NTB Problem Cpu 100% Využíti a Topí
Napsal: 23 lis 2012 11:41
Dobrý den, mam problém od čtvrtka 22.11 dal jsem NTB do hibernace, když jsem odjel ze školy pak, když jsem přijel domu a zapnul NTB začal hned při přihlášeni Uživatele, když to píše vítejte se neskutečně přehřívat a využití CPU bylo 100% ,zkoušel jsem různé programy co tu rádíte ale nic se nezměnilo a tady je log z ComboFix. Předem Děkuji za Připadnou pomoc
NTB: Lenovo Y570
Cpu:I5-2460M 2.40Ghz
Gpu:Geforce GT 555M 2GB
Ram: 8G (4G původní + 4G Do koupené)
Combofix:
ComboFix 12-11-22.03 - Martas 23.11.2012 11:10:44.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.8136.5458 [GMT 1:00]
Spuštěný z: c:\novß slo×ka\ComboFix.exe
AV: ESET NOD32 Antivirus 5.2 *Enabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.2 *Enabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-10-23 do 2012-11-23 )))))))))))))))))))))))))))))))
.
.
2012-11-23 10:18 . 2012-11-23 10:18 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-11-23 10:18 . 2012-11-23 10:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-22 19:27 . 2012-11-22 19:27 -------- d-----w- c:\users\Martas\AppData\Roaming\Rovio
2012-11-22 19:11 . 2012-11-22 19:22 -------- d-----w- C:\Nová složka
2012-11-22 18:58 . 2012-11-20 16:36 269824 ----a-w- c:\windows\SysWow64\igfxupdate.exe
2012-11-22 18:34 . 2012-11-22 18:34 -------- d-----w- c:\users\Martas\AppData\Roaming\SUPERAntiSpyware.com
2012-11-22 18:34 . 2012-11-22 19:18 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-11-22 18:34 . 2012-11-22 18:34 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-11-22 11:46 . 2012-11-22 11:46 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2012-11-22 10:12 . 2012-11-22 10:12 -------- d-----w- c:\users\Martas\AppData\Roaming\Subversion
2012-11-20 17:41 . 2007-05-16 15:45 4496232 ----a-w- c:\windows\system32\d3dx9_34.dll
2012-11-20 17:27 . 2012-11-22 11:02 -------- d-----w- c:\program files (x86)\Call of Duty Black Ops 2
2012-11-20 16:27 . 2012-11-20 16:36 410112 ----a-w- c:\windows\system32\taskhost.rs
2012-11-20 16:27 . 2012-11-20 16:36 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-20 16:27 . 2012-11-20 16:36 269824 ----a-w- c:\windows\system32\SearchEngine.rs
2012-11-20 09:47 . 2012-11-20 09:47 -------- d-----w- c:\users\Martas\AppData\Local\Programs
2012-11-20 09:41 . 2012-11-20 09:45 -------- d-----w- c:\users\Martas\Call.of.Duty.Black.Ops.II-SKIDROW
2012-11-13 09:42 . 2012-11-22 12:39 -------- d-----w- c:\programdata\Origin
2012-11-12 19:23 . 2012-11-12 19:23 -------- d-----w- c:\users\Martas\AppData\Local\PunkBuster
2012-11-10 19:18 . 2012-11-10 19:17 783712 ----a-w- c:\windows\system32\EncIcons.dll
2012-11-10 19:18 . 2012-11-10 19:17 1510752 ----a-w- c:\windows\system32\Apblend64.dll
2012-11-10 19:18 . 2012-11-10 19:17 1508192 ----a-w- c:\windows\system32\IcnOvrly.dll
2012-11-10 19:18 . 2012-11-10 19:17 628064 ----a-w- c:\windows\system32\SimpleExt.dll
2012-11-10 19:18 . 2012-11-10 19:17 1769312 ----a-w- c:\windows\system32\imagereog.dll
2012-11-10 19:18 . 2012-11-10 19:18 97472 ----a-w- c:\windows\SysWow64\gacutil.exe
2012-11-10 19:18 . 2012-11-10 19:18 25952 ----a-w- c:\windows\SysWow64\Lenovo.Veriface.dll
2012-11-10 19:18 . 2012-11-10 19:18 1500512 ----a-w- c:\windows\SysWow64\Apblend.dll
2012-11-10 19:18 . 2012-11-10 19:18 1394016 ----a-w- c:\windows\SysWow64\Imagereog.dll
2012-11-10 19:18 . 2012-11-10 19:18 1171456 ----a-w- c:\windows\SysWow64\PicNotify.dll
2012-11-10 19:18 . 2012-11-10 19:18 11104 ----a-w- c:\windows\SysWow64\biologon.dll
2012-11-10 19:18 . 2012-11-10 19:18 1025376 ----a-w- c:\windows\SysWow64\CamOpEx.dll
2012-11-10 19:17 . 2012-11-10 19:17 876032 ----a-w- c:\windows\SysWow64\DevIL.dll
2012-11-10 19:17 . 2012-11-10 19:17 77824 ----a-w- c:\windows\SysWow64\ILU.dll
2012-11-10 19:17 . 2012-11-10 19:17 32768 ----a-w- c:\windows\SysWow64\ILUT.dll
2012-11-10 19:17 . 2012-11-10 19:17 1044480 ----a-w- c:\windows\SysWow64\3DImageRenderer.dll
2012-11-10 19:04 . 2009-04-23 14:37 272896 ----a-w- c:\windows\rsnp2uvc.dll
2012-11-10 19:04 . 2010-08-27 16:43 32088 ----a-w- c:\windows\system32\drivers\jmcam_lo.sys
2012-11-10 19:04 . 2010-08-27 15:36 280664 ----a-w- c:\windows\system32\jmcam.ax
2012-11-10 19:04 . 2010-08-27 15:36 219736 ----a-w- c:\windows\SysWow64\jmcam.ax
2012-11-10 19:04 . 2010-08-27 13:01 57816 ----a-w- c:\windows\system32\drivers\jmcam.sys
2012-11-10 19:04 . 2010-07-21 09:28 615000 ----a-w- c:\windows\system32\jmccgpInst.dll
2012-11-10 19:04 . 2010-07-21 09:28 17880 ----a-w- c:\windows\system32\drivers\jmccgp.sys
2012-11-10 19:04 . 2010-07-21 09:28 642136 ----a-w- c:\windows\system32\jmcamInst.dll
2012-11-10 19:04 . 2012-11-10 19:04 -------- d-----w- c:\program files (x86)\Common Files\USB20Camra
2012-11-10 19:04 . 2012-11-10 19:04 -------- d-----w- c:\users\Martas\AppData\Roaming\InstallShield
2012-11-08 13:27 . 2012-10-12 11:18 83072 ----a-w- c:\windows\system32\drivers\aksdf.sys
2012-11-08 13:27 . 2012-11-08 13:27 -------- d-----w- c:\program files (x86)\Common Files\Aladdin Shared
2012-11-08 13:27 . 2012-08-23 16:18 4412872 ----a-w- c:\windows\system32\hasplms.exe
2012-11-08 13:27 . 2012-08-23 16:18 4412872 ----a-w- c:\windows\system32\aksllmtp.exe
2012-11-08 13:27 . 2012-08-07 11:51 141256 ----a-w- c:\windows\system32\drivers\aksfridge.sys
2012-11-08 13:27 . 2012-10-06 16:55 323584 ----a-w- c:\windows\system32\drivers\hardlock.sys
2012-11-08 13:27 . 2011-05-13 11:19 198088 ----a-w- c:\windows\SysWow64\hlvdd.dll
2012-11-08 13:27 . 2012-11-08 13:27 -------- d-----w- c:\programdata\Mosaic
2012-11-08 13:26 . 2012-11-08 13:26 -------- d-----w- c:\program files (x86)\Common Files\Mosaic.ProxyStub
