a-w- c:\windows\system32\drivers\BTHUSB.SYS 2011-11-15 13:11 . 2011-12-05 12:47 -------- d-----w- c:\users\Guest 2011-11-15 13:08 . 2011-11-15 13:08 -------- d-----w- c:\windows\system32\Wat 2011-11-15 12:54 . 2011-11-15 12:54 -------- d-----w- c:\program files\DirectX 2011-11-15 12:52 . 2011-11-15 12:52 627600 ----a-w- c:\windows\system32\deployJava1.dll 2011-11-15 12:48 . 2011-11-15 12:48 -------- d-----w- c:\programdata\Symantec 2011-11-15 12:48 . 2011-11-18 11:03 -------- d-----w- c:\programdata\Norton 2011-11-15 11:06 . 2011-11-15 11:06 -------- d-----w- C:\extensions 2011-11-15 11:06 . 2011-11-15 11:06 -------- d-----w- c:\program files (x86)\uTorrent 2011-11-15 10:29 . 2011-09-29 16:29 1923952 ----a-w- c:\windows\system32\drivers\tcpip.sys 2011-11-15 10:29 . 2011-03-12 12:08 1465344 ----a-w- c:\windows\system32\XpsPrint.dll 2011-11-15 10:29 . 2011-03-12 11:23 870912 ----a-w- c:\windows\SysWow64\XpsPrint.dll 2011-11-15 10:29 . 2011-09-29 04:03 3144704 ----a-w- c:\windows\system32\win32k.sys 2011-11-15 10:29 . 2011-08-17 05:26 613888 ----a-w- c:\windows\system32\psisdecd.dll 2011-11-15 10:29 . 2011-08-17 05:25 108032 ----a-w- c:\windows\system32\psisrndr.ax 2011-11-15 10:29 . 2011-08-17 04:24 465408 ----a-w- c:\windows\SysWow64\psisdecd.dll 2011-11-15 10:29 . 2011-08-17 04:19 75776 ----a-w- c:\windows\SysWow64\psisrndr.ax 2011-11-15 01:52 . 2011-11-15 04:00 -------- d-----w- c:\program files (x86)\Renesas Electronics 2011-11-15 01:51 . 2011-12-03 03:31 -------- d-----w- C:\Drivers 2011-11-15 00:49 . 2011-11-15 01:37 -------- d-----w- c:\program files (x86)\Futuremark 2011-11-14 19:50 . 2011-11-15 04:00 -------- d-----w- c:\program files (x86)\Skype 2011-11-14 19:50 . 2011-11-15 15:17 -------- d-----w- c:\programdata\Skype 2011-11-14 19:41 . 2011-11-14 19:41 -------- d-----w- c:\windows\Sun 2011-11-14 19:39 . 2011-11-14 19:39 -------- d-----w- c:\program files (x86)\Common Files\Java 2011-11-14 19:37 . 2011-11-15 14:56 -------- d-----w- c:\program files (x86)\Java 2011-11-14 19:36 . 2011-11-18 09:47 -------- d-----w- c:\program files (x86)\Common Files\Adobe 2011-11-14 19:35 . 2011-11-15 10:44 -------- d-----w- c:\windows\SysWow64\Adobe 2011-11-14 19:35 . 2011-11-15 14:19 -------- d-----w- c:\program files (x86)\Common Files\Adobe AIR 2011-11-14 19:26 . 2011-11-14 19:26 -------- d-----w- c:\program files\Java 2011-11-14 19:16 . 2011-11-15 13:08 -------- d-----w- c:\windows\SysWow64\Wat 2011-11-14 17:52 . 2011-11-28 12:40 -------- d-----w- C:\NVIDIA 2011-11-14 17:33 . 2011-12-07 23:39 -------- d-----w- c:\program files (x86)\Opera . . (((((((((((((((((((((((((((((((((((((((( Find3M v�pis )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2011-12-08 13:20 . 2010-11-21 03:27 270720 ------w- c:\windows\system32\MpSigStub.exe 2011-11-24 04:59 . 2011-10-14 23:38 949568 ----a-w- c:\windows\system32\nvumdshimx.dll 2011-11-24 04:59 . 2011-10-14 23:38 241984 ----a-w- c:\windows\system32\nvinitx.dll 2011-11-24 04:59 . 2011-10-14 23:38 203072 ----a-w- c:\windows\SysWow64\nvinit.dll 2011-11-24 04:59 . 2011-10-14 23:38 2403136 ----a-w- c:\windows\system32\nvapi64.dll 2011-11-24 02:52 . 2011-05-02 19:36 2417322 ----a-w- c:\windows\system32\nvcoproc.bin 2011-11-24 02:47 . 2011-05-02 19:35 6004544 ----a-w- c:\windows\system32\nvcpl.dll 2011-11-24 02:41 . 2011-05-02 19:35 3028800 ----a-w- c:\windows\system32\nvsvc64.dll 2011-11-24 02:38 . 2011-05-02 19:36 55616 ----a-w- c:\windows\system32\nv3dappshextr.dll 2011-11-24 02:38 . 2011-05-02 19:36 416064 ----a-w- c:\windows\SysWow64\oemdspif.dll 2011-11-24 02:38 . 2011-05-02 19:36 2562368 ----a-w- c:\windows\system32\nvsvcr.dll 2011-11-24 02:38 . 2011-05-02 19:36 889664 ----a-w- c:\windows\system32\nvvsvc.exe 2011-11-24 02:38 . 2011-05-02 19:36 839488 ----a-w- c:\windows\system32\nv3dappshext.dll 2011-11-24 02:38 . 2011-05-02 19:36 63296 ----a-w- c:\windows\system32\nvshext.dll 2011-11-24 02:38 . 2011-05-02 19:36 118080 ----a-w- c:\windows\system32\nvmctray.dll 2011-11-21 11:40 . 2011-12-09 10:21 8822856 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{49D3A282-710F-4726-BDCC-BC6653B0423C}\mpengine.dll 2011-11-15 13:16 . 2010-06-24 11:33 18328 ----a-w- c:\programdata\Microsoft\IdentityCRL\production\ppcrlconfig600.dll 2011-10-15 00:31 . 2011-10-15 00:31 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys 2011-10-15 00:31 . 2011-10-15 00:31 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll 2011-10-15 00:31 . 2010-10-25 19:44 29792 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys 2011-10-15 00:28 . 2011-10-15 00:28 57952 ----a-w- c:\windows\system32\drivers\fbfmon.sys 2011-10-15 00:28 . 2011-10-15 00:28 44896 ----a-w- c:\windows\system32\FbDefrag.exe 2011-10-15 00:28 . 2011-10-15 00:28 15968 ----a-w- c:\windows\system32\NFbfmon.dll 2011-10-15 00:28 . 2011-10-15 00:28 13408 ----a-w- c:\windows\system32\drivers\BPntDrv.sys 2011-10-15 00:21 . 2011-10-15 00:21 783712 ----a-w- c:\windows\system32\EncIcons.dll 2011-10-15 00:21 . 2011-10-15 00:21 628064 ----a-w- c:\windows\system32\SimpleExt64.dll 2011-10-15 00:21 . 2011-10-15 00:21 562016 ----a-w- c:\windows\system32\Lenovo.VerifaceStub.dll 2011-10-15 00:21 . 2011-10-15 00:21 2819936 ----a-w- c:\windows\system32\TakeSnpshot.dll 2011-10-15 00:21 . 2011-10-15 00:21 2446176 ----a-w- c:\windows\system32\LenovoVeriface.Interface.dll 2011-10-15 00:21 . 