VIRY.CZ

Dobry den,
nemohu se zbavit Skype viru. Postupopval jsem dle videa ale ani ani Spybot ani Malwarebytes z ../appdata/roaming nic neodstrani. A stale se mi v teto slozce objevuji nove .exe soubory s nahodnym jmenem. Skype jsem nakonec odinstaloval. Rovnez mam blokovany prechod na stranky s malware protection SW.
Mam administratora, ale nemohu spustit WIN v safe modu.
.... a to jsem si myslel, ze nejsem lama...
Dika za jakoukoliv pomoc.
Slavek

Logfile of random's system information tool 1.09 (written by random/random)
Run by jlizner at 2012-10-10 23:26:36
Microsoft Windows 7 Enterprise Service Pack 1
System drive C: has 218 GB (46%) free of 477 GB
Total RAM: 3493 MB (46% free)

HijackThis download failed

======Scheduled tasks folder======

C:\windows\tasks\Adobe Flash Player Updater.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1687070456-790835859-1793780021-114848Core.job
C:\windows\tasks\GoogleUpdateTaskUserS-1-5-21-1687070456-790835859-1793780021-114848UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-07-27 63944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{31D09BA0-12F5-4CCE-BE8A-2923E76605DA}]
Lync Browser Helper - C:\Program Files\Microsoft Lync\OCHelper.dll [2010-10-22 211720]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7DB2D5A0-7241-4E79-B68D-6309F01C5231}]
scriptproxy - C:\Program Files\Common Files\McAfee\SystemCore\ScriptSn.20120131143820.dll [2012-01-31 79480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7}]
WebEx Productivity Tools - C:\Program Files\WebEx\Productivity Tools\ptonecli.dll [2011-03-30 173880]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~1\Office14\URLREDIR.DLL [2010-02-28 561552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-03-02 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{90E2BA2E-DD1B-4cde-9134-7A8B86D33CA7} - WebEx Productivity Tools - C:\Program Files\WebEx\Productivity Tools\ptonecli.dll [2011-03-30 173880]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"ALCKRESI.EXE"=C:\Program Files\Lenovo\AutoLock\ALCKRESI.EXE [2011-09-27 386408]
"RotateImage"=C:\Program Files\Integrated Camera Driver\RCIMGDIR.exe [2008-10-30 31744]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2011-09-30 2295080]
"PWMTRV"=rundll32 C:\PROGRA~1\ThinkPad\UTILIT~1\PWMTR32V.DLL,PwrMgrBkGndMonitor []
"LENOVO.TPKNRRES"=C:\Program Files\Lenovo\Communications Utility\TPKNRRES.exe [2011-07-22 42344]
"TpShocks"=C:\windows\system32\TpShocks.exe [2011-03-29 337256]
"IMSS"=C:\Program Files\Intel\Intel(R) Management Engine Components\IMSS\PIconStartup.exe [2011-01-17 112152]
"PSQLLauncher"=C:\Program Files\ThinkVantage Fingerprint Software\launcher.exe [2011-07-14 55624]
"BCSSync"=C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
"ForteConfig"=C:\Program Files\Conexant\ForteConfig\fmapp.exe [2010-10-26 49568]
"SmartAudio"=C:\Program Files\CONEXANT\SAII\SAIICpl.exe [2010-12-14 316032]
"IgfxTray"=C:\windows\system32\igfxtray.exe [2011-03-07 143384]
"HotKeysCmds"=C:\windows\system32\hkcmd.exe [2011-03-07 176664]
"Persistence"=C:\windows\system32\igfxpers.exe [2011-03-07 178200]
"AgentUiRunKey"=C:\Program Files\Iron Mountain\Connected BackupPC\Agent.exe [2010-05-21 239104]
"Communicator"=C:\Program Files\Microsoft Lync\communicator.exe [2010-10-22 11937552]
"ShStatEXE"=C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE [2011-09-14 215360]
"McAfee Host Intrusion Prevention Tray"=C:\Program Files\McAfee\Host Intrusion Prevention\FireTray.exe [2011-04-13 979104]
"McAfeeUpdaterUI"=C:\Program Files\McAfee\Common Framework\udaterui.exe [2011-11-15 333376]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2012-07-27 919008]
"APSDaemon"=C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [2012-05-30 59280]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2012-06-07 421776]
"SSRPM Enrollment Wizard"=C:\Program Files\Tools4ever\SSRPM\Enrollment Wizard\SSRPMEnroll.exe [2012-04-13 1047552]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"Malwarebytes Anti-Malware"=C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2012-09-07 766536]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"VerintLoginScript"=Wscript C:\VerintTools\VPNLogin.vbs []
"Google Update"=C:\Users\jlizner\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-14 136176]
"SugarSync"=C:\Program Files\SugarSync\SugarSyncManager.exe [2012-07-13 9798776]
"PTIM.exe"=C:\Program Files\WebEx\Productivity Tools\PTIM.exe [2011-03-30 402744]
"PTOneClick"=C:\Program Files\WebEx\Productivity Tools\ptoneclk.exe [2011-03-30 366904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iPassConnect]
C:\Program Files\iPass\iPassConnect\iPassConnectGUI.exe [2008-09-26 1437696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^WinZip Quick Pick.lnk]
C:\PROGRA~1\WinZip\WZQKPICK.EXE []