2012-11-07 19:35 . 2012-11-07 19:37 -------- d-----w- c:\program files (x86)\Convar
2012-11-07 19:30 . 2012-11-07 19:30 -------- d-----w- c:\windows\system32\wbem\Framework
2012-11-07 14:30 . 2012-11-07 14:30 -------- d-----w- c:\users\Martas\AppData\Local\GPUMonitor
2012-11-03 09:12 . 2012-11-04 13:00 -------- d-----w- c:\users\Martas\AppData\Local\Nero
2012-11-01 10:10 . 2012-11-01 10:10 -------- d-----w- c:\users\Martas\AppData\Local\Broadcom
2012-11-01 10:08 . 2011-05-13 07:01 22056 ----a-w- c:\windows\system32\btwcoins.dll
2012-11-01 10:08 . 2011-05-13 07:01 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2012-11-01 10:08 . 2011-05-13 07:01 89640 ----a-w- c:\windows\system32\drivers\btwdpan.sys
2012-11-01 10:08 . 2011-05-13 07:01 39976 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2012-11-01 10:08 . 2011-05-13 07:01 164392 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2012-11-01 10:08 . 2011-05-13 07:01 150568 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2012-11-01 10:08 . 2011-05-13 07:01 437288 ----a-w- c:\windows\system32\drivers\btwampfl.sys
2012-11-01 10:05 . 2012-11-10 19:17 -------- d-----w- C:\Drivers
2012-10-31 18:51 . 2012-10-31 18:51 -------- d-----w- c:\programdata\Hewlett-Packard
2012-10-31 18:51 . 2009-07-14 01:41 230400 ----a-w- c:\windows\system32\Spool\prtprocs\x64\hpzppw71.dll
2012-10-31 13:53 . 2010-06-02 03:55 239960 ----a-w- c:\windows\SysWow64\xactengine3_7.dll
2012-10-31 13:53 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 1868128 ----a-w- c:\windows\SysWow64\d3dcsx_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 470880 ----a-w- c:\windows\SysWow64\d3dx10_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2012-10-31 08:49 . 2012-11-12 19:19 -------- d-----w- c:\users\Martas\AppData\Roaming\Free Download Manager
2012-10-30 19:07 . 2010-06-02 03:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2012-10-30 19:07 . 2010-06-02 03:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2012-10-30 19:07 . 2010-02-04 09:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2012-10-30 19:07 . 2007-04-04 17:53 81768 ----a-w- c:\windows\SysWow64\xinput1_3.dll
2012-10-30 17:46 . 2012-11-23 10:09 -------- d-----w- c:\users\Martas\AppData\Roaming\Skype
2012-10-30 17:46 . 2012-10-30 17:46 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-10-30 17:46 . 2012-10-30 17:46 -------- d-----r- c:\program files (x86)\Skype
2012-10-30 17:45 . 2012-10-30 17:46 -------- d-----w- c:\programdata\Skype
2012-10-30 14:14 . 2012-11-01 10:24 -------- d-----w- c:\program files (x86)\Nero
2012-10-30 11:55 . 2012-11-01 10:27 -------- d-----w- c:\users\Martas\AppData\Roaming\Nero
2012-10-30 10:57 . 2012-11-01 10:24 -------- d-----w- c:\programdata\Nero
2012-10-30 10:57 . 2012-11-01 10:19 -------- d-----w- c:\program files (x86)\Common Files\Nero
2012-10-25 11:13 . 2012-10-25 11:13 -------- d-----w- c:\programdata\RELOADED
2012-10-25 10:04 . 2012-10-25 10:04 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-10 19:17 . 2012-10-14 14:50 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll
2012-10-16 09:39 . 2012-10-16 09:39 289768 ----a-w- c:\windows\system32\javaws.exe
2012-10-16 09:39 . 2012-10-16 09:39 189416 ----a-w- c:\windows\system32\javaw.exe
2012-10-16 09:39 . 2012-10-16 09:39 188904 ----a-w- c:\windows\system32\java.exe
2012-10-16 09:39 . 2012-10-16 09:39 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-10-16 09:39 . 2012-10-15 07:26 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-10-16 09:39 . 2012-10-15 07:26 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-10-15 08:46 . 2012-10-15 08:00 15823872 ----a-w- c:\users\Martas\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2012-10-15 08:46 . 2012-10-15 08:00 786492 ----a-w- c:\users\Martas\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2012-10-15 08:46 . 2012-10-15 08:00 107008 ----a-w- c:\users\Martas\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2012-10-14 19:52 . 2012-10-14 19:52 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-10-14 15:04 . 2012-10-14 15:05 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-14 15:04 . 2012-10-14 15:05 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-10-14 13:38 . 2012-10-14 13:39 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys
2012-10-14 13:38 . 2012-10-14 13:39 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll
2012-10-14 13:38 . 2010-10-25 17:44 29792 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2012-10-14 13:05 . 2012-10-14 13:05 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-14 13:05 . 2012-10-14 13:05 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-02 22:21 . 2012-10-14 13:42 973672 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-10-02 22:21 . 2012-10-14 13:42 9146728 ----a-w- c:\windows\system32\nvcuda.dll
2012-10-02 22:21 . 2012-10-14 13:42 831848 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-10-02 22:21 . 2012-10-14 13:42 7697768 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-10-02 22:21 . 2012-10-14 13:42 7414632 ----a-w- c:\windows\system32\nvopencl.dll
2012-10-02 22:21 . 2012-10-14 13:42 6127464 ----a-w- c:\windows\SysWow64\nvopencl.dll
2012-10-02 22:21 . 2012-10-14 13:42 30056 ----a-w- c:\windows\system32\drivers\nvpciflt.sys
2012-10-02 22:21 . 2012-10-14 13:42 2747240 ----a-w- c:\windows\system32\nvcuvid.dll
2012-10-02 22:21 . 2012-10-14 13:42 2731880 ----a-w- c:\windows\system32\nvapi64.dll
2012-10-02 22:21 . 2012-10-14 13:42 26331496 ----a-w- c:\windows\system32\nvoglv64.dll
2012-10-02 22:21 . 2012-10-14 13:42 2574696 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-10-02 22:21 . 2012-10-14 13:42 25256296 ----a-w- c:\windows\system32\nvcompiler.dll