2011-10-15 00:21 1769312 ----a-w- c:\windows\system32\imagereog.dll 2011-10-15 00:21 . 2011-10-15 00:21 1510752 ----a-w- c:\windows\system32\Apblend64.dll 2011-10-15 00:21 . 2011-10-15 00:21 1508192 ----a-w- c:\windows\system32\IcnOvrly.dll 2011-10-15 00:21 . 2011-10-15 00:21 583008 ----a-w- c:\windows\SysWow64\VeriFaceComServer.exe 2011-10-15 00:21 . 2011-10-15 00:21 472416 ----a-w- c:\windows\SysWow64\Lenovo.VerifaceStub.dll 2011-10-15 00:21 . 2011-10-15 00:21 25952 ----a-w- c:\windows\SysWow64\Lenovo.Veriface.dll 2011-10-15 00:21 . 2011-10-15 00:21 2278752 ----a-w- c:\windows\SysWow64\TakeSnpshot.dll 2011-10-15 00:21 . 2011-10-15 00:21 2086240 ----a-w- c:\windows\SysWow64\LenovoVeriface.Interface.dll 2011-10-15 00:21 . 2011-10-15 00:21 1500512 ----a-w- c:\windows\SysWow64\Apblend.dll 2011-10-15 00:21 . 2011-10-15 00:21 1394016 ----a-w- c:\windows\SysWow64\Imagereog.dll 2011-10-15 00:21 . 2011-10-15 00:21 1171456 ----a-w- c:\windows\SysWow64\PicNotify.dll 2011-10-15 00:21 . 2011-10-15 00:21 11104 ----a-w- c:\windows\SysWow64\biologon.dll 2011-10-15 00:21 . 2011-10-15 00:18 97472 ----a-w- c:\windows\SysWow64\gacutil.exe 2011-10-15 00:21 . 2011-10-15 00:18 1025376 ----a-w- c:\windows\SysWow64\CamOpEx.dll 2011-10-15 00:21 . 2011-10-15 00:21 628064 ----a-w- c:\windows\system32\SimpleExt.dll 2011-10-15 00:21 . 2011-10-15 00:21 876032 ----a-w- c:\windows\SysWow64\DevIL.dll 2011-10-15 00:21 . 2011-10-15 00:21 77824 ----a-w- c:\windows\SysWow64\ILU.dll 2011-10-15 00:21 . 2011-10-15 00:21 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll 2011-10-15 00:21 . 2011-10-15 00:21 32768 ----a-w- c:\windows\SysWow64\ILUT.dll 2011-10-15 00:21 . 2011-10-15 00:21 1044480 ----a-w- c:\windows\SysWow64\3DImageRenderer.dll 2011-10-15 00:20 . 2011-10-15 00:20 279968 ----a-w- c:\windows\system32\LenovoSdk.OKTDLL.dll 2011-10-15 00:18 . 2011-10-15 00:18 87392 ----a-w- c:\windows\SysWow64\LenovoRIC.interface.dll 2011-10-15 00:18 . 2011-10-15 00:18 83296 ----a-w- c:\windows\SysWow64\GetASData.dll 2011-10-15 00:18 . 2011-10-15 00:18 82944 ----a-w- c:\windows\system32\LenovoRIC.interface.dll 2011-10-15 00:18 . 2011-10-15 00:18 80480 ----a-w- c:\windows\SysWow64\WinIoEx.dll 2011-10-15 00:18 . 2011-10-15 00:18 74240 ----a-w- c:\windows\system32\GetASData.dll 2011-10-15 00:18 . 2011-10-15 00:18 58720 ----a-w- c:\windows\SysWow64\LenovoRIC.stub.dll 2011-10-15 00:18 . 2011-10-15 00:18 557056 ----a-w- c:\windows\system32\LenovoRIC.stub.dll 2011-10-15 00:18 . 2011-10-15 00:18 2353152 ----a-w- c:\windows\system32\ColorBlindnessDLL.dll 2011-10-15 00:18 . 2011-10-15 00:18 1771872 ----a-w- c:\windows\SysWow64\ColorBlindnessDLL.dll 2011-10-15 00:18 . 2011-10-15 00:18 15456 ----a-w- c:\windows\system32\drivers\winioex.sys 2011-10-15 00:18 . 2011-10-15 00:18 20064 ----a-w- c:\windows\system32\drivers\delayman.sys 2011-10-15 00:18 . 2011-10-15 00:18 15456 ----a-w- c:\windows\system32\codelayman.dll 2011-10-15 00:18 . 2011-10-15 00:18 1112288 ----a-w- c:\windows\system32\WdfCoInstaller01007.dll 2011-10-14 15:14 . 2011-10-14 15:14 951680 ----a-w- c:\windows\system32\drivers\ndis.sys 2011-10-14 15:14 . 2011-10-14 15:14 96768 ----a-w- c:\windows\system32\fsutil.exe 2011-10-14 15:14 . 2011-10-14 15:14 74240 ----a-w- c:\windows\SysWow64\fsutil.exe 2011-10-14 15:14 . 2011-10-14 15:14 410496 ----a-w- c:\windows\system32\drivers\iaStorV.sys 2011-10-14 15:14 . 2011-10-14 15:14 27008 ----a-w- c:\windows\system32\drivers\amdxata.sys 2011-10-14 15:14 . 2011-10-14 15:14 2565632 ----a-w- c:\windows\system32\esent.dll 2011-10-14 15:14 . 2011-10-14 15:14 189824 ----a-w- c:\windows\system32\drivers\storport.sys 2011-10-14 15:14 . 2011-10-14 15:14 1699328 ----a-w- c:\windows\SysWow64\esent.dll 2011-10-14 15:14 . 2011-10-14 15:14 166272 ----a-w- c:\windows\system32\drivers\nvstor.sys 2011-10-14 15:14 . 2011-10-14 15:14 1659776 ----a-w- c:\windows\system32\drivers\ntfs.sys 2011-10-14 15:14 . 2011-10-14 15:14 148352 ----a-w- c:\windows\system32\drivers\nvraid.sys 2011-10-14 15:14 . 2011-10-14 15:14 107904 ----a-w- c:\windows\system32\drivers\amdsata.sys 2011-10-14 15:14 . 2011-10-14 15:14 246784 ----a-w- c:\windows\system32\input.dll 2011-10-14 15:14 . 2011-10-14 15:14 202240 ----a-w- c:\windows\SysWow64\input.dll 2011-10-14 15:13 . 2011-10-14 15:13 976896 ----a-w- c:\windows\system32\inetcomm.dll 2011-10-14 15:13 . 2011-10-14 15:13 741376 ----a-w- c:\windows\SysWow64\inetcomm.dll 2011-10-14 15:13 . 2011-10-14 15:13 27520 ----a-w- c:\windows\system32\drivers\Diskdump.sys 2011-10-14 15:13 . 2011-10-14 15:13 158208 ----a-w- c:\windows\system32\drivers\mrxsmb.sys 2011-10-14 15:13 . 2011-10-14 15:13 128000 ----a-w- c:\windows\system32\drivers\mrxsmb20.sys 2011-10-14 15:13 . 2011-10-14 15:13 467456 ----a-w- c:\windows\system32\drivers\srv.sys 2011-10-14 15:13 . 2011-10-14 15:13 410112 ----a-w- c:\windows\system32\drivers\srv2.sys 2011-10-14 15:13 . 2011-10-14 15:13 168448 ----a-w- c:\windows\system32\drivers\srvnet.sys 2011-10-14 15:12 . 2011-10-14 15:12 98816 ----a-w- c:\windows\system32\drivers\usbccgp.sys 2011-10-14 15:12 . 2011-10-14 15:12 7936 ----a-w- c:\windows\system32\drivers\usbd.sys 2011-10-14 15:12 . 2011-10-14 15:12 52736 ----a-w- c:\windows\system32\drivers\usbehci.sys 2011-10-14 15:12 . 2011-10-14 15:12 343040 ----a-w- c:\windows\system32\drivers\usbhub.sys 2011-10-14 15:12 . 2011-10-14 15:12 325120 ----a-w- c:\windows\system32\drivers\usbport.sys 2011-10-14 15:12 . 