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Bluetooth.lnk - C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe
iPass Open Mobile.lnk - C:\Program Files\iPass\Open Mobile\bin\iMobility.exe
Logic Server.lnk - C:\Program Files\LogicInMind\Logic Server\LogicServer.exe

C:\Users\jlizner\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2010 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office14\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="C:\Windows\system32\nvinit.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\windows\system32\igfxdev.dll [2011-03-07 288768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\psfus]
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll [2011-07-14 100680]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office14\GROOVEEX.DLL [2010-03-25 4222864]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]
"notification packages"=scecli
C:\Program Files\ThinkVantage Fingerprint Software\psqlpwd.dll

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\McAfeeDlpAgentService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\McAfeeDlpAgentService]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfehidk.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\mfevtp]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"HideLogonScripts"=1
"HideLegacyLogonScripts"=1

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=Verint Systems
"legalnoticetext"=UNAUTHORIZED ACCESS TO THIS DEVICE IS PROHIBITED. All activities performed on this device may be logged, and failure to follow the Company’s policies regarding the use of its technology resources may lead to disciplinary measures, up to and including termination of employment. For more details, please see the “Global Information Security Management Procedure” which may be found on the corporate intranet.
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"DisableCAD"=1
"DisableTaskMgr"=0

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoInplaceSharing"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoRun"=0
"NoDriveTypeAutoRun"=255

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.msadpcm"=msadp32.acm
"midimapper"=midimap.dll
"wavemapper"=msacm32.drv
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVYU"=msyuv.dll
"VIDC.IYUV"=iyuv_32.dll
"vidc.i420"=iyuv_32.dll
"VIDC.YVU9"=tsbyuv.dll
"msacm.l3acm"=C:\Windows\System32\l3codeca.acm
"vidc.cvid"=iccvid.dll
"MSVideo8"=VfWWDM32.dll
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"wave1"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer1"=wdmaud.drv
"aux1"=wdmaud.drv
"wave2"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer2"=wdmaud.drv
"VIDC.VMnc"=vmnc.dll