2012-10-02 22:21 . 2012-10-14 13:42 247144 ----a-w- c:\windows\system32\nvinitx.dll
2012-10-02 22:21 . 2012-10-14 13:42 2428776 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-10-02 22:21 . 2012-10-14 13:42 2218344 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-10-02 22:21 . 2012-10-14 13:42 202600 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-10-02 22:21 . 2012-10-14 13:42 19906920 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-10-02 22:21 . 2012-10-14 13:42 1867112 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-10-02 22:21 . 2012-10-14 13:42 18252136 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-10-02 22:21 . 2012-10-14 13:42 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-10-02 22:21 . 2012-10-14 13:42 17559912 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-10-02 22:21 . 2012-10-14 13:42 15309160 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-10-02 22:21 . 2012-10-14 13:42 14922600 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-10-02 22:21 . 2012-10-14 13:42 1482600 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-10-02 22:21 . 2012-10-14 13:42 13443944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-10-02 22:21 . 2012-10-14 13:42 12501352 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-10-02 19:51 . 2012-10-14 13:43 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2012-10-02 19:51 . 2012-10-14 13:43 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2012-10-02 19:51 . 2012-10-14 13:43 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2012-10-02 19:50 . 2012-10-14 13:43 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-10-02 19:50 . 2012-10-14 13:43 866664 ----a-w- c:\windows\system32\nv3dappshext.dll
2012-10-02 19:50 . 2012-10-14 13:43 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-10-02 19:50 . 2012-10-14 13:43 55144 ----a-w- c:\windows\system32\nv3dappshextr.dll
2012-10-02 19:50 . 2012-10-14 13:43 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-10-02 19:50 . 2012-10-14 13:43 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-10-02 19:50 . 2012-10-14 13:43 440168 ----a-w- c:\windows\SysWow64\oemdspif.dll
2012-09-18 22:58 . 2012-10-14 13:15 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8529F15E-D2A5-4FD6-BE43-7F006F1CE8D3}\mpengine.dll
2012-08-30 13:46 . 2012-08-30 13:46 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-08-30 13:46 . 2012-08-30 13:46 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="d:\programy\Steam\steam.exe" [2012-10-14 1353080]
"QIP Internet Guardian"="c:\users\Martas\AppData\Roaming\QipGuard\QipGuard.exe" [2012-03-23 191440]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"OfficeSyncProcess"="d:\programy\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 908160]
"T-Mobile Communication Centre"="c:\program files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" [2011-03-08 1355792]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-10-19 17875120]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-01 5629312]
"Infium"="c:\program files (x86)\QIP 2012\qip.exe" [2012-03-23 7351760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2011-5-12 1211168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-10-19 160944]
R3 ALSysIO;ALSysIO;c:\users\Martas\AppData\Local\Temp\ALSysIO64.sys [x]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2012-03-01 195584]
R3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2010-02-22 11776]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2012-04-17 273168]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\Martas\AppData\Local\Temp\tmpA5A1.tmp [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys [2012-10-14 39008]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-10-02 30056]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-10-14 283200]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys [2012-10-12 83072]
S2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-03-08 122608]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-03-01 659976]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-03-08 135952]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2012-03-07 913144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2012-03-14 137144]
S2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
S2 QipGuard;QipGuard;c:\program files (x86)\QipGuard\QipGuard.exe [2012-03-23 191440]
S2 SearchIndexer;Search Indexer;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [2012-04-17 2671376]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys [2012-10-14 29792]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2012-03-01 195584]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [2011-05-13 437288]
S3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys [2011-05-13 89640]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2011-05-13 39976]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
S3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver;c:\windows\system32\DRIVERS\jmccgp.sys [2010-07-21 17880]
S3 JmUsbVideo;JMicron 31x Upper Filter Driver;c:\windows\system32\Drivers\jmcam.sys [2010-08-27 57816]
S3 JmUsbVideo2;JMicron 31x Lower Filter Driver;c:\windows\system32\Drivers\jmcam_lo.sys [2010-08-27 32088]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2011-05-09 425000]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 34957675
*NewlyCreated* - PROCMON23
*Deregistered* - 34957675
*Deregistered* - PROCMON23
.
Obsah adresáře 'Naplánované úlohy'
.
2012-11-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-14 13:05]
.
2012-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-14 13:20]
.
2012-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-14 13:20]
.