2011-10-14 15:12 30720 ----a-w- c:\windows\system32\drivers\usbuhci.sys 2011-10-14 15:12 . 2011-10-14 15:12 25600 ----a-w- c:\windows\system32\drivers\usbohci.sys 2011-10-14 15:12 . 2011-10-14 15:12 2871808 ----a-w- c:\windows\explorer.exe 2011-10-14 15:12 . 2011-10-14 15:12 2616320 ----a-w- c:\windows\SysWow64\explorer.exe 2011-10-14 15:12 . 2011-10-14 15:12 476160 ----a-w- c:\windows\system32\XpsGdiConverter.dll 2011-10-14 15:12 . 2011-10-14 15:12 288256 ----a-w- c:\windows\SysWow64\XpsGdiConverter.dll 2011-10-14 15:11 . 2011-10-14 15:11 30208 ----a-w- c:\windows\system32\dnscacheugc.exe 2011-10-14 15:11 . 2011-10-14 15:11 28672 ----a-w- c:\windows\SysWow64\dnscacheugc.exe 2011-10-14 15:11 . 2011-10-14 15:11 183296 ----a-w- c:\windows\system32\dnsrslvr.dll 2011-10-14 15:11 . 2011-10-14 15:11 70656 ----a-w- c:\windows\SysWow64\fontsub.dll . . ((((((((((((((((((((((((((((( SnapShot@2011-12-09_15.01.57 ))))))))))))))))))))))))))))))))))))))))) . + 2011-12-10 14:41 . 2011-12-10 14:41 13330 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat - 2011-12-07 23:39 . 2011-12-07 23:39 13330 c:\windows\SysWOW64\config\systemprofile\AppData\Roaming\SoftGrid Client\Icon Cache\icon_ex.dat + 2010-11-21 03:09 . 2011-12-10 06:26 46802 c:\windows\system32\wdi\ShutdownPerformanceDiagnostics_SystemData.bin + 2009-07-14 05:10 . 2011-12-10 06:26 39014 c:\windows\system32\wdi\BootPerformanceDiagnostics_SystemData.bin - 2011-11-14 14:18 . 2011-12-08 04:16 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat + 2011-11-14 14:18 . 2011-12-10 06:28 32768 c:\windows\system32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat - 2011-11-14 14:18 . 2011-12-08 04:16 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2011-11-14 14:18 . 2011-12-10 06:28 32768 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat + 2009-07-14 04:54 . 2011-12-10 06:28 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat - 2009-07-14 04:54 . 2011-12-08 04:16 16384 c:\windows\system32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat + 2011-11-15 14:46 . 2011-12-09 15:58 5276 c:\windows\system32\wdi\ERCQueuedResolutions.dat + 2011-11-14 14:16 . 2011-12-10 06:26 8988 c:\windows\system32\wdi\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2567127309-3558950632-4008851899-1001_UserData.bin - 2011-12-07 23:40 . 2011-12-07 23:40 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat + 2011-12-10 14:42 . 2011-12-10 14:42 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat - 2011-12-07 23:40 . 2011-12-07 23:40 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2011-12-10 14:42 . 2011-12-10 14:42 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat + 2011-11-14 16:59 . 2011-12-10 13:49 255984 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S4.bin + 2011-11-14 15:20 . 2011-12-10 13:45 304472 c:\windows\system32\wdi\SuspendPerformanceDiagnostics_SystemData_S3.bin - 2009-07-14 02:36 . 2011-12-07 23:47 652600 c:\windows\system32\perfh009.dat + 2009-07-14 02:36 . 2011-12-10 06:29 652600 c:\windows\system32\perfh009.dat - 2011-10-14 14:58 . 2011-12-07 23:47 666896 c:\windows\system32\perfh005.dat + 2011-10-14 14:58 . 2011-12-10 06:29 666896 c:\windows\system32\perfh005.dat + 2009-07-14 02:36 . 2011-12-10 06:29 121274 c:\windows\system32\perfc009.dat - 2009-07-14 02:36 . 2011-12-07 23:47 121274 c:\windows\system32\perfc009.dat + 2011-10-14 14:58 . 2011-12-10 06:29 140302 c:\windows\system32\perfc005.dat - 2011-10-14 14:58 . 2011-12-07 23:47 140302 c:\windows\system32\perfc005.dat - 2009-07-14 05:01 . 2011-12-07 23:39 243652 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2009-07-14 05:01 . 2011-12-10 14:41 243652 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat + 2011-11-14 19:14 . 2011-12-10 14:41 4666607 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2567127309-3558950632-4008851899-1001-12288.dat . (((((((((((((((((((((((((((((((((( Spou嗾�� body v registru ))))))))))))))))))))))))))))))))))))))))))))) . . *Pozn疥ka* pr痙dn� z痙namy a legitimn� v�choz� 棈aje nejsou zobrazeny.  REGEDIT4 . [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NokiaSuite.exe"="c:\program files (x86)\Nokia\Nokia Suite\NokiaSuite.exe" [2011-11-01 1053056] "OscarX7Mouse5Mode"="c:\program files (x86)\OscarX7Editor5Mode\OscarX7Editor5Mode\OscarEditor.exe" [2011-11-10 3517952] . [HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run] "IAStorIcon"="c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorIcon.exe" [2011-01-12 283160] "YouCam Mirage"="c:\program files (x86)\Lenovo\YouCam\YCMMirage.exe" [2011-01-28 136488] "VeriFaceManager"="c:\program files (x86)\Lenovo\VeriFace\PManage.exe" [2011-10-15 329056] . c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\ Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2011-5-12 1211168] Kaspersky Anti-Hacker.lnk - c:\program files (x86)\Kaspersky Lab\Kaspersky Anti-Hacker\KAVPF.exe [N/A] . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "ConsentPromptBehaviorAdmin"= 0 (0x0) "ConsentPromptBehaviorUser"= 3 (0x3) "EnableLUA"= 0 (0x0) "EnableUIADesktopToggle"= 0 (0x0) "PromptOnSecureDesktop"= 0 (0x0) . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows] "AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll . [HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32] "mixer2"=wdmaud.drv . [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa] Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp . [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS] @="" . R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384] R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576] R3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [x] R3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys [x] R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x] R3 cpuz130;cpuz130;c:\users\Lenovo\AppData\Local\Temp\cpuz130\cpuz_x64.sys [x] R3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2011-07-29 16776] R3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2011-07-29 9096] R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2011-05-02 340240] R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184] R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [x] R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x] R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x] R3 WatAdminSvc;Slu枌a Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x] R3 wsvd;wsvd;c:\windows\system32\DRIVERS\wsvd.sys [x] R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-22 57184] S0 epfwwfp;epfwwfp;c:\windows\system32\DRIVERS\epfwwfp.sys [x] S0 fbfmon;fbfmon;c:\windows\system32\drivers\fbfmon.sys [x] S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys [x] S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [x] S1 BPntDrv;BPntDrv;c:\windows\system32\drivers\BPntDrv.sys [x] S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [x] S1 EpfwLWF;Epfw NDIS LightWeight Filter;c:\windows\system32\DRIVERS\EpfwLWF.sys [x] S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x] S1 winioex;winioex;c:\windows\system32\drivers\winioex.sys [x] S2 cpuz135;cpuz135;c:\windows\system32\drivers\cpuz135_x64.sys [x] S2 cvhsvc;Client Virtualization Handler;c:\program files (x86)\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE [2010-10-20 821664] S2 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x] S2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\x86\ekrn.exe [2011-09-22 974944] S2 IAStorDataMgrSvc;Intel(R) Rapid Storage Technology;c:\program files (x86)\Intel\Intel(R) Rapid Storage Technology\IAStorDataMgrSvc.exe [2011-01-12 13336] S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe [2011-11-24 2348864] S2 sftlist;Application Virtualization Client;c:\program files (x86)\Microsoft Application Virtualization Client\sftlist.exe [2010-09-14 508264] S2 UNS;Intel(R) Management and Security Application User Notification Service;c:\program files (x86)\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2010-12-21 2656280] S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys [x] S3 clwvd;CyberLink WebCam Virtual Driver;c:\windows\system32\DRIVERS\clwvd.sys [x] S3 DelayMan;ACPI DelayMan Filter Service;c:\windows\system32\DRIVERS\delayman.sys [x] S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [x] S3 JMCR;JMCR;c:\windows\system32\DRIVERS\jmcr.sys [x] S3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver;c:\windows\system32\DRIVERS\jmccgp.sys [x] S3 JmUsbVideo;JMicron 31x Upper Filter Driver;c:\windows\system32\Drivers\jmcam.sys [x] S3 JmUsbVideo2;JMicron 31x Lower Filter Driver;c:\windows\system32\Drivers\jmcam_lo.sys [x] S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [x] S3 MEIx64;Intel(R) Management Engine Interface;c:\windows\system32\DRIVERS\HECIx64.sys [x] S3 NETwNs64;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 64 Bit;c:\windows\system32\DRIVERS\NETwNs64.sys [x] S3 Sftfs;Sftfs;c:\windows\system32\DRIVERS\Sftfslh.sys [x] S3 Sftplay;Sftplay;c:\windows\system32\DRIVERS\Sftplaylh.sys [x] S3 Sftredir;Sftredir;c:\windows\system32\DRIVERS\Sftredirlh.sys [x] S3 Sftvol;Sftvol;c:\windows\system32\DRIVERS\Sftvollh.sys [x] S3 sftvsa;Application Virtualization Service Agent;c:\program files (x86)\Microsoft Application Virtualization Client\sftvsa.exe [2010-09-14 219496] S3 vwifimp;Microsoft Virtual WiFi Miniport Service;c:\windows\system32\DRIVERS\vwifimp.sys [x] S3 wdkmd;Intel WiDi KMD;c:\windows\system32\DRIVERS\WDKMD.sys [x] . . . --------- x86-64 ----------- . . [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VeriFace Enc] @="{771C7324-DA80-49D3-8017-753B0AF60951}" [HKEY_CLASSES_ROOT\CLSID\{771C7324-DA80-49D3-8017-753B0AF60951}] 2011-10-15 00:21 1508192 ----a-w- c:\windows\System32\IcnOvrly.dll . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344] "IntelPAN"="c:\program files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" [2011-05-02 1935120] "SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU] "OnekeyStudio"="c:\program files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe" [2011-10-15 789920] "Lenovo EE Boot Optimizer"="c:\program files (x86)\Lenovo\Boot Optimizer\PopWnd.exe" [2011-10-15 206176] "Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2011-10-15 9753024] "EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2011-10-15 5908928] "IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-08-31 167704] "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-08-31 392472] "Persistence"="c:\windows\system32\igfxpers.exe" [2011-08-31 416024] "SpywareTerminatorShield"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorShield.exe" [BU] "SpywareTerminatorUpdater"="c:\program files (x86)\Spyware