Prosil bych o kontrolu logu.Najíždění pc se mi zdá moc dlouhé a seká se mi počítač.Děkuji
Logfile of random's system information tool 1.06 (written by random/random)
Run by 1 at 2010-01-27 08:13:31
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 91 GB (55%) free of 165 GB
Total RAM: 3327 MB (73% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:13:35, on 27.1.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe
C:\Program Files\Common Files\Acronis\Plán2\schedul2.exe
C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Norton Internet Security\AddOns\Norton AddOn Pack\Engine\4.5.0.24\ccProxy.exe
C:\Program Files\HDD Observer\HDDObserver.Service.exe
C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe
C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
C:\WINDOWS\System32\PAStiSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\OO Software\Defrag\oodcnt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\ICQ6.5\ICQ.exe
C:\WINDOWS\system32\mdm.exe
C:\WINDOWS\Explorer.EXE
D:\stahování firefox XP\RSIT.exe
C:\Program Files\trend micro\HijackThis\1.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://securityresponse.symantec.com/av ... _homepage/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://securityresponse.symantec.com/av ... _homepage/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: Winamp Search Class - {57BCA5FA-5DBB-45a2-B558-1755C3F6253B} - C:\Program Files\Winamp Toolbar\winamptb.dll
R3 - URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Winamp Toolbar Loader - {25CEE8EC-5730-41bc-8B58-22DDC8AB8C20} - C:\Program Files\Winamp Toolbar\winamptb.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: Flashget Catch Url Class - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - (no file)
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll
O2 - BHO: Google Dictionary Compression sdch - {C84D72FE-E17D-4195-BB24-76C02E2E7C4E} - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SWEETIE - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O2 - BHO: gFlash Class - {F156768E-81EF-470C-9057-481BA8380DBA} - (no file)
O3 - Toolbar: FlashGet - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - (no file)
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O3 - Toolbar: Winamp Toolbar - {EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - C:\Program Files\Winamp Toolbar\winamptb.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coIEPlg.dll
O3 - Toolbar: SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [HDD Observer] C:\Program Files\HDD Observer\HDD Observer.exe
O4 - HKLM\..\Policies\Explorer\Run: []
O4 - HKUS\S-1-5-19\..\RunOnce: [] (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [] (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O4 - Startup: StartupFaster
O4 - Global Startup: StartupFaster
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O8 - Extra context menu item: &Winamp Search - C:\Documents and Settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra 'Tools' menuitem: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\WINDOWS\system32\shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ6 - {E59EB121-F339-4851-A3BA-FE49C35617C2} - C:\Program Files\ICQ6.5\ICQ.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupda ... 5538149703
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 7321657468
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: ABBYY FineReader 9.0 CE Licensing Service (ABBYY.Licensing.FineReader.Corporate.9.0) - ABBYY (BIT Software) - C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe
O23 - Service: Služba Acronis Scheduler2 (AcrSch2Svc) - Acronis - C:\Program Files\Common Files\Acronis\Plán2\schedul2.exe
O23 - Service: Acronis Nonstop Backup service (afcdpsrv) - Acronis - C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Autodata Limited License Service - Autodata Limited - C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Network Proxy (ccProxy) - Symantec Corporation - C:\Program Files\Norton Internet Security\AddOns\Norton AddOn Pack\Engine\4.5.0.24\ccProxy.exe
O23 - Service: Dragon Age: Prameny - aktualizace obsahu (DAUpdaterSvc) - BioWare - E:\HRY\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: Defragmentation-Service (DfSdkS) - mst software GmbH, Germany - C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\Dfsdks.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: HDD Observer Service - Unknown owner - C:\Program Files\HDD Observer\HDDObserver.Service.exe
O23 - Service: HDD Information Service (HDDSvc) - AltrixSoft (http://www.altrixsoft.com/) - C:\WINDOWS\system32\HDDSvc.exe
O23 - Service: PIXMA Extended Survey Program (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: DiRT Drivers Auto Removal (pr2ah4nb) (pr2ah4nb) - CODEMASTERS - C:\WINDOWS\system32\pr2ah4nb.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: CounterSpy Antispyware (SBAMSvc) - Sunbelt Software - C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe
O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: STI Simulator - Unknown owner - C:\WINDOWS\System32\PAStiSvc.exe
O23 - Service: TuneUp Drive Defrag Service (TuneUp.Defrag) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe
O23 - Service: TuneUp Utilities Service (TuneUp.UtilitiesSvc) - TuneUp Software - C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe
--
End of file - 15098 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\Automatic troubleshooting.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-01-20 181680]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-12-21 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{25CEE8EC-5730-41bc-8B58-22DDC8AB8C20}]
Winamp Toolbar Loader - C:\Program Files\Winamp Toolbar\winamptb.dll [2009-05-06 1262888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2010-01-08 798771]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2F364306-AA45-47B5-9F9D-39A8B94E7EF7}]
Flashget Catch Url Class
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}]
Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coIEPlg.dll [2009-12-10 394608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}]
Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\IPSBHO.DLL [2009-11-17 79224]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-17 256112]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.4.4525.1752\swg.dll [2009-12-29 764912]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{C84D72FE-E17D-4195-BB24-76C02E2E7C4E}]
Google Dictionary Compression sdch - C:\Program Files\Google\Google Toolbar\Component\fastsearch_B7C5AC242193BB3E.dll [2009-10-17 458736]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2009-10-16 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2009-10-16 73728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
SweetIM Toolbar Helper - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F156768E-81EF-470C-9057-481BA8380DBA}]
gFlash Class
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{E0E899AB-F487-11D5-8D29-0050BA6940E3} - []
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2009-10-17 256112]
{EBF2BA02-9094-4c5a-858B-BB198F3D8DE2} - Winamp Toolbar - C:\Program Files\Winamp Toolbar\winamptb.dll [2009-05-06 1262888]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2010-01-08 798771]
{7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coIEPlg.dll [2009-12-10 394608]
{EEE6C35B-6118-11DC-9C72-001320C79847} - SweetIM Toolbar for Internet Explorer - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll [2009-10-19 1345336]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
""=1 []
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2010-01-22 3179952]
"HDD Observer"=C:\Program Files\HDD Observer\HDD Observer.exe [2010-01-12 238592]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
C:\WINDOWS\system32\xRaidSetup.exe [2007-11-19 1970176]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Služba Plánovač2]
C:\Program Files\Common Files\Acronis\Schedule2\schedhlp.exe [2009-05-19 377528]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
C:\Program Files\Acronis\TrueImageHome\TimounterMonitor.exe [2009-05-19 962192]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2009-12-11 948672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-12-22 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
C:\Program Files\Ashampoo\Ashampoo Core Tuner\ct.exe [2009-09-25 3334488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\axcmd]
C:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe [2009-04-24 203928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-08-05 75048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BJMyPrt]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-10-19 1983816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\brs]
C:\Program Files\Cyberlink\Shared Files\brs.exe [2009-08-05 75048]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2009-10-19 1983816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNSLMAIN]
C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleToolbarNotifier]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-10-14 68856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleUpdate]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2008-10-25 31072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
C:\Program Files\Internet Download Manager\IDMan.exe [2010-01-22 3179952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2009-09-21 305440]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
C:\WINDOWS\RaidTool\xInsIDE.exe [2007-03-20 36864]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jusched]
C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-16 149280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Language]
C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [2009-04-27 50472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-12-30 1389904]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSASCui]
C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nektra OEAPI]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
C:\Program Files\Common Files\Nokia\MPlatform\NokiaMServer /watchfiles startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
C:\Program Files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe [2009-10-27 401728]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2009-11-20 12669544]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
C:\WINDOWS\system32\NvMcTray.dll [2009-11-20 110184]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
C:\Documents and Settings\All Users\Data aplikací\LangSoft\OETRN.EXE [2010-01-08 26624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\WINDOWS\system32\oodtray.exe [2009-04-08 2553088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSelectorReinstall]
C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe [2007-03-15 2225208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oss_reinstall]
C:\Program Files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe [2007-03-15 2225208]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Password Protect USB 3.6.1]
C:\WINDOWS\system32\ncfpsys.exe [2005-08-24 174592]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-11-11 1451520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuite]
C:\Program Files\Nokia\Nokia PC Suite 7\PCSuite.exe [2009-11-11 1451520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
C:\Program Files\CyberLink\PowerDVD9\Language\Language.exe [2009-04-27 50472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9Serv]
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [2009-07-06 87336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QTTask]
