VIRY.CZ

Pomáháme v boji s počítačovou havěti!
https://forum.viry.cz:443/

Hláška neznámé rozhraní

https://forum.viry.cz:443/viewtopic.php?t=118984

Stránka 1 z 1

Hláška neznámé rozhraní

Napsal: 20 led 2012 19:00
od valda
Při snaze otevřít složky na ploše nebo v položce start mi vyskakuje hlášení-Neznámé rozhraní-můžete mi prosím poradit jak se toho zbavit

Logfile of random's system information tool 1.09 (written by random/random)
Run by lada at 2012-01-20 18:57:22
Microsoft Windows 7 Ultimate Service Pack 1
System drive C: has 32 GB (20%) free of 165 GB
Total RAM: 4095 MB (58% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 18:57:28, on 20.1.2012
Platform: Windows 7 SP1 (WinNT 6.00.3505)
MSIE: Internet Explorer v9.00 (9.00.8112.16421)
Boot mode: Normal

Running processes:
C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe
C:\Program Files (x86)\ICQ7.7\ICQ.exe
C:\Program Files (x86)\IObit\Advanced SystemCare 5\DelayLoad.exe
C:\PROGRAM FILES (X86)\MALWAREBYTES' ANTI-MALWARE\MBAMGUI.EXE
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files\trend micro\lada.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=ddrnw&s={searchTerms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Microsoft Internet Explorer
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll
R3 - URLSearchHook: ICQToolBar - {855F3B16-6D32-4fe6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O1 - Hosts: ˙ţ# Copyright (c) 1993-2009 Microsoft Corp.
O1 - Hosts: 116.68.136.61 l2authd.lineage2.com
O2 - BHO: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: Increase performance and video formats for your HTML5 <video> - {326E768D-4182-46FD-9C16-1449A49795F4} - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O2 - BHO: facemoods Helper - {64182481-4F71-486b-A045-B233BD0DA8FC} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL
O2 - BHO: Bing Bar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: Ukazatel S-Rank - {EA837F48-5AD1-443E-AE34-FFE03CBF3099} - C:\Program Files (x86)\Seznam.cz\listicka.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll
O3 - Toolbar: Nástroje Lištičky - {1EA00BE1-6E54-4E2A-8099-680300BF23E1} - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll
O3 - Toolbar: ICQToolBar - {855F3B16-6D32-4FE6-8A56-BBB695989046} - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll
O3 - Toolbar: facemoods Toolbar - {DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll
O3 - Toolbar: IObit Toolbar - {0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll
O3 - Toolbar: Bing Bar - {8dcb7100-df86-4384-8842-8fa844297b3f} - "C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll" (file missing)
O4 - HKLM\..\Run: [JMB36X IDE Setup] C:\Windows\RaidTool\xInsIDE.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKCU\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-21-64356702-1420314229-3237286800-1003\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-64356702-1420314229-3237286800-1003\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'UpdatusUser')
O4 - HKUS\S-1-5-21-64356702-1420314229-3237286800-500\..\Run: [Advanced SystemCare 5] "C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart (User 'Administrator')
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: Add to Playlist - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/314
O8 - Extra context menu item: Download all by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
O8 - Extra context menu item: Download by FlashGet3 - C:\Users\lada\AppData\Roaming\FlashGetBHO\GetUrl.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O8 - Extra context menu item: Od&eslat do aplikace OneNote - res://C:\PROGRA~1\MICROS~2\Office14\ONBttnIE.dll/105
O8 - Extra context menu item: TwonkyBeam to - res://C:\Program Files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/231
O9 - Extra button: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.7 - {77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - C:\Program Files (x86)\ICQ7.7\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files (x86)\common files\microsoft shared\windows live\wlidnsp.dll
O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: ABBYY FineReader 11 PE Licensing Service (ABBYY.Licensing.FineReader.Professional.11.0) - ABBYY - C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe
O23 - Service: Adobe Acrobat Update Service (AdobeARMservice) - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
O23 - Service: Advanced SystemCare Service 5 (AdvancedSystemCareService5) - IObit - C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe
O23 - Service: Služba Acronis Nonstop Backup (afcdpsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Application Updater - Spigot, Inc. - C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe
O23 - Service: Crypkey License - Unknown owner - crypserv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: ICQ Service - Unknown owner - C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: IMF Service (IMFservice) - IObit - C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - McAfee, Inc. - C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: Norton 360 (N360) - Symantec Corporation - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe
O23 - Service: @C:\Program Files (x86)\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files (x86)\Nero\Update\NASvc.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\Windows\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Display Driver Service (NVSvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: PS3 Media Server - Tanuki Software, Ltd. - C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files (x86)\WinPcap\rpcapd.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SiSoftware Deployment Agent Service (SandraAgentSrv) - SiSoftware - C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: Aktivátor Správce výběru OS Acronis (Správce výběru OS) - Unknown owner - C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - StarWind Software - C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: Steam Client Service - Valve Corporation - C:\Program Files (x86)\Common Files\Steam\SteamService.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
O23 - Service: Acronis Sync Agent Service (syncagentsrv) - Acronis - C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe
O23 - Service: TVersityMediaServer - Unknown owner - C:\ProgramData\TVersity\Media Server\MediaServer.exe
O23 - Service: tvMobiliService - Unknown owner - C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe
O23 - Service: TwonkyMedia - PacketVideo - C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: USB Safely Remove Assistant (USBSafelyRemoveService) - Unknown owner - C:\Program Files (x86)\USB Safely Remove\USBSRService.exe
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: Ashampoo LiveTuner Service (WO_LiveService) - Unknown owner - (no file)

--
End of file - 14657 bytes

======Listing Processes======

\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
winlogon.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
"C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe"
"C:\Program Files (x86)\USB Safely Remove\USBSRService.exe"
C:\Windows\system32\nvvsvc.exe
"C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe"
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session -first
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"taskhost.exe"
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe"
taskeng.exe {2866B711-3CA4-4942-8995-AD9D92E715A0}
"C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE"
"C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
"C:\Program Files (x86)\Reviversoft\Registry Reviver\RegistryReviver.exe" -autorun
"C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe" -service
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:/Program Files/NVIDIA Corporation/Display/nvtray.exe" -user_has_logged_in 1
"C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe"
"C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe"
"C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe"
"C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe"
"C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE"
crypserv.exe
"C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe"
"C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE"
"C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe" /s "N360" /m "C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll" /prefetch:1
"C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe" -s "C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.conf" wrapper.console.flush=true wrapper.internal.namedpipe=2263200990
\??\C:\Windows\system32\conhost.exe "-1933254572836271378-57147926213771817051773874730-21391978581737811183607524739
"C:\Windows\system32\java.exe" -Djava.encoding=UTF-8 -Djava.net.preferIPv4Stack=true -Dstart.service=true -Xmx768m -Djava.library.path="win32/service/" -classpath "win32/service/wrapper.jar;pms.jar" -Dwrapper.key="HEjrIid5zkKb6Zua" -Dwrapper.port=32000 -Dwrapper.jvm.port.min=31000 -Dwrapper.jvm.port.max=31999 -Dwrapper.pid=3320 -Dwrapper.version="3.5.9" -Dwrapper.native_library="wrapper" -Dwrapper.service="TRUE" -Dwrapper.cpu.timeout="10" -Dwrapper.jvmid=1 org.tanukisoftware.wrapper.WrapperSimpleApp net.pms.PMS
"C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe" /c /a /s UserSession
"C:\ProgramData\TVersity\Media Server\MediaServer.exe"
"C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe" /InstanceRoot:"C:\ProgramData\TVMOBiLi" /PackageRoot:"C:\ProgramData\TVMOBiLi"
"C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe" -serviceversion 0
"C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE"
WLIDSvcM.exe 4232
"C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe"
C:\Windows\system32\UI0Detect.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
winlogon.exe
"C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe"
C:\Windows\system32\nvvsvc.exe -session
"taskhost.exe"
"C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe" /c /a /s UserSession
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" /AutoStart
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files\DAEMON Tools Pro\DTShellHlp.exe"
"C:\Program Files (x86)\ICQ7.7\ICQ.exe"
C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\IObit\Advanced SystemCare 5\DelayLoad.exe" /DelayLoad
"C:\PROGRAM FILES (X86)\MALWAREBYTES' ANTI-MALWARE\MBAMGUI.EXE" /starttray
"C:\Program Files (x86)\Mozilla Firefox\firefox.exe"
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe
"C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe"
"C:\Program Files (x86)\Nero\Update\NASvc.exe"
"C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"
"C:\Windows\system32\wuauclt.exe"
taskeng.exe {D71B7A83-25E3-47F9-8EB7-D84A74E2365C}
"D:\STAHOVÁNÍ CZSHARE\RSITx64.exe"
C:\Windows\system32\wbem\wmiprvse.exe

======Scheduled tasks folder======

C:\Windows\tasks\DriverEasy Scheduled Scan.job
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
C:\Windows\tasks\RegInOut Scheduled Scan - lada.job

=========Mozilla firefox=========

ProfilePath - C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default

prefs.js - "browser.startup.homepage" - "seznam.cz"
prefs.js - "keyword.URL" - "http://search.yahoo.com/search?fr=green ... =685749&p="

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@adobe.com/ShockwavePlayer]
"Description"=Adobe Shockwave Player
"Path"=C:\Windows\system32\Adobe\Director\np32dsw.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=]
"Description"=iTunes Detector Plug-in
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Apple.com/iTunes,version=1.0]
"Description"=
"Path"=C:\Program Files (x86)\iTunes\Mozilla Plugins\npitunes.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX Plus Web Player
"Path"=C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@garmin.com/GpsControl]
"Description"=Garmin GPS Control for Firefox
"Path"=C:\Program Files (x86)\Garmin GPS Plugin\npGarmin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Google.com/GoogleEarthPlugin]
"Description"=Google Earth in your browser
"Path"=C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@google.com/npPicasa3,version=3.0.0]
"Description"=Picasa3 plugin
"Path"=C:\Program Files (x86)\Google\Picasa3\npPicasa3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files (x86)\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0]
"Description"=Ag Player Plugin
"Path"=C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrl.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPAUTHZ.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@microsoft.com/SharePoint,version=14.0]
"Description"=Microsoft SharePoint Plug-in for Firefox
"Path"=C:\PROGRA~2\MICROS~1\Office14\NPSPWRAP.DLL

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@Nero.com/KM]
"Description"=
"Path"=C:\PROGRA~2\COMMON~1\Nero\BrowserPlugin\npBrowserPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVision]
"Description"=NVIDIA stereo images plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@nvidia.com/3DVisionStreaming]
"Description"=NVIDIA 3D Vision Streaming plugin for Mozilla browsers
"Path"=C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@pandonetworks.com/PandoWebPlugin]
"Description"=This plugin detects and launches Pando Media Booster
"Path"=C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nppl3260;version=12.0.1.647]
"Description"=RealPlayer(tm) LiveConnect-Enabled Plug-In
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nppl3260.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprjplug;version=12.0.1.647]
"Description"=RealJukebox Netscape Plugin
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.652]
"Description"=RealNetworks(tm) RealPlayer Chrome Background Extension Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.652]
"Description"=RealPlayer(tm) HTML5VideoShim Plug-In
"Path"=C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.647]
"Description"=12.0.1.647
"Path"=c:\program files (x86)\real\realplayer\Netscape6\nprpjplug.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=]
"Description"=
"Path"=

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=602XML Filler Plugin
"Path"=C:\Program Files (x86)\Software602\602XML\Filler\npfiller.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX VOD Helper,version=1.0.0]
"Description"=DivX VOD Helper Plug-in
"Path"=C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/GENUINE]
"Description"=
"Path"=disabled

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0]
"Description"=Office Authorization plug-in for NPAPI browsers
"Path"=C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

C:\Program Files (x86)\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
nppl3260.xpt
nsjsrealplayerplugin.xpt

C:\Program Files (x86)\Mozilla Firefox\plugins\
np-mswmp.dll
npdeployJava1.dll
nppdf32.dll
nppl3260.dll
nprjplug.dll
nprpjplug.dll
npwachk.dll
WMP Firefox Plugin License.rtf
WMP Firefox Plugin RelNotes.txt

C:\Program Files (x86)\Mozilla Firefox\searchplugins\
acpro.xml
fcmdSrch.xml
fcmdSrchddr.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
yahoo.xml

C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\extensions\
battlefieldheroespatcher@ea.com
greenwebplayer@greentube.com
support@predictad.com
{195A3098-0BD5-4e90-AE22-BA1C540AFD1E}
{33e0daa6-3af3-d8b5-6752-10e949c61516}
{800b5000-a755-47e1-992b-48a1c1357f07}
{DB9127A2-3381-41ec-82B3-1B6ED4C6F29A}
{ea614400-e918-4741-9a97-7a972ff7c30b}