======File associations======

.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*

======List of files/folders created in the last 1 month======

2012-10-10 23:26:36 ----D---- C:\rsit
2012-10-10 23:26:36 ----D---- C:\Program Files\trend micro
2012-10-10 20:37:53 ----D---- C:\Users\jlizner\AppData\Roaming\Malwarebytes
2012-10-10 20:37:38 ----D---- C:\ProgramData\Malwarebytes
2012-10-10 20:37:34 ----A---- C:\windows\system32\drivers\mbam.sys
2012-10-10 20:37:33 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2012-10-10 20:31:56 ----A---- C:\windows\system32\api_hook_list.dat
2012-10-10 20:31:55 ----A---- C:\windows\system32\HIPIS0e011b8.dll
2012-10-10 09:48:06 ----A---- C:\windows\system32\CcmFramework.ini
2012-10-10 09:47:16 ----D---- C:\windows\ms
2012-10-09 20:31:51 ----D---- C:\ProgramData\Spybot - Search & Destroy
2012-10-09 20:31:51 ----D---- C:\Program Files\Spybot - Search & Destroy
2012-10-08 10:57:28 ----D---- C:\Quarantine
2012-10-06 12:43:10 ----RASH---- C:\MSDOS.SYS
2012-10-06 12:43:10 ----RASH---- C:\IO.SYS
2012-10-04 10:03:27 ----D---- C:\Program Files\CCleaner
2012-09-25 15:44:14 ----A---- C:\windows\system32\mshtmled.dll
2012-09-25 15:44:13 ----A---- C:\windows\system32\url.dll
2012-09-25 15:44:13 ----A---- C:\windows\system32\msfeeds.dll
2012-09-25 15:44:13 ----A---- C:\windows\system32\jsproxy.dll
2012-09-25 15:44:12 ----A---- C:\windows\system32\wininet.dll
2012-09-25 15:44:12 ----A---- C:\windows\system32\urlmon.dll
2012-09-25 15:44:12 ----A---- C:\windows\system32\ieui.dll
2012-09-25 15:44:12 ----A---- C:\windows\system32\iertutil.dll
2012-09-25 15:44:11 ----A---- C:\windows\system32\ieframe.dll
2012-09-25 15:44:10 ----A---- C:\windows\system32\mshtml.dll
2012-09-18 15:26:23 ----A---- C:\windows\system32\ntoskrnl.exe
2012-09-18 15:26:23 ----A---- C:\windows\system32\ntkrnlpa.exe
2012-09-18 15:24:15 ----A---- C:\windows\system32\msvcrt.dll
2012-09-18 15:20:27 ----A---- C:\windows\system32\drivers\tcpip.sys
2012-09-18 15:20:13 ----A---- C:\windows\system32\msxml6.dll
2012-09-18 15:20:13 ----A---- C:\windows\system32\msxml3r.dll
2012-09-18 15:20:13 ----A---- C:\windows\system32\msxml3.dll
2012-09-18 15:19:48 ----A---- C:\windows\system32\cdosys.dll
2012-09-18 15:19:32 ----A---- C:\windows\system32\schannel.dll
2012-09-18 15:19:31 ----A---- C:\windows\system32\ncrypt.dll
2012-09-18 15:19:31 ----A---- C:\windows\system32\drivers\ksecpkg.sys
2012-09-18 15:19:31 ----A---- C:\windows\system32\drivers\ksecdd.sys
2012-09-18 15:19:31 ----A---- C:\windows\system32\drivers\cng.sys
2012-09-18 15:19:18 ----A---- C:\windows\system32\rdpcorets.dll
2012-09-18 15:19:18 ----A---- C:\windows\system32\drivers\rdpwd.sys
2012-09-18 15:18:44 ----A---- C:\windows\system32\win32k.sys
2012-09-18 15:18:15 ----A---- C:\windows\system32\drivers\partmgr.sys
2012-09-18 15:17:58 ----A---- C:\windows\system32\wmi.dll
2012-09-18 15:17:58 ----A---- C:\windows\system32\wintrust.dll
2012-09-18 15:17:58 ----A---- C:\windows\system32\imagehlp.dll
2012-09-18 15:17:58 ----A---- C:\windows\system32\drivers\fs_rec.sys
2012-09-18 15:17:40 ----A---- C:\windows\system32\shell32.dll
2012-09-18 15:17:27 ----A---- C:\windows\system32\rdrmemptylst.exe
2012-09-18 15:17:26 ----A---- C:\windows\system32\rdpwsx.dll
2012-09-18 15:17:26 ----A---- C:\windows\system32\rdpcorekmts.dll
2012-09-18 15:17:14 ----A---- C:\windows\system32\DWrite.dll
2012-09-18 11:59:21 ----A---- C:\windows\ODBC.INI