C:\Program Files\QuickTime\QTTask.exe [2009-09-05 417792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-09-05 417792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
C:\Program Files\CyberLink\PowerDVD9\PDVD9Serv.exe [2009-07-06 87336]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
C:\WINDOWS\RTHDCPL.EXE [2009-10-06 18750976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SBAMTray]
C:\Program Files\Sunbelt Software\CounterSpy\SBAMTray.exe [2010-01-04 685392]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\schedhlp]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
C:\Program Files\Common Files\Acronis\Plán2\schedhlp.exe [2009-11-26 361976]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre6\bin\jusched.exe [2009-10-16 149280]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2009-11-24 2001648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
C:\Program Files\SweetIM\Messenger\SweetIM.exe [2009-10-20 111928]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2009-10-14 68856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TimounterMonitor]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor]
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2009-05-19 4381776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
C:\Program Files\Acronis\TrueImageHome\TrueImageMonitor.exe [2009-05-19 4381776]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UniblueSpeedUpMyPC]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDRShortCut]
C:\Program Files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe [2008-12-03 218408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winampa]
C:\Program Files\Winamp\winampa.exe [2009-12-21 39424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
C:\Program Files\Winamp\winampa.exe [2009-12-21 39424]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
C:\Program Files\Windows Defender\MSASCui.exe [2006-11-03 866584]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Aktualizovat ESET licenci.lnk]
[]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
C:\PROGRA~1\WI459E~1\WINDOW~1.EXE [2008-05-26 123904]
C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
StartupFaster
C:\Documents and Settings\1\Nabídka Start\Programy\Po spuštění
StartupFaster
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2009-09-03 548352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2008-05-19 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{091EB208-39DD-417D-A5DD-7E2C2D8FB9CB}"=C:\PROGRA~1\WIFD1F~1\MpShHook.dll [2006-11-03 83224]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-12 2217848]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SBAMSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WinDefend]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"undockwithoutlogon"=1
"DisableStatusMessages"=0
"DisableTaskMgr"=0
"ShutdownWithoutLogon"=1
"NoDispCPL"=0
"NoDispSettingsPage"=0
"NoDispScrSavPage"=0
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=149
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoDriveTypeAutoRun"=
"NoDrives"=
"NoResolveTrack"=
"NoViewContextMenu"=
"NoFileAssociate"=
"NoFind"=
"NoRun"=
"NoClose"=
"StartMenuLogoff"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CyberLink\PowerDVD9\PowerDVD9.exe"="C:\Program Files\CyberLink\PowerDVD9\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0"
"C:\Program Files\Bonjour\mDNSResponder.exe"="C:\Program Files\Bonjour\mDNSResponder.exe:*:Enabled:Bonjour"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"E:\HRY\Sins of a Solar Empire\Sins of a Solar Empire.exe"="E:\HRY\Sins of a Solar Empire\Sins of a Solar Empire.exe:*:Enabled:Sins of a Solar Empire"
"C:\Program Files\ICQ6.5\ICQ.exe"="C:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"E:\HRY\Dragon Age\bin_ship\daorigins.exe"="E:\HRY\Dragon Age\bin_ship\daorigins.exe:*:Enabled:Dragon Age Prameny Hra"
"E:\HRY\Dragon Age\DAOriginsLauncher.exe"="E:\HRY\Dragon Age\DAOriginsLauncher.exe:*:Enabled:Dragon Age Prameny Spustit"
"E:\HRY\Dragon Age\bin_ship\daupdatersvc.service.exe"="E:\HRY\Dragon Age\bin_ship\daupdatersvc.service.exe:*:Enabled:Dragon Age Prameny Aktualizovat"
"L:\System\Apps\736D6172-7470-6373-6F6C-7574696F5162\Exec\SpywareFree.exe"="L:\System\Apps\736D6172-7470-6373-6F6C-7574696F5162\Exec\SpywareFree.exe:*:Enabled:Free mobile anti-spyware and antivirus"
"C:\Program Files\SEGA\Vancouver 2010\Vancouver.exe"="C:\Program Files\SEGA\Vancouver 2010\Vancouver.exe:*:Enabled:Vancouver 2010™"
"C:\Program Files\Cyanide\GameCenter\GameCenter.exe"="C:\Program Files\Cyanide\GameCenter\GameCenter.exe:*:Enabled:GameCenter"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\CyberLink\PowerDVD9\PowerDVD9.exe"="C:\Program Files\CyberLink\PowerDVD9\PowerDVD9.exe:*:Enabled:CyberLink PowerDVD 9.0"
======List of files/folders created in the last 1 months======
2010-01-24 10:57:08 ----D---- C:\Program Files\GridinSoft Trojan Killer
2010-01-24 09:46:07 ----D---- C:\ofice
2010-01-23 11:49:22 ----D---- C:\Program Files\Common Files\DirectX
2010-01-23 11:48:41 ----D---- C:\Program Files\T34vsTiger
2010-01-23 11:45:14 ----D---- C:\Program Files\Lighthouse Interactive
2010-01-22 20:19:43 ----D---- C:\Program Files\Adobe
2010-01-22 18:11:01 ----D---- C:\Documents and Settings\1\Data aplikací\IDM
2010-01-22 18:11:01 ----D---- C:\Documents and Settings\1\Data aplikací\DMCache
2010-01-22 18:10:55 ----D---- C:\Program Files\Internet Download Manager
2010-01-22 18:10:50 ----A---- C:\Documents and Settings\1\Data aplikací\idman518f.exe
2010-01-20 13:42:55 ----A---- C:\WINDOWS\system32\idmmbc.dll
2010-01-20 13:33:18 ----D---- C:\Documents and Settings\1\Data aplikací\Daoisoft
2010-01-20 13:32:20 ----D---- C:\Program Files\HDD Observer
2010-01-20 13:26:18 ----D---- C:\Documents and Settings\1\Data aplikací\Thinstall
2010-01-18 13:52:40 ----D---- C:\Program Files\Redsystem
2010-01-18 12:26:16 ----D---- C:\Program Files\Webteh
2010-01-17 19:23:59 ----A---- C:\WINDOWS\system32\uxtuneup.dll
2010-01-16 19:06:30 ----A---- C:\WINDOWS\system32\devcon_x64.exe
2010-01-16 19:06:30 ----A---- C:\WINDOWS\system32\devcon.exe
2010-01-16 19:06:29 ----D---- C:\Program Files\Driver Checker
2010-01-16 07:31:55 ----A---- C:\WINDOWS\system32\WinFLsrv.exe
2010-01-16 07:31:54 ----SHD---- C:\Documents and Settings\1\Data aplikací\.#
2010-01-15 08:35:44 ----D---- C:\Program Files\Pythagoras s.r.o
2010-01-15 08:28:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\SuperMP3Download
2010-01-15 08:28:20 ----D---- C:\Documents and Settings\1\Data aplikací\SuperMP3Download
2010-01-15 08:28:15 ----D---- C:\Program Files\SuperMp3Download
2010-01-13 18:42:19 ----A---- C:\WINDOWS\iun6002.exe
2010-01-13 18:42:17 ----D---- C:\Program Files\Codec Pack - All In 1
2010-01-13 18:36:19 ----D---- C:\Documents and Settings\1\Data aplikací\Media Player Classic
2010-01-13 17:29:41 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-01-12 17:25:25 ----D---- C:\Program Files\Asus
2010-01-12 16:02:53 ----D---- C:\Program Files\Yamicsoft
2010-01-11 18:50:44 ----D---- C:\Documents and Settings\1\Data aplikací\Download Manager
2010-01-11 14:53:27 ----D---- C:\Documents and Settings\1\Data aplikací\Ubisoft
2010-01-11 14:44:32 ----D---- C:\Documents and Settings\All Users\Data aplikací\Tages
2010-01-10 22:43:52 ----D---- C:\Documents and Settings\1\Data aplikací\Got Game Entertainment
2010-01-10 19:52:37 ----D---- C:\Documents and Settings\1\Data aplikací\Pro Cycling Manager 2009
2010-01-10 19:11:06 ----D---- C:\Program Files\Cyanide
2010-01-09 19:46:13 ----D---- C:\Documents and Settings\1\Data aplikací\SumatraPDF
2010-01-09 19:46:11 ----D---- C:\Documents and Settings\1\Data aplikací\inkscape
2010-01-09 18:59:22 ----D---- C:\Documents and Settings\1\Data aplikací\HateML
2010-01-09 18:59:20 ----D---- C:\Program Files\Winamp Detect
2010-01-09 18:59:14 ----D---- C:\WINDOWS\system32\xlive
2010-01-09 11:55:26 ----HDC---- C:\WINDOWS\$NtUninstallKB938759$
2010-01-09 11:51:22 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2010-01-09 11:48:42 ----D---- C:\Program Files\SEGA
2010-01-08 13:28:01 ----D---- C:\Program Files\Uninstall Password Protect USB
2010-01-08 13:28:01 ----ASH---- C:\WINDOWS\system32\ncfpsys.exe
2010-01-06 08:22:52 ----A---- C:\WINDOWS\posta2.ini
2010-01-06 08:22:46 ----D---- C:\Program Files\Pošta a kancelář 2
2010-01-04 17:02:22 ----A---- C:\WINDOWS\system32\sbbd.exe
2010-01-02 23:57:30 ----D---- C:\Documents and Settings\1\Data aplikací\PDM
2009-12-30 19:49:10 ----D---- C:\Documents and Settings\1\Data aplikací\Sunbelt
2009-12-30 19:49:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sunbelt
2009-12-30 19:49:02 ----D---- C:\Program Files\Sunbelt Software
2009-12-30 18:11:49 ----D---- C:\Program Files\Auran
2009-12-30 17:58:33 ----A---- C:\SfeErrors.txt
2009-12-29 21:26:57 ----D---- C:\Program Files\SweetIM
2009-12-29 21:26:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\SweetIM
2009-12-29 09:58:35 ----D---- C:\Documents and Settings\All Users\Data aplikací\createpart
2009-12-29 09:57:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\deletepart
2009-12-29 09:56:46 ----D---- C:\Documents and Settings\All Users\Data aplikací\backup
2009-12-29 09:56:23 ----D---- C:\Documents and Settings\All Users\Data aplikací\clonehdd
2009-12-29 09:56:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\explauncher
2009-12-29 09:56:05 ----D---- C:\Documents and Settings\All Users\Data aplikací\launcher
2009-12-28 22:16:33 ----SHD---- C:\Config.Msi
2009-12-28 21:06:04 ----A---- C:\WINDOWS\system32\auto_reactivate.exe
2009-12-28 19:06:02 ----D---- C:\Program Files\oZone3D
2009-12-28 18:02:29 ----D---- C:\Program Files\PowerQuest
======List of files/folders modified in the last 1 months======
2010-01-27 08:06:27 ----D---- C:\WINDOWS\Temp
2010-01-27 07:42:07 ----D---- C:\WINDOWS\system32\CatRoot2
2010-01-27 07:40:00 ----SHD---- C:\System Volume Information
2010-01-27 00:42:52 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-01-26 23:53:15 ----D---- C:\WINDOWS
2010-01-26 23:18:01 ----D---- C:\WINDOWS\system32
2010-01-26 23:18:01 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-01-26 12:54:14 ----D---- C:\Documents and Settings\1\Data aplikací\ICQ
2010-01-26 07:50:31 ----SH---- C:\boot.ini
2010-01-26 07:50:31 ----A---- C:\WINDOWS\win.ini
2010-01-26 07:50:31 ----A---- C:\WINDOWS\system.ini
2010-01-26 07:31:53 ----HD---- C:\WINDOWS\inf
2010-01-26 07:31:53 ----D---- C:\WINDOWS\system32\drivers
2010-01-25 21:38:05 ----A---- C:\WINDOWS\NeroDigital.ini
2010-01-25 09:36:59 ----SHD---- C:\WINDOWS\Installer
2010-01-25 09:36:55 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-01-24 22:26:28 ----D---- C:\Documents and Settings\1\Data aplikací\GARMIN
2010-01-24 21:25:36 ----D---- C:\Documents and Settings\1\Data aplikací\U3
2010-01-24 11:31:37 ----D---- C:\Documents and Settings\1\Data aplikací\LangSoft
2010-01-24 11:02:30 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-01-24 10:57:08 ----RD---- C:\Program Files
2010-01-23 11:49:22 ----D---- C:\Program Files\Common Files
2010-01-23 11:48:10 ----D---- C:\WINDOWS\system32\DirectX
2010-01-23 11:47:53 ----RSD---- C:\WINDOWS\assembly
2010-01-22 20:19:54 ----D---- C:\Program Files\Common Files\Adobe
2010-01-22 20:19:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-01-22 18:55:52 ----A---- C:\WINDOWS\system32\oeminfo.ini
2010-01-22 17:14:29 ----D---- C:\Program Files\Mozilla Firefox
2010-01-22 12:36:02 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-01-22 12:36:01 ----D---- C:\Program Files\Internet Explorer
2010-01-22 12:35:56 ----D---- C:\WINDOWS\ie8updates
2010-01-22 12:35:36 ----HD---- C:\WINDOWS\$hf_mig$
2010-01-21 11:48:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\DriverScanner
2010-01-18 15:42:02 ----D---- C:\WINDOWS\Prefetch