Terminator\SpywareTerminatorUpdate.exe" [BU] "egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 4035152] "combofix"="c:\combofix\CF18041.3XE" [2010-11-21 345088] . [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "AppInit_DLLs"=c:\windows\System32\nvinitx.dll . ------- Doplov� sken ------- . uLocal Page = %SystemRoot%\system32\blank.htm mLocal Page = %SystemRoot%\system32\blank.htm IE: Odeslat obr痙ek do zazen� &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm IE: Odeslat str疣ku do zazen� &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe TCP: DhcpNameServer = 213.46.172.36 213.46.172.37 CLSID: {603d3801-bd81-11d0-a3a5-00c04fd706ec} - %SystemRoot%\SysWow64\shell32.dll . - - - - NEPLATNﾉ POLO錆Y ODSTRANﾌNﾉ Z REGISTRU - - - - . Toolbar-Locked - (no file) WebBrowser-{BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - (no file) . . Binary file temp00 matches . --------------------- ZAMKNUTﾉ KLﾍﾈE V REGISTRU --------------------- . [HKEY_LOCAL_MACHINE\SOFTWARE\McAfee] "SymbolicLinkValue"=hex(6):5c,00,72,00,65,00,67,00,69,00,73,00,74,00,72,00,79,  00,5c,00,6d,00,61,00,63,00,68,00,69,00,6e,00,65,00,5c,00,53,00,6f,00,66,00,\ . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\LightweightCallHandlers\PNIDUI\OnPrivateNetworkAvailable\WMP_OnPrivateNetworkAvailable] @DACL=(02 0000) "ExeName"=expand:"\"%programFiles%\\Windows Media Player\\wmpnscfg.exe\"" "Cardinality"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{29898C9D-B0A4-4FEF-BDB6-57A562022CEE}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000002 "Name"="Pripojen� k m﨎tn� s咜i* 2" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{2CAA64ED-BAA3-4473-B637-DEC65A14C8AA}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000008 "Name"="Pripojen� k m﨎tn� s咜i* 8" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{46C55715-3F1F-4805-B311-669C9A438CFD}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000003 "Name"="Teredo Tunneling Pseudo-Interface" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{504A2A62-3D60-4CF2-9D30-BD5C2BA3180A}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000009 "Name"="Pripojen� k m﨎tn� s咜i* 9" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{5BF54C7E-91DA-457D-80BF-333677D7E316}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000007 "Name"="Pripojen� k m﨎tn� s咜i* 7" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{67C3A7CC-CF1F-49D0-AC6A-C98D7A691D1A}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:0000070e "DefaultNameIndex"=dword:00000000 "Name"="Bezdr疸ov� pripojen� k s咜i" "PnpInstanceID"="PCI\\VEN_8086&DEV_0084&SUBSYS_13158086&REV_00\\4&1174EA5C&0&00E1" "MediaSubType"=dword:00000002 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{71F897D7-EB7C-4D8D-89DB-AC80D9DD2270}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000000 "Name"="Pripojen� k m﨎tn� s咜i*" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{779B86AA-2AB0-4590-BC8F-7FFA794F23E1}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:0000070e "DefaultNameIndex"=dword:00000002 "Name"="Bezdr疸ov� pripojen� k s咜i 2" "PnpInstanceID"="{5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\\VWIFIMP\\5&108E0F1C&0&01" "MediaSubType"=dword:00000002 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{78032B7E-4968-42D3-9F37-287EA86C0AAA}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:0000000a "Name"="Pripojen� k m﨎tn� s咜i* 10" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{8E301A52-AFFA-4F49-B9CA-C79096A1A056}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000005 "Name"="Pripojen� k m﨎tn� s咜i* 5" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{9A399D81-2EAD-4F23-BCDD-637FC13DCD51}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000006 "Name"="Pripojen� k m﨎tn� s咜i* 6" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{A16F4B34-D672-4C39-BB88-F7D9A1409B08}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000710 "DefaultNameIndex"=dword:00000000 "Name"="S咜ov� pripojen� Bluetooth" "PnpInstanceID"="BTH\\MS_BTHPAN\\7&20D6FDB7&0&2" "MediaSubType"=dword:00000007 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{C7C70D52-1D05-4C24-8006-7050B63173B7}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:0000000c "Name"="6TO4 Adapter" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{C7E66028-44D4-45BC-ADB9-108F2C1E6570}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000003 "Name"="isatap.{E8CF6A8D-C296-4301-BEB7-106993849CB8}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{D2AFDCDC-153E-4647-9903-45DAC82462F4}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000003 "Name"="isatap.{779B86AA-2AB0-4590-BC8F-7FFA794F23E1}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{DF4A9D2C-8742-4EB1-8703-D395C4183F33}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:0000000e "Name"="Pripojen� k m﨎tn� s咜i* 14" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{DFA5FFCB-E786-486C-A951-1F9AFBB3CF24}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000003 "Name"="isatap.