2012-11-22 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 17b58080-1640-4680-ada0-7a8d9dc65b4d.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
2012-11-22 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 8b00d165-a481-4341-a0df-587f7fc2046e.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-05-21 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-05-21 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-05-21 440128]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2012-10-14 9753024]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2012-10-14 5908928]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"OnekeyStudio"="c:\program files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe" [2009-12-19 776608]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2012-03-07 4081008]
"BCSSync"="d:\programy\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://search.qip.ru/ie
IE: E&xportovat do aplikace Microsoft Excel - d:\programy\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\programy\MICROS~1\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
IE: Stáhnout Free Download Managerem - file://d:\programy\Free Download Manager\dllink.htm
IE: Stáhnout video Free Download Managerem - file://d:\programy\Free Download Manager\dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file://d:\programy\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://d:\programy\Free Download Manager\dlall.htm
TCP: Interfaces\{A83071D7-EA0D-D478-4414-4E6F9F0C5BDF}: NameServer = 93.153.117.1 93.153.117.33
TCP: Interfaces\{DC920C0B-B0F4-4C89-9B79-CF792C32CC69}\4505D2C494E4B4F5739353032334: NameServer = 192.168.1.1
TCP: Interfaces\{DC920C0B-B0F4-4C89-9B79-CF792C32CC69}\D4142545143575966696: NameServer = 192.168.1.1
TCP: Interfaces\{DC920C0B-B0F4-4C89-9B79-CF792C32CC69}\D41627471637: NameServer = 192.168.1.1
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\WinRing0_1_2_0]
"ImagePath"="\??\c:\users\Martas\AppData\Local\Temp\tmpA5A1.tmp"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2227945101-143178771-2478135386-1000\Software\SecuROM\License information*]
"datasecu"=hex:c2,0c,be,41,05,b7,01,85,f4,c2,4e,ab,03,8e,07,16,c9,c4,58,63,94,
72,77,91,e3,91,29,b1,7b,79,30,2f,a8,ed,ab,0d,7c,17,9a,c4,14,b2,93,58,75,5b,\
"rkeysecu"=hex:2a,b2,44,ba,c3,97,c1,01,f6,2e,b1,54,d4,4f,5b,6f
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-11-23 11:21:06
ComboFix-quarantined-files.txt 2012-11-23 10:21
ComboFix2.txt 2012-11-22 19:41
.
Před spuštěním: Volných bajtů: 16 076 607 488
Po spuštění: Volných bajtů: 15 540 473 856
.
- - End Of File - - 3CAB4954116B8C33BEAC1E3E19949CCA
NTB: Lenovo Y570
Cpu:I5-2460M 2.40Ghz
Gpu:Geforce GT 555M 2GB
Ram: 8G (4G původní + 4G Do koupené)
Combofix:
ComboFix 12-11-22.03 - Martas 23.11.2012 11:10:44.2.4 - x64
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.8136.5458 [GMT 1:00]
Spuštěný z: c:\novß slo×ka\ComboFix.exe
AV: ESET NOD32 Antivirus 5.2 *Enabled/Outdated* {77DEAFED-8149-104B-25A1-21771CA47CD1}
SP: ESET NOD32 Antivirus 5.2 *Enabled/Outdated* {CCBF4E09-A773-1FC5-1F11-1A056723366C}
SP: Windows Defender *Enabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-10-23 do 2012-11-23 )))))))))))))))))))))))))))))))
.
.
2012-11-23 10:18 . 2012-11-23 10:18 -------- d-----w- c:\users\UpdatusUser\AppData\Local\temp
2012-11-23 10:18 . 2012-11-23 10:18 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-11-22 19:27 . 2012-11-22 19:27 -------- d-----w- c:\users\Martas\AppData\Roaming\Rovio
2012-11-22 19:11 . 2012-11-22 19:22 -------- d-----w- C:\Nová složka
2012-11-22 18:58 . 2012-11-20 16:36 269824 ----a-w- c:\windows\SysWow64\igfxupdate.exe
2012-11-22 18:34 . 2012-11-22 18:34 -------- d-----w- c:\users\Martas\AppData\Roaming\SUPERAntiSpyware.com
2012-11-22 18:34 . 2012-11-22 19:18 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-11-22 18:34 . 2012-11-22 18:34 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2012-11-22 11:46 . 2012-11-22 11:46 -------- d-----w- c:\program files (x86)\AGEIA Technologies
2012-11-22 10:12 . 2012-11-22 10:12 -------- d-----w- c:\users\Martas\AppData\Roaming\Subversion
2012-11-20 17:41 . 2007-05-16 15:45 4496232 ----a-w- c:\windows\system32\d3dx9_34.dll
2012-11-20 17:27 . 2012-11-22 11:02 -------- d-----w- c:\program files (x86)\Call of Duty Black Ops 2
2012-11-20 16:27 . 2012-11-20 16:36 410112 ----a-w- c:\windows\system32\taskhost.rs
2012-11-20 16:27 . 2012-11-20 16:36 307712 ----a-w- c:\windows\system32\SearchIndexer.dll
2012-11-20 16:27 . 2012-11-20 16:36 269824 ----a-w- c:\windows\system32\SearchEngine.rs
2012-11-20 09:47 . 2012-11-20 09:47 -------- d-----w- c:\users\Martas\AppData\Local\Programs
2012-11-20 09:41 . 2012-11-20 09:45 -------- d-----w- c:\users\Martas\Call.of.Duty.Black.Ops.II-SKIDROW
2012-11-13 09:42 . 2012-11-22 12:39 -------- d-----w- c:\programdata\Origin
2012-11-12 19:23 . 2012-11-12 19:23 -------- d-----w- c:\users\Martas\AppData\Local\PunkBuster
2012-11-10 19:18 . 2012-11-10 19:17 783712 ----a-w- c:\windows\system32\EncIcons.dll
2012-11-10 19:18 . 2012-11-10 19:17 1510752 ----a-w- c:\windows\system32\Apblend64.dll
2012-11-10 19:18 . 2012-11-10 19:17 1508192 ----a-w- c:\windows\system32\IcnOvrly.dll
2012-11-10 19:18 . 2012-11-10 19:17 628064 ----a-w- c:\windows\system32\SimpleExt.dll
2012-11-10 19:18 . 2012-11-10 19:17 1769312 ----a-w- c:\windows\system32\imagereog.dll