2010-01-17 19:24:04 ----D---- C:\Program Files\TuneUp Utilities 2010
2010-01-17 19:22:03 ----D---- C:\WINDOWS\Minidump
2010-01-17 13:46:21 ----D---- C:\Program Files\Ashampoo
2010-01-17 13:46:21 ----D---- C:\Documents and Settings\All Users\Data aplikací\page
2010-01-16 08:26:46 ----D---- C:\WINDOWS\Debug
2010-01-15 22:42:33 ----D---- C:\Documents and Settings\1\Data aplikací\Skype
2010-01-15 21:45:26 ----D---- C:\Documents and Settings\1\Data aplikací\skypePM
2010-01-14 16:03:05 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-01-13 17:30:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2010-01-12 17:25:25 ----HD---- C:\Program Files\InstallShield Installation Information
2010-01-12 16:38:53 ----D---- C:\WINDOWS\system32\config
2010-01-12 16:38:46 ----D---- C:\WINDOWS\system32\wbem
2010-01-12 16:38:45 ----D---- C:\WINDOWS\Registration
2010-01-11 18:41:20 ----A---- C:\WINDOWS\system32\lpcio.dll
2010-01-10 10:55:48 ----D---- C:\Documents and Settings\1\Data aplikací\BSplayer PRO
2010-01-10 08:26:04 ----D---- C:\Program Files\Bonjour
2010-01-09 18:59:21 ----D---- C:\Program Files\Winamp
2010-01-09 18:59:18 ----D---- C:\TRANSLAT
2010-01-09 18:59:17 ----SD---- C:\Documents and Settings\1\Data aplikací\Microsoft
2010-01-09 18:59:14 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-01-09 18:59:07 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2010-01-09 18:59:03 ----D---- C:\FORM studio 2009
2010-01-09 11:44:53 ----D---- C:\Downloads
2010-01-09 09:50:08 ----D---- C:\WINDOWS\system32\oodag
2010-01-08 15:48:52 ----A---- C:\WINDOWS\TRNCOM.INI
2010-01-06 08:22:49 ----RSD---- C:\WINDOWS\Fonts
2010-01-05 01:17:46 ----A---- C:\WINDOWS\system32\MRT.exe
2010-01-02 20:23:49 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-12-30 19:58:23 ----SD---- C:\WINDOWS\Tasks
2009-12-30 18:41:50 ----D---- C:\Documents and Settings\1\Data aplikací\Mozilla
2009-12-29 20:47:26 ----D---- C:\Program Files\ESET
2009-12-29 20:45:11 ----D---- C:\Program Files\Common Files\PC Tools
2009-12-29 20:43:45 ----D---- C:\Program Files\Smarty Uninstaller Pro
2009-12-29 19:55:31 ----D---- C:\WINDOWS\WinSxS
2009-12-29 12:29:24 ----RSHD---- C:\BOOTWIZ
2009-12-29 09:52:14 ----D---- C:\Program Files\Paragon Software
2009-12-29 09:16:46 ----D---- C:\Program Files\ICQ6.5
2009-12-28 22:17:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Acronis
2009-12-28 22:16:43 ----D---- C:\Program Files\Common Files\Acronis
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 ccHP;Symantec Hash Provider; C:\WINDOWS\system32\drivers\NIS\1105000.07F\ccHPx86.sys [2009-12-09 501888]
R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys []
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 PQNTDrv;PQNTDrv; C:\WINDOWS\system32\drivers\PQNTDrv.sys [2002-09-16 4228]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 sbaphd;sbaphd; C:\WINDOWS\system32\drivers\sbaphd.sys [2009-05-13 13360]
R1 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1105000.07F\SRTSP.SYS [2009-12-03 325168]
R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NIS\1105000.07F\SRTSPX.SYS [2009-12-03 43696]
R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NIS\1105000.07F\Ironx86.SYS [2009-11-26 116272]
R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NIS\1105000.07F\SYMTDI.SYS [2009-11-22 362032]
R1 Uim_IM;UIM Drive Backup Image Plugin; C:\WINDOWS\System32\Drivers\Uim_IM.sys [2007-11-06 131672]
R1 UimBus;Universal Image Mounter Controller; C:\WINDOWS\system32\DRIVERS\UimBus.sys [2007-11-06 32080]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-10-25 12032]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/10/21 20:22:08]; \??\C:\Program Files\CyberLink\PowerDVD9\000.fcl []
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2010-01-11 281760]
R2 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091205.001\BHDrvx86.sys []
R2 Hardlock;Hardlock; \??\C:\WINDOWS\system32\drivers\hardlock.sys []
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2010-01-11 25888]
R2 NSHE;Guardant Emulator Driver; \??\C:\WINDOWS\system32\Drivers\NSHE.SYS []
R2 sbapifs;sbapifs; C:\WINDOWS\system32\drivers\sbapifs.sys [2009-08-10 69936]
R2 tifsfilter;Acronis True Image FS Filter; C:\WINDOWS\system32\DRIVERS\tifsfilt.sys [2009-10-17 44704]
R2 WinFLdrv;WinFLdrv; C:\WINDOWS\system32\WinFLdrv.sys [2010-01-16 10752]
R2 WinVd32;WinVd32; \??\C:\WINDOWS\system32\WinVd32.sys []
R3 adatadrv;Autodata Protection Service; C:\WINDOWS\system32\DRIVERS\adatadrv.sys [2009-10-12 762112]
R3 afcdp;afcdp; C:\WINDOWS\system32\DRIVERS\afcdp.sys [2009-12-03 160288]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-14 60800]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller; C:\WINDOWS\system32\DRIVERS\atl01_xp.sys [2007-03-15 38656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys []
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys [2009-05-18 26600]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100119.001\IDSxpx86.sys []
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-10-06 5922816]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\WINDOWS\system32\DRIVERS\ASACPI.sys [2004-08-13 5810]
R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20100126.032\NAVENG.SYS []
R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20100126.032\NAVEX15.SYS []
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-14 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2009-11-21 10235968]
R3 PAC207;Trust WB-1400T Webcam; C:\WINDOWS\system32\DRIVERS\pfc027.sys [2005-02-24 162176]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2003-09-19 21248]
R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS []
R3 SymIMMP;SymIMMP; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-12-03 47408]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv; \??\C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys []
R3 usbehci;Ovladač miniportu rozšířeného radiče hostitele Microsoft USB 2.0; C:\WINDOWS\system32\DRIVERS\usbehci.sys [2008-04-14 30208]
R3 usbhub;Rozbočovač umožnující USB2; C:\WINDOWS\system32\DRIVERS\usbhub.sys [2008-04-14 59520]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 a8f3eeae;a8f3eeae; C:\WINDOWS\system32\drivers\a8f3eeae.sys []
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736]
S3 BioNT_BS;BioNT_BS; \??\C:\Program Files\Paragon Software\Partition Manager 10.0 Personal\bluescrn\BioNT_bs.sys []
S3 catchme;catchme; C:\WINDOWS\system32\drivers\catchme.sys []
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2008-04-13 17024]
S3 DrvAgent32;DrvAgent32; \??\C:\WINDOWS\system32\Drivers\DrvAgent32.sys []
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2008-04-13 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2008-04-13 85248]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2008-04-13 10880]
S3 nmwcd;Nokia USB Phone Parent; C:\WINDOWS\system32\drivers\ccdcmb.sys [2009-10-06 17664]
S3 nmwcdc;Nokia USB Generic; C:\WINDOWS\system32\drivers\ccdcmbo.sys [2009-10-06 22016]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SBRE;SBRE; \??\C:\WINDOWS\system32\drivers\SBREdrv.sys []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2008-04-13 11136]
S3 SNTNLUSB;SafeNet USB SuperPro/UltraPro/HardwareKey; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2008-07-11 37088]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2008-04-13 15232]
S3 SymIM;Symantec Network Security Intermediate Filter Service; C:\WINDOWS\system32\DRIVERS\SymIM.sys [2009-12-03 47408]
S3 TVICHW32;TVICHW32; \??\C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS []
S3 upperdev;upperdev; C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys [2009-10-06 7936]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 usbser;USB Modem Driver; C:\WINDOWS\system32\drivers\usbser.sys [2008-04-13 26112]
S3 UsbserFilt;UsbserFilt; C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys [2009-10-06 7936]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2008-03-27 503008]
S3 WSTCODEC;Dálnopisný kodek světového standardu; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2008-04-13 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-01-18 83328]
S4 IntelIde;IntelIde; C:\WINDOWS\system32\drivers\IntelIde.sys []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 ABBYY.Licensing.FineReader.Corporate.9.0;ABBYY FineReader 9.0 CE Licensing Service; C:\Program Files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe [2008-10-27 759072]
R2 AcrSch2Svc;Služba Acronis Scheduler2; C:\Program Files\Common Files\Acronis\Plán2\schedul2.exe [2009-11-26 661008]
R2 afcdpsrv;Acronis Nonstop Backup service; C:\Program Files\Common Files\Acronis\CDP\afcdpsrv.exe [2009-12-03 2480048]
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2009-08-28 144672]
R2 Autodata Limited License Service;Autodata Limited License Service; C:\Program Files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe [2009-11-19 72704]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-12-12 238888]
R2 ccProxy;Symantec Network Proxy; C:\Program Files\Norton Internet Security\AddOns\Norton AddOn Pack\Engine\4.5.0.24\ccProxy.exe [2009-12-09 194424]
R2 HDD Observer Service;HDD Observer Service; C:\Program Files\HDD Observer\HDDObserver.Service.exe [2010-01-12 7680]
R2 IJPLMSVC;PIXMA Extended Survey Program; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 101528]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2009-10-16 153376]
R2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2008-09-29 935208]
R2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe [2009-12-09 126392]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2009-11-20 154216]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2009-04-08 1377536]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\CyberLink\Shared files\RichVideo.exe [2009-04-17 247152]
R2 SBAMSvc;CounterSpy Antispyware; C:\Program Files\Sunbelt Software\CounterSpy\SBAMSvc.exe [2010-01-04 1012080]
R2 StarWindServiceAE;StarWind AE Service; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [2007-05-28 275968]
R2 STI Simulator;STI Simulator; C:\WINDOWS\System32\PAStiSvc.exe [2005-01-14 53248]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service; C:\Program Files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [2009-11-17 1021256]
R2 UxTuneUp;TuneUp Theme Extension; C:\WINDOWS\System32\svchost.exe [2008-04-14 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb); C:\WINDOWS\system32\pr2ah4nb.exe [2007-07-19 410984]
S2 WinDefend;Windows Defender; C:\Program Files\Windows Defender\MsMpEng.exe [2006-11-03 13592]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu; E:\HRY\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 DfSdkS;Defragmentation-Service; C:\Program Files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\Dfsdks.exe [2009-08-24 406016]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-10-17 182768]
S3 HDDSvc;HDD Information Service; C:\WINDOWS\system32\HDDSvc.exe [2009-10-10 458432]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2009-09-21 545568]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2008-10-25 65888]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2008-11-04 441712]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2009-10-27 657408]
S3 TuneUp.Defrag;TuneUp Drive Defrag Service; C:\Program Files\TuneUp Utilities 2010\TuneUpDefragService.exe [2010-01-17 435016]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\wmpnetwk.exe [2007-01-05 913920]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Zpomalený start Win-XP a zasekávání PC
Moderátor: Moderátoři
Pravidla fóra
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní: http://forum.viry.cz/viewtopic.php?f=12&t=123975 . Děkujeme za pochopení.