C:\Users\lada\AppData\Roaming\Mozilla\Firefox\Profiles\6e8o6ejs.default\searchplugins\
google-images.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0FB6A909-6086-458F-BD92-1F8EE10042A0}]
Complitly - C:\Users\lada\AppData\Roaming\Complitly\64\Complitly64.dll [2011-09-21 167416]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2010-09-21 529280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-12-21 689040]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}]
IObit Toolbar - C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll [2011-12-13 1071456]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 63912]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}]
RealPlayer Download and Record Plugin for Internet Explorer - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-07-03 386264]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{326E768D-4182-46FD-9C16-1449A49795F4}]
DivX Plus Web Player HTML5 <video> - C:\Program Files (x86)\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll [2011-05-23 115072]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll [2011-04-28 436152]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{64182481-4F71-486b-A045-B233BD0DA8FC}]
CescrtHlpr Object - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll [2011-09-05 265944]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\IPS\IPSBHO.DLL [2011-03-31 210872]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files (x86)\Java\jre6\bin\ssv.dll [2011-11-10 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Browser Helper - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2011-10-10 3834016]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~2\MICROS~1\Office14\URLREDIR.DLL [2010-12-21 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d2ce3e00-f94a-4740-988e-03dc2f38c34f}]
Bing Bar Helper - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-07-07 1152776]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2011-11-10 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EA837F48-5AD1-443E-AE34-FFE03CBF3099}]
Lištička - C:\Program Files (x86)\Seznam.cz\listicka.dll [2011-09-27 2080800]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\coIEPlg.dll [2011-04-28 436152]
{1EA00BE1-6E54-4E2A-8099-680300BF23E1} - Nástroje Lištičky - C:\Program Files (x86)\Seznam.cz\toolbar\toolbar.dll [2011-09-27 188960]
{855F3B16-6D32-4FE6-8A56-BBB695989046} - ICQToolBar - C:\Program Files (x86)\ICQ6Toolbar\ICQToolBar.dll [2011-08-17 1055808]
{DB4E9724-F518-4dfd-9C7C-78B52103CAB9} - facemoods Toolbar - C:\Program Files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll [2011-09-05 220888]
{0BDA0769-FD72-49F4-9266-E1FB004F4D8F} - IObit Toolbar - C:\Program Files (x86)\IObit Toolbar\IE\4.9\iobitToolbarIE.dll [2011-12-13 1071456]
{8dcb7100-df86-4384-8842-8fa844297b3f} - Bing Bar - C:\Program Files (x86)\Microsoft\BingBar\BingExt.dll [2011-07-07 1152776]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 5"=C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe [2011-12-29 620376]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2010-11-20 1475584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dni]
C:\Program Files (x86)\365dni\365dniNET.exe [2010-05-13 858624]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
C:\Windows\SysWOW64\xRaidSetup.exe [2010-09-07 1976920]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 4]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
c:\program files (x86)\alcohol soft\alcohol 120\axautomntsrv.exe [2010-08-20 33120]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [2010-10-08 47904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AshSnap]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 112512]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Bonus.SSR.FR11]
C:\Program Files (x86)\ABBYY FineReader 11\Bonus.ScreenshotReader.exe [2011-08-30 925960]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2010-07-26 2782096]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
C:\Program Files (x86)\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CLMLServer]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivX Download Manager]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DivXUpdate]
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe [2011-03-21 1230704]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\facemoods]
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe [2011-09-05 362200]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\FlashGet 3]
C:\Program Files (x86)\FlashGet Network\FlashGet 3\Flashget3.exe [2009-12-22 2127408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ioCentre]
C:\Genius\ioCentre\gTaskBar.exe [2009-09-03 60928]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files (x86)\iTunes\iTunesHelper.exe [2011-01-25 421160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes' Anti-Malware]
c:\program files (x86)\malwarebytes' anti-malware\mbamgui.exe [2011-12-24 460872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Monitor]
C:\Windows\PixArt\PAC207\Monitor.exe [2007-12-10 323584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NBAgent]
C:\Program Files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe [2010-09-28 1406248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ooccctrl.exe]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC207_Monitor]
C:\Windows\PixArt\PAC207\Monitor.exe [2007-12-10 323584]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files (x86)\Nokia\Nokia PC Suite 7\PCSuite.exe [2011-06-16 1500160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Print2PDF Print Monitor]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PWRISOVM.EXE]
C:\Program Files (x86)\PowerISO\PWRISOVM.EXE [2010-04-12 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files (x86)\QuickTime\QTTask.exe [2010-11-29 421888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl11]
C:\Program Files (x86)\CyberLink\PowerDVD11\PDVD11Serv.exe [2011-08-24 230696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [2011-12-13 13374568]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SAOB Monitor]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SearchSettings]
C:\Program Files (x86)\Common Files\Spigot\Search Settings\SearchSettings.exe [2011-12-13 922976]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedhlp.exe [2011-09-23 403504]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSDMonitor]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files (x86)\Steam\Steam.exe [2011-11-17 1242448]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2010-09-28 2988784]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe]
c:\program files (x86)\real\realplayer\Update\realsched.exe [2011-07-03 273544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files (x86)\Acronis\TrueImageHome\TrueImageMonitor.exe [2011-09-23 5957032]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UIWatcher]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB Safely Remove]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^McAfee Security Scan Plus.lnk]
C:\PROGRA~2\McAfee Security Scan\2.0.181\SSScheduler.exe [2010-01-15 255536]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TVMOBiLiArtworkManager.lnk]
C:\PROGRA~2\TVMOBiLi\bin\iTunesAlbumArtGenerator.exe [2011-08-16 66048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^TwonkyMedia Tray Control.lnk]
C:\PROGRA~2\TWONKY~1\TWONKY~2.EXE [2010-11-04 595544]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lada^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^ImpulseNow.lnk]
[]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Users^lada^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Linksys Cordless Internet Telephony Kit.lnk]
C:\PROGRA~2\Linksys\Cordless Internet Telephony Kit\cit200.exe [2005-12-19 759296]

[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"=C:\Windows\RaidTool\xInsIDE.exe [2010-09-07 43608]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]
"Adobe ARM"=C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-01-03 843712]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office14\GROOVEEX.DLL [2011-06-12 6721936]

[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~2\MICROS~1\Office14\GROOVEEX.DLL [2011-06-12 4221328]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"NoSecCpl"=0
"DisableChangePassword"=0
"DisableLockWorkstation"=0
"NoDispCpl"=0
"NoDispScrSavPage"=0
"NoDispAppearancePage"=0
"NoDispSettingsPage"=0
"NoVisualStyleChoice"=0
"DisableTaskMgr"=0
"DisableCMD"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"EnableUIADesktopToggle"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"ShutdownWithoutLogon"=1
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0
"ConsentPromptBehaviorAdmin"=5
"EnableLinkedConnections"=1
"DisableTaskMgr"=0
"DisableCMD"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149
"NoDriveAutoRun"=1
"NoActiveDesktopChanges"=0
"NoSetActiveDesktop"=0
"NoInstrumentation"=0
"NoDesktop"=0
"NoActiveDesktop"=0
"HideClock"=0
"NoStartMenuPinnedList"=0
"NoStartMenuMFUprogramsList"=0
"NoUserNameInStartMenu"=0
"StartmenuLogoff"=0
"NoStartMenuSubFolders"=0
"NoCommonGroups"=0
"NoPrinterTabs"=0
"NoDeletePrinter"=0
"NoAddPrinter"=0
"NoPrinters"=0
"NoFavoritesMenu"=0
"NoRun"=0
"NoFind"=0
"NoClose"=0
"NoSetFolders"=0
"NoViewContextMenu"=0
"NoDrives"=0
"NoToolbarCustomize"=0
"NoRecentDocsNetHood"=0
"NoChangeAnimation"=0
"NoChangeKeyboardNavigationIndicators"=0
"NoThemesTab"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=0
"ForceActiveDesktopOn"=0
"NoResolveTrack"=0
"NoViewContextMenu"=0
"NoFileAssociate"=0
"NoRun"=0
"NoClose"=0
"StartMenuLogoff"=0
"NoSetActiveDesktop"=0
"NoFolderOptions"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe"="C:\Program Files (x86)\FlashGet Network\FlashGet 3\FlashGet3.exe:*:Enabled:Flashget3"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"MSVideo8"=VfWWDM32.dll
"VIDC.FFDS"=ff_vfw.dll
"VIDC.FPS1"=frapsv64.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-01-17 17:00:44 ----D---- C:\ProgramData\Codemasters
2012-01-17 16:39:59 ----A---- C:\Windows\SYSWOW64\rapture3d_oal.dll
2012-01-17 16:39:59 ----A---- C:\Windows\SYSWOW64\mkl_blueripple.dll
2012-01-17 16:39:58 ----D---- C:\Program Files (x86)\BRS
2012-01-17 16:39:55 ----RA---- C:\Windows\SYSWOW64\tmp7E6D.tmp
2012-01-17 16:39:55 ----D---- C:\Program Files (x86)\OpenAL
2012-01-17 16:39:55 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2012-01-17 16:39:55 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2012-01-17 16:39:55 ----A---- C:\Windows\system32\wrap_oal.dll
2012-01-17 16:39:55 ----A---- C:\Windows\system32\OpenAL32.dll
2012-01-17 16:34:02 ----D---- C:\Program Files (x86)\Codemasters
2012-01-14 10:26:11 ----A---- C:\Windows\SYSWOW64\javaws.exe
2012-01-14 10:26:11 ----A---- C:\Windows\SYSWOW64\javaw.exe
2012-01-14 10:26:11 ----A---- C:\Windows\SYSWOW64\java.exe
2012-01-13 20:53:40 ----D---- C:\Program Files (x86)\N3V Games
2012-01-11 19:10:55 ----A---- C:\Windows\SYSWOW64\schannel.dll
2012-01-11 19:10:55 ----A---- C:\Windows\system32\schannel.dll
2012-01-11 19:10:55 ----A---- C:\Windows\system32\lsasrv.dll
2012-01-11 19:10:55 ----A---- C:\Windows\system32\drivers\ksecpkg.sys
2012-01-11 19:10:54 ----A---- C:\Windows\SYSWOW64\webio.dll
2012-01-11 19:10:54 ----A---- C:\Windows\SYSWOW64\sspicli.dll
2012-01-11 19:10:54 ----A---- C:\Windows\SYSWOW64\secur32.dll
2012-01-11 19:10:54 ----A---- C:\Windows\system32\webio.dll
2012-01-11 19:10:54 ----A---- C:\Windows\system32\sspisrv.dll
2012-01-11 19:10:54 ----A---- C:\Windows\system32\sspicli.dll
2012-01-11 19:10:54 ----A---- C:\Windows\system32\secur32.dll
2012-01-11 19:10:54 ----A---- C:\Windows\system32\lsass.exe
2012-01-11 19:10:54 ----A---- C:\Windows\system32\drivers\ksecdd.sys
2012-01-11 19:10:54 ----A---- C:\Windows\system32\drivers\cng.sys
2012-01-11 10:30:07 ----A---- C:\Windows\SYSWOW64\quartz.dll
2012-01-11 10:30:07 ----A---- C:\Windows\SYSWOW64\qdvd.dll
2012-01-11 10:30:07 ----A---- C:\Windows\system32\quartz.dll
2012-01-11 10:30:07 ----A---- C:\Windows\system32\qdvd.dll
2012-01-11 10:30:04 ----A---- C:\Windows\SYSWOW64\ntdll.dll
2012-01-11 10:30:04 ----A---- C:\Windows\system32\ntdll.dll
2012-01-11 10:30:03 ----A---- C:\Windows\SYSWOW64\packager.dll
2012-01-11 10:30:03 ----A---- C:\Windows\system32\packager.dll
2012-01-10 11:44:30 ----D---- C:\Users\lada\AppData\Roaming\Reviversoft
2012-01-10 11:42:45 ----D---- C:\Program Files (x86)\Reviversoft
2012-01-09 16:42:05 ----D---- C:\Program Files (x86)\SlimDX SDK (September 2011)
2012-01-09 16:38:26 ----D---- C:\Program Files (x86)\Microsoft
2012-01-09 15:13:11 ----SHD---- C:\Users\lada\AppData\Roaming\wyUpdate AU
2012-01-07 11:56:06 ----D---- C:\Users\lada\AppData\Roaming\Command and Conquer 3 Tiberium Wars
2012-01-07 09:43:51 ----D---- C:\Users\lada\AppData\Roaming\Xilisoft
2012-01-07 09:41:52 ----D---- C:\ProgramData\Xilisoft
2012-01-07 09:41:52 ----D---- C:\Program Files (x86)\Xilisoft
2012-01-03 12:01:04 ----D---- C:\Windows\SYSWOW64\RTCOM
2012-01-03 12:00:01 ----A---- C:\Windows\system32\WavesGUILib.dll
2012-01-03 12:00:01 ----A---- C:\Windows\system32\tosade.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\tepeqapo64.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\tadefxapo264.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\tadefxapo.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\SRSWOW64.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\SRSTSX64.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\SRSTSH64.dll
2012-01-03 12:00:00 ----A---- C:\Windows\system32\SRSHP64.dll
2012-01-03 11:59:57 ----A---- C:\Windows\system32\SFSS_APO.dll
2012-01-03 11:59:57 ----A---- C:\Windows\system32\SFNHK64.dll
2012-01-03 11:59:56 ----A---- C:\Windows\SYSWOW64\SFCOM.dll
2012-01-03 11:59:56 ----A---- C:\Windows\system32\SFCOM64.dll
2012-01-03 11:59:56 ----A---- C:\Windows\system32\SFAPO64.dll
2012-01-03 11:59:54 ----A---- C:\Windows\system32\RtPgEx64.dll
2012-01-03 11:59:54 ----A---- C:\Windows\system32\RtlCPAPI64.dll
2012-01-03 11:59:53 ----A---- C:\Windows\system32\drivers\RTKVHD64.sys
2012-01-03 11:59:50 ----A---- C:\Windows\system32\RtkCoLDR64.dll
2012-01-03 11:59:50 ----A---- C:\Windows\system32\RtkCfg64.dll
2012-01-03 11:59:50 ----A---- C:\Windows\system32\RtkAPO64.dll
2012-01-03 11:59:50 ----A---- C:\Windows\system32\RtkApi64.dll
2012-01-03 11:59:49 ----A---- C:\Windows\system32\RTEEP64A.dll
2012-01-03 11:59:49 ----A---- C:\Windows\system32\RTEEL64A.dll
2012-01-03 11:59:49 ----A---- C:\Windows\system32\RTEEG64A.dll
2012-01-03 11:59:49 ----A---- C:\Windows\system32\RTEED64A.dll
2012-01-03 11:59:48 ----A---- C:\Windows\system32\RTCOM64.dll
2012-01-03 11:59:48 ----A---- C:\Windows\system32\RP3DHT64.dll
2012-01-03 11:59:48 ----A---- C:\Windows\system32\RP3DAA64.dll
2012-01-03 11:59:48 ----A---- C:\Windows\system32\drivers\RTAIODAT.DAT
2012-01-03 11:59:47 ----A---- C:\Windows\system32\RCoRes64.dat
2012-01-03 11:59:47 ----A---- C:\Windows\system32\RCoInstII64.dll
2012-01-03 11:59:41 ----A---- C:\Windows\system32\R4EEP64A.dll
2012-01-03 11:59:41 ----A---- C:\Windows\system32\R4EEL64A.dll
2012-01-03 11:59:40 ----A---- C:\Windows\system32\R4EEG64A.dll
2012-01-03 11:59:40 ----A---- C:\Windows\system32\R4EED64A.dll
2012-01-03 11:59:40 ----A---- C:\Windows\system32\R4EEA64A.dll
2012-01-03 11:59:38 ----A---- C:\Windows\system32\MaxxVolumeSDAPO.dll
2012-01-03 11:59:38 ----A---- C:\Windows\system32\MaxxAudioRealtek2.dll
2012-01-03 11:59:38 ----A---- C:\Windows\system32\MaxxAudioRealtek.dll
2012-01-03 11:59:37 ----A---- C:\Windows\system32\MaxxAudioEQ.dll
2012-01-03 11:59:37 ----A---- C:\Windows\system32\MaxxAudioAPO30.dll
2012-01-03 11:59:37 ----A---- C:\Windows\system32\MaxxAudioAPO20.dll
2012-01-03 11:59:36 ----A---- C:\Windows\system32\KAAPORT64.dll
2012-01-03 11:59:30 ----A---- C:\Windows\system32\FMAPO64.dll
2012-01-03 11:59:30 ----A---- C:\Windows\system32\DTSVoiceClarityDLL64.dll
2012-01-03 11:59:29 ----A---- C:\Windows\system32\DTSU2PREC64.dll
2012-01-03 11:59:29 ----A---- C:\Windows\system32\DTSU2PLFX64.dll
2012-01-03 11:59:29 ----A---- C:\Windows\system32\DTSU2PGFX64.dll
2012-01-03 11:59:29 ----A---- C:\Windows\system32\DTSSymmetryDLL64.dll
2012-01-03 11:59:29 ----A---- C:\Windows\system32\DTSS2SpeakerDLL64.dll
2012-01-03 11:59:28 ----A---- C:\Windows\system32\DTSS2HeadphoneDLL64.dll
2012-01-03 11:59:28 ----A---- C:\Windows\system32\DTSNeoPCDLL64.dll
2012-01-03 11:59:28 ----A---- C:\Windows\system32\DTSLimiterDLL64.dll
2012-01-03 11:59:28 ----A---- C:\Windows\system32\DTSLFXAPO64.dll
2012-01-03 11:59:28 ----A---- C:\Windows\system32\DTSGFXAPONS64.dll
2012-01-03 11:59:27 ----A---- C:\Windows\system32\DTSGFXAPO64.dll
2012-01-03 11:59:27 ----A---- C:\Windows\system32\DTSGainCompensatorDLL64.dll
2012-01-03 11:59:27 ----A---- C:\Windows\system32\DTSBoostDLL64.dll
2012-01-03 11:59:27 ----A---- C:\Windows\system32\DTSBassEnhancementDLL64.dll
2012-01-03 11:59:25 ----A---- C:\Windows\system32\AERTAR64.dll
2012-01-03 11:59:25 ----A---- C:\Windows\system32\AERTAC64.dll
2012-01-03 10:20:35 ----D---- C:\ProgramData\DriverGenius
2011-12-29 09:47:02 ----D---- C:\Program Files (x86)\Abrosoft
2011-12-26 12:03:15 ----HD---- C:\Program Files\Uninstall Information
2011-12-26 12:02:58 ----HD---- C:\Program Files (x86)\Uninstall Information
2011-12-25 10:40:48 ----D---- C:\Program Files (x86)\SystemRequirementsLab
2011-12-25 10:25:41 ----D---- C:\ProgramData\EA Core
2011-12-25 10:25:40 ----D---- C:\ProgramData\Electronic Arts
2011-12-24 09:02:22 ----D---- C:\Fraps
2011-12-23 08:09:05 ----D---- C:\Program Files (x86)\Alcohol Soft
2011-12-22 10:15:02 ----D---- C:\ProgramData\DVD Shrink
2011-12-22 10:14:59 ----D---- C:\Program Files (x86)\DVD Shrink
2011-12-22 10:07:13 ----D---- C:\Users\lada\AppData\Roaming\dvdcss
2011-12-22 07:00:15 ----D---- C:\Program Files (x86)\MyDVDTools
2011-12-22 07:00:15 ----A---- C:\Windows\SYSWOW64\lame_enc.dll
2011-12-22 07:00:15 ----A---- C:\Windows\SYSWOW64\auth.dll
2011-12-22 07:00:15 ----A---- C:\Windows\SYSWOW64\advd.dll
2011-12-22 07:00:15 ----A---- C:\Windows\dvdtoaviconverter2.ini
2011-12-21 16:01:35 ----D---- C:\Users\lada\AppData\Roaming\Ubisoft
2011-12-21 09:58:26 ----D---- C:\Windows\SYSWOW64\AGEIA
2011-12-21 09:58:26 ----D---- C:\Program Files (x86)\AGEIA Technologies