2012-11-10 19:18 . 2012-11-10 19:18 97472 ----a-w- c:\windows\SysWow64\gacutil.exe
2012-11-10 19:18 . 2012-11-10 19:18 25952 ----a-w- c:\windows\SysWow64\Lenovo.Veriface.dll
2012-11-10 19:18 . 2012-11-10 19:18 1500512 ----a-w- c:\windows\SysWow64\Apblend.dll
2012-11-10 19:18 . 2012-11-10 19:18 1394016 ----a-w- c:\windows\SysWow64\Imagereog.dll
2012-11-10 19:18 . 2012-11-10 19:18 1171456 ----a-w- c:\windows\SysWow64\PicNotify.dll
2012-11-10 19:18 . 2012-11-10 19:18 11104 ----a-w- c:\windows\SysWow64\biologon.dll
2012-11-10 19:18 . 2012-11-10 19:18 1025376 ----a-w- c:\windows\SysWow64\CamOpEx.dll
2012-11-10 19:17 . 2012-11-10 19:17 876032 ----a-w- c:\windows\SysWow64\DevIL.dll
2012-11-10 19:17 . 2012-11-10 19:17 77824 ----a-w- c:\windows\SysWow64\ILU.dll
2012-11-10 19:17 . 2012-11-10 19:17 32768 ----a-w- c:\windows\SysWow64\ILUT.dll
2012-11-10 19:17 . 2012-11-10 19:17 1044480 ----a-w- c:\windows\SysWow64\3DImageRenderer.dll
2012-11-10 19:04 . 2009-04-23 14:37 272896 ----a-w- c:\windows\rsnp2uvc.dll
2012-11-10 19:04 . 2010-08-27 16:43 32088 ----a-w- c:\windows\system32\drivers\jmcam_lo.sys
2012-11-10 19:04 . 2010-08-27 15:36 280664 ----a-w- c:\windows\system32\jmcam.ax
2012-11-10 19:04 . 2010-08-27 15:36 219736 ----a-w- c:\windows\SysWow64\jmcam.ax
2012-11-10 19:04 . 2010-08-27 13:01 57816 ----a-w- c:\windows\system32\drivers\jmcam.sys
2012-11-10 19:04 . 2010-07-21 09:28 615000 ----a-w- c:\windows\system32\jmccgpInst.dll
2012-11-10 19:04 . 2010-07-21 09:28 17880 ----a-w- c:\windows\system32\drivers\jmccgp.sys
2012-11-10 19:04 . 2010-07-21 09:28 642136 ----a-w- c:\windows\system32\jmcamInst.dll
2012-11-10 19:04 . 2012-11-10 19:04 -------- d-----w- c:\program files (x86)\Common Files\USB20Camra
2012-11-10 19:04 . 2012-11-10 19:04 -------- d-----w- c:\users\Martas\AppData\Roaming\InstallShield
2012-11-08 13:27 . 2012-10-12 11:18 83072 ----a-w- c:\windows\system32\drivers\aksdf.sys
2012-11-08 13:27 . 2012-11-08 13:27 -------- d-----w- c:\program files (x86)\Common Files\Aladdin Shared
2012-11-08 13:27 . 2012-08-23 16:18 4412872 ----a-w- c:\windows\system32\hasplms.exe
2012-11-08 13:27 . 2012-08-23 16:18 4412872 ----a-w- c:\windows\system32\aksllmtp.exe
2012-11-08 13:27 . 2012-08-07 11:51 141256 ----a-w- c:\windows\system32\drivers\aksfridge.sys
2012-11-08 13:27 . 2012-10-06 16:55 323584 ----a-w- c:\windows\system32\drivers\hardlock.sys
2012-11-08 13:27 . 2011-05-13 11:19 198088 ----a-w- c:\windows\SysWow64\hlvdd.dll
2012-11-08 13:27 . 2012-11-08 13:27 -------- d-----w- c:\programdata\Mosaic
2012-11-08 13:26 . 2012-11-08 13:26 -------- d-----w- c:\program files (x86)\Common Files\Mosaic.ProxyStub
2012-11-07 19:35 . 2012-11-07 19:37 -------- d-----w- c:\program files (x86)\Convar
2012-11-07 19:30 . 2012-11-07 19:30 -------- d-----w- c:\windows\system32\wbem\Framework
2012-11-07 14:30 . 2012-11-07 14:30 -------- d-----w- c:\users\Martas\AppData\Local\GPUMonitor
2012-11-03 09:12 . 2012-11-04 13:00 -------- d-----w- c:\users\Martas\AppData\Local\Nero
2012-11-01 10:10 . 2012-11-01 10:10 -------- d-----w- c:\users\Martas\AppData\Local\Broadcom
2012-11-01 10:08 . 2011-05-13 07:01 22056 ----a-w- c:\windows\system32\btwcoins.dll
2012-11-01 10:08 . 2011-05-13 07:01 21544 ----a-w- c:\windows\system32\drivers\btwrchid.sys
2012-11-01 10:08 . 2011-05-13 07:01 89640 ----a-w- c:\windows\system32\drivers\btwdpan.sys
2012-11-01 10:08 . 2011-05-13 07:01 39976 ----a-w- c:\windows\system32\drivers\btwl2cap.sys
2012-11-01 10:08 . 2011-05-13 07:01 164392 ----a-w- c:\windows\system32\drivers\btwavdt.sys
2012-11-01 10:08 . 2011-05-13 07:01 150568 ----a-w- c:\windows\system32\drivers\btwaudio.sys
2012-11-01 10:08 . 2011-05-13 07:01 437288 ----a-w- c:\windows\system32\drivers\btwampfl.sys
2012-11-01 10:05 . 2012-11-10 19:17 -------- d-----w- C:\Drivers
2012-10-31 18:51 . 2012-10-31 18:51 -------- d-----w- c:\programdata\Hewlett-Packard
2012-10-31 18:51 . 2009-07-14 01:41 230400 ----a-w- c:\windows\system32\Spool\prtprocs\x64\hpzppw71.dll
2012-10-31 13:53 . 2010-06-02 03:55 239960 ----a-w- c:\windows\SysWow64\xactengine3_7.dll
2012-10-31 13:53 . 2010-05-26 10:41 2106216 ----a-w- c:\windows\SysWow64\D3DCompiler_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 1868128 ----a-w- c:\windows\SysWow64\d3dcsx_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 248672 ----a-w- c:\windows\SysWow64\d3dx11_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 470880 ----a-w- c:\windows\SysWow64\d3dx10_43.dll
2012-10-31 13:53 . 2010-05-26 10:41 1998168 ----a-w- c:\windows\SysWow64\D3DX9_43.dll
2012-10-31 08:49 . 2012-11-12 19:19 -------- d-----w- c:\users\Martas\AppData\Roaming\Free Download Manager
2012-10-30 19:07 . 2010-06-02 03:55 74072 ----a-w- c:\windows\SysWow64\XAPOFX1_5.dll
2012-10-30 19:07 . 2010-06-02 03:55 527192 ----a-w- c:\windows\SysWow64\XAudio2_7.dll
2012-10-30 19:07 . 2010-02-04 09:01 22360 ----a-w- c:\windows\SysWow64\X3DAudio1_7.dll
2012-10-30 19:07 . 2007-04-04 17:53 81768 ----a-w- c:\windows\SysWow64\xinput1_3.dll
2012-10-30 17:46 . 2012-11-23 10:09 -------- d-----w- c:\users\Martas\AppData\Roaming\Skype
2012-10-30 17:46 . 2012-10-30 17:46 -------- d-----w- c:\program files (x86)\Common Files\Skype
2012-10-30 17:46 . 2012-10-30 17:46 -------- d-----r- c:\program files (x86)\Skype
2012-10-30 17:45 . 2012-10-30 17:46 -------- d-----w- c:\programdata\Skype