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený start Win-XP a zasekávání PC
Dejte log z Combofix.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe
pote spustte aplikaci pod uctem s administratorskym opravnenim
hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.
v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho
behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)
upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený start Win-XP a zasekávání PC
ComboFix 10-01-27.03 - 1 28.01.2010 8:02.1.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2787 [GMT 1:00]
Spuštěný z: c:\documents and settings\1\Dokumenty\Downloads\Programs\ComboFix.exe
AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\$recycle.bin\S-1-5-21-1160369149-135809319-3799404247-1001
c:\$recycle.bin\S-1-5-21-1572792229-3484342887-2778177295-1001
c:\$recycle.bin\S-1-5-21-3229699037-3471055962-538134191-1001
c:\program files\Auran\TS2010\bin\mozilla\plc4.dll
c:\windows\unins000.dat
c:\windows\unins000.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-28 )))))))))))))))))))))))))))))))
.
2010-01-27 08:09 . 2010-01-27 08:09 -------- d-----w- c:\program files\Fighters
2010-01-26 00:00 . 2010-01-26 00:00 0 ----a-w- c:\windows\system32\SBRC.dat
2010-01-24 09:57 . 2010-01-24 10:31 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2010-01-24 08:46 . 2010-01-24 09:05 -------- d-----w- C:\ofice
2010-01-23 10:49 . 2010-01-23 10:49 -------- d-----w- c:\program files\Common Files\DirectX
2010-01-23 10:48 . 2010-01-23 10:48 -------- d-----w- c:\program files\T34vsTiger
2010-01-23 10:45 . 2010-01-23 10:45 -------- d-----w- c:\program files\Lighthouse Interactive
2010-01-22 17:10 . 2010-01-24 10:31 -------- d-----w- c:\program files\Internet Download Manager
2010-01-20 12:42 . 2009-09-09 10:43 210352 ----a-w- c:\windows\system32\idmmbc.dll
2010-01-20 12:32 . 2010-01-24 10:23 -------- d-----w- c:\program files\HDD Observer
2010-01-18 12:52 . 2010-01-18 12:52 -------- d-----w- c:\program files\Redsystem
2010-01-18 11:26 . 2010-01-18 11:26 -------- d-----w- c:\program files\Webteh
2010-01-17 18:23 . 2009-11-17 09:31 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-01-17 07:11 . 2010-01-17 07:11 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-01-16 18:06 . 2008-12-03 16:40 81408 ----a-w- c:\windows\system32\devcon_x64.exe
2010-01-16 18:06 . 2002-11-14 21:32 55808 ----a-w- c:\windows\system32\devcon.exe
2010-01-16 18:06 . 2010-01-17 17:31 -------- d-----w- c:\program files\Driver Checker
2010-01-16 06:32 . 2010-01-16 06:32 180224 ----a-w- c:\windows\system32\WinVd32.sys
2010-01-16 06:31 . 2010-01-16 06:31 7680 ----a-w- c:\windows\system32\WinFLsrv.exe
2010-01-16 05:32 . 2009-05-13 15:30 13360 ----a-w- c:\windows\system32\drivers\sbaphd.sys
2010-01-15 17:52 . 2009-08-10 18:06 69936 ----a-w- c:\windows\system32\drivers\sbapifs.sys
2010-01-15 07:35 . 2010-01-15 07:35 -------- d-----w- c:\program files\Pythagoras s.r.o
2010-01-15 07:28 . 2010-01-15 07:30 -------- d-----w- c:\program files\SuperMp3Download
2010-01-13 17:42 . 2010-01-13 17:41 737280 ----a-w- c:\windows\iun6002.exe
2010-01-13 17:42 . 2010-01-13 17:42 -------- d-----w- c:\program files\Codec Pack - All In 1
2010-01-12 16:25 . 2010-01-12 16:25 -------- d-----w- c:\program files\Asus
2010-01-12 15:38 . 2010-01-12 15:38 -------- d-----w- c:\windows\system32\wbem\Repository
2010-01-12 15:02 . 2010-01-12 15:02 -------- d-----w- c:\program files\Yamicsoft
2010-01-11 13:43 . 2010-01-11 13:43 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2010-01-11 13:43 . 2010-01-11 13:43 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2010-01-10 18:11 . 2010-01-10 18:11 -------- d-----w- c:\program files\Cyanide
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\program files\Winamp Detect
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\windows\system32\xlive
2010-01-09 10:51 . 2010-01-09 10:51 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-01-09 10:48 . 2010-01-09 10:48 -------- d-----w- c:\program files\SEGA
2010-01-08 12:28 . 2010-01-09 17:59 -------- d-----w- c:\program files\Uninstall Password Protect USB
2010-01-08 12:28 . 2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
2010-01-06 07:22 . 2010-01-06 07:22 -------- d-----w- c:\program files\Pošta a kancelář 2
2010-01-04 16:02 . 2010-01-04 16:02 27984 ----a-w- c:\windows\system32\sbbd.exe
2010-01-01 17:48 . 2010-01-01 17:48 23600 ----a-w- c:\windows\system32\drivers\TVICHW32.SYS
2009-12-30 18:50 . 2009-12-30 18:50 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2009-12-30 18:49 . 2009-12-30 18:49 -------- d-----w- c:\program files\Sunbelt Software
2009-12-30 17:11 . 2009-12-30 17:11 -------- d-----w- c:\program files\Auran
2009-12-29 20:26 . 2009-12-29 20:27 -------- d-----w- c:\program files\SweetIM
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-26 22:18 . 2001-10-25 16:00 92298 ----a-w- c:\windows\system32\perfc005.dat
2010-01-26 22:18 . 2001-10-25 16:00 462004 ----a-w- c:\windows\system32\perfh005.dat
2010-01-22 19:19 . 2009-10-24 15:46 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-20 17:57 . 2009-10-19 15:06 304160 ----a-w- C:\StiImg.dat
2010-01-17 18:24 . 2009-12-07 12:01 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-17 12:46 . 2009-12-16 07:42 -------- d-----w- c:\program files\Ashampoo
2010-01-12 16:25 . 2009-10-14 14:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-11 17:41 . 2008-04-14 06:51 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-01-10 07:26 . 2009-10-23 19:51 -------- d-----w- c:\program files\Bonjour
2010-01-09 17:59 . 2009-10-17 18:42 -------- d-----w- c:\program files\Winamp
2010-01-02 19:23 . 2009-11-16 10:07 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-30 13:55 . 2009-11-16 10:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-30 13:54 . 2009-11-16 10:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-29 19:47 . 2009-10-14 17:42 -------- d-----w- c:\program files\ESET
2009-12-29 19:45 . 2009-12-03 17:17 -------- d-----w- c:\program files\Common Files\PC Tools
2009-12-29 19:43 . 2009-11-28 15:11 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2009-12-29 08:52 . 2009-12-23 17:34 -------- d-----w- c:\program files\Paragon Software
2009-12-29 08:16 . 2009-10-14 15:09 -------- d-----w- c:\program files\ICQ6.5
2009-12-28 21:17 . 2009-12-28 21:17 902592 ----a-w- c:\windows\system32\drivers\tdrpm228.sys
2009-12-28 21:16 . 2009-12-28 21:16 138208 ----a-w- c:\windows\system32\drivers\snman423.sys
2009-12-28 21:16 . 2009-12-03 20:01 138208 ----a-w- c:\windows\system32\drivers\snapman.sys
2009-12-28 21:16 . 2009-10-14 15:26 -------- d-----w- c:\program files\Common Files\Acronis
2009-12-28 20:06 . 2009-12-28 20:06 1827240 ----a-w- c:\windows\system32\auto_reactivate.exe
2009-12-28 18:06 . 2009-12-28 18:06 -------- d-----w- c:\program files\oZone3D
2009-12-28 17:02 . 2009-12-28 17:02 -------- d-----w- c:\program files\PowerQuest
2009-12-26 11:13 . 2009-10-14 14:39 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-12-26 11:13 . 2009-12-26 11:02 -------- d-----w- c:\program files\Common Files\BioWare
2009-12-25 05:01 . 2009-10-17 08:28 24576 --sh--r- C:\bootwiz.sys
2009-12-23 10:13 . 2009-12-22 07:47 -------- d-----w- c:\program files\HDD Regenerator
2009-12-21 19:08 . 2008-03-01 13:02 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-20 07:54 . 2009-12-20 07:37 -------- d-----w- c:\program files\Common Files\Nero
2009-12-20 07:45 . 2009-12-20 07:37 -------- d-----w- c:\program files\Nero
2009-12-19 06:31 . 2009-10-23 19:04 -------- d-----w- c:\program files\Norton Internet Security
2009-12-14 11:33 . 2009-10-14 14:53 53248 ----a-w- c:\windows\system32\CSVer.dll
2009-12-14 10:18 . 2009-12-14 10:18 -------- d-----w- c:\program files\Sony
2009-12-13 21:05 . 2009-12-03 18:08 -------- d-----w- c:\program files\Garmin
2009-12-10 13:45 . 2009-11-02 12:01 -------- d-----w- c:\program files\Uniblue
2009-12-10 10:58 . 2009-10-14 16:37 -------- d-----w- c:\program files\Canon
2009-12-10 10:48 . 2009-10-14 14:39 -------- d-----w- c:\program files\AGEIA Technologies
2009-12-10 10:48 . 2009-10-14 14:38 -------- d-----w- c:\program files\NVIDIA Corporation
2009-12-08 17:56 . 2009-12-08 17:56 -------- d-----w- c:\program files\Audio Studio Gold
2009-12-06 15:45 . 2009-10-19 17:19 -------- d-----w- c:\program files\Common Files\Nokia
2009-12-06 15:44 . 2009-10-19 17:19 -------- d-----w- c:\program files\Nokia
2009-12-03 20:01 . 2009-12-03 20:01 160288 ----a-w- c:\windows\system32\drivers\afcdp.sys
2009-12-03 20:01 . 2009-12-03 20:01 911680 ----a-w- c:\windows\system32\drivers\tdrpm258.sys
2009-12-03 20:01 . 2009-12-28 21:17 581984 ----a-w- c:\windows\system32\drivers\timntr.sys
2009-12-03 18:08 . 2009-10-19 17:19 -------- d-----w- c:\program files\DIFX
2009-12-03 16:35 . 2009-12-01 17:17 -------- d-----w- c:\program files\Startup Faster
2009-12-03 06:09 . 2009-11-04 08:21 47408 ----a-r- c:\windows\system32\drivers\SymIM.sys
2009-12-01 17:46 . 2009-12-01 17:46 -------- d-----w- c:\program files\Common Files\PCSuite
2009-12-01 17:45 . 2009-12-01 17:45 -------- d-----w- c:\program files\PC Connectivity Solution
2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe
2009-11-29 10:36 . 2009-11-13 18:05 -------- d-----w- c:\program files\trend micro
2009-11-29 10:17 . 2009-11-29 10:17 -------- d-----w- c:\program files\CPUID