======List of files/folders modified in the last 1 month======

2012-01-20 18:57:28 ----D---- C:\Program Files\trend micro
2012-01-20 18:57:16 ----D---- C:\Windows\TEMP
2012-01-20 18:52:56 ----D---- C:\ProgramData\TVMOBiLi
2012-01-20 18:47:35 ----D---- C:\Program Files (x86)\Mozilla Firefox
2012-01-20 18:43:34 ----D---- C:\Windows\system32\config
2012-01-20 18:39:48 ----D---- C:\Users\lada\AppData\Roaming\ICQ
2012-01-20 18:37:45 ----D---- C:\Program Files (x86)\PS3 Media Server
2012-01-20 18:36:37 ----D---- C:\ProgramData\NVIDIA
2012-01-20 18:36:07 ----SHD---- C:\System Volume Information
2012-01-20 18:29:15 ----SH---- C:\Program Files (x86)\desktop.ini
2012-01-20 18:29:15 ----RD---- C:\Users
2012-01-20 18:29:15 ----RD---- C:\Program Files (x86)
2012-01-20 17:59:32 ----D---- C:\ProgramData\PMB Files
2012-01-20 16:58:50 ----D---- C:\Windows\Microsoft.NET
2012-01-20 16:58:37 ----RSD---- C:\Windows\assembly
2012-01-20 16:01:57 ----D---- C:\Users\lada\AppData\Roaming\Skype
2012-01-20 15:02:10 ----SHD---- C:\Config.Msi
2012-01-20 14:52:13 ----D---- C:\Windows\system32\Tasks
2012-01-20 13:44:01 ----SHD---- C:\Windows\Installer
2012-01-20 13:43:58 ----D---- C:\Windows\System32
2012-01-20 13:43:58 ----A---- C:\Windows\system32\PerfStringBackup.INI
2012-01-20 13:42:52 ----D---- C:\Windows\SYSWOW64\cs-CZ
2012-01-20 13:42:52 ----D---- C:\Windows\system32\cs-CZ
2012-01-20 13:41:29 ----D---- C:\Windows\SysWOW64
2012-01-20 13:37:54 ----D---- C:\Windows\SYSWOW64\en-US
2012-01-20 13:37:54 ----D---- C:\Windows\system32\en-US
2012-01-20 13:35:37 ----D---- C:\Windows
2012-01-20 11:47:45 ----D---- C:\Windows\SYSWOW64\directx
2012-01-20 00:42:51 ----SHD---- C:\Boot
2012-01-20 00:40:48 ----D---- C:\Windows\Tasks
2012-01-20 00:40:48 ----D---- C:\Windows\system32\wfp
2012-01-20 00:40:48 ----D---- C:\Windows\system32\DriverStore
2012-01-20 00:40:48 ----D---- C:\Windows\system32\drivers\etc
2012-01-20 00:40:48 ----D---- C:\Windows\system32\catroot2
2012-01-20 00:40:48 ----D---- C:\Windows\inf
2012-01-20 00:40:48 ----D---- C:\Program Files (x86)\JDownloader
2012-01-20 00:40:46 ----D---- C:\Users\lada\AppData\Roaming\TS3Client
2012-01-20 00:40:46 ----D---- C:\ProgramData\Norton
2012-01-20 00:40:45 ----D---- C:\Windows\system32\wbem
2012-01-20 00:40:45 ----D---- C:\Windows\registration
2012-01-19 23:31:56 ----D---- C:\Windows\Logs
2012-01-19 21:48:52 ----D---- C:\Windows\SYSWOW64\drivers
2012-01-19 21:47:00 ----D---- C:\Users\lada\AppData\Roaming\Winamp
2012-01-19 15:47:52 ----D---- C:\Windows\system32\NDF
2012-01-17 20:25:21 ----D---- C:\Users\lada\AppData\Roaming\DAEMON Tools Lite
2012-01-17 17:00:44 ----HD---- C:\ProgramData
2012-01-17 16:40:28 ----D---- C:\Windows\winsxs
2012-01-14 10:25:59 ----D---- C:\Program Files (x86)\Java
2012-01-13 21:23:03 ----D---- C:\Users\lada\AppData\Roaming\Mozilla
2012-01-13 10:31:25 ----D---- C:\Program Files (x86)\Google
2012-01-12 08:41:59 ----D---- C:\Windows\debug
2012-01-12 08:41:58 ----D---- C:\Users\lada\AppData\Roaming\BitTorrent
2012-01-11 21:07:13 ----D---- C:\Windows\system32\drivers
2012-01-11 19:10:26 ----D---- C:\Windows\system32\catroot
2012-01-11 17:18:21 ----D---- C:\Windows\ehome
2012-01-11 14:53:26 ----D---- C:\ProgramData\Microsoft Help
2012-01-11 14:47:23 ----A---- C:\Windows\system32\MRT.exe
2012-01-09 16:38:41 ----SD---- C:\ProgramData\Microsoft
2012-01-08 03:49:50 ----D---- C:\ProgramData\Backup
2012-01-07 11:11:23 ----D---- C:\Program Files\DAEMON Tools Pro
2012-01-07 09:47:40 ----SD---- C:\Users\lada\AppData\Roaming\Microsoft
2012-01-06 12:44:15 ----D---- C:\Users\lada\AppData\Roaming\Vso
2012-01-05 11:11:32 ----D---- C:\ProgramData\CanonIJPLM
2012-01-05 10:57:40 ----D---- C:\Games
2012-01-05 10:52:10 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2012-01-04 17:45:58 ----D---- C:\Users\lada\AppData\Roaming\DAEMON Tools Pro
2012-01-04 17:44:51 ----D---- C:\Program Files (x86)\CCleaner
2012-01-03 12:01:34 ----HD---- C:\Program Files (x86)\Temp
2012-01-01 12:48:15 ----D---- C:\Users\lada\AppData\Roaming\vlc
2012-01-01 11:37:33 ----D---- C:\Program Files (x86)\Gameforge4D
2012-01-01 11:31:02 ----D---- C:\Users\lada\AppData\Roaming\IObit
2011-12-28 17:59:04 ----D---- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2011-12-28 10:04:13 ----D---- C:\Windows\system32\wdi
2011-12-26 12:03:15 ----RD---- C:\Program Files
2011-12-26 12:03:01 ----SHD---- C:\$Recycle.Bin
2011-12-25 17:01:16 ----D---- C:\Users\lada\AppData\Roaming\Might & Magic Heroes VI
2011-12-24 12:12:53 ----D---- C:\Program Files (x86)\Windows Doctor
2011-12-24 12:09:52 ----AD---- C:\ProgramData\Temp
2011-12-23 19:48:19 ----D---- C:\Program Files (x86)\Achtung Panzer Operation Star
2011-12-22 09:28:07 ----D---- C:\multiAVCHD
2011-12-22 06:53:14 ----D---- C:\convert