======List of files/folders modified in the last 1 month======

2012-10-10 23:26:36 ----RD---- C:\Program Files
2012-10-10 23:26:14 ----D---- C:\windows\Prefetch
2012-10-10 22:32:25 ----D---- C:\windows\Temp
2012-10-10 20:39:27 ----D---- C:\windows\system32\drivers
2012-10-10 20:37:38 ----HD---- C:\ProgramData
2012-10-10 20:34:14 ----A---- C:\windows\system32\log.txt
2012-10-10 20:33:52 ----A---- C:\windows\SMSCFG.ini
2012-10-10 20:32:12 ----D---- C:\ProgramData\VMware
2012-10-10 20:31:57 ----D---- C:\windows\System32
2012-10-10 20:31:46 ----D---- C:\ProgramData\NVIDIA
2012-10-10 20:17:20 ----SHD---- C:\System Volume Information
2012-10-10 17:30:06 ----D---- C:\Users\jlizner\AppData\Roaming\VMware
2012-10-10 15:47:37 ----D---- C:\Users\jlizner\AppData\Roaming\Skype
2012-10-10 14:01:44 ----SHD---- C:\windows\Installer
2012-10-10 14:01:44 ----D---- C:\ProgramData\Skype
2012-10-10 14:01:44 ----D---- C:\Program Files\Common Files
2012-10-10 10:47:58 ----D---- C:\windows\system32\drivers\etc
2012-10-10 09:49:34 ----D---- C:\Users\jlizner\AppData\Roaming\Webex
2012-10-10 09:48:21 ----D---- C:\windows\system32\ccmsetup
2012-10-10 09:48:18 ----D---- C:\windows\system32\CCM
2012-10-10 09:48:06 ----D---- C:\windows\inf
2012-10-10 09:48:06 ----A---- C:\windows\system32\PerfStringBackup.INI
2012-10-10 09:47:18 ----D---- C:\Windows
2012-10-10 09:37:34 ----D---- C:\windows\system32\config
2012-10-10 09:36:21 ----D---- C:\ProgramData\WebEx
2012-10-09 15:25:11 ----A---- C:\windows\system32\FlashPlayerApp.exe
2012-10-04 20:09:20 ----D---- C:\windows\Minidump
2012-10-04 10:18:18 ----D---- C:\windows\Panther
2012-10-04 10:18:18 ----D---- C:\windows\debug
2012-10-04 10:03:37 ----D---- C:\windows\system32\Tasks
2012-10-04 00:36:24 ----A---- C:\windows\system32\KevlarSigs.dll
2012-09-27 18:25:56 ----SD---- C:\Users\jlizner\AppData\Roaming\Microsoft
2012-09-26 22:12:00 ----D---- C:\Program Files\The KMPlayer
2012-09-26 16:28:32 ----D---- C:\windows\winsxs
2012-09-26 16:28:19 ----D---- C:\windows\system32\catroot2
2012-09-26 16:26:25 ----D---- C:\windows\system32\migration
2012-09-26 16:26:25 ----D---- C:\Program Files\Internet Explorer
2012-09-26 11:34:47 ----D---- C:\windows\system32\NDF
2012-09-25 15:44:47 ----D---- C:\windows\system32\catroot
2012-09-20 15:28:10 ----D---- C:\windows\Microsoft.NET
2012-09-20 15:28:02 ----RSD---- C:\windows\assembly
2012-09-20 09:03:25 ----D---- C:\ProgramData\Adobe
2012-09-20 09:03:13 ----D---- C:\windows\Tasks
2012-09-20 08:52:57 ----D---- C:\Program Files\Windows Journal
2012-09-16 05:35:30 ----D---- C:\ProgramData\NGC
2012-09-16 05:21:33 ----D---- C:\windows\Registration
2012-09-12 13:45:25 ----D---- C:\Program Files\Microsoft Silverlight
2012-09-11 15:57:27 ----D---- C:\ProgramData\Microsoft Help