2009-11-21 16:03 . 2008-04-14 06:51 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-21 02:34 . 2009-11-26 17:45 69632 ----a-w- c:\windows\system32\OpenCL.dll
2009-11-21 02:34 . 2009-11-26 17:45 11374592 ----a-w- c:\windows\system32\nvcompiler.dll
2009-11-21 02:34 . 2009-09-27 14:12 6282752 ----a-w- c:\windows\system32\nv4_disp.dll
2009-11-21 02:34 . 2009-09-27 14:12 4038656 ----a-w- c:\windows\system32\nvcuda.dll
2009-11-21 02:34 . 2009-09-27 14:12 2293286 ----a-w- c:\windows\system32\nvdata.bin
2009-11-21 02:34 . 2009-09-27 14:12 2259560 ----a-w- c:\windows\system32\nvcuvid.dll
2009-11-21 02:34 . 2009-09-27 14:12 1989224 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-11-21 02:34 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcodins.dll
2009-11-21 02:34 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcod.dll
2009-11-21 02:34 . 2009-09-27 14:12 13602816 ----a-w- c:\windows\system32\nvoglnt.dll
2009-11-21 02:34 . 2009-09-27 14:12 1056768 ----a-w- c:\windows\system32\nvapi.dll
2009-11-21 02:34 . 2009-09-27 14:12 10235968 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-11-19 14:02 . 2009-11-19 14:02 191488 ----a-w- c:\windows\system32\hlvdd.dll
2009-11-17 09:37 . 2009-12-07 12:01 29512 ----a-w- c:\windows\system32\TURegOpt.exe
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-11-02 19:42 . 2009-10-14 22:33 195456 ------w- c:\windows\system32\MpSigStub.exe
2005-08-24 22:10 . 2010-01-08 12:28 174592 --sha-w- c:\windows\system32\ncfpsys.exe
.
------- Sigcheck -------
[-] 2008-05-19 . E3B22F050F840306FD522227F68046C5 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files\Winamp Toolbar\winamptb.dll" [2009-05-06 1262888]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 187192]
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15 1345336 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-01-22 3179952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-11-20 12669544]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0c:\progra~1\Paragon Software\Partition Manager 10.0 Personal\bluescrn\bluescrn.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Aktualizovat ESET licenci.lnk]
backup=c:\windows\pss\Aktualizovat ESET licenci.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleUpdate
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\schedhlp
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TimounterMonitor
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UniblueSpeedUpMyPC
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
2007-11-19 09:01 1970176 ----a-w- c:\windows\system32\xRaidSetup.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Služba Plánovač2]
2009-05-19 22:19 377528 ----a-w- c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
2009-05-19 22:25 962192 ----a-w- c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2009-12-11 14:57 948672 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-22 00:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
2009-09-25 14:03 3334488 ----a-w- c:\program files\Ashampoo\Ashampoo Core Tuner\ct.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\axcmd]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BJMyPrt]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\brs]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNSLMAIN]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleToolbarNotifier]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDD Observer]
2010-01-12 12:30 238592 ----a-w- c:\program files\HDD Observer\HDD Observer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
2010-01-22 17:11 3179952 ----a-w- c:\program files\Internet Download Manager\IDMan.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-09-21 14:36 305440 ----a-w- c:\program files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
2007-03-20 12:36 36864 ----a-w- c:\windows\RaidTool\xInsIDE.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jusched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Language]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
2009-12-30 13:55 1389904 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSASCui]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
2009-10-27 14:10 401728 ----a-w- c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2009-11-20 19:32 12669544 ----a-w- c:\windows\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2009-11-20 19:32 110184 ----a-w- c:\windows\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2010-01-08 14:48 26624 ----a-w- c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
2009-04-07 23:39 2553088 ----a-w- c:\windows\system32\oodtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
2007-02-04 10:02 79400 ----a-w- c:\program files\ScanSoft\OmniPageSE4\OpWareSE4.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSelectorReinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oss_reinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Password Protect USB 3.6.1]
2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuite]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9Serv]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QTTask]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2009-10-06 15:34 18750976 ----a-w- c:\windows\RTHDCPL.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SBAMTray]
2010-01-04 16:22 685392 ----a-w- c:\program files\Sunbelt Software\CounterSpy\SBAMTray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
2009-11-26 16:45 361976 ----a-w- c:\program files\Common Files\Acronis\Plán2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 07:03 210472 ----a-w- c:\program files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2009-11-24 06:09 2001648 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
2009-10-20 12:59 111928 ----a-r- c:\program files\SweetIM\Messenger\SweetIM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDRShortCut]
2008-12-03 20:15 218408 ----a-w- c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winampa]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD9.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"e:\\HRY\\Sins of a Solar Empire\\Sins of a Solar Empire.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daorigins.exe"=
"e:\\HRY\\Dragon Age\\DAOriginsLauncher.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\SEGA\\Vancouver 2010\\Vancouver.exe"=
"c:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 hotcore3;hc3ServiceName;c:\windows\system32\drivers\hotcore3.sys [23.12.2009 18:35 40560]
R0 pe3ah4nb;DiRT Environment Driver (pe3ah4nb);c:\windows\system32\drivers\pe3ah4nb.sys [19.7.2007 15:45 64616]
R0 ps6ah4nb;DiRT Synchronization Driver (ps6ah4nb);c:\windows\system32\drivers\ps6ah4nb.sys [19.7.2007 15:43 68208]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1105000.07F\symds.sys [22.1.2010 14:06 328752]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1105000.07F\symefa.sys [22.1.2010 14:06 172592]
R0 tdrpman258;Acronis Try&Decide and Restore Points filter (build 258);c:\windows\system32\drivers\tdrpm258.sys [3.12.2009 21:01 911680]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1105000.07F\cchpx86.sys [22.1.2010 14:06 501888]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [23.11.2009 8:43 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [23.11.2009 8:43 74480]
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [16.1.2010 6:32 13360]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1105000.07F\ironx86.sys [22.1.2010 14:06 116272]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/10/21 20:22];c:\program files\CyberLink\PowerDVD9\000.fcl [5.8.2009 21:58 87536]
R2 ABBYY.Licensing.FineReader.Corporate.9.0;ABBYY FineReader 9.0 CE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe [27.10.2008 17:03 759072]
R2 afcdpsrv;Acronis Nonstop Backup service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [3.12.2009 21:01 2480048]
R2 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091205.001\BHDrvx86.sys [5.12.2009 5:54 529456]
R2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\17.5.0.127\ccsvchst.exe [22.1.2010 14:06 126392]
R2 NSHE;Guardant Emulator Driver;c:\windows\system32\drivers\NSHE.SYS [19.11.2009 15:30 97792]
R2 SBAMSvc;CounterSpy Antispyware;c:\program files\Sunbelt Software\CounterSpy\SBAMSvc.exe [4.1.2010 17:02 1012080]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [15.1.2010 18:52 69936]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [17.11.2009 10:34 1021256]
R2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [16.1.2010 7:31 10752]
R3 adatadrv;Autodata Protection Service;c:\windows\system32\drivers\adatadrv.sys [21.11.2009 14:28 762112]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [3.12.2009 21:01 160288]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [14.10.2009 15:23 38656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7.12.2009 5:42 102448]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100119.001\IDSXpx86.sys [20.1.2010 12:43 329592]
R3 PAC207;Trust WB-1400T Webcam;c:\windows\system32\drivers\PFC027.sys [24.2.2005 11:29 162176]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16.10.2009 7:42 721904]
S2 HDD Observer Service;HDD Observer Service;c:\program files\HDD Observer\HDDObserver.Service.exe [20.1.2010 13:32 7680]
S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb);c:\windows\system32\pr2ah4nb.exe svc --> c:\windows\system32\pr2ah4nb.exe svc [?]