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 fltsrv;Acronis Storage Filter Management; C:\Windows\system32\DRIVERS\fltsrv.sys [2011-11-16 132704]
R0 JRAID;JRAID; C:\Windows\system32\DRIVERS\jraid.sys [2011-05-19 120920]
R0 NBVol;Nero Backup Volume Filter Driver; C:\Windows\system32\DRIVERS\NBVol.sys [2011-07-13 72240]
R0 NBVolUp;Nero Backup Volume Upper Filter Driver; C:\Windows\system32\DRIVERS\NBVolUp.sys [2011-07-13 15920]
R0 pciide;pciide; C:\Windows\system32\drivers\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2010-11-20 213888]
R0 SmartDefragDriver;SmartDefragDriver; C:\Windows\System32\Drivers\SmartDefragDriver.sys [2010-11-26 17720]
R0 snapman;Acronis Snapshots Manager; C:\Windows\system32\DRIVERS\snapman.sys [2011-11-16 310368]
R0 speedfan;speedfan; C:\Windows\SysWOW64\speedfan.sys [2007-02-07 14104]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2011-12-20 530488]
R0 SymDS;Symantec Data Store; C:\Windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [2011-01-27 450680]
R0 SymEFA;Symantec Extended File Attributes; C:\Windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [2011-03-15 912504]
R0 tdrpman;Acronis Try&Decide and Restore Points filter; C:\Windows\system32\DRIVERS\tdrpman.sys [2011-11-16 1284192]
R0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273); C:\Windows\system32\DRIVERS\tdrpm273.sys [2011-01-06 1263200]
R0 timounter;Acronis Backup Archive Explorer; C:\Windows\system32\DRIVERS\timntr.sys [2011-11-16 986208]
R0 vididr;Acronis Virtual Disk; C:\Windows\system32\DRIVERS\vididr.sys [2011-11-16 210528]
R0 vidsflt58;Acronis Disk Storage Filter (58); C:\Windows\system32\DRIVERS\vsflt58.sys [2011-11-16 142944]
R0 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\drivers\vmbus.sys [2010-11-20 199552]
R1 BHDrvx64;BHDrvx64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111223.001\BHDrvx64.sys [2011-12-01 1157240]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2010-11-20 514560]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\eeCtrl64.sys [2012-01-06 482936]
R1 IDSVia64;IDSVia64; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20120119.006\IDSvia64.sys [2011-08-22 488568]
R1 NetworkX;NetworkX; C:\Windows\syswow64\ckldrv.sys []
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
R1 SCDEmu;SCDEmu; C:\Windows\system32\drivers\SCDEmu.sys [2010-04-12 91568]
R1 SRTSP;Symantec Real Time Storage Protection x64; C:\Windows\system32\drivers\N360x64\0501000.01D\SRTSP64.SYS [2011-03-31 744568]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL) x64; C:\Windows\system32\drivers\N360x64\0501000.01D\SRTSPX64.SYS [2011-03-31 40568]
R1 SymIRON;Symantec Iron Driver; C:\Windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [2011-01-27 171128]
R1 SymNetS;Symantec Network Security WFP Driver; C:\Windows\system32\drivers\N360x64\0501000.01D\SYMNETS.SYS [2011-07-08 386168]
R1 truecrypt;truecrypt; C:\Windows\SysWOW64\drivers\truecrypt.sys [2010-05-12 222160]
R1 VD_FileDisk;VD_FileDisk; C:\Windows\system32\drivers\VD_FileDisk.sys [2011-01-26 30312]
R2 acedrv11;acedrv11; \??\C:\Windows\system32\drivers\acedrv11.sys [2010-02-24 191616]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-09-19 314016]
R2 IDMWFP;IDMWFP; C:\Windows\system32\DRIVERS\idmwfp.sys [2011-01-25 142936]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-09-19 43680]
R2 PfFilter;PfFilter; \??\C:\Program Files (x86)\IObit\Protected Folder\pffilter.sys [2011-03-16 36792]
R3 afcdp;afcdp; C:\Windows\system32\DRIVERS\afcdp.sys [2011-11-16 367200]
R3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller; C:\Windows\system32\DRIVERS\l160x64.sys [2009-10-13 61440]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-06 138360]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2011-07-06 34288]
R3 gHidPnp;USB Device Enhanced Function Driver; C:\Windows\System32\Drivers\gHidPnp.Sys [2009-11-02 25088]
R3 gMouUsb;USB Mouse Device Drv; C:\Windows\system32\DRIVERS\gMouUsb.sys [2009-11-02 14336]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHD64.sys [2011-12-13 4718952]
R3 MBAMProtector;MBAMProtector; \??\C:\Windows\system32\drivers\mbam.sys [2011-12-10 23152]
R3 msloop;Microsoft Loopback Adapter Driver; C:\Windows\system32\DRIVERS\loop.sys [2009-07-14 7680]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2009-07-16 15416]
R3 NAVENG;NAVENG; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120119.035\ENG64.SYS [2012-01-06 117880]
R3 NAVEX15;NAVEX15; \??\C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\VirusDefs\20120119.035\EX64.SYS [2012-01-06 2048632]
R3 Safetica;Safetica Encryption Driver; C:\Windows\system32\DRIVERS\safetica.sys [2010-04-18 252728]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT64x86.SYS [2011-08-08 174200]
S3 appliandMP;appliandMP; C:\Windows\system32\DRIVERS\appliand.sys []
S3 Bridge;@%SystemRoot%\system32\bridgeres.dll,-3; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 BridgeMP;@%SystemRoot%\system32\bridgeres.dll,-1; C:\Windows\system32\DRIVERS\bridge.sys [2009-07-14 95232]
S3 dump_wmimmc;dump_wmimmc; \??\F:\HRY\lineage2\system\GameGuard\dump_wmimmc.sys []
S3 EagleX64;EagleX64; C:\Windows\system32\drivers\EagleX64.sys []
S3 nmwcd;Nokia USB Phone Parent Driver; C:\Windows\system32\drivers\ccdcmbx64.sys [2011-08-17 19968]
S3 nmwcdc;Nokia USB Communication Driver; C:\Windows\system32\drivers\ccdcmbox64.sys [2011-08-17 27136]
S3 NPPTNT2;NPPTNT2; \??\C:\Windows\syswow64\npptNT2.sys [2009-04-06 4682]
S3 PAC207;e-Messenger 112; C:\Windows\system32\DRIVERS\PFC027.SYS [2009-06-25 686592]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfdx64.sys [2008-08-28 25600]
S3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2010-06-03 82816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2010-11-20 165888]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\Windows\System32\drivers\rdpvideominiport.sys [2010-11-20 20992]
S3 RegFilter;RegFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2011-09-20 33184]
S3 s3cap;s3cap; C:\Windows\system32\drivers\vms3cap.sys [2010-11-20 6656]
S3 SANDRA;SANDRA; \??\C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\WNt500x64\Sandra.sys [2009-08-07 23112]
S3 smbusp;Intel(R) SMBus 2.0 Driver; C:\Windows\system32\DRIVERS\intelsmb.sys [2010-06-10 36224]
S3 storvsc;storvsc; C:\Windows\system32\drivers\storvsc.sys [2010-11-20 34688]
S3 Synth3dVsc;Synth3dVsc; C:\Windows\System32\drivers\synth3dvsc.sys []
S3 TsUsbFlt;TsUsbFlt; C:\Windows\system32\drivers\tsusbflt.sys [2010-11-20 59392]
S3 tsusbhub;tsusbhub; C:\Windows\system32\drivers\tsusbhub.sys []
S3 upperdev;upperdev; C:\Windows\system32\DRIVERS\usbser_lowerfltx64.sys [2011-08-17 9216]
S3 UrlFilter;UrlFilter; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2011-09-20 21872]
S3 usbscan;Ovladač skeneru USB; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 41984]
S3 usbser;USB Modem Driver; C:\Windows\system32\drivers\usbser.sys [2010-11-20 32768]
S3 UsbserFilt;UsbserFilt; C:\Windows\system32\DRIVERS\usbser_lowerfltjx64.sys [2011-08-17 9216]
S3 VGPU;VGPU; C:\Windows\System32\drivers\rdvgkmd.sys []
S3 VMBusHID;VMBusHID; C:\Windows\system32\drivers\VMBusHID.sys [2010-11-20 21760]
S4 FileMonitor;FileMonitor; \??\C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-10-08 20336]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
R2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service; C:\Program Files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe [2011-09-23 1121944]
R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R2 AdvancedSystemCareService5;Advanced SystemCare Service 5; C:\Program Files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
R2 afcdpsrv;Služba Acronis Nonstop Backup; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-11-16 3409880]
R2 Application Updater;Application Updater; C:\Program Files (x86)\Application Updater\ApplicationUpdater.exe [2011-12-14 748440]
R2 BBUpdate;BBUpdate; C:\Program Files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 Crypkey License;Crypkey License; C:\Windows\system32\crypserv.exe [2008-05-08 122880]
R2 ICQ Service;ICQ Service; C:\Program Files (x86)\ICQ6Toolbar\ICQ Service.exe [2011-08-17 247872]
R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files (x86)\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 101528]
R2 IMFservice;IMF Service; C:\Program Files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-10-08 820568]
R2 MBAMService;MBAMService; C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-12-24 652872]
R2 N360;Norton 360; C:\Program Files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008]
R2 NAUpdate;@C:\Program Files (x86)\Nero\Update\NASvc.exe,-200; C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
R2 NVSvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-10-15 1640768]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
R2 PS3 Media Server;PS3 Media Server; C:\Program Files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
R2 Správce výběru OS;Aktivátor Správce výběru OS Acronis; C:\Program Files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe [2010-07-07 2156952]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
R2 TVersityMediaServer;TVersityMediaServer; C:\ProgramData\TVersity\Media Server\MediaServer.exe [2010-11-24 921600]
R2 tvMobiliService;tvMobiliService; C:\Program Files (x86)\TVMOBiLi\bin\tvMobiliService.exe [2011-08-16 993280]
R2 TwonkyMedia;TwonkyMedia; C:\Program Files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe [2010-11-04 497240]
R2 USBSafelyRemoveService;USB Safely Remove Assistant; C:\Program Files (x86)\USB Safely Remove\USBSRService.exe [2008-12-06 458928]
S2 StarWindServiceAE;StarWind AE Service; C:\Program Files (x86)\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2009-12-23 370688]
S2 syncagentsrv;Acronis Sync Agent Service; C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2011-09-23 5735152]
S3 602XML Updater;602Updater; C:\Program Files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
S3 Apple Mobile Device;Apple Mobile Device; C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2011-01-05 37664]
S3 aspnet_state;Stavová služba ASP.NET; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe [2010-03-18 44376]
S3 BBSvc;Bing Bar Update Service; C:\Program Files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
S3 Bonjour Service;Bonjour Service; C:\Program Files (x86)\Bonjour\mDNSResponder.exe [2010-10-07 345376]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2011-01-25 933664]
S3 McComponentHostService;McAfee Security Scan Component Host Service; C:\Program Files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
S3 npggsvc;nProtect GameGuard Service; C:\Windows\syswow64\GameMon.des [2011-03-28 4323256]
S3 ose64;Office 64 Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files (x86)\WinPcap\rpcapd.exe [2009-10-20 117264]
S3 SandraAgentSrv;SiSoftware Deployment Agent Service; C:\Program Files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe [2009-08-17 93848]
S3 ServiceLayer;ServiceLayer; C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe [2011-10-27 718384]
S3 Steam Client Service;Steam Client Service; C:\Program Files (x86)\Common Files\Steam\SteamService.exe [2011-03-27 403240]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
S4 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S4 NetMsmqActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@C:\Windows\Microsoft.NET\Framework64\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework64\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]