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 DozeHDD;DozeHDD; C:\windows\System32\DRIVERS\DozeHDD.sys [2011-10-04 25968]
R0 FirePM;McAfee HIP Component FirePM; C:\windows\system32\Drivers\FirePM.sys [2011-04-13 137568]
R0 mfehidk;McAfee Inc. mfehidk; C:\windows\system32\drivers\mfehidk.sys [2012-01-31 461864]
R0 mfewfpk;McAfee Inc. mfewfpk; C:\windows\system32\drivers\mfewfpk.sys [2012-01-31 164840]
R0 nvpciflt;nvpciflt; C:\windows\system32\DRIVERS\nvpciflt.sys [2011-08-13 23144]
R0 pciide;pciide; C:\windows\system32\drivers\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\windows\System32\drivers\rdyboost.sys [2010-11-20 173440]
R0 Shockprf;Shockprf; C:\windows\System32\DRIVERS\Apsx86.sys [2011-03-29 122992]
R0 TPDIGIMN;TPDIGIMN; C:\windows\System32\DRIVERS\ApsHM86.sys [2011-03-29 20592]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\windows\system32\drivers\csc.sys [2010-11-20 388096]
R1 FireTDI;McAfee HIP Component FireTDI; \??\C:\windows\system32\Drivers\FireTDI.sys [2011-04-13 145616]
R1 hdlpflt;hdlpflt; C:\windows\system32\DRIVERS\hdlpflt.sys [2011-04-10 101448]
R1 lenovo.smi;Lenovo System Interface Driver; C:\windows\system32\DRIVERS\smiif32.sys [2010-09-07 13680]
R1 mfetdik;McAfee Inc. mfetdik; C:\windows\system32\drivers\mfetdik.sys [2010-12-17 65960]
R1 TPPWRIF;TPPWRIF; C:\windows\System32\drivers\Tppwr32v.sys [2011-10-04 13424]
R2 CdpPacket;Cisco Discovery Protocol Packet Driver; C:\windows\system32\DRIVERS\CdpPacket.sys [2009-03-06 35691]
R2 hcmon;VMware hcmon; \??\C:\windows\system32\drivers\hcmon.sys [2011-08-29 32496]
R2 LV_Tracker;LV_Tracker; C:\windows\system32\DRIVERS\LV_Tracker.sys [2010-05-21 45384]
R2 risdxc;risdxc; C:\windows\system32\DRIVERS\risdxc86.sys [2011-05-25 76288]
R2 smihlp;SMI Helper Driver (smihlp); \??\C:\Program Files\ThinkVantage Fingerprint Software\smihlp.sys [2011-05-30 11976]
R3 CnxtHdAudService;Conexant UAA Function Driver for High Definition Audio Service; C:\windows\system32\drivers\CHDRT32.sys [2011-10-03 1280640]
R3 e1cexpress;Intel(R) PRO/1000 PCI Express Network Connection Driver C; C:\windows\system32\DRIVERS\e1c6232.sys [2011-08-04 267944]
R3 FirehkMP;FirehkMP; C:\windows\system32\DRIVERS\firehk.sys [2008-10-17 44680]
R3 firelm01;firelm01; \??\C:\windows\system32\drivers\firelm01.sys [2011-04-13 30792]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\windows\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 hdlpctrl;hdlpctrl; C:\windows\system32\drivers\hdlpctrl.sys [2011-04-10 31816]
R3 hdlpdbk;hdlpdbk; C:\windows\system32\drivers\hdlpdbk.sys [2011-04-10 24136]
R3 hdlpevnt;hdlpevnt; C:\windows\system32\drivers\hdlpevnt.sys [2011-04-10 18504]
R3 HIPK;McAfee Inc. HIPK; C:\windows\system32\drivers\HIPK.sys [2010-12-17 107928]
R3 HIPPSK;McAfee Inc. HIPPSK; C:\windows\system32\drivers\HIPPSK.sys [2010-12-17 38680]
R3 HIPQK;McAfee Inc. HIPQK; C:\windows\system32\drivers\HIPQK.sys [2010-12-17 35552]
R3 IBMPMDRV;IBMPMDRV; C:\windows\system32\DRIVERS\ibmpmdrv.sys [2011-08-11 32368]
R3 igfx;igfx; C:\windows\system32\DRIVERS\igdkmd32.sys [2011-03-07 10544640]
R3 MEI;Intel(R) Management Engine Interface; C:\windows\system32\DRIVERS\HECI.sys [2010-10-19 41088]
R3 mfeapfk;McAfee Inc. mfeapfk; C:\windows\system32\drivers\mfeapfk.sys [2012-01-31 119968]
R3 mfeavfk;McAfee Inc. mfeavfk; C:\windows\system32\drivers\mfeavfk.sys [2012-01-31 180072]
R3 mfesmfk;McAfee Inc. mfesmfk; C:\windows\system32\drivers\mfesmfk.sys [2010-08-03 48584]
R3 NETwNs32;___ Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows 7 - 32 Bit; C:\windows\system32\DRIVERS\NETwNs32.sys [2011-08-03 7517696]
R3 prepdrvr;SMS Process Event Driver; \??\C:\windows\system32\CCM\prepdrv.sys [2009-09-18 20848]
R3 psadd;Lenovo Parties Service Access Device Driver; C:\windows\system32\DRIVERS\psadd.sys [2007-02-19 21376]
R3 RDPDR;Terminal Server Device Redirector Driver; C:\windows\System32\drivers\rdpdr.sys [2010-11-20 133632]
R3 SynTP;Synaptics TouchPad Driver; C:\windows\system32\DRIVERS\SynTP.sys [2011-09-30 296112]
R3 TPM;TPM; C:\windows\system32\drivers\tpm.sys [2009-07-14 30720]
S2 Parvdm;Parvdm; C:\windows\system32\drivers\parvdm.sys [2009-07-14 8704]
S3 5U877;USB Video Device; C:\windows\system32\DRIVERS\5U877.sys [2011-03-04 132096]
S3 aic78xx;aic78xx; C:\windows\system32\drivers\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\windows\system32\drivers\amdagp.sys [2009-07-14 53312]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\windows\system32\DRIVERS\b57nd60x.sys [2009-07-14 229888]