2012-10-30 14:14 . 2012-11-01 10:24 -------- d-----w- c:\program files (x86)\Nero
2012-10-30 11:55 . 2012-11-01 10:27 -------- d-----w- c:\users\Martas\AppData\Roaming\Nero
2012-10-30 10:57 . 2012-11-01 10:24 -------- d-----w- c:\programdata\Nero
2012-10-30 10:57 . 2012-11-01 10:19 -------- d-----w- c:\program files (x86)\Common Files\Nero
2012-10-25 11:13 . 2012-10-25 11:13 -------- d-----w- c:\programdata\RELOADED
2012-10-25 10:04 . 2012-10-25 10:04 -------- d-----w- c:\program files (x86)\Microsoft Silverlight
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-10 19:17 . 2012-10-14 14:50 3727720 ----a-w- c:\windows\SysWow64\d3dx9_35.dll
2012-10-16 09:39 . 2012-10-16 09:39 289768 ----a-w- c:\windows\system32\javaws.exe
2012-10-16 09:39 . 2012-10-16 09:39 189416 ----a-w- c:\windows\system32\javaw.exe
2012-10-16 09:39 . 2012-10-16 09:39 188904 ----a-w- c:\windows\system32\java.exe
2012-10-16 09:39 . 2012-10-16 09:39 108008 ----a-w- c:\windows\system32\WindowsAccessBridge-64.dll
2012-10-16 09:39 . 2012-10-15 07:26 916456 ----a-w- c:\windows\system32\deployJava1.dll
2012-10-16 09:39 . 2012-10-15 07:26 1034216 ----a-w- c:\windows\system32\npDeployJava1.dll
2012-10-15 08:46 . 2012-10-15 08:00 15823872 ----a-w- c:\users\Martas\AppData\Roaming\Microsoft\Windows\Templates\Office 2010 Toolkit.exe
2012-10-15 08:46 . 2012-10-15 08:00 786492 ----a-w- c:\users\Martas\AppData\Roaming\Microsoft\Windows\Templates\cryptedcybertoirrent.exe
2012-10-15 08:46 . 2012-10-15 08:00 107008 ----a-w- c:\users\Martas\AppData\Roaming\Microsoft\Windows\Templates\Torrant.exe
2012-10-14 19:52 . 2012-10-14 19:52 283200 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2012-10-14 15:04 . 2012-10-14 15:05 821736 ----a-w- c:\windows\SysWow64\npDeployJava1.dll
2012-10-14 15:04 . 2012-10-14 15:05 746984 ----a-w- c:\windows\SysWow64\deployJava1.dll
2012-10-14 13:38 . 2012-10-14 13:39 39008 ----a-w- c:\windows\system32\drivers\LhdX64.sys
2012-10-14 13:38 . 2012-10-14 13:39 19872 ----a-w- c:\windows\system32\LenovoSDKEmSubSystem.dll
2012-10-14 13:38 . 2010-10-25 17:44 29792 ----a-w- c:\windows\system32\drivers\AcpiVpc.sys
2012-10-14 13:05 . 2012-10-14 13:05 73656 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2012-10-14 13:05 . 2012-10-14 13:05 696760 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2012-10-02 22:21 . 2012-10-14 13:42 973672 ----a-w- c:\windows\system32\nvumdshimx.dll
2012-10-02 22:21 . 2012-10-14 13:42 9146728 ----a-w- c:\windows\system32\nvcuda.dll
2012-10-02 22:21 . 2012-10-14 13:42 831848 ----a-w- c:\windows\SysWow64\nvumdshim.dll
2012-10-02 22:21 . 2012-10-14 13:42 7697768 ----a-w- c:\windows\SysWow64\nvcuda.dll
2012-10-02 22:21 . 2012-10-14 13:42 7414632 ----a-w- c:\windows\system32\nvopencl.dll
2012-10-02 22:21 . 2012-10-14 13:42 6127464 ----a-w- c:\windows\SysWow64\nvopencl.dll
2012-10-02 22:21 . 2012-10-14 13:42 30056 ----a-w- c:\windows\system32\drivers\nvpciflt.sys
2012-10-02 22:21 . 2012-10-14 13:42 2747240 ----a-w- c:\windows\system32\nvcuvid.dll
2012-10-02 22:21 . 2012-10-14 13:42 2731880 ----a-w- c:\windows\system32\nvapi64.dll
2012-10-02 22:21 . 2012-10-14 13:42 26331496 ----a-w- c:\windows\system32\nvoglv64.dll
2012-10-02 22:21 . 2012-10-14 13:42 2574696 ----a-w- c:\windows\SysWow64\nvcuvid.dll
2012-10-02 22:21 . 2012-10-14 13:42 25256296 ----a-w- c:\windows\system32\nvcompiler.dll
2012-10-02 22:21 . 2012-10-14 13:42 247144 ----a-w- c:\windows\system32\nvinitx.dll
2012-10-02 22:21 . 2012-10-14 13:42 2428776 ----a-w- c:\windows\SysWow64\nvapi.dll
2012-10-02 22:21 . 2012-10-14 13:42 2218344 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-10-02 22:21 . 2012-10-14 13:42 202600 ----a-w- c:\windows\SysWow64\nvinit.dll
2012-10-02 22:21 . 2012-10-14 13:42 19906920 ----a-w- c:\windows\SysWow64\nvoglv32.dll
2012-10-02 22:21 . 2012-10-14 13:42 1867112 ----a-w- c:\windows\SysWow64\nvcuvenc.dll
2012-10-02 22:21 . 2012-10-14 13:42 18252136 ----a-w- c:\windows\system32\nvd3dumx.dll
2012-10-02 22:21 . 2012-10-14 13:42 1760104 ----a-w- c:\windows\system32\nvdispco64.dll
2012-10-02 22:21 . 2012-10-14 13:42 17559912 ----a-w- c:\windows\SysWow64\nvcompiler.dll
2012-10-02 22:21 . 2012-10-14 13:42 15309160 ----a-w- c:\windows\SysWow64\nvd3dum.dll
2012-10-02 22:21 . 2012-10-14 13:42 14922600 ----a-w- c:\windows\system32\nvwgf2umx.dll
2012-10-02 22:21 . 2012-10-14 13:42 1482600 ----a-w- c:\windows\system32\nvdispgenco64.dll
2012-10-02 22:21 . 2012-10-14 13:42 13443944 ----a-w- c:\windows\system32\drivers\nvlddmkm.sys
2012-10-02 22:21 . 2012-10-14 13:42 12501352 ----a-w- c:\windows\SysWow64\nvwgf2um.dll
2012-10-02 19:51 . 2012-10-14 13:43 3536817 ----a-w- c:\windows\system32\nvcoproc.bin
2012-10-02 19:51 . 2012-10-14 13:43 3293544 ----a-w- c:\windows\system32\nvsvc64.dll
2012-10-02 19:51 . 2012-10-14 13:43 6200680 ----a-w- c:\windows\system32\nvcpl.dll
2012-10-02 19:50 . 2012-10-14 13:43 891240 ----a-w- c:\windows\system32\nvvsvc.exe
2012-10-02 19:50 . 2012-10-14 13:43 866664 ----a-w- c:\windows\system32\nv3dappshext.dll
2012-10-02 19:50 . 2012-10-14 13:43 63336 ----a-w- c:\windows\system32\nvshext.dll
2012-10-02 19:50 . 2012-10-14 13:43 55144 ----a-w- c:\windows\system32\nv3dappshextr.dll
2012-10-02 19:50 . 2012-10-14 13:43 2557800 ----a-w- c:\windows\system32\nvsvcr.dll
2012-10-02 19:50 . 2012-10-14 13:43 118120 ----a-w- c:\windows\system32\nvmctray.dll
2012-10-02 19:50 . 2012-10-14 13:43 440168 ----a-w- c:\windows\SysWow64\oemdspif.dll