-----------------EOF-----------------

Re: Hláška neznámé rozhraní

Napsal: 20 led 2012 20:23
od Rudy
Poprosím o log z ComboFix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se

jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine

aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode,

pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k

nezadoucim kolizim s rezidentem antispyware

Re: Hláška neznámé rozhraní

Napsal: 20 led 2012 20:55
od valda
ComboFix 12-01-19.02 - lada 20.01.2012 20:35:11.1.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4095.2246 [GMT 1:00]
Spuštěný z: c:\users\lada\Desktop\ComboFix.exe
AV: Norton 360 *Disabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Disabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\facemoods.com
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\bh\facemoods.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoods.crx
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoods.png
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsApp.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsEng.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodssrv.exe
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\facemoodsTlbr.dll
c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\uninstall.exe
c:\programdata\page
c:\programdata\page\page.ico
c:\programdata\page\page.URL
c:\users\lada\AppData\Local\assembly\tmp
c:\users\lada\AppData\Local\MediaMonkey_4.0.0.1435_Debug.exe
c:\users\lada\AppData\Roaming\.#
c:\users\lada\AppData\Roaming\.#\MBX@12E0@361F58.###
c:\users\lada\AppData\Roaming\.#\MBX@12E0@361F68.###
c:\users\lada\AppData\Roaming\.#\MBX@12E0@361F78.###
c:\users\lada\AppData\Roaming\.#\MBX@89C@3F1F58.###
c:\users\lada\AppData\Roaming\.#\MBX@89C@3F1F68.###
c:\users\lada\AppData\Roaming\.#\MBX@89C@3F1F78.###
c:\users\lada\AppData\Roaming\IDM\idmmzcc3
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components\idmmzcc.dll
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components\iIDMMzCC.xpt
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\idmhelper.js
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\idmhelper2.js
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\idmmzcc.dll
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\idmmzcc64.dll
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\iIDMHelper.xpt
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\iIDMHelper2.xpt
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\components2\iIDMMzCC.xpt
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\chrome.manifest
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\chrome\idmmzcc.jar
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\install.js
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\install.rdf
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\META-INF\manifest.mf
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\META-INF\zigbert.rsa
c:\users\lada\AppData\Roaming\IDM\idmmzcc3\META-INF\zigbert.sf
c:\windows\SysWow64\systeminfo.dll
c:\windows\SysWow64\tmp7E5C.tmp
c:\windows\SysWow64\tmp7E6D.tmp
c:\windows\XSxS
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-20 do 2012-01-20 )))))))))))))))))))))))))))))))
.
.
2012-01-20 19:44 . 2012-01-20 19:44 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-01-20 19:44 . 2012-01-20 19:44 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-17 16:00 . 2012-01-17 16:00 -------- d-----w- c:\programdata\Codemasters
2012-01-17 15:39 . 2011-03-19 14:16 1417216 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2012-01-17 15:39 . 2010-09-22 12:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2012-01-17 15:39 . 2012-01-17 15:40 -------- d-----w- c:\program files (x86)\BRS
2012-01-17 15:39 . 2012-01-17 15:39 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-01-17 15:39 . 2012-01-17 15:39 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2012-01-17 15:39 . 2012-01-17 15:39 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2012-01-17 15:39 . 2012-01-17 15:39 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2012-01-17 15:39 . 2012-01-17 15:39 -------- d-----w- c:\program files (x86)\OpenAL
2012-01-17 15:34 . 2012-01-17 15:34 -------- d-----w- c:\program files (x86)\Codemasters
2012-01-13 19:53 . 2012-01-13 19:53 -------- d-----w- c:\program files (x86)\N3V Games
2012-01-11 09:30 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 09:30 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-01-11 09:30 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-01-11 09:30 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll
2012-01-11 09:30 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 09:30 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-01-11 09:30 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2012-01-11 09:30 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-01-10 10:44 . 2012-01-10 10:44 -------- d-----w- c:\users\lada\AppData\Roaming\Reviversoft
2012-01-10 10:42 . 2012-01-10 10:42 -------- d-----w- c:\program files (x86)\Reviversoft
2012-01-09 15:42 . 2012-01-09 15:42 -------- d-----w- c:\program files (x86)\SlimDX SDK (September 2011)
2012-01-09 15:38 . 2012-01-09 15:38 -------- d-----w- c:\program files (x86)\Microsoft
2012-01-09 14:13 . 2012-01-09 14:13 -------- d-sh--w- c:\users\lada\wc
2012-01-09 14:13 . 2012-01-09 14:13 -------- d-sh--w- c:\users\lada\AppData\Roaming\wyUpdate AU
2012-01-07 10:56 . 2012-01-07 10:56 -------- d-----w- c:\users\lada\AppData\Roaming\Command and Conquer 3 Tiberium Wars
2012-01-07 08:43 . 2012-01-07 08:43 -------- d-----w- c:\users\lada\AppData\Roaming\Xilisoft
2012-01-07 08:41 . 2012-01-07 08:41 -------- d-----w- c:\programdata\Xilisoft
2012-01-07 08:41 . 2012-01-07 08:41 -------- d-----w- c:\program files (x86)\Xilisoft
2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-01-03 11:01 . 2012-01-03 11:01 -------- d-----w- c:\windows\SysWow64\RTCOM
2012-01-03 11:00 . 2011-07-27 23:55 2604376 ----a-w- c:\windows\system32\WavesGUILib.dll
2012-01-03 11:00 . 2011-03-17 11:17 1361336 ----a-w- c:\windows\system32\tosade.dll
2012-01-03 11:00 . 2011-07-08 13:34 65432 ----a-w- c:\windows\system32\tepeqapo64.dll
2012-01-03 11:00 . 2011-06-14 10:13 177088 ----a-w- c:\windows\system32\tadefxapo264.dll
2012-01-03 11:00 . 2011-03-07 16:11 148416 ----a-w- c:\windows\system32\tadefxapo.dll
2012-01-03 11:00 . 2009-11-24 08:55 518896 ----a-w- c:\windows\system32\SRSTSX64.dll
2012-01-03 11:00 . 2009-11-24 08:55 211184 ----a-w- c:\windows\system32\SRSTSH64.dll
2012-01-03 11:00 . 2009-11-24 08:55 198896 ----a-w- c:\windows\system32\SRSHP64.dll
2012-01-03 11:00 . 2009-11-24 08:55 155888 ----a-w- c:\windows\system32\SRSWOW64.dll
2012-01-03 09:20 . 2012-01-03 10:47 -------- d-----w- c:\programdata\DriverGenius
2011-12-29 08:47 . 2012-01-05 09:51 -------- d-----w- c:\program files (x86)\Abrosoft
2011-12-26 11:02 . 2012-01-19 23:42 -------- d-----w- c:\users\Administrator
2011-12-25 09:40 . 2011-12-25 09:40 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2011-12-25 09:40 . 2011-12-25 09:40 -------- d-----w- c:\users\lada\SystemRequirementsLab
2011-12-25 09:25 . 2011-12-25 09:25 -------- d-----w- c:\programdata\EA Core
2011-12-25 09:25 . 2011-12-25 09:25 -------- d-----w- c:\programdata\Electronic Arts
2011-12-25 07:34 . 2011-12-25 07:34 626688 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr80.dll
2011-12-25 07:34 . 2011-12-25 07:34 548864 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp80.dll
2011-12-25 07:34 . 2011-12-25 07:34 479232 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcm80.dll
2011-12-25 07:34 . 2011-12-25 07:34 43992 ----a-w- c:\program files (x86)\Mozilla Firefox\mozutils.dll
2011-12-24 08:02 . 2011-12-24 08:09 -------- d-----w- C:\Fraps
2011-12-23 07:09 . 2011-12-23 07:09 -------- d-----w- c:\program files (x86)\Alcohol Soft
2011-12-22 09:15 . 2011-12-22 09:16 -------- d-----w- c:\programdata\DVD Shrink
2011-12-22 09:14 . 2011-12-22 09:14 -------- d-----w- c:\program files (x86)\DVD Shrink
2011-12-22 09:07 . 2011-12-22 09:07 -------- d-----w- c:\users\lada\AppData\Roaming\dvdcss
2011-12-22 06:00 . 2011-12-22 06:00 -------- d-----w- c:\program files (x86)\MyDVDTools
2011-12-22 06:00 . 2007-05-14 22:33 962560 ----a-w- c:\windows\SysWow64\advdaudio.ocx
2011-12-22 06:00 . 2004-09-07 00:06 53248 ----a-w- c:\windows\SysWow64\xvid.ax
2011-12-22 06:00 . 2004-07-14 12:44 23040 ----a-w- c:\windows\SysWow64\auth.dll
2011-12-22 06:00 . 2003-08-07 13:01 237568 ----a-w- c:\windows\SysWow64\lame_enc.dll
2011-12-22 06:00 . 2002-12-25 08:44 380928 ----a-w- c:\windows\SysWow64\actskin4.ocx
2011-12-22 06:00 . 2002-05-23 19:40 110080 ----a-w- c:\windows\SysWow64\advd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-19 19:18 . 2011-03-05 20:02 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-10 11:03 . 2010-11-10 17:48 2944 ----a-w- c:\windows\system32\ASOROSet.bin
2011-12-15 07:15 . 2011-12-15 07:15 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-12-15 07:15 . 2011-12-15 07:15 2048 ----a-w- c:\windows\system32\tzres.dll
2011-12-15 07:15 . 2011-12-15 07:15 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-12-15 07:15 . 2011-12-15 07:15 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-12-15 07:15 . 2011-12-15 07:15 2309120 ----a-w- c:\windows\system32\jscript9.dll
2011-12-15 07:15 . 2011-12-15 07:15 1798144 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-12-15 07:15 . 2011-12-15 07:15 1493504 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-15 07:15 . 2011-12-15 07:15 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-12-15 07:15 . 2011-12-15 07:15 1390080 ----a-w- c:\windows\system32\wininet.dll
2011-12-15 07:15 . 2011-12-15 07:15 1127424 ----a-w- c:\windows\SysWow64\wininet.dll
2011-12-15 07:14 . 2011-12-15 07:14 43520 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-15 07:14 . 2011-12-15 07:14 723456 ----a-w- c:\windows\system32\EncDec.dll
2011-12-15 07:14 . 2011-12-15 07:14 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-12-15 07:13 . 2011-12-15 07:13 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-12-14 12:05 . 2010-06-03 18:10 99384 ----a-w- c:\users\lada\AppData\Roaming\inst.exe
2011-12-14 12:05 . 2010-06-03 18:10 82816 ----a-w- c:\users\lada\AppData\Roaming\pcouffin.sys
2011-12-13 10:01 . 2011-02-28 11:03 1698408 ----a-w- c:\windows\RtlExUpd.dll
2011-12-10 14:24 . 2010-11-09 18:22 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-06 14:55 . 2010-05-04 18:47 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2011-11-17 06:35 . 2012-01-11 18:10 340992 ----a-w- c:\windows\system32\schannel.dll
2011-11-17 05:34 . 2012-01-11 18:10 224768 ----a-w- c:\windows\SysWow64\schannel.dll
2011-11-16 08:14 . 2011-11-16 08:14 367200 ----a-w- c:\windows\system32\drivers\afcdp.sys
2011-11-16 08:14 . 2011-11-16 08:14 1284192 ----a-w- c:\windows\system32\drivers\tdrpman.sys
2011-11-16 08:14 . 2011-11-16 08:14 986208 ----a-w- c:\windows\system32\drivers\timntr.sys
2011-11-16 08:14 . 2011-11-16 08:14 210528 ----a-w- c:\windows\system32\drivers\vididr.sys
2011-11-16 08:14 . 2011-11-16 08:14 142944 ----a-w- c:\windows\system32\drivers\vsflt58.sys
2011-11-16 08:14 . 2011-01-06 09:31 310368 ----a-w- c:\windows\system32\drivers\snapman.sys
2011-11-16 08:14 . 2011-11-16 08:14 132704 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2011-11-10 04:54 . 2010-07-24 17:34 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-10-31 12:27 . 2011-10-31 12:27 421888 ----a-w- c:\windows\SysWow64\RealMediaSplitter.ax
2011-10-31 08:43 . 2011-10-31 08:43 388096 ----a-r- c:\users\lada\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]
"{1EA00BE1-6E54-4E2A-8099-680300BF23E1}"= "c:\program files (x86)\Seznam.cz\toolbar\toolbar.dll" [2011-09-27 188960]
.
[HKEY_CLASSES_ROOT\clsid\{1ea00be1-6e54-4e2a-8099-680300bf23e1}]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2011-12-29 620376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-09-07 43608]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoSecCpl"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"RemoteControl10"="c:\program files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"BDRegion"=c:\program files (x86)\Cyberlink\Shared files\brs.exe
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"JMB36X IDE Setup"=c:\windows\RaidTool\xInsIDE.exe
"AppleSyncNotifier"=c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
R2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2011-09-23 5735152]
R2 WO_LiveService;Ashampoo LiveTuner Service; [x]
R3 602XML Updater;602Updater;c:\program files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\appliand.sys [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
R3 dump_wmimmc;dump_wmimmc;f:\hry\lineage2\system\GameGuard\dump_wmimmc.sys [x]
R3 EagleX64;EagleX64; [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PAC207;e-Messenger 112;c:\windows\system32\DRIVERS\PFC027.SYS [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2011-09-20 33184]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\program files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe [2009-08-17 93848]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2011-09-20 21872]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-10-08 20336]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys [x]
S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys [x]
S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S0 vididr;Acronis Virtual Disk;c:\windows\system32\DRIVERS\vididr.sys [x]
S0 vidsflt58;Acronis Disk Storage Filter (58);c:\windows\system32\DRIVERS\vsflt58.sys [x]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111223.001\BHDrvx64.sys [2011-12-01 1157240]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20120119.006\IDSvia64.sys [2011-08-22 488568]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\N360x64\0501000.01D\SYMNETS.SYS [x]
S1 VD_FileDisk;VD_FileDisk; [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/06/04 08:35];c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 10:58 146928]
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/10/22 10:49];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-08-25 11:06 148976]
S2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;c:\program files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-11-16 3409880]
S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [2011-12-14 748440]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 ICQ Service;ICQ Service;c:\program files (x86)\ICQ6Toolbar\ICQ Service.exe [2011-08-17 247872]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-10-08 820568]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-12-24 652872]
S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
S2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-10-15 2253120]
S2 PfFilter;PfFilter;c:\program files (x86)\IObit\Protected Folder\pffilter.sys [2011-03-16 36792]
S2 PS3 Media Server;PS3 Media Server;c:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
S2 tvMobiliService;tvMobiliService;c:\program files (x86)\TVMOBiLi\bin\tvMobiliService.exe [2011-08-16 993280]
S2 TwonkyMedia;TwonkyMedia;c:\program files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe [2010-11-04 497240]
S2 USBSafelyRemoveService;USB Safely Remove Assistant;c:\program files (x86)\USB Safely Remove\USBSRService.exe [2008-12-06 458928]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\DRIVERS\l160x64.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-06 138360]
S3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\Drivers\gHidPnp.Sys [x]
S3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\DRIVERS\gMouUsb.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 Safetica;Safetica Encryption Driver;c:\windows\system32\DRIVERS\safetica.sys [x]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - WS2IFSL
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-24 c:\windows\Tasks\DriverEasy Scheduled Scan.job
- c:\program files\Easeware\DriverEasy\DriverEasy.exe [2011-08-08 07:06]
.
2012-01-20 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-22 06:39]
.
2012-01-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2010-12-22 06:39]
.
2012-01-08 c:\windows\Tasks\RegInOut Scheduled Scan - lada.job
- c:\program files (x86)\RegInOut\RegInOut.exe [2011-03-12 10:09]
.
.
--------- x86-64 -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"LoadAppInit_DLLs"=0x0
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page =
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Add to Playlist - c:\program files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/314
IE: Download all by FlashGet3 - c:\users\Administrator\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
IE: Download by FlashGet3 - c:\users\Administrator\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: TwonkyBeam to - c:\program files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/231
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.1.7 212.47.0.4
FF - ProfilePath - c:\users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\4lqi9kw2.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{9384BD4C-DD14-4BE9-80F7-F6277511E4F5} - (no file)
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
WebBrowser-{66BD2442-241B-44CD-8C7A-B51037053CDB} - (no file)
ShellIconOverlayIdentifiers-{CDC95B92-E27C-4745-A8C5-64A52A78855D} - (no file)
ShellIconOverlayIdentifiers- - (no file)
ShellIconOverlayIdentifiers- - (no file)
ShellIconOverlayIdentifiers- - (no file)
AddRemove-Adobe Shockwave Player - c:\windows\system32\Adobe\Shockwave 11\uninstaller.exe
AddRemove-facemoods - c:\program files (x86)\facemoods.com\facemoods\1.4.17.11\uninstall.exe
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\N360]
"ImagePath"="\"c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll\" /prefetch:1"
Binary file temp00 matches
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Internet Explorer\Approved Extensions]
@Denied: (2) (Administrator)
"{72853161-30C5-4D22-B7F9-0BBC1D38A37E}"=hex:51,66,7a,6c,4c,1d,3b,1b,71,29,93,
68,f7,65,4a,00,a9,ef,48,e5,1f,7b,e5,63
"{9030D464-4C02-4ABF-8ECC-5164760863C6}"=hex:51,66,7a,6c,4c,1d,3b,1b,74,cc,26,
8a,30,19,d7,07,90,da,12,3d,74,4b,25,db
"{B4F3A835-0E21-4959-BA22-42B3008E02FF}"=hex:51,66,7a,6c,4c,1d,3b,1b,25,b0,e5,
ae,13,5b,31,04,a4,34,01,ea,02,cd,44,e2
"{0BDA0769-FD72-49F4-9266-E1FB004F4D8F}"=hex:51,66,7a,6c,4c,1d,3b,1b,79,1f,cc,
11,40,a8,9c,04,8c,70,a2,a2,02,0c,0b,92
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3g2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3G2"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3gp\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3GP"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3gp2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3G2"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3gpp\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3GP"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aac\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ADTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ac3\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ac3"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ADT\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ADTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ADTS\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ADTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aif\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AIFF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aifc\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AIFF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aiff\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AIFF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.asf\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.asx\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.au\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AU"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.avi\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AVI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.DIVX\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.divx"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.dts"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.flv"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdmov\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.hdmov"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m1v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2t\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M2TS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2ts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M2TS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.m3u"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M4A"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mid\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MIDI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.midi\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MIDI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mka\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mka"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mkv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mkv"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mod\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MOV"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP3"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp2v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP3"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpa\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpe\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpeg\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpg\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpls\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mpls"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv4\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mpv4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M2TS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.oga\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.oga"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.OGG\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ogg"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.OGM\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ogm"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ogv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ogv"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ra\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ra"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.rm"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rmi\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MIDI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rmvb\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.rmvb"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snd\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AU"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.TTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.TTS\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.TTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WAV"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wax\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WAX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.webm"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wma\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WMA"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WMV"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmx\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wpl\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WPL"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wvx\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WVX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil11c_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.10"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\T*w*o*n*k*y*B*e*a*m*"!\Internet Explorer]
"Path"="c:\\Program Files (x86)\\PacketVideo\\TwonkyBeam\\Internet Explorer"
"Language"="1033"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\crypserv.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\windows\SysWOW64\java.exe
c:\programdata\TVersity\Media Server\MediaServer.exe
c:\program files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
c:\program files\DAEMON Tools Pro\DTShellHlp.exe
.
**************************************************************************
.
Celkový čas: 2012-01-20 20:53:30 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-20 19:53
.
Před spuštěním: Volných bajtů: 33 600 892 928
Po spuštění: Volných bajtů: 33 249 009 664
.
- - End Of File - - C924FA9202EA2B81A9C3F019636577D5