S3 BthEnum;Bluetooth Request Block Driver; C:\windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\windows\System32\Drivers\BTHport.sys [2011-04-28 393728]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\windows\System32\Drivers\BTHUSB.sys [2011-04-28 60416]
S3 BTWAMPFL;btwampfl; C:\windows\system32\DRIVERS\btwampfl.sys [2011-10-17 377896]
S3 btwaudio;Bluetooth Audio Device Service; C:\windows\system32\drivers\btwaudio.sys [2011-10-17 129576]
S3 btwavdt;Bluetooth AVDT Service; C:\windows\system32\drivers\btwavdt.sys [2011-10-17 136744]
S3 btwl2cap;Bluetooth L2CAP Service; C:\windows\system32\DRIVERS\btwl2cap.sys [2011-10-17 33832]
S3 btwrchid;btwrchid; C:\windows\system32\DRIVERS\btwrchid.sys [2011-10-17 18728]
S3 dmvsc;dmvsc; C:\windows\system32\drivers\dmvsc.sys [2010-11-20 62464]
S3 Firehk;McAfee NDIS Intermediate Filter; C:\windows\system32\DRIVERS\firehk.sys [2008-10-17 44680]
S3 mfeavfk01;McAfee Inc.; C:\windows\system32\drivers\mfeavfk01.sys []
S3 mfebopk;McAfee Inc. mfebopk; C:\windows\system32\drivers\mfebopk.sys [2012-01-31 59288]
S3 mferkdet;McAfee Inc. mferkdet; C:\windows\system32\drivers\mferkdet.sys [2012-01-31 87808]
S3 Netaapl;Apple Mobile Device Ethernet Service; C:\windows\system32\DRIVERS\netaapl.sys [2011-08-02 18432]
S3 nmwcd;Nokia USB Phone Parent Driver; C:\windows\system32\drivers\ccdcmb.sys [2011-11-01 18176]
S3 nmwcdc;Nokia USB Communication Driver; C:\windows\system32\drivers\ccdcmbo.sys [2011-11-01 23168]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver; C:\windows\System32\drivers\rdpvideominiport.sys [2010-11-20 15872]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s3cap;s3cap; C:\windows\system32\drivers\vms3cap.sys [2010-11-20 5632]
S3 sisagp;SIS AGP Bus Filter; C:\windows\system32\drivers\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\windows\system32\drivers\storvsc.sys [2010-11-20 28032]
S3 Synth3dVsc;Microsoft Virtual 3D Video Transport Driver; C:\windows\system32\drivers\Synth3dVsc.sys [2010-11-20 77184]
S3 terminpt;Microsoft Remote Desktop Input Driver; C:\windows\system32\drivers\terminpt.sys [2010-11-20 25600]
S3 TsUsbFlt;@%SystemRoot%\system32\drivers\tsusbflt.sys,-1; C:\windows\System32\drivers\tsusbflt.sys [2010-11-20 52224]
S3 TsUsbGD;Remote Desktop Generic USB Device; C:\windows\system32\drivers\TsUsbGD.sys [2010-11-20 27264]
S3 tsusbhub;Remote Deskotop USB Hub; C:\windows\system32\drivers\tsusbhub.sys [2010-11-20 112640]
S3 upperdev;upperdev; C:\windows\system32\DRIVERS\usbser_lowerflt.sys [2011-11-01 8192]
S3 USBAAPL;Apple Mobile USB Driver; C:\windows\System32\Drivers\usbaapl.sys [2012-04-25 43520]
S3 usbscan;USB Scanner Driver; C:\windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 usbser;USB Modem Driver; C:\windows\system32\drivers\usbser.sys [2010-11-20 27648]
S3 UsbserFilt;UsbserFilt; C:\windows\system32\DRIVERS\usbser_lowerfltj.sys [2011-11-01 8192]
S4 hdlpnetf;hdlpnetf; C:\windows\system32\drivers\hdlpnetf.sys [2011-04-10 30792]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 AdobeARMservice;Adobe Acrobat Update Service; C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-07-27 63960]
R2 AgentService;AgentService; C:\Program Files\Iron Mountain\Connected BackupPC\AgentService.exe [2010-05-21 7587232]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe [2012-05-24 55184]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2011-08-31 390504]
R2 btwdins;Bluetooth Service; C:\Program Files\ThinkPad\Bluetooth Software\btwdins.exe [2011-10-17 673056]
R2 CcmExec;SMS Agent Host; C:\windows\system32\CCM\CcmExec.exe [2009-09-18 764768]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\windows\System32\svchost.exe [2009-07-14 20992]
R2 CxAudMsg;@C:\windows\system32\CxAudMsg32.exe,-100; C:\windows\system32\CxAudMsg32.exe [2010-12-17 190592]
R2 enterceptAgent;McAfee Host Intrusion Prevention Service; C:\Program Files\McAfee\Host Intrusion Prevention\FireSvc.exe [2011-04-13 1506464]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\WiFi\bin\EvtEng.exe [2011-07-27 936208]
R2 hips;McAfee HIPSCore Service; C:\Program Files\McAfee\Host Intrusion Prevention\HIPSCore\HIPSvc.exe [2010-12-17 35696]
R2 IBMPMSVC;ThinkPad PM Service; C:\windows\system32\ibmpmsvc.exe [2011-08-11 38760]
R2 iPassPeriodicUpdateService;iPassPeriodicUpdateService; C:\Program Files\iPass\iPassConnect\iPassPeriodicUpdateService.exe [2008-09-01 98304]