S2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 18:19 13592]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [17.10.2009 9:23 1684736]
S3 BioNT_BS;BioNT_BS;c:\program files\Paragon Software\Partition Manager 10.0 Personal\bluescrn\biont_bs.sys [29.9.2009 13:06 18248]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;e:\hry\Dragon Age\bin_ship\daupdatersvc.service.exe [26.12.2009 12:09 25832]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\DfSdkS.exe [16.12.2009 8:43 406016]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [17.1.2010 8:11 23456]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [23.11.2009 8:43 7408]
S3 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [13.10.2009 8:22 95024]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [1.1.2010 18:48 23600]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
2010-01-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-01-28 c:\windows\Tasks\Automatic troubleshooting.job
- c:\program files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-11-17 09:40]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
mStart Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/
uInternet Settings,ProxyOverride = *.local
IE: &Stáhnout FlashGetem
IE: &Stáhnout všechno FlashGetem
IE: &Winamp Search - c:\documents and settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
LSP: c:\windows\system32\idmmbc.dll
FF - ProfilePath - c:\documents and settings\1\Data aplikací\Mozilla\Firefox\Profiles\f6vkytno.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-28 08:06
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
c:\windows\system32\sys_drv.dat 8032 bytes
c:\windows\system32\sys_drv_2.dat 6024 bytes
c:\windows\system32\WinFLdrv.sys 10752 bytes executable
c:\documents and settings\1\Data aplikací\systemfl.$dk 990 bytes
sken byl úspešně dokončen
skryté soubory: 4
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\NIS]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\17.5.0.127\diMaster.dll\" /prefetch:1"
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="CDA3229E14C5C8C6801B1616F74DBFA26080A71292FCB6A88C31A47C1DC013AC8A1DA633804AF98FC6D1937D7D17BDF56BF9F08F22849C9C770A8E1716FC48A8B5E4F2E630A64898FD1D269D602CA13BBEC5C374E896D6BBE4CEDE89643131BB097238C4207FDF00EFB73FCAC5C4E3265B7E6C7FCE9A4BF2AB1960975516402D4E85DBBCA381E005FDA3003D229DFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CA6A0AC4980AC7933C038D530D6EB34528EDD5E5BE2F6E667A6171C11EC38DE3D9D9665497F76365FE6DD3E3496C516B5ECDC08A8E39DB2DC3FCDBD220D1D66A55494F1AE248144FCDD278F2561D186327A8CE5F7BEA9444BB05F0D14DB877CED3D6F96CC2E2E68D4296A89DC8A1AAB534013B8F1780147F3C490604F51E8641581C61479BC466E28A2BD057270ADF5EEE3238E0FC69BEFDB8E4C17CE224439F2C15B42CD9FF2F2BE15DDEEC12002275BFD0F888A9857C40C12A12BCD377F655D91160D295D466862C02A466ADA6E56741C525C658976238F4CBFA44F2EE4AA35F580F3ACAFB01362DA28214E98B06F1A3E08D2E3EF9C3AF8287DA11856A31E5A6BCA883F048C0E110AFDA59584682FB0DA72480DD1D30EDB895655B0B44D28B260C5748A7A13C8C5EA78912AFA98A91E5AF530AEEA89F451466685E580D705A839EAF0FCEAE4815B8D8635BC90ACC5CF989A0E57AB109DF4A7700DCA2820C629CAD34EC95C054FAEF5BDF33F8AEEBDB3E88E7B5C371B05E86CDAD9B14C615127613F6F658F5A9D249B5446E9E490213F8D22A5D464C580D1C52D6DB63F405D953C904B89723128A16BA73AB74CA55169C2CACE9DBF0CB7D6DB185F340B41F6700D4EEE372D38819145B66DE624A6852D32A04BD787D02525C56C59CD6D510135FC23F6AE970311E3FBA5957B82F0C98A7FE0846530589A6F14209967D33D2E6525DE98F440098C0AD93CF93C33C27B85BE6D7870E1CBB966C6CCF2A9E436890595731B56E8A506F9976678343342CDA578C8B763F6B9FB47D5B04A82F855EDA0D079D85F0699DB30693400B2B5764876AA9D68EEFE13AC4B2A2D1BA39C938B43CD294163C28547AAEF5996CA224E440846B8C189BD2DEAB3A1C87401104FE900786357F87A73CE6BC4ADD2D49117F1EC300B1368ABC02C460E2DF5D4474B5FEBAE2BB37840CC52F9732DDFE9538753BDBFA8BC08F26CB5CBB628D81B6BAD9A2044A58081D9E202607BF781E9E9373F1744CBB4A9F3B0A58FD4ACE596D9011ABC809FFDF4BEE665ADD2D209788BA16016FDD004D142736AE216CEFA4BA1B3B4E01D877E7A9E72D4F45FA3E0FCA22935E022374747247EC89A9DC88A82889891B24AEEE8FA5A00FE4B7E7883A1CE90911D5926AF1716FDD70F80FA1C4885E42F5C2B8E"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(1560)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
.
Celkový čas: 2010-01-28 08:07:36
ComboFix-quarantined-files.txt 2010-01-28 07:07
ComboFix2.txt 2009-11-16 09:13
Před spuštěním: Volných bajtů: 91 306 643 456
Po spuštění: Volných bajtů: 92 331 569 152
Current=8 Default=8 Failed=7 LastKnownGood=9 Sets=1,2,3,4,5,6,7,8,9
- - End Of File - - 507D926543CB453AA3737DE59EABC653
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2787 [GMT 1:00]
Spuštěný z: c:\documents and settings\1\Dokumenty\Downloads\Programs\ComboFix.exe
AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\$recycle.bin\S-1-5-21-1160369149-135809319-3799404247-1001
c:\$recycle.bin\S-1-5-21-1572792229-3484342887-2778177295-1001
c:\$recycle.bin\S-1-5-21-3229699037-3471055962-538134191-1001
c:\program files\Auran\TS2010\bin\mozilla\plc4.dll
c:\windows\unins000.dat
c:\windows\unins000.exe
.
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-28 )))))))))))))))))))))))))))))))
.
2010-01-27 08:09 . 2010-01-27 08:09 -------- d-----w- c:\program files\Fighters
2010-01-26 00:00 . 2010-01-26 00:00 0 ----a-w- c:\windows\system32\SBRC.dat
2010-01-24 09:57 . 2010-01-24 10:31 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2010-01-24 08:46 . 2010-01-24 09:05 -------- d-----w- C:\ofice
2010-01-23 10:49 . 2010-01-23 10:49 -------- d-----w- c:\program files\Common Files\DirectX
2010-01-23 10:48 . 2010-01-23 10:48 -------- d-----w- c:\program files\T34vsTiger
2010-01-23 10:45 . 2010-01-23 10:45 -------- d-----w- c:\program files\Lighthouse Interactive
2010-01-22 17:10 . 2010-01-24 10:31 -------- d-----w- c:\program files\Internet Download Manager
2010-01-20 12:42 . 2009-09-09 10:43 210352 ----a-w- c:\windows\system32\idmmbc.dll
2010-01-20 12:32 . 2010-01-24 10:23 -------- d-----w- c:\program files\HDD Observer
2010-01-18 12:52 . 2010-01-18 12:52 -------- d-----w- c:\program files\Redsystem
2010-01-18 11:26 . 2010-01-18 11:26 -------- d-----w- c:\program files\Webteh
2010-01-17 18:23 . 2009-11-17 09:31 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-01-17 07:11 . 2010-01-17 07:11 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-01-16 18:06 . 2008-12-03 16:40 81408 ----a-w- c:\windows\system32\devcon_x64.exe
2010-01-16 18:06 . 2002-11-14 21:32 55808 ----a-w- c:\windows\system32\devcon.exe
2010-01-16 18:06 . 2010-01-17 17:31 -------- d-----w- c:\program files\Driver Checker
2010-01-16 06:32 . 2010-01-16 06:32 180224 ----a-w- c:\windows\system32\WinVd32.sys
2010-01-16 06:31 . 2010-01-16 06:31 7680 ----a-w- c:\windows\system32\WinFLsrv.exe
2010-01-16 05:32 . 2009-05-13 15:30 13360 ----a-w- c:\windows\system32\drivers\sbaphd.sys
2010-01-15 17:52 . 2009-08-10 18:06 69936 ----a-w- c:\windows\system32\drivers\sbapifs.sys
2010-01-15 07:35 . 2010-01-15 07:35 -------- d-----w- c:\program files\Pythagoras s.r.o
2010-01-15 07:28 . 2010-01-15 07:30 -------- d-----w- c:\program files\SuperMp3Download
2010-01-13 17:42 . 2010-01-13 17:41 737280 ----a-w- c:\windows\iun6002.exe
2010-01-13 17:42 . 2010-01-13 17:42 -------- d-----w- c:\program files\Codec Pack - All In 1
2010-01-12 16:25 . 2010-01-12 16:25 -------- d-----w- c:\program files\Asus
2010-01-12 15:38 . 2010-01-12 15:38 -------- d-----w- c:\windows\system32\wbem\Repository
2010-01-12 15:02 . 2010-01-12 15:02 -------- d-----w- c:\program files\Yamicsoft
2010-01-11 13:43 . 2010-01-11 13:43 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2010-01-11 13:43 . 2010-01-11 13:43 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2010-01-10 18:11 . 2010-01-10 18:11 -------- d-----w- c:\program files\Cyanide
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\program files\Winamp Detect
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\windows\system32\xlive
2010-01-09 10:51 . 2010-01-09 10:51 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-01-09 10:48 . 2010-01-09 10:48 -------- d-----w- c:\program files\SEGA
2010-01-08 12:28 . 2010-01-09 17:59 -------- d-----w- c:\program files\Uninstall Password Protect USB
2010-01-08 12:28 . 2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
2010-01-06 07:22 . 2010-01-06 07:22 -------- d-----w- c:\program files\Pošta a kancelář 2
2010-01-04 16:02 . 2010-01-04 16:02 27984 ----a-w- c:\windows\system32\sbbd.exe
2010-01-01 17:48 . 2010-01-01 17:48 23600 ----a-w- c:\windows\system32\drivers\TVICHW32.SYS
2009-12-30 18:50 . 2009-12-30 18:50 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2009-12-30 18:49 . 2009-12-30 18:49 -------- d-----w- c:\program files\Sunbelt Software
2009-12-30 17:11 . 2009-12-30 17:11 -------- d-----w- c:\program files\Auran
2009-12-29 20:26 . 2009-12-29 20:27 -------- d-----w- c:\program files\SweetIM
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-26 22:18 . 2001-10-25 16:00 92298 ----a-w- c:\windows\system32\perfc005.dat
2010-01-26 22:18 . 2001-10-25 16:00 462004 ----a-w- c:\windows\system32\perfh005.dat
2010-01-22 19:19 . 2009-10-24 15:46 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-20 17:57 . 2009-10-19 15:06 304160 ----a-w- C:\StiImg.dat
2010-01-17 18:24 . 2009-12-07 12:01 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-17 12:46 . 2009-12-16 07:42 -------- d-----w- c:\program files\Ashampoo
2010-01-12 16:25 . 2009-10-14 14:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-11 17:41 . 2008-04-14 06:51 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-01-10 07:26 . 2009-10-23 19:51 -------- d-----w- c:\program files\Bonjour
2010-01-09 17:59 . 2009-10-17 18:42 -------- d-----w- c:\program files\Winamp
2010-01-02 19:23 . 2009-11-16 10:07 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-30 13:55 . 2009-11-16 10:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-30 13:54 . 2009-11-16 10:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-29 19:47 . 2009-10-14 17:42 -------- d-----w- c:\program files\ESET
2009-12-29 19:45 . 2009-12-03 17:17 -------- d-----w- c:\program files\Common Files\PC Tools
2009-12-29 19:43 . 2009-11-28 15:11 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2009-12-29 08:52 . 2009-12-23 17:34 -------- d-----w- c:\program files\Paragon Software
2009-12-29 08:16 . 2009-10-14 15:09 -------- d-----w- c:\program files\ICQ6.5
2009-12-28 21:17 . 2009-12-28 21:17 902592 ----a-w- c:\windows\system32\drivers\tdrpm228.sys
2009-12-28 21:16 . 2009-12-28 21:16 138208 ----a-w- c:\windows\system32\drivers\snman423.sys
2009-12-28 21:16 . 2009-12-03 20:01 138208 ----a-w- c:\windows\system32\drivers\snapman.sys
2009-12-28 21:16 . 2009-10-14 15:26 -------- d-----w- c:\program files\Common Files\Acronis
2009-12-28 20:06 . 2009-12-28 20:06 1827240 ----a-w- c:\windows\system32\auto_reactivate.exe
2009-12-28 18:06 . 2009-12-28 18:06 -------- d-----w- c:\program files\oZone3D
2009-12-28 17:02 . 2009-12-28 17:02 -------- d-----w- c:\program files\PowerQuest
2009-12-26 11:13 . 2009-10-14 14:39 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-12-26 11:13 . 2009-12-26 11:02 -------- d-----w- c:\program files\Common Files\BioWare
2009-12-25 05:01 . 2009-10-17 08:28 24576 --sh--r- C:\bootwiz.sys
2009-12-23 10:13 . 2009-12-22 07:47 -------- d-----w- c:\program files\HDD Regenerator
2009-12-21 19:08 . 2008-03-01 13:02 916480 ----a-w- c:\windows\system32\wininet.dll
2009-12-20 07:54 . 2009-12-20 07:37 -------- d-----w- c:\program files\Common Files\Nero