{F151BE96-67BD-4426-88FA-6F62DE4452CB}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{E43D242B-9EAB-4626-A952-46649FBB939A}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:0000000f "Name"="Pripojen� k m﨎tn� s咜i* 15" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{E8CF6A8D-C296-4301-BEB7-106993849CB8}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:0000070b "DefaultNameIndex"=dword:00000000 "Name"="Pripojen� k m﨎tn� s咜i" "PnpInstanceID"="PCI\\VEN_14E4&DEV_16B1&SUBSYS_397517AA&REV_10\\4&39BD400B&0&00E0" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{F151BE96-67BD-4426-88FA-6F62DE4452CB}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:0000070e "DefaultNameIndex"=dword:00000003 "Name"="Bezdr疸ov� pripojen� k s咜i 3" "PnpInstanceID"="{5D624F94-8850-40C3-A3FA-A4FD2080BAF3}\\VWIFIMP\\5&108E0F1C&0&02" "MediaSubType"=dword:00000002 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{F563F8E4-3D56-49B2-9335-723318528A75}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000003 "Name"="Reusable ISATAP Interface {F563F8E4-3D56-49B2-9335-723318528A75}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{FC7B326E-7268-40C0-A7E8-9EC5E537C580}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:00000709 "DefaultNameIndex"=dword:00000003 "Name"="isatap.{67C3A7CC-CF1F-49D0-AC6A-C98D7A691D1A}" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4D36E972-E325-11CE-BFC1-08002BE10318}\{FED07E8E-068D-4FC9-A7BB-EA62570A678C}\Connection] @DACL=(02 0000) "DefaultNameResourceId"=dword:0000070b "DefaultNameIndex"=dword:00000002 "Name"="Pripojen� k m﨎tn� s咜i 2" "PnpInstanceID"="BTHENUM\\{7788FA25-DFE4-4EA4-B838-4771E26CCF82}_LOCALMFG&0000\\8&330EE9FF&0&000000000000_00000000" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e973-e325-11ce-bfc1-08002be10318}\{821D3398-F04E-471E-8D8C-27EE3F5EB428}] @DACL=(02 0000) "Characteristics"=dword:00000080 "InfPath"="netmscli.inf" "InfSection"="MSClient.ndi" "LocDescription"="@netmscli.inf,%msclient_desc%;Client for Microsoft Networks" "Description"="Client for Microsoft Networks" "ComponentId"="ms_msclient" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,1f,00,bb,01 "PrintProviderName"="LanMan Print Services" . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{0EFE03B2-EA87-44C1-B825-9BBEA54F37B4}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netrass.inf" "InfSection"="Ndi-Steelhead" "LocDescription"="@netrass.inf,%steelhead-dispname%;Steelhead" "Description"="Steelhead" "ComponentId"="ms_steelhead" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,2d,00,d2,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{56494156-6C00-4B77-90D7-A4A435088232}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netnb.inf" "InfSection"="NetBIOS.ndi" "LocDescription"="@netnb.inf,%netbios_desc%;NetBIOS Interface" "Description"="NetBIOS Interface" "ComponentId"="MS_NETBIOS" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,1e,00,01,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{5CBF81BF-5055-47CD-9055-A76B2B4E3698}] @DACL=(02 0000) "Characteristics"=dword:00040028 "InfPath"="netvwififlt.inf" "InfSection"="Install" "LocDescription"="@netvwififlt.inf,%vwififlt_desc%;Virtual WiFi Filter Driver" "Description"="Virtual WiFi Filter Driver" "ComponentId"="ms_vwifi" "InstallTimeStamp"=hex:db,07,0a,00,05,00,0e,00,17,00,31,00,13,00,9f,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{6B7E8FF8-E9A2-46EB-A4EA-42CCA2D43C96}] @DACL=(02 0000) "Characteristics"=dword:00000000 "InfPath"="netserv.inf" "InfSection"="Install.ndi" "LocDescription"="@netserv.inf,%msserver_desc%;File and Printer Sharing for Microsoft Networks" "Description"="File and Printer Sharing for Microsoft Networks" "ComponentId"="ms_server" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,20,00,e8,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{B5F4D659-7DAA-4565-8E41-BE220ED60542}] @DACL=(02 0000) "Characteristics"=dword:00040000 "InfPath"="netpacer.inf" "InfSection"="Install" "LocDescription"="@netpacer.inf,%psched_desc%;QoS Packet Scheduler" "Description"="QoS Packet Scheduler" "ComponentId"="ms_pacer" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,39,00,9a,02 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{B70D6460-3635-4D42-B866-B8AB1A24454C}] @DACL=(02 0000) "Characteristics"=dword:00040028 "InfPath"="wfplwf.inf" "InfSection"="Install" "LocDescription"="@wfplwf.inf,%wfplwf_desc%;WFP Lightweight Filter" "Description"="WFP Lightweight Filter" "ComponentId"="MS_WfpLwf" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,30,00,47,00 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{C9548B78-5743-4E64-9BA1-CD4D974A329F}] @DACL=(02 0000) "Characteristics"=dword:00000038 "InfPath"="netrass.inf" "InfSection"="Ndi-RasSrv" "LocDescription"="@netrass.inf,%rassrv-dispname%;Dial-Up Server" "Description"="Dial-Up Server" "ComponentId"="ms_rassrv" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,2d,00,84,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{E475CF9A-60CD-4439-A75F-0079CE0E18A1}] @DACL=(02 0000) "Characteristics"=dword:00040028 "InfPath"="netnwifi.inf" "InfSection"="MS_NWIFI.Install" "LocDescription"="@netnwifi.inf,%ms_nwifi.displayname%;NativeWiFi Filter" "Description"="NativeWiFi Filter" "ComponentId"="MS_NativeWifiP" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,37,00,02,00,58,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{EA24CD6C-D17A-4348-9190-09F0D5BE83DD}] @DACL=(02 0000) "Characteristics"=dword:00040038 "InfPath"="ndiscap.inf" "InfSection"="Install" "LocDescription"="@ndiscap.inf,%ndiscap_desc%;NDIS Capture LightWeight Filter" "Description"="NDIS Capture LightWeight Filter" "ComponentId"="MS_NDISCAP" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,36,00,26,00,f2,00 