R2 iPlatformService;iPlatformService; C:\Program Files\iPass\Open Mobile\omsi\iPlatformService.exe [2012-08-14 22528]
R2 jhi_service;Intel(R) Identity Protection Technology Host Interface Service; C:\Program Files\Intel\Services\IPT\jhi_service.exe [2011-02-07 210896]
R2 LENOVO.CAMMUTE;Lenovo Camera Mute; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [2011-07-22 41832]
R2 LENOVO.MICMUTE;Lenovo Microphone Mute; C:\Program Files\LENOVO\HOTKEY\MICMUTE.exe [2011-07-12 101736]
R2 LENOVO.TPKNRSVC;Lenovo Keyboard Noise Reduction; C:\Program Files\Lenovo\Communications Utility\TPKNRSVC.exe [2011-07-22 60264]
R2 Lenovo.VIRTSCRLSVC;Lenovo Auto Scroll; C:\Program Files\LENOVO\VIRTSCRL\lvvsst.exe [2011-07-12 127336]
R2 LMS;Intel(R) Management and Security Application Local Management Service; C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe [2011-01-17 326168]
R2 McAfeeDLPAgentService;McAfee DLP Agent Service; C:\Program Files\McAfee\DLP\Agent\fcags.exe [2011-04-10 5444928]
R2 McAfeeFramework;McAfee Framework Service; C:\Program Files\McAfee\Common Framework\FrameworkService.exe [2011-11-15 132672]
R2 McShield;McAfee McShield; C:\Program Files\Common Files\McAfee\SystemCore\\mcshield.exe [2012-01-31 166024]
R2 McTaskManager;McAfee Task Manager; C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe [2011-09-14 209760]
R2 mfevtp;McAfee Validation Trust Protection Service; C:\windows\system32\mfevtps.exe [2012-01-31 148520]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-08-13 616552]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-13 2214504]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe [2011-07-27 481552]
R2 SAService;Conexant SmartAudio service; C:\windows\system32\SAsrv.exe [2010-11-18 446592]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-08-12 379496]
R2 SUService;System Update; C:\Program Files\Lenovo\System Update\SUService.exe [2011-07-26 28672]
R2 TPHKLOAD;Lenovo Hotkey Client Loader; C:\Program Files\LENOVO\HOTKEY\TPHKLOAD.exe [2011-07-12 131432]
R2 TPHKSVC;On Screen Display; C:\Program Files\LENOVO\HOTKEY\TPHKSVC.exe [2011-07-12 142696]
R2 UNS;Intel(R) Management and Security Application User Notification Service; C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe [2011-01-17 2656280]
R3 iMobilityService;iMobilityService; C:\Program Files\iPass\Open Mobile\bin\iMobilityService.exe [2012-08-14 30720]
R3 iPassPeriodicUpdateApp;iPassPeriodicUpdateApp; C:\Program Files\iPass\iPassConnect\iPassPeriodicUpdateApp.exe [2008-09-01 155648]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2012-06-07 821648]
R3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\windows\System32\svchost.exe [2009-07-14 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-09 250808]
S3 AppMgmt;@appmgmts.dll,-3250; C:\windows\system32\svchost.exe [2009-07-14 20992]
S3 aspnet_state;ASP.NET State Service; C:\windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 DozeSvc;Lenovo Doze Mode Service; C:\Program Files\ThinkPad\Utilities\DOZESVC.EXE [2011-10-04 292200]
S3 iPassConnectEngine;iPassConnectEngine; C:\Program Files\iPass\iPassConnect\iPassConnectEngine.exe [2008-09-26 1712128]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service; C:\Program Files\Microsoft Office\Office14\GROOVE.EXE [2010-03-25 30969208]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 Power Manager DBC Service;Power Manager DBC Service; C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE [2011-10-04 89152]
S3 PwmEWSvc;Cisco EnergyWise Enabler; C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE [2011-10-04 175168]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2011-11-30 718888]
S3 smstsmgr;SMS Task Sequence Agent; C:\windows\system32\CCM\TSManager.exe [2009-09-18 246624]
S3 StorSvc;@%SystemRoot%\System32\StorSvc.dll,-100; C:\windows\System32\svchost.exe [2009-07-14 20992]
S3 TPHDEXLGSVC;ThinkPad HDD APS Logging Service; C:\windows\System32\TPHDEXLG.exe [2011-03-29 40048]
S4 NetMsmqActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8195; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetPipeActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8197; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]
S4 NetTcpActivator;@c:\Windows\Microsoft.NET\Framework\v4.0.30319\\ServiceModelInstallRC.dll,-8199; C:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe [2010-03-18 124240]