2009-12-20 07:45 . 2009-12-20 07:37 -------- d-----w- c:\program files\Nero
2009-12-19 06:31 . 2009-10-23 19:04 -------- d-----w- c:\program files\Norton Internet Security
2009-12-14 11:33 . 2009-10-14 14:53 53248 ----a-w- c:\windows\system32\CSVer.dll
2009-12-14 10:18 . 2009-12-14 10:18 -------- d-----w- c:\program files\Sony
2009-12-13 21:05 . 2009-12-03 18:08 -------- d-----w- c:\program files\Garmin
2009-12-10 13:45 . 2009-11-02 12:01 -------- d-----w- c:\program files\Uniblue
2009-12-10 10:58 . 2009-10-14 16:37 -------- d-----w- c:\program files\Canon
2009-12-10 10:48 . 2009-10-14 14:39 -------- d-----w- c:\program files\AGEIA Technologies
2009-12-10 10:48 . 2009-10-14 14:38 -------- d-----w- c:\program files\NVIDIA Corporation
2009-12-08 17:56 . 2009-12-08 17:56 -------- d-----w- c:\program files\Audio Studio Gold
2009-12-06 15:45 . 2009-10-19 17:19 -------- d-----w- c:\program files\Common Files\Nokia
2009-12-06 15:44 . 2009-10-19 17:19 -------- d-----w- c:\program files\Nokia
2009-12-03 20:01 . 2009-12-03 20:01 160288 ----a-w- c:\windows\system32\drivers\afcdp.sys
2009-12-03 20:01 . 2009-12-03 20:01 911680 ----a-w- c:\windows\system32\drivers\tdrpm258.sys
2009-12-03 20:01 . 2009-12-28 21:17 581984 ----a-w- c:\windows\system32\drivers\timntr.sys
2009-12-03 18:08 . 2009-10-19 17:19 -------- d-----w- c:\program files\DIFX
2009-12-03 16:35 . 2009-12-01 17:17 -------- d-----w- c:\program files\Startup Faster
2009-12-03 06:09 . 2009-11-04 08:21 47408 ----a-r- c:\windows\system32\drivers\SymIM.sys
2009-12-01 17:46 . 2009-12-01 17:46 -------- d-----w- c:\program files\Common Files\PCSuite
2009-12-01 17:45 . 2009-12-01 17:45 -------- d-----w- c:\program files\PC Connectivity Solution
2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe
2009-11-29 10:36 . 2009-11-13 18:05 -------- d-----w- c:\program files\trend micro
2009-11-29 10:17 . 2009-11-29 10:17 -------- d-----w- c:\program files\CPUID
2009-11-21 16:03 . 2008-04-14 06:51 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-21 02:34 . 2009-11-26 17:45 69632 ----a-w- c:\windows\system32\OpenCL.dll
2009-11-21 02:34 . 2009-11-26 17:45 11374592 ----a-w- c:\windows\system32\nvcompiler.dll
2009-11-21 02:34 . 2009-09-27 14:12 6282752 ----a-w- c:\windows\system32\nv4_disp.dll
2009-11-21 02:34 . 2009-09-27 14:12 4038656 ----a-w- c:\windows\system32\nvcuda.dll
2009-11-21 02:34 . 2009-09-27 14:12 2293286 ----a-w- c:\windows\system32\nvdata.bin
2009-11-21 02:34 . 2009-09-27 14:12 2259560 ----a-w- c:\windows\system32\nvcuvid.dll
2009-11-21 02:34 . 2009-09-27 14:12 1989224 ----a-w- c:\windows\system32\nvcuvenc.dll
2009-11-21 02:34 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcodins.dll
2009-11-21 02:34 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcod.dll
2009-11-21 02:34 . 2009-09-27 14:12 13602816 ----a-w- c:\windows\system32\nvoglnt.dll
2009-11-21 02:34 . 2009-09-27 14:12 1056768 ----a-w- c:\windows\system32\nvapi.dll
2009-11-21 02:34 . 2009-09-27 14:12 10235968 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2009-11-19 14:02 . 2009-11-19 14:02 191488 ----a-w- c:\windows\system32\hlvdd.dll
2009-11-17 09:37 . 2009-12-07 12:01 29512 ----a-w- c:\windows\system32\TURegOpt.exe
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-11-02 19:42 . 2009-10-14 22:33 195456 ------w- c:\windows\system32\MpSigStub.exe
2005-08-24 22:10 . 2010-01-08 12:28 174592 --sha-w- c:\windows\system32\ncfpsys.exe
.
------- Sigcheck -------
[-] 2008-05-19 . E3B22F050F840306FD522227F68046C5 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files\Winamp Toolbar\winamptb.dll" [2009-05-06 1262888]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 187192]
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15 1345336 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-01-22 3179952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2009-11-20 12669544]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0c:\progra~1\Paragon Software\Partition Manager 10.0 Personal\bluescrn\bluescrn.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Aktualizovat ESET licenci.lnk]
backup=c:\windows\pss\Aktualizovat ESET licenci.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Scheduler2 Service
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleUpdate
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\schedhlp
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TimounterMonitor
HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UniblueSpeedUpMyPC
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
2007-11-19 09:01 1970176 ----a-w- c:\windows\system32\xRaidSetup.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Služba Plánovač2]
2009-05-19 22:19 377528 ----a-w- c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
2009-05-19 22:25 962192 ----a-w- c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2009-12-11 14:57 948672 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-22 00:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
2009-09-25 14:03 3334488 ----a-w- c:\program files\Ashampoo\Ashampoo Core Tuner\ct.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\axcmd]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BJMyPrt]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\brs]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNSLMAIN]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleToolbarNotifier]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDD Observer]
2010-01-12 12:30 238592 ----a-w- c:\program files\HDD Observer\HDD Observer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
2010-01-22 17:11 3179952 ----a-w- c:\program files\Internet Download Manager\IDMan.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-09-21 14:36 305440 ----a-w- c:\program files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
2007-03-20 12:36 36864 ----a-w- c:\windows\RaidTool\xInsIDE.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jusched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Language]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
2009-12-30 13:55 1389904 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSASCui]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
2009-10-27 14:10 401728 ----a-w- c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2009-11-20 19:32 12669544 ----a-w- c:\windows\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2009-11-20 19:32 110184 ----a-w- c:\windows\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2010-01-08 14:48 26624 ----a-w- c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
2009-04-07 23:39 2553088 ----a-w- c:\windows\system32\oodtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
2007-02-04 10:02 79400 ----a-w- c:\program files\ScanSoft\OmniPageSE4\OpWareSE4.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSelectorReinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oss_reinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Password Protect USB 3.6.1]
2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuite]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9Serv]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QTTask]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2009-10-06 15:34 18750976 ----a-w- c:\windows\RTHDCPL.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SBAMTray]
2010-01-04 16:22 685392 ----a-w- c:\program files\Sunbelt Software\CounterSpy\SBAMTray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
2009-11-26 16:45 361976 ----a-w- c:\program files\Common Files\Acronis\Plán2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 07:03 210472 ----a-w- c:\program files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2009-11-24 06:09 2001648 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
2009-10-20 12:59 111928 ----a-r- c:\program files\SweetIM\Messenger\SweetIM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDRShortCut]
2008-12-03 20:15 218408 ----a-w- c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winampa]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD9.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"e:\\HRY\\Sins of a Solar Empire\\Sins of a Solar Empire.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daorigins.exe"=
"e:\\HRY\\Dragon Age\\DAOriginsLauncher.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\SEGA\\Vancouver 2010\\Vancouver.exe"=
"c:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 hotcore3;hc3ServiceName;c:\windows\system32\drivers\hotcore3.sys [23.12.2009 18:35 40560]
R0 pe3ah4nb;DiRT Environment Driver (pe3ah4nb);c:\windows\system32\drivers\pe3ah4nb.sys [19.7.2007 15:45 64616]
R0 ps6ah4nb;DiRT Synchronization Driver (ps6ah4nb);c:\windows\system32\drivers\ps6ah4nb.sys [19.7.2007 15:43 68208]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1105000.07F\symds.sys [22.1.2010 14:06 328752]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1105000.07F\symefa.sys [22.1.2010 14:06 172592]
R0 tdrpman258;Acronis Try&Decide and Restore Points filter (build 258);c:\windows\system32\drivers\tdrpm258.sys [3.12.2009 21:01 911680]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1105000.07F\cchpx86.sys [22.1.2010 14:06 501888]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [23.11.2009 8:43 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [23.11.2009 8:43 74480]
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [16.1.2010 6:32 13360]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1105000.07F\ironx86.sys [22.1.2010 14:06 116272]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/10/21 20:22];c:\program files\CyberLink\PowerDVD9\000.fcl [5.8.2009 21:58 87536]
R2 ABBYY.Licensing.FineReader.Corporate.9.0;ABBYY FineReader 9.0 CE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe [27.10.2008 17:03 759072]
R2 afcdpsrv;Acronis Nonstop Backup service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [3.12.2009 21:01 2480048]
R2 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20091205.001\BHDrvx86.sys [5.12.2009 5:54 529456]
R2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\17.5.0.127\ccsvchst.exe [22.1.2010 14:06 126392]
R2 NSHE;Guardant Emulator Driver;c:\windows\system32\drivers\NSHE.SYS [19.11.2009 15:30 97792]
R2 SBAMSvc;CounterSpy Antispyware;c:\program files\Sunbelt Software\CounterSpy\SBAMSvc.exe [4.1.2010 17:02 1012080]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [15.1.2010 18:52 69936]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [17.11.2009 10:34 1021256]
R2 WinFLdrv;WinFLdrv;c:\windows\system32\WinFLdrv.sys [16.1.2010 7:31 10752]
R3 adatadrv;Autodata Protection Service;c:\windows\system32\drivers\adatadrv.sys [21.11.2009 14:28 762112]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [3.12.2009 21:01 160288]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [14.10.2009 15:23 38656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7.12.2009 5:42 102448]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100119.001\IDSXpx86.sys [20.1.2010 12:43 329592]
R3 PAC207;Trust WB-1400T Webcam;c:\windows\system32\drivers\PFC027.sys [24.2.2005 11:29 162176]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16.10.2009 7:42 721904]
S2 HDD Observer Service;HDD Observer Service;c:\program files\HDD Observer\HDDObserver.Service.exe [20.1.2010 13:32 7680]
S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb);c:\windows\system32\pr2ah4nb.exe svc --> c:\windows\system32\pr2ah4nb.exe svc [?]