Re: Hláška neznámé rozhraní

Napsal: 20 led 2012 21:21
od Rudy
Ještě dočistíme. Otevřte poznámkový blok a zkopírujte do něj:
Folder::
c:\program files (x86)\Seznam.cz\toolbar
c:\program files (x86)\Google\Update

Collect::
c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

Registry::
[-HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Internet Explorer\Toolbar]

RegLock::
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Internet Explorer\Approved Extensions]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

Re: Hláška neznámé rozhraní

Napsal: 20 led 2012 21:49
od valda
tu je nový log
ComboFix 12-01-19.02 - lada 20.01.2012 21:27:28.2.2 - x64
Microsoft Windows 7 Ultimate 6.1.7601.1.1250.420.1029.18.4095.2471 [GMT 1:00]
Spuštěný z: c:\users\lada\Desktop\ComboFix.exe
Použité ovládací přepínače :: c:\users\lada\Desktop\CFScript.txt
AV: Norton 360 *Enabled/Updated* {63DF5164-9100-186D-2187-8DC619EFD8BF}
FW: Norton 360 *Enabled* {5BE4D041-DB6F-1935-0AD8-24F3E73C9FC4}
SP: IObit Malware Fighter *Disabled/Updated* {A751AC20-3B48-5237-898A-78C4436BB78D}
SP: Norton 360 *Enabled/Updated* {D8BEB080-B73A-17E3-1B37-B6B462689202}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files (x86)\Google\Update
c:\program files (x86)\Google\Update\1.3.21.79\GoogleCrashHandler.exe
c:\program files (x86)\Google\Update\1.3.21.79\GoogleUpdate.exe
c:\program files (x86)\Google\Update\1.3.21.79\GoogleUpdateBroker.exe
c:\program files (x86)\Google\Update\1.3.21.79\GoogleUpdateHelper.msi
c:\program files (x86)\Google\Update\1.3.21.79\GoogleUpdateOnDemand.exe
c:\program files (x86)\Google\Update\1.3.21.79\goopdate.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_am.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ar.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_bg.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_bn.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ca.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_cs.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_da.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_de.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_el.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_en-GB.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_en.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_es-419.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_es.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_et.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_fa.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_fi.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_fil.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_fr.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_gu.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_hi.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_hr.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_hu.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_id.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_is.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_it.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_iw.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ja.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_kn.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ko.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_lt.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_lv.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ml.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_mr.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ms.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_nl.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_no.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_pl.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_pt-BR.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_pt-PT.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ro.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ru.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_sk.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_sl.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_sr.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_sv.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_sw.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ta.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_te.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_th.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_tr.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_uk.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_ur.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_vi.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_zh-CN.dll
c:\program files (x86)\Google\Update\1.3.21.79\goopdateres_zh-TW.dll
c:\program files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
c:\program files (x86)\Google\Update\1.3.21.79\psmachine.dll
c:\program files (x86)\Google\Update\1.3.21.79\psuser.dll
c:\program files (x86)\Google\Update\Download\{430FD4D0-B729-4F61-AA34-91526481799D}\1.3.21.79\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\Download\{4DC8B4CA-1BDA-483E-B5FA-D3C12E15B62D}\16.0.912.75\chrome_updater.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-6.0.3.2197.exe
c:\program files (x86)\Google\Update\Download\{74AF07D8-FB8F-4D51-8AC7-927721D56EBB}\0.0.0.0\GoogleEarth-Win-Bundle-6.1.0.5001.exe
c:\program files (x86)\Google\Update\Download\{8CCC1785-26F4-4C25-9D61-152580FF89EC}\GoogleUpdateSetup.exe
c:\program files (x86)\Google\Update\GoogleUpdate.exe
c:\program files (x86)\Seznam.cz\toolbar
c:\program files (x86)\Seznam.cz\toolbar\toolbar.dll
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-20 do 2012-01-20 )))))))))))))))))))))))))))))))
.
.
2012-01-20 20:37 . 2012-01-20 20:37 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-01-20 20:37 . 2012-01-20 20:37 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-01-20 19:53 . 2012-01-20 20:37 -------- d-----w- c:\users\lada\AppData\Local\temp
2012-01-17 16:00 . 2012-01-17 16:00 -------- d-----w- c:\programdata\Codemasters
2012-01-17 15:39 . 2011-03-19 14:16 1417216 ----a-w- c:\windows\SysWow64\rapture3d_oal.dll
2012-01-17 15:39 . 2010-09-22 12:12 19087360 ----a-w- c:\windows\SysWow64\mkl_blueripple.dll
2012-01-17 15:39 . 2012-01-17 15:40 -------- d-----w- c:\program files (x86)\BRS
2012-01-17 15:39 . 2012-01-17 15:39 466456 ----a-w- c:\windows\system32\wrap_oal.dll
2012-01-17 15:39 . 2012-01-17 15:39 444952 ----a-w- c:\windows\SysWow64\wrap_oal.dll
2012-01-17 15:39 . 2012-01-17 15:39 122904 ----a-w- c:\windows\system32\OpenAL32.dll
2012-01-17 15:39 . 2012-01-17 15:39 109080 ----a-w- c:\windows\SysWow64\OpenAL32.dll
2012-01-17 15:39 . 2012-01-17 15:39 -------- d-----w- c:\program files (x86)\OpenAL
2012-01-17 15:34 . 2012-01-17 15:34 -------- d-----w- c:\program files (x86)\Codemasters
2012-01-13 19:53 . 2012-01-13 19:53 -------- d-----w- c:\program files (x86)\N3V Games
2012-01-11 09:30 . 2011-10-26 05:25 1572864 ----a-w- c:\windows\system32\quartz.dll
2012-01-11 09:30 . 2011-10-26 05:25 366592 ----a-w- c:\windows\system32\qdvd.dll
2012-01-11 09:30 . 2011-10-26 04:32 514560 ----a-w- c:\windows\SysWow64\qdvd.dll
2012-01-11 09:30 . 2011-10-26 04:32 1328128 ----a-w- c:\windows\SysWow64\quartz.dll
2012-01-11 09:30 . 2011-11-17 06:41 1731920 ----a-w- c:\windows\system32\ntdll.dll
2012-01-11 09:30 . 2011-11-17 05:38 1292080 ----a-w- c:\windows\SysWow64\ntdll.dll
2012-01-11 09:30 . 2011-11-19 14:58 77312 ----a-w- c:\windows\system32\packager.dll
2012-01-11 09:30 . 2011-11-19 14:01 67072 ----a-w- c:\windows\SysWow64\packager.dll
2012-01-10 10:44 . 2012-01-10 10:44 -------- d-----w- c:\users\lada\AppData\Roaming\Reviversoft
2012-01-10 10:42 . 2012-01-10 10:42 -------- d-----w- c:\program files (x86)\Reviversoft
2012-01-09 15:42 . 2012-01-09 15:42 -------- d-----w- c:\program files (x86)\SlimDX SDK (September 2011)
2012-01-09 15:38 . 2012-01-09 15:38 -------- d-----w- c:\program files (x86)\Microsoft
2012-01-09 14:13 . 2012-01-09 14:13 -------- d-sh--w- c:\users\lada\wc
2012-01-09 14:13 . 2012-01-09 14:13 -------- d-sh--w- c:\users\lada\AppData\Roaming\wyUpdate AU
2012-01-07 10:56 . 2012-01-07 10:56 -------- d-----w- c:\users\lada\AppData\Roaming\Command and Conquer 3 Tiberium Wars
2012-01-07 08:43 . 2012-01-07 08:43 -------- d-----w- c:\users\lada\AppData\Roaming\Xilisoft
2012-01-07 08:41 . 2012-01-07 08:41 -------- d-----w- c:\programdata\Xilisoft
2012-01-07 08:41 . 2012-01-07 08:41 -------- d-----w- c:\program files (x86)\Xilisoft
2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files (x86)\Mozilla Firefox\plugins\nppdf32.dll
2012-01-03 13:10 . 2012-01-03 13:10 182672 ----a-w- c:\program files (x86)\Internet Explorer\Plugins\nppdf32.dll
2012-01-03 11:01 . 2012-01-03 11:01 -------- d-----w- c:\windows\SysWow64\RTCOM
2012-01-03 11:00 . 2011-07-27 23:55 2604376 ----a-w- c:\windows\system32\WavesGUILib.dll
2012-01-03 11:00 . 2011-03-17 11:17 1361336 ----a-w- c:\windows\system32\tosade.dll
2012-01-03 11:00 . 2011-07-08 13:34 65432 ----a-w- c:\windows\system32\tepeqapo64.dll
2012-01-03 11:00 . 2011-06-14 10:13 177088 ----a-w- c:\windows\system32\tadefxapo264.dll
2012-01-03 11:00 . 2011-03-07 16:11 148416 ----a-w- c:\windows\system32\tadefxapo.dll
2012-01-03 11:00 . 2009-11-24 08:55 518896 ----a-w- c:\windows\system32\SRSTSX64.dll
2012-01-03 11:00 . 2009-11-24 08:55 211184 ----a-w- c:\windows\system32\SRSTSH64.dll
2012-01-03 11:00 . 2009-11-24 08:55 198896 ----a-w- c:\windows\system32\SRSHP64.dll
2012-01-03 11:00 . 2009-11-24 08:55 155888 ----a-w- c:\windows\system32\SRSWOW64.dll
2012-01-03 09:20 . 2012-01-03 10:47 -------- d-----w- c:\programdata\DriverGenius
2011-12-29 08:47 . 2012-01-05 09:51 -------- d-----w- c:\program files (x86)\Abrosoft
2011-12-26 11:02 . 2012-01-19 23:42 -------- d-----w- c:\users\Administrator
2011-12-25 09:40 . 2011-12-25 09:40 -------- d-----w- c:\program files (x86)\SystemRequirementsLab
2011-12-25 09:40 . 2011-12-25 09:40 -------- d-----w- c:\users\lada\SystemRequirementsLab
2011-12-25 09:25 . 2011-12-25 09:25 -------- d-----w- c:\programdata\EA Core
2011-12-25 09:25 . 2011-12-25 09:25 -------- d-----w- c:\programdata\Electronic Arts
2011-12-25 07:34 . 2011-12-25 07:34 626688 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcr80.dll
2011-12-25 07:34 . 2011-12-25 07:34 548864 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcp80.dll
2011-12-25 07:34 . 2011-12-25 07:34 479232 ----a-w- c:\program files (x86)\Mozilla Firefox\msvcm80.dll
2011-12-25 07:34 . 2011-12-25 07:34 43992 ----a-w- c:\program files (x86)\Mozilla Firefox\mozutils.dll
2011-12-24 08:02 . 2011-12-24 08:09 -------- d-----w- C:\Fraps
2011-12-23 07:09 . 2011-12-23 07:09 -------- d-----w- c:\program files (x86)\Alcohol Soft
2011-12-22 09:15 . 2011-12-22 09:16 -------- d-----w- c:\programdata\DVD Shrink
2011-12-22 09:14 . 2011-12-22 09:14 -------- d-----w- c:\program files (x86)\DVD Shrink
2011-12-22 09:07 . 2011-12-22 09:07 -------- d-----w- c:\users\lada\AppData\Roaming\dvdcss
2011-12-22 06:00 . 2011-12-22 06:00 -------- d-----w- c:\program files (x86)\MyDVDTools
2011-12-22 06:00 . 2007-05-14 22:33 962560 ----a-w- c:\windows\SysWow64\advdaudio.ocx
2011-12-22 06:00 . 2004-09-07 00:06 53248 ----a-w- c:\windows\SysWow64\xvid.ax
2011-12-22 06:00 . 2004-07-14 12:44 23040 ----a-w- c:\windows\SysWow64\auth.dll
2011-12-22 06:00 . 2003-08-07 13:01 237568 ----a-w- c:\windows\SysWow64\lame_enc.dll
2011-12-22 06:00 . 2002-12-25 08:44 380928 ----a-w- c:\windows\SysWow64\actskin4.ocx
2011-12-22 06:00 . 2002-05-23 19:40 110080 ----a-w- c:\windows\SysWow64\advd.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-19 19:18 . 2011-03-05 20:02 484176 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
2012-01-10 11:03 . 2010-11-10 17:48 2944 ----a-w- c:\windows\system32\ASOROSet.bin
2011-12-15 07:15 . 2011-12-15 07:15 2048 ----a-w- c:\windows\SysWow64\tzres.dll
2011-12-15 07:15 . 2011-12-15 07:15 2048 ----a-w- c:\windows\system32\tzres.dll
2011-12-15 07:15 . 2011-12-15 07:15 2382848 ----a-w- c:\windows\SysWow64\mshtml.tlb
2011-12-15 07:15 . 2011-12-15 07:15 2382848 ----a-w- c:\windows\system32\mshtml.tlb
2011-12-15 07:15 . 2011-12-15 07:15 2309120 ----a-w- c:\windows\system32\jscript9.dll
2011-12-15 07:15 . 2011-12-15 07:15 1798144 ----a-w- c:\windows\SysWow64\jscript9.dll
2011-12-15 07:15 . 2011-12-15 07:15 1493504 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-15 07:15 . 2011-12-15 07:15 1427456 ----a-w- c:\windows\SysWow64\inetcpl.cpl
2011-12-15 07:15 . 2011-12-15 07:15 1390080 ----a-w- c:\windows\system32\wininet.dll
2011-12-15 07:15 . 2011-12-15 07:15 1127424 ----a-w- c:\windows\SysWow64\wininet.dll
2011-12-15 07:14 . 2011-12-15 07:14 43520 ----a-w- c:\windows\system32\csrsrv.dll
2011-12-15 07:14 . 2011-12-15 07:14 723456 ----a-w- c:\windows\system32\EncDec.dll
2011-12-15 07:14 . 2011-12-15 07:14 534528 ----a-w- c:\windows\SysWow64\EncDec.dll
2011-12-15 07:13 . 2011-12-15 07:13 3145216 ----a-w- c:\windows\system32\win32k.sys
2011-12-14 12:05 . 2010-06-03 18:10 99384 ----a-w- c:\users\lada\AppData\Roaming\inst.exe
2011-12-14 12:05 . 2010-06-03 18:10 82816 ----a-w- c:\users\lada\AppData\Roaming\pcouffin.sys
2011-12-13 10:01 . 2011-02-28 11:03 1698408 ----a-w- c:\windows\RtlExUpd.dll
2011-12-10 14:24 . 2010-11-09 18:22 23152 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-12-06 14:55 . 2010-05-04 18:47 53248 ----a-w- c:\windows\SysWow64\CSVer.dll
2011-11-17 06:35 . 2012-01-11 18:10 340992 ----a-w- c:\windows\system32\schannel.dll
2011-11-17 05:34 . 2012-01-11 18:10 224768 ----a-w- c:\windows\SysWow64\schannel.dll
2011-11-16 08:14 . 2011-11-16 08:14 367200 ----a-w- c:\windows\system32\drivers\afcdp.sys
2011-11-16 08:14 . 2011-11-16 08:14 1284192 ----a-w- c:\windows\system32\drivers\tdrpman.sys
2011-11-16 08:14 . 2011-11-16 08:14 986208 ----a-w- c:\windows\system32\drivers\timntr.sys
2011-11-16 08:14 . 2011-11-16 08:14 210528 ----a-w- c:\windows\system32\drivers\vididr.sys
2011-11-16 08:14 . 2011-11-16 08:14 142944 ----a-w- c:\windows\system32\drivers\vsflt58.sys
2011-11-16 08:14 . 2011-01-06 09:31 310368 ----a-w- c:\windows\system32\drivers\snapman.sys
2011-11-16 08:14 . 2011-11-16 08:14 132704 ----a-w- c:\windows\system32\drivers\fltsrv.sys
2011-11-10 04:54 . 2010-07-24 17:34 472808 ----a-w- c:\windows\SysWow64\deployJava1.dll
2011-10-31 12:27 . 2011-10-31 12:27 421888 ----a-w- c:\windows\SysWow64\RealMediaSplitter.ax
2011-10-31 08:43 . 2011-10-31 08:43 388096 ----a-r- c:\users\lada\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
.
.
((((((((((((((((((((((((((((( SnapShot@2012-01-20_19.47.08 )))))))))))))))))))))))))))))))))))))))))
.
+ 2012-01-20 20:39 . 2012-01-20 20:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
- 2012-01-20 19:45 . 2012-01-20 19:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat
+ 2012-01-20 20:39 . 2012-01-20 20:39 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
- 2012-01-20 19:45 . 2012-01-20 19:45 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat
+ 2012-01-20 20:41 . 2012-01-20 20:41 349255 c:\windows\TEMP\jna7989738003841432635.dll
+ 2009-07-14 05:01 . 2012-01-20 20:38 390012 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
- 2009-07-14 05:01 . 2012-01-20 19:44 390012 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat
+ 2012-01-04 01:46 . 2012-01-20 20:38 1009312 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-64356702-1420314229-3237286800-500-12288.dat
- 2012-01-04 01:46 . 2012-01-20 19:44 1009312 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-64356702-1420314229-3237286800-500-12288.dat
- 2010-08-08 20:15 . 2012-01-20 19:44 50764828 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-64356702-1420314229-3237286800-1000-8192.dat
+ 2010-08-08 20:15 . 2012-01-20 20:38 50764828 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-64356702-1420314229-3237286800-1000-8192.dat
- 2010-11-11 20:42 . 2012-01-20 17:35 10275484 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-64356702-1420314229-3237286800-1000-12288.dat
+ 2010-11-11 20:42 . 2012-01-20 20:38 10275484 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-64356702-1420314229-3237286800-1000-12288.dat
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Advanced SystemCare 5"="c:\program files (x86)\IObit\Advanced SystemCare 5\ASCTray.exe" [2011-12-29 620376]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"JMB36X IDE Setup"="c:\windows\RaidTool\xInsIDE.exe" [2010-09-07 43608]
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe" [2011-06-09 254696]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-01-03 843712]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"NoSecCpl"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 0 (0x0)
"NoFileAssociate"= 0 (0x0)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoStartMenuSubFolders"= 0 (0x0)
"NoCommonGroups"= 0 (0x0)
"NoPrinters"= 0 (0x0)
"NoRecentDocsNetHood"= 0 (0x0)
"NoChangeAnimation"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\IMFservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows\currentversion\run-]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"RemoteControl10"="c:\program files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