-----------------EOF-----------------

Zdravim

Mohu vedet jak jste se dokazal dostat k nejvyssi licenci W7 Enterprise, ktera se bezne neda koupit - jen tedy nekde stahnout a crackout a nebo firemni PC

Dobry den,
je to firemni PC. Bohuzel ale mam IT podporu az v UK a to moc nefunguje..
Slavek

Dle pravidel fora http://forum.viry.cz/viewtopic.php?f=12&t=5601 se tu firemnimi PC nezabyvame...

6. Fórum viry.cz se nezabývá odvirováním firemních PC - na toto jsou ve firmách placení (a někdy až hodně nadstandardně) IT technici, případně si je firma může najmou. My jsme tu zdarma a ve svém volném čase, nehodláme dělat práci za někoho jiného, kdo si pak jen slízne smetánku a plat. Taktéž ani neposkytujeme poradenství v oblasti zabezpečení firemních sítí či nastavení firemních sítí. Zkrátka a jednoduše, naše fórum poskytuje podporu domácím uživatelům.

Pokud Vase IT sprava nefunguje jak ma, pak se obratte na odpovedny management firmy

Vas postoj naprosto chapu a nezistna odborna pomoc, kterou poskytujte je v dnesni dobe nevidana.
I proto jsem byl odhodlan Vase forum po vyreseni problemu obratem podporit.
Kazdopadne diky za Vas cas.
Slavek

V PC jsou zcela jiste firemni data a ja si nevezmu na triko ze PC pujde do kytek, dojde k nejakemu uniku dat apod. Ci primo k poskozeni ntb...

Nemate tedy zac, preji pekny den

A na zaklade Pravidla o zamykani temat

VIRY.CZ

Zase Skype vir

Zase Skype vir

Re: Zase Skype vir

Re: Zase Skype vir

Re: Zase Skype vir

Re: Zase Skype vir

Re: Zase Skype vir