2012-09-18 22:58 . 2012-10-14 13:15 9308616 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{8529F15E-D2A5-4FD6-BE43-7F006F1CE8D3}\mpengine.dll
2012-08-30 13:46 . 2012-08-30 13:46 71680 ----a-w- c:\windows\system32\frapsv64.dll
2012-08-30 13:46 . 2012-08-30 13:46 65536 ----a-w- c:\windows\SysWow64\frapsvid.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Steam"="d:\programy\Steam\steam.exe" [2012-10-14 1353080]
"QIP Internet Guardian"="c:\users\Martas\AppData\Roaming\QipGuard\QipGuard.exe" [2012-03-23 191440]
"DAEMON Tools Lite"="c:\program files (x86)\DAEMON Tools Lite\DTLite.exe" [2012-04-17 3671872]
"OfficeSyncProcess"="d:\programy\Microsoft Office\Office14\MSOSYNC.EXE" [2010-03-16 908160]
"T-Mobile Communication Centre"="c:\program files (x86)\T-Mobile\Web'n'walk Manager\Manager.exe" [2011-03-08 1355792]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2009-07-14 1475072]
"Skype"="c:\program files (x86)\Skype\Phone\Skype.exe" [2012-10-19 17875120]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-01 5629312]
"Infium"="c:\program files (x86)\QIP 2012\qip.exe" [2012-03-23 7351760]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"Adobe ARM"="c:\program files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-09-23 926896]
"NBAgent"="c:\program files (x86)\Nero\Nero 10\Nero BackItUp\NBAgent.exe" [2010-03-26 1234216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Bluetooth.lnk - c:\program files\Lenovo\Bluetooth Software\BTTray.exe [2011-5-12 1211168]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 5 (0x5)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableUIADesktopToggle"= 0 (0x0)
"EnableLinkedConnections"= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs"=1 (0x1)
"AppInit_DLLs"=c:\windows\SysWOW64\nvinit.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2012-10-19 160944]
R3 ALSysIO;ALSysIO;c:\users\Martas\AppData\Local\Temp\ALSysIO64.sys [x]
R3 AMPPALP;Protokol Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\amppal.sys [2012-03-01 195584]
R3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2010-02-22 11776]
R3 MyWiFiDHCPDNS;Wireless PAN DHCP Server;c:\program files\Intel\WiFi\bin\PanDhcpDns.exe [2012-04-17 273168]
R3 ose64;Office 64 Source Engine;c:\program files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 174440]
R3 WinRing0_1_2_0;WinRing0_1_2_0;c:\users\Martas\AppData\Local\Temp\tmpA5A1.tmp [x]
S0 LHDmgr;LHDmgr;c:\windows\System32\DRIVERS\LhdX64.sys [2012-10-14 39008]
S0 nvpciflt;nvpciflt;c:\windows\system32\DRIVERS\nvpciflt.sys [2012-10-02 30056]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2012-10-14 283200]
S1 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [2012-03-14 209768]
S1 ehdrv;ehdrv;c:\windows\system32\DRIVERS\ehdrv.sys [2012-03-14 148528]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV64.SYS [2011-07-22 14928]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL64.SYS [2011-07-12 12368]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE64.EXE [2012-07-11 140672]
S2 aksdf;aksdf;c:\windows\system32\drivers\aksdf.sys [2012-10-12 83072]
S2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files (x86)\T-Mobile\Web'n'walk Manager\ameisvc.exe [2011-03-08 122608]
S2 AMPPALR3;Intel® Centrino® Wireless Bluetooth® + High Speed Service;c:\program files\Intel\BluetoothHS\BTHSAmpPalService.exe [2012-03-01 659976]
S2 BTHSSecurityMgr;Intel(R) Centrino(R) Wireless Bluetooth(R) + High Speed Security Service;c:\program files\Intel\BluetoothHS\BTHSSecurityMgr.exe [2012-03-08 135952]
S2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\x86\ekrn.exe [2012-03-07 913144]
S2 epfwwfpr;epfwwfpr;c:\windows\system32\DRIVERS\epfwwfpr.sys [2012-03-14 137144]
S2 hasplms;Sentinel Local License Manager;c:\windows\system32\hasplms.exe -run [x]
S2 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2010-03-25 490280]
S2 PanService;PandoraService;c:\program files (x86)\PANDORA.TV\PanService\PandoraService.exe [2012-06-22 625816]
S2 QipGuard;QipGuard;c:\program files (x86)\QipGuard\QipGuard.exe [2012-03-23 191440]
S2 SearchIndexer;Search Indexer;c:\windows\system32\svchost.exe [2009-07-14 27136]
S2 ZeroConfigService;Intel(R) PROSet/Wireless Zero Configuration Service;c:\program files\Intel\WiFi\bin\ZeroConfigService.exe [2012-04-17 2671376]
S3 ACPIVPC;Lenovo Virtual Power Controller Driver;c:\windows\system32\DRIVERS\AcpiVpc.sys [2012-10-14 29792]
S3 AMPPAL;Virtuální adaptér Intel® Centrino® Wireless Bluetooth® + High Speed;c:\windows\system32\DRIVERS\AMPPAL.sys [2012-03-01 195584]
S3 BTWAMPFL;BTWAMPFL;c:\windows\system32\DRIVERS\btwampfl.sys [2011-05-13 437288]
S3 BTWDPAN;Bluetooth Personal Area Network;c:\windows\system32\DRIVERS\btwdpan.sys [2011-05-13 89640]
S3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [2011-05-13 39976]
S3 IntcDAud;Intel(R) Display Audio;c:\windows\system32\DRIVERS\IntcDAud.sys [2011-12-06 331264]
S3 JmUsbCcgp;JMicron USB Composite Device Lower Filter Driver;c:\windows\system32\DRIVERS\jmccgp.sys [2010-07-21 17880]
S3 JmUsbVideo;JMicron 31x Upper Filter Driver;c:\windows\system32\Drivers\jmcam.sys [2010-08-27 57816]
S3 JmUsbVideo2;JMicron 31x Lower Filter Driver;c:\windows\system32\Drivers\jmcam_lo.sys [2010-08-27 32088]
S3 k57nd60a;Broadcom NetLink (TM) Gigabit Ethernet - NDIS 6.0;c:\windows\system32\DRIVERS\k57nd60a.sys [2011-05-09 425000]
.