"BDRegion"=c:\program files (x86)\Cyberlink\Shared files\brs.exe
"SunJavaUpdateSched"="c:\program files (x86)\Common Files\Java\Java Update\jusched.exe"
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" /WinStart
"JMB36X IDE Setup"=c:\windows\RaidTool\xInsIDE.exe
"AppleSyncNotifier"=c:\program files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
2;2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [x]
R2 syncagentsrv;Acronis Sync Agent Service;c:\program files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe [2011-09-23 5735152]
R2 WO_LiveService;Ashampoo LiveTuner Service; [x]
R3 602XML Updater;602Updater;c:\program files (x86)\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R3 appliandMP;appliandMP;c:\windows\system32\DRIVERS\appliand.sys [x]
R3 BBSvc;Bing Bar Update Service;c:\program files (x86)\Microsoft\BingBar\BBSvc.EXE [2011-07-07 195336]
R3 dump_wmimmc;dump_wmimmc;f:\hry\lineage2\system\GameGuard\dump_wmimmc.sys [x]
R3 EagleX64;EagleX64; [x]
R3 McComponentHostService;McAfee Security Scan Component Host Service;c:\program files (x86)\McAfee Security Scan\2.0.181\McCHSvc.exe [2010-01-15 227232]
R3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\Microsoft Office\Office14\GROOVE.EXE [2011-06-12 51740536]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 osppsvc;Office Software Protection Platform;c:\program files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4925184]
R3 PAC207;e-Messenger 112;c:\windows\system32\DRIVERS\PFC027.SYS [x]
R3 pcouffin;VSO Software pcouffin;c:\windows\system32\Drivers\pcouffin.sys [x]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [x]
R3 RegFilter;RegFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys [2011-09-20 33184]
R3 SandraAgentSrv;SiSoftware Deployment Agent Service;c:\program files\SiSoftware\SiSoftware Sandra Professional Home 2011\RpcAgentSrv.exe [2009-08-17 93848]
R3 Synth3dVsc;Synth3dVsc;c:\windows\system32\drivers\synth3dvsc.sys [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 tsusbhub;tsusbhub;c:\windows\system32\drivers\tsusbhub.sys [x]
R3 UrlFilter;UrlFilter;c:\program files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys [2011-09-20 21872]
R3 VGPU;VGPU;c:\windows\system32\drivers\rdvgkmd.sys [x]
R3 WatAdminSvc;Služba Technologie aktivace Windows;c:\windows\system32\Wat\WatAdminSvc.exe [x]
R4 FileMonitor;FileMonitor;c:\program files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys [2011-10-08 20336]
S0 fltsrv;Acronis Storage Filter Management;c:\windows\system32\DRIVERS\fltsrv.sys [x]
S0 NBVol;Nero Backup Volume Filter Driver;c:\windows\system32\DRIVERS\NBVol.sys [x]
S0 NBVolUp;Nero Backup Volume Upper Filter Driver;c:\windows\system32\DRIVERS\NBVolUp.sys [x]
S0 SmartDefragDriver;SmartDefragDriver;c:\windows\System32\Drivers\SmartDefragDriver.sys [x]
S0 sptd;sptd;c:\windows\\SystemRoot\System32\Drivers\sptd.sys [x]
S0 SymDS;Symantec Data Store;c:\windows\system32\drivers\N360x64\0501000.01D\SYMDS64.SYS [x]
S0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\N360x64\0501000.01D\SYMEFA64.SYS [x]
S0 tdrpman273;Acronis Try&Decide and Restore Points filter (build 273);c:\windows\system32\DRIVERS\tdrpm273.sys [x]
S0 vididr;Acronis Virtual Disk;c:\windows\system32\DRIVERS\vididr.sys [x]
S0 vidsflt58;Acronis Disk Storage Filter (58);c:\windows\system32\DRIVERS\vsflt58.sys [x]
S1 BHDrvx64;BHDrvx64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\BASHDefs\20111223.001\BHDrvx64.sys [2011-12-01 1157240]
S1 IDSVia64;IDSVia64;c:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.1.0.29\Definitions\IPSDefs\20120119.006\IDSvia64.sys [2011-08-22 488568]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2010-02-17 14920]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2010-02-17 12360]
S1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\N360x64\0501000.01D\Ironx64.SYS [x]
S1 SymNetS;Symantec Network Security WFP Driver;c:\windows\system32\drivers\N360x64\0501000.01D\SYMNETS.SYS [x]
S1 VD_FileDisk;VD_FileDisk; [x]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2010-06-29 128752]
S2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/06/04 08:35];c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2010-03-13 10:58 146928]
S2 {329F96B6-DF1E-4328-BFDA-39EA953C1312};Power Control [2011/10/22 10:49];c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl [2011-08-25 11:06 148976]
S2 ABBYY.Licensing.FineReader.Professional.11.0;ABBYY FineReader 11 PE Licensing Service;c:\program files (x86)\ABBYY FineReader 11\NetworkLicenseServer.exe [2011-08-18 819976]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
S2 AdvancedSystemCareService5;Advanced SystemCare Service 5;c:\program files (x86)\IObit\Advanced SystemCare 5\ASCService.exe [2011-12-29 497496]
S2 afcdpsrv;Služba Acronis Nonstop Backup;c:\program files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [2011-11-16 3409880]
S2 Application Updater;Application Updater;c:\program files (x86)\Application Updater\ApplicationUpdater.exe [2011-12-14 748440]
S2 BBUpdate;BBUpdate;c:\program files (x86)\Microsoft\BingBar\SeaPort.EXE [2011-06-15 249648]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
S2 ICQ Service;ICQ Service;c:\program files (x86)\ICQ6Toolbar\ICQ Service.exe [2011-08-17 247872]
S2 IDMWFP;IDMWFP;c:\windows\system32\DRIVERS\idmwfp.sys [x]
S2 IMFservice;IMF Service;c:\program files (x86)\IObit\IObit Malware Fighter\IMFsrv.exe [2011-10-08 820568]
S2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-12-24 652872]
S2 N360;Norton 360;c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe [2011-04-17 130008]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-09-23 641832]
S2 PfFilter;PfFilter;c:\program files (x86)\IObit\Protected Folder\pffilter.sys [2011-03-16 36792]
S2 PS3 Media Server;PS3 Media Server;c:\program files (x86)\PS3 Media Server\win32\service\wrapper.exe [2011-05-17 366872]
S2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;c:\program files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-10-14 381248]
S2 tvMobiliService;tvMobiliService;c:\program files (x86)\TVMOBiLi\bin\tvMobiliService.exe [2011-08-16 993280]
S2 TwonkyMedia;TwonkyMedia;c:\program files (x86)\TwonkyMedia\twonkymediaserverwatchdog.exe [2010-11-04 497240]
S2 USBSafelyRemoveService;USB Safely Remove Assistant;c:\program files (x86)\USB Safely Remove\USBSRService.exe [2008-12-06 458928]
S3 afcdp;afcdp;c:\windows\system32\DRIVERS\afcdp.sys [x]
S3 AtcL001;NDIS Miniport Driver for Atheros L1 Gigabit Ethernet Controller;c:\windows\system32\DRIVERS\l160x64.sys [x]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files (x86)\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2012-01-06 138360]
S3 gHidPnp;USB Device Enhanced Function Driver;c:\windows\system32\Drivers\gHidPnp.Sys [x]
S3 gMouUsb;USB Mouse Device Drv;c:\windows\system32\DRIVERS\gMouUsb.sys [x]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [x]
S3 Safetica;Safetica Encryption Driver;c:\windows\system32\DRIVERS\safetica.sys [x]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2011-11-24 c:\windows\Tasks\DriverEasy Scheduled Scan.job
- c:\program files\Easeware\DriverEasy\DriverEasy.exe [2011-08-08 07:06]
.
2012-01-08 c:\windows\Tasks\RegInOut Scheduled Scan - lada.job
- c:\program files (x86)\RegInOut\RegInOut.exe [2011-03-12 10:09]
.
.
--------- x86-64 -----------
.
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uDefault_Search_URL = hxxp://www.google.com/ie
mStart Page =
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: Add to Playlist - c:\program files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/314
IE: Download all by FlashGet3 - c:\users\Administrator\AppData\Roaming\FlashGetBHO\GetAllUrl.htm
IE: Download by FlashGet3 - c:\users\Administrator\AppData\Roaming\FlashGetBHO\GetUrl.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - c:\progra~1\MICROS~2\Office14\ONBttnIE.dll/105
IE: TwonkyBeam to - c:\program files (x86)\PacketVideo\TwonkyBeam\Internet Explorer\TwonkyIEPlugin.dll/231
IE: {{77F665FD-3F60-4B0A-AE14-EC124B7A7FCE} - c:\program files (x86)\ICQ7.7\ICQ.exe
TCP: DhcpNameServer = 192.168.1.7 212.47.0.4
FF - ProfilePath - c:\users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\4lqi9kw2.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{9384BD4C-DD14-4BE9-80F7-F6277511E4F5} - (no file)
WebBrowser-{414B6D9D-4A95-4E8D-B5B1-149DD2D93BB3} - (no file)
WebBrowser-{66BD2442-241B-44CD-8C7A-B51037053CDB} - (no file)
ShellIconOverlayIdentifiers-{CDC95B92-E27C-4745-A8C5-64A52A78855D} - (no file)
ShellIconOverlayIdentifiers- - (no file)
ShellIconOverlayIdentifiers- - (no file)
ShellIconOverlayIdentifiers- - (no file)
.
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\N360]
"ImagePath"="\"c:\program files (x86)\Norton 360\Engine\5.1.0.29\ccSvcHst.exe\" /s \"N360\" /m \"c:\program files (x86)\Norton 360\Engine\5.1.0.29\diMaster.dll\" /prefetch:1"
Binary file temp00 matches
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\npggsvc]
"ImagePath"="c:\windows\system32\GameMon.des -service"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\{329F96B6-DF1E-4328-BFDA-39EA953C1312}]
"ImagePath"="\??\c:\program files (x86)\CyberLink\PowerDVD11\Common\NavFilter\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3g2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3G2"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3gp\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3GP"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3gp2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3G2"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.3gpp\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.3GP"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aac\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ADTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ac3\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ac3"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ADT\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ADTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ADTS\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ADTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aif\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AIFF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aifc\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AIFF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.aiff\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AIFF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.asf\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.asx\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.au\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AU"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.avi\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AVI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.DIVX\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.divx"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.dts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.dts"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.flv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.flv"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.hdmov\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.hdmov"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m1v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2t\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M2TS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2ts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M2TS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m2v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m3u\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.m3u"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4a\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M4A"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.m4v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mid\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MIDI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.midi\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MIDI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mka\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mka"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mkv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mkv"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mod\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mov\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MOV"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP3"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp2v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp3\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP3"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mp4v\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MP4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpa\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpe\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpeg\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpg\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpls\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mpls"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv2\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MPEG"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mpv4\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.mpv4"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.mts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.M2TS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.oga\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.oga"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.OGG\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ogg"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.OGM\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ogm"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ogv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ogv"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ra\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.ra"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.rm"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rmi\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.MIDI"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.rmvb\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.rmvb"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.snd\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.AU"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.ts\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.TTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.TTS\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.TTS"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wav\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WAV"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wax\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WAX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.webm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="KLCP64.WMP.webm"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wm\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASF"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wma\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WMA"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmv\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WMV"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wmx\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.ASX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wpl\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WPL"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.wvx\UserChoice]
@Denied: (2) (Administrator)
"Progid"="WMP11.AssocFile.WVX"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_USERS\S-1-5-21-64356702-1420314229-3237286800-500\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (Administrator)
"Progid"="FirefoxHTML"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash11c.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
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
.
[HKEY_LOCAL_MACHINE\software\Wow6432Node\T*w*o*n*k*y*B*e*a*m*"!\Internet Explorer]
"Path"="c:\\Program Files (x86)\\PacketVideo\\TwonkyBeam\\Internet Explorer"
"Language"="1033"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\crypserv.exe
c:\program files (x86)\Canon\IJPLM\IJPLMSVC.EXE
c:\windows\SysWOW64\java.exe
c:\program files\DAEMON Tools Pro\DTShellHlp.exe
c:\programdata\TVersity\Media Server\MediaServer.exe
c:\program files (x86)\Acronis\DiskDirector\OSS\reinstall_svc.exe
.
**************************************************************************
.
Celkový čas: 2012-01-20 21:47:28 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-01-20 20:47
ComboFix2.txt 2012-01-20 19:53
.
Před spuštěním: Volných bajtů: 33 313 284 096
Po spuštění: Volných bajtů: 33 226 276 864
.
- - End Of File - - E29261066B4EDA5A7CC2250880349044
Nahr nˇ probŘhlo ŁspŘçnŘ