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{F5658C39-CD0D-45B5-A342-E2C037714CE4}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netrass.inf" "InfSection"="Ndi-RasMan" "LocDescription"="@netrass.inf,%rasman-dispname%;Remote Access Connection Manager" "Description"="Remote Access Connection Manager" "ComponentId"="ms_rasman" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,1e,00,f3,02 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e974-e325-11ce-bfc1-08002be10318}\{F7A0C547-B619-442B-8E5C-FD7D0E1B069D}] @DACL=(02 0000) "Characteristics"=dword:00040000 "InfPath"="oem53.inf" "InfSection"="Install" "LocDescription"="@oem53.inf,%epfwlwf_desc%;Epfw NDIS LightWeight Filter" "Description"="Epfw NDIS LightWeight Filter" "ComponentId"="ESET_EpfwLWF" "InstallTimeStamp"=hex:db,07,0c,00,02,00,06,00,04,00,17,00,08,00,79,03 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{12F2EEA2-EE86-4933-8C0B-346E5E57F332}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netrast.inf" "InfSection"="Ndi-PppoeProtocol" "LocDescription"="@netrast.inf,%pppoe-dispname%;Point to Point Protocol Over Ethernet" "Description"="Point to Point Protocol Over Ethernet" "ComponentId"="ms_pppoe" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,20,00,fd,00 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{234991D1-04CC-47F5-A4A9-29808D68765F}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="nettcpip.inf" "InfSection"="MS_WINS.PrimaryInstall" "LocDescription"="@nettcpip.inf,%ms_wins.displayname%;WINS Client(TCP/IP) Protocol" "Description"="WINS Client(TCP/IP) Protocol" "ComponentId"="ms_netbt" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,14,00,dc,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{24AB3BC7-8C0C-4389-A4D4-8B8FD6ADEA7A}] @DACL=(02 0000) "Characteristics"=dword:00000038 "InfPath"="netrast.inf" "InfSection"="Ndi-PptpProtocol" "LocDescription"="@netrast.inf,%pptp-dispname%;Point to Point Tunneling Protocol" "Description"="Point to Point Tunneling Protocol" "ComponentId"="ms_pptp" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,1f,00,ba,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{27EE12EA-A6B3-4E15-AF2B-D4B9D989EDFB}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="nettcpip.inf" "InfSection"="MS_TCPIP.Tunnel.PrimaryInstall" "LocDescription"="@nettcpip.inf,%ms_tcpip.tunnel.displayname%;Internet Protocol (TCP/IP) - Tunnels" "Description"="Internet Protocol (TCP/IP) - Tunnels" "ComponentId"="ms_tcpip_tunnel" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,36,00,28,00,34,00 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2B07FAA1-8217-4E30-B5EC-FD4501E773BB}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netip6.inf" "InfSection"="MS_TCPIP6.Tunnel.Install" "LocDescription"="@netip6.inf,%ms_tcpip6.tunnel.displayname%;Microsoft TCP/IP version 6 - Tunnels" "Description"="Microsoft TCP/IP version 6 - Tunnels" "ComponentId"="ms_tcpip6_tunnel" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,36,00,28,00,dc,03 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2B4683A7-F97E-478E-BBD6-34EDF0D9DEA8}] @DACL=(02 0000) "Characteristics"=dword:00000038 "InfPath"="nettcpip.inf" "InfSection"="MS_NETBT_SMB.PrimaryInstall" "LocDescription"="@nettcpip.inf,%ms_netbt_smb.displayname%;Message-oriented TCP/IP Protocol (SMB session)" "Description"="Message-oriented TCP/IP Protocol (SMB session)" "ComponentId"="ms_netbt_smb" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,14,00,2a,02 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2BE5AF45-DD00-422F-8484-8370DD108A53}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="ndisuio.inf" "InfSection"="Install" "LocDescription"="@ndisuio.inf,%ndisuio_desc%;NDIS Usermode I/O Protocol" "Description"="NDIS Usermode I/O Protocol" "ComponentId"="ms_ndisuio" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,17,00,98,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{2FF8F288-20AD-41F8-A181-321D0659CA4D}] @DACL=(02 0000) "Characteristics"=dword:00000000 "InfPath"="rspndr.inf" "InfSection"="Install" "LocDescription"="@rspndr.inf,%displayname%;Link-Layer Topology Discovery Responder" "Description"="Link-Layer Topology Discovery Responder" "ComponentId"="MS_RSPNDR" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,2b,00,2a,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{32345029-1B7D-43AF-B504-E71E5660B2F0}] @DACL=(02 0000) "Characteristics"=dword:000000a0 "InfPath"="netip6.inf" "InfSection"="MS_TCPIP6.Install" "LocDescription"="@netip6.inf,%ms_tcpip6.displayname%;Internet Protocol Version 6 (TCP/IPv6)" "Description"="Internet Protocol Version 6 (TCP/IPv6)" "ComponentId"="ms_tcpip6" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,13,00,c1,03 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{5D9F4D1D-F5B3-48BA-85AD-9B44176DD0C8}] @DACL=(02 0000) "Characteristics"=dword:000000a0 "InfPath"="nettcpip.inf" "InfSection"="MS_TCPIP.PrimaryInstall" "LocDescription"="@nettcpip.inf,%ms_tcpip.displayname%;Internet Protocol Version 4 (TCP/IPv4)" "Description"="Internet Protocol Version 4 (TCP/IPv4)" "ComponentId"="ms_tcpip" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,13,00,de,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{633F880E-FFD2-484F-A4CA-EB724F8BC057}] @DACL=(02 0000) "Characteristics"=dword:00000000 "InfPath"="lltdio.inf" "InfSection"="Install" "LocDescription"="@lltdio.inf,%displayname%;Link-Layer Topology Discovery Mapper I/O Driver" "Description"="Link-Layer Topology Discovery Mapper I/O Driver" "ComponentId"="MS_LLTDIO" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,2b,00,3c,03 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{69E184C5-2F7C-45D0-8C56-85097BA63C11}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netrast.inf" "InfSection"="Ndi-NdisWan" "LocDescription"="@netrast.inf,%ndiswan-dispname%;Remote Access NDIS WAN Driver" "Description"="Remote Access NDIS WAN Driver" "ComponentId"="ms_ndiswan" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,1e,00,a5,02 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{6D9E377D-E19D-47CF-BE5F-D2DA5F99318A}] @DACL=(02 0000) "Characteristics"=dword:00000038 "InfPath"="netsstpt.inf" "InfSection"="Ndi-SstpProtocol" "LocDescription"="@netsstpt.inf,%sstp-dispname%;SSTP based VPN" "Description"="SSTP based VPN" "ComponentId"="ms_sstp" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,1b,00,59,00 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{7D857581-4BD0-44AB-B87C-921422A69D39}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netrast.inf" "InfSection"="Ndi-Wanarp" "LocDescription"="@netrast.inf,%wanarp-dispname%;Remote Access IP ARP Driver" "Description"="Remote Access IP ARP Driver" "ComponentId"="MS_wanarp" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,15,00,6d,01 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{7F218BFD-64B7-4786-8302-9D8A2704B0E2}] @DACL=(02 0000) "Characteristics"=dword:00000038 "InfPath"="netavpnt.inf" "InfSection"="Ndi-AgileVpnProtocol" "LocDescription"="@netavpnt.inf,%agilevpn-dispname%;AgileVpn based VPN" "Description"="AgileVpn based VPN" "ComponentId"="ms_agilevpn" "InstallTimeStamp"=hex:da,07,0b,00,00,00,15,00,03,00,27,00,37,00,8e,02 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{92356401-DAAE-49DA-8D29-5B023CCF4CD9}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="nettcpip.inf" "InfSection"="MS_SMB.Install" "LocDescription"="@nettcpip.inf,%ms_smb.displayname%;Microsoft NetbiosSmb" "Description"="Microsoft NetbiosSmb" "ComponentId"="MS_SMB" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,35,00,38,00,86,03 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{E7AC61F5-4BFE-4254-8889-98A990D174D5}] @DACL=(02 0000) "Characteristics"=dword:00000038 "InfPath"="netrast.inf" "InfSection"="Ndi-L2tpProtocol" "LocDescription"="@netrast.inf,%l2tp-dispname%;Layer 2 Tunneling Protocol" "Description"="Layer 2 Tunneling Protocol" "ComponentId"="ms_l2tp" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,1e,00,41,03 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Network\{4d36e975-e325-11ce-bfc1-08002be10318}\{F27D2AC4-396D-442D-9FD8-05AEF1E98AAB}] @DACL=(02 0000) "Characteristics"=dword:00000028 "InfPath"="netrast.inf" "InfSection"="Ndi-Wanarpv6" "LocDescription"="@netrast.inf,%wanarpv6-dispname%;Remote Access IPv6 ARP Driver" "Description"="Remote Access IPv6 ARP Driver" "ComponentId"="MS_wanarpv6" "InstallTimeStamp"=hex:d9,07,07,00,02,00,0e,00,04,00,31,00,21,00,cf,02 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\Autologger\ReadyBoot\{2a274310-42d5-4019-b816-e4b8c7abe95c}] @DACL=(02 0000) "Enabled"=dword:00000001 "EnableFlags"=dword:00000020 "Status"=dword:00000000 . [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\WMI\Autologger\ReadyBoot\{a319d300-015c-48be-acdb-47746e154751}] @DACL=(02 0000) "Enabled"=dword:00000001 "Status"=dword:00000000 . ------------------------ Jin� spu嗾en� procesy ------------------------ . c:\program files (x86)\Google\Update\GoogleUpdate.exe c:\program files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe c:\program files (x86)\Lenovo\Onekey Theater\OnekeySupport.exe c:\windows\SysWOW64\RunDll32.exe c:\program files (x86)\PC Connectivity Solution\ServiceLayer.exe c:\program files (x86)\PC Connectivity Solution\Transports\NclMSBTSrvEx.exe c:\program files (x86)\Intel\Intel(R) Management Engine Components\LMS\LMS.exe . ************************************************************************** . Celkov� 鐶s: 2011-12-10 15:47:13 - po竟ta� byl restartov疣 ComboFix-quarantined-files.txt 2011-12-10 14:47 ComboFix2.txt 2011-12-09 15:03 . Pd spu嗾�匇: Voln�ch bajt�: 178�425�655�296 Po spu嗾��: Voln�ch bajt�: 178�168�590�336 . - - End Of File - - 96344A5065C4D2FCDD05105B18D36C7F 

Mno z tohoto zmatku tedy opravdu nic nevyčtu...

Co se stalo, proč to nejde?

S tím internetem, mrkni sem: http://www.bleepingcomputer.com/combofi ... ix#restore

tak net porad nejede ve spravce pripojeni nic neni

nevim co se stalo
skusim sem nahrat soubor nevim zda to pujde sem tu pres telefon totiz

A F8 + Poslední známá konfigurace jsi zkoušel?

Tak jsem udelal reinstall ale tak aspon je uplne po problemu spise se chci zeptat jaky program by jsi mi doporucil jak antivir tak zbyle
mam moznost mit McAffe sem ho dostal zaroven s notebookem
Nebo je lepsi Microsoft Essentials
Dekuji za odpoved

Tak jsem udelal reinstall ale tak aspon je uplne po problemu spise se chci zeptat jaky program by jsi mi doporucil jak antivir tak zbyle
mam moznost mit McAffe sem ho dostal zaroven s notebookem
Nebo je lepsi Microsoft Essentials
Dekuji za odpoved

VIRY.CZ

Prosim o kontrolu Logu dekuji

Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji

Re: Prosim o kontrolu Logu dekuji