.
--- Ostatní služby/ovladače v paměti ---
.
*NewlyCreated* - 34957675
*NewlyCreated* - PROCMON23
*Deregistered* - 34957675
*Deregistered* - PROCMON23
.
Obsah adresáře 'Naplánované úlohy'
.
2012-11-23 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-14 13:05]
.
2012-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-14 13:20]
.
2012-11-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2012-10-14 13:20]
.
2012-11-22 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 17b58080-1640-4680-ada0-7a8d9dc65b4d.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
2012-11-22 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 8b00d165-a481-4341-a0df-587f7fc2046e.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2012-05-21 170304]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2012-05-21 398656]
"Persistence"="c:\windows\system32\igfxpers.exe" [2012-05-21 440128]
"Energy Management"="c:\program files (x86)\Lenovo\Energy Management\Energy Management.exe" [2012-10-14 9753024]
"EnergyUtility"="c:\program files (x86)\Lenovo\Energy Management\Utility.exe" [2012-10-14 5908928]
"SynTPEnh"="c:\program files (x86)\Synaptics\SynTP\SynTPEnh.exe" [BU]
"OnekeyStudio"="c:\program files (x86)\Lenovo\Onekey Theater\OnekeyStudio.exe" [2009-12-19 776608]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RAVCpl64.exe" [2011-03-28 11786344]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2012-03-07 4081008]
"BCSSync"="d:\programy\Microsoft Office\Office14\BCSSync.exe" [2010-03-13 112512]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=c:\windows\System32\nvinitx.dll
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
SearchIndexer
.
------- Doplňkový sken -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
mLocal Page = c:\windows\SysWOW64\blank.htm
uSearchAssistant = hxxp://search.qip.ru/ie
IE: E&xportovat do aplikace Microsoft Excel - d:\programy\MICROS~1\Office14\EXCEL.EXE/3000
IE: Od&eslat do aplikace OneNote - d:\programy\MICROS~1\Office14\ONBttnIE.dll/105
IE: Odeslat obrázek do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie_ctx.htm
IE: Odeslat stránku do zařízení &Bluetooth... - c:\program files\Lenovo\Bluetooth Software\btsendto_ie.htm
IE: Stáhnout Free Download Managerem - file://d:\programy\Free Download Manager\dllink.htm
IE: Stáhnout video Free Download Managerem - file://d:\programy\Free Download Manager\dlfvideo.htm
IE: Stáhnout vybrané Free Download Managerem - file://d:\programy\Free Download Manager\dlselected.htm
IE: Stáhnout vše Free Download Managerem - file://d:\programy\Free Download Manager\dlall.htm
TCP: Interfaces\{A83071D7-EA0D-D478-4414-4E6F9F0C5BDF}: NameServer = 93.153.117.1 93.153.117.33
TCP: Interfaces\{DC920C0B-B0F4-4C89-9B79-CF792C32CC69}\4505D2C494E4B4F5739353032334: NameServer = 192.168.1.1
TCP: Interfaces\{DC920C0B-B0F4-4C89-9B79-CF792C32CC69}\D4142545143575966696: NameServer = 192.168.1.1
TCP: Interfaces\{DC920C0B-B0F4-4C89-9B79-CF792C32CC69}\D41627471637: NameServer = 192.168.1.1
.
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\services\WinRing0_1_2_0]
"ImagePath"="\??\c:\users\Martas\AppData\Local\Temp\tmpA5A1.tmp"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_USERS\S-1-5-21-2227945101-143178771-2478135386-1000\Software\SecuROM\License information*]
"datasecu"=hex:c2,0c,be,41,05,b7,01,85,f4,c2,4e,ab,03,8e,07,16,c9,c4,58,63,94,
72,77,91,e3,91,29,b1,7b,79,30,2f,a8,ed,ab,0d,7c,17,9a,c4,14,b2,93,58,75,5b,\
"rkeysecu"=hex:2a,b2,44,ba,c3,97,c1,01,f6,2e,b1,54,d4,4f,5b,6f
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Shockwave Flash Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@="0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@="ShockwaveFlash.ShockwaveFlash.11"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="ShockwaveFlash.ShockwaveFlash"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@="Macromedia Flash Factory Object"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx"
"ThreadingModel"="Apartment"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@="FlashFactory.FlashFactory.1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@="c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_4_402_287.ocx, 1"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@="{D27CDB6B-AE6D-11cf-96B8-444553540000}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@="FlashFactory.FlashFactory"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*]
@="?????????????????? v1"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*1*\CLSID]
@="{E23FE9C6-778E-49D4-B537-38FCDE4887D8}"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*]
@="?????????????????? v2"
.
[HKEY_LOCAL_MACHINE\software\Classes\VideoLAN.VLCPlugin.*2*\CLSID]
@="{9BE31822-FDAD-461B-AD51-BE1D1C159921}"
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Celkový čas: 2012-11-23 11:21:06
ComboFix-quarantined-files.txt 2012-11-23 10:21
ComboFix2.txt 2012-11-22 19:41
.
Před spuštěním: Volných bajtů: 16 076 607 488
Po spuštění: Volných bajtů: 15 540 473 856
.
- - End Of File - - 3CAB4954116B8C33BEAC1E3E19949CCA