Re: Hláška neznámé rozhraní

Napsal: 21 led 2012 09:18
od valda
problém i přes vyčištění pořád přetrvává :(

Re: Hláška neznámé rozhraní

Napsal: 21 led 2012 12:00
od Rudy
Zkuste provést obnovu systému k datu, kdy korektně fungoval.

Re: Hláška neznámé rozhraní

Napsal: 22 led 2012 08:28
od valda
to jsem zkusil a nepomoho.když kliknu na adresáře na ploše nebo v položce start tak mi to pořád píše neznámé rozhraní a nedostanu se tam.ani do ovládacích panelů :(

Re: Hláška neznámé rozhraní

Napsal: 22 led 2012 12:46
od Rudy
Zde je o tom něco přímo od tech. podpory MS: http://support.microsoft.com/kb/832489/cs .

Re: Hláška neznámé rozhraní

Napsal: 22 led 2012 13:45
od valda
moc z toho překladu z technické podpory nejsem chytrý.nevím co s tím registrem mám dělat

Re: Hláška neznámé rozhraní

Napsal: 22 led 2012 13:52
od Rudy
Pak budete muset zkusit opravu systému z instal. média. Jiný návod jsem nikde nenalezl, nejedná se o virový problém.

Re: Hláška neznámé rozhraní

Napsal: 22 led 2012 13:58
od valda
děkuji zkusím to

Re: Hláška neznámé rozhraní

Napsal: 22 led 2012 14:01
od Rudy
Nemáte zač!
Všechny časy jsou v UTC+01:00
Stránka 1 z 1

Založeno na phpBB® Forum Software © phpBB Limited

Český překlad – phpBB.cz