S2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 18:19 13592]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [17.10.2009 9:23 1684736]
S3 BioNT_BS;BioNT_BS;c:\program files\Paragon Software\Partition Manager 10.0 Personal\bluescrn\biont_bs.sys [29.9.2009 13:06 18248]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;e:\hry\Dragon Age\bin_ship\daupdatersvc.service.exe [26.12.2009 12:09 25832]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\DfSdkS.exe [16.12.2009 8:43 406016]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [17.1.2010 8:11 23456]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [23.11.2009 8:43 7408]
S3 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [13.10.2009 8:22 95024]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [1.1.2010 18:48 23600]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
2010-01-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-01-28 c:\windows\Tasks\Automatic troubleshooting.job
- c:\program files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-11-17 09:40]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
mStart Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/
uInternet Settings,ProxyOverride = *.local
IE: &Stáhnout FlashGetem
IE: &Stáhnout všechno FlashGetem
IE: &Winamp Search - c:\documents and settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
LSP: c:\windows\system32\idmmbc.dll
FF - ProfilePath - c:\documents and settings\1\Data aplikací\Mozilla\Firefox\Profiles\f6vkytno.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-28 08:06
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
c:\windows\system32\sys_drv.dat 8032 bytes
c:\windows\system32\sys_drv_2.dat 6024 bytes
c:\windows\system32\WinFLdrv.sys 10752 bytes executable
c:\documents and settings\1\Data aplikací\systemfl.$dk 990 bytes
sken byl úspešně dokončen
skryté soubory: 4
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\NIS]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\17.5.0.127\diMaster.dll\" /prefetch:1"
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(1560)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
.
Celkový čas: 2010-01-28 08:07:36
ComboFix-quarantined-files.txt 2010-01-28 07:07
ComboFix2.txt 2009-11-16 09:13
Před spuštěním: Volných bajtů: 91 306 643 456
Po spuštění: Volných bajtů: 92 331 569 152
Current=8 Default=8 Failed=7 LastKnownGood=9 Sets=1,2,3,4,5,6,7,8,9
- - End Of File - - 507D926543CB453AA3737DE59EABC653
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený start Win-XP a zasekávání PC
Ještě dočistíme. Přesuňte Combofix na plochu. Otevřte poznámkový blok a zkopírujte do něj:
Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.Collect::
c:\windows\system32\sys_drv.dat
c:\windows\system32\sys_drv_2.dat
c:\windows\system32\WinFLdrv.sys
c:\documents and settings\1\Data aplikací\systemfl.$dk
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený start Win-XP a zasekávání PC
tu je nový výpis po smazání
ComboFix 10-01-27.03 - 1 29.01.2010 8:19.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2763 [GMT 1:00]
Spuštěný z: c:\documents and settings\1\Dokumenty\Downloads\Programs\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\1\Plocha\CFScript.txt
AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
file zipped: c:\documents and settings\1\Data aplikací\systemfl.$dk
file zipped: c:\windows\system32\sys_drv.dat
file zipped: c:\windows\system32\sys_drv_2.dat
file zipped: c:\windows\system32\WinFLdrv.sys
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\1\Data aplikací\systemfl.$dk
c:\program files\ICQ6.5\ICQLRun.exe
c:\windows\system32\sys_drv.dat
c:\windows\system32\sys_drv_2.dat
c:\windows\system32\WinFLdrv.sys
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_WinFLdrv
-------\Service_WinFLdrv
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-29 )))))))))))))))))))))))))))))))
.
2010-01-28 09:15 . 2010-01-28 09:15 -------- d-----w- c:\program files\SystemRequirementsLab
2010-01-27 08:09 . 2010-01-27 08:09 -------- d-----w- c:\program files\Fighters
2010-01-26 00:00 . 2010-01-26 00:00 0 ----a-w- c:\windows\system32\SBRC.dat
2010-01-24 09:57 . 2010-01-24 10:31 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2010-01-24 08:46 . 2010-01-24 09:05 -------- d-----w- C:\ofice
2010-01-23 10:49 . 2010-01-23 10:49 -------- d-----w- c:\program files\Common Files\DirectX
2010-01-23 10:48 . 2010-01-23 10:48 -------- d-----w- c:\program files\T34vsTiger
2010-01-23 10:45 . 2010-01-23 10:45 -------- d-----w- c:\program files\Lighthouse Interactive
2010-01-22 17:10 . 2010-01-24 10:31 -------- d-----w- c:\program files\Internet Download Manager
2010-01-20 12:42 . 2009-09-09 10:43 210352 ----a-w- c:\windows\system32\idmmbc.dll
2010-01-20 12:32 . 2010-01-24 10:23 -------- d-----w- c:\program files\HDD Observer
2010-01-18 12:52 . 2010-01-18 12:52 -------- d-----w- c:\program files\Redsystem
2010-01-18 11:26 . 2010-01-18 11:26 -------- d-----w- c:\program files\Webteh
2010-01-17 18:23 . 2009-11-17 09:31 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-01-17 07:11 . 2010-01-17 07:11 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-01-16 18:06 . 2008-12-03 16:40 81408 ----a-w- c:\windows\system32\devcon_x64.exe
2010-01-16 18:06 . 2002-11-14 21:32 55808 ----a-w- c:\windows\system32\devcon.exe
2010-01-16 18:06 . 2010-01-17 17:31 -------- d-----w- c:\program files\Driver Checker
2010-01-16 06:32 . 2010-01-16 06:32 180224 ----a-w- c:\windows\system32\WinVd32.sys
2010-01-16 06:31 . 2010-01-16 06:31 7680 ----a-w- c:\windows\system32\WinFLsrv.exe
2010-01-16 05:32 . 2009-05-13 15:30 13360 ----a-w- c:\windows\system32\drivers\sbaphd.sys
2010-01-15 17:52 . 2009-08-10 18:06 69936 ----a-w- c:\windows\system32\drivers\sbapifs.sys
2010-01-15 07:35 . 2010-01-15 07:35 -------- d-----w- c:\program files\Pythagoras s.r.o
2010-01-15 07:28 . 2010-01-15 07:30 -------- d-----w- c:\program files\SuperMp3Download
2010-01-13 17:42 . 2010-01-13 17:41 737280 ----a-w- c:\windows\iun6002.exe
2010-01-13 17:42 . 2010-01-13 17:42 -------- d-----w- c:\program files\Codec Pack - All In 1
2010-01-12 16:25 . 2010-01-12 16:25 -------- d-----w- c:\program files\Asus
2010-01-12 15:38 . 2010-01-12 15:38 -------- d-----w- c:\windows\system32\wbem\Repository
2010-01-12 15:02 . 2010-01-12 15:02 -------- d-----w- c:\program files\Yamicsoft
2010-01-11 21:17 . 2010-01-11 21:17 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-01-11 21:17 . 2010-01-11 21:17 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-01-11 21:17 . 2010-01-11 21:17 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-01-11 21:17 . 2010-01-11 21:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll
2010-01-11 21:17 . 2010-01-11 21:17 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-01-11 21:17 . 2010-01-11 21:17 81920 ----a-w- c:\windows\system32\nvwddi.dll
2010-01-11 13:43 . 2010-01-11 13:43 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2010-01-11 13:43 . 2010-01-11 13:43 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2010-01-10 18:11 . 2010-01-10 18:11 -------- d-----w- c:\program files\Cyanide
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\program files\Winamp Detect
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\windows\system32\xlive
2010-01-09 10:51 . 2010-01-09 10:51 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-01-09 10:48 . 2010-01-09 10:48 -------- d-----w- c:\program files\SEGA
2010-01-08 12:28 . 2010-01-09 17:59 -------- d-----w- c:\program files\Uninstall Password Protect USB
2010-01-08 12:28 . 2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
2010-01-06 07:22 . 2010-01-06 07:22 -------- d-----w- c:\program files\Pošta a kancelář 2
2010-01-04 16:02 . 2010-01-04 16:02 27984 ----a-w- c:\windows\system32\sbbd.exe
2010-01-01 17:48 . 2010-01-01 17:48 23600 ----a-w- c:\windows\system32\drivers\TVICHW32.SYS
2009-12-30 18:50 . 2009-12-30 18:50 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2009-12-30 18:49 . 2009-12-30 18:49 -------- d-----w- c:\program files\Sunbelt Software
2009-12-30 17:11 . 2009-12-30 17:11 -------- d-----w- c:\program files\Auran
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-29 07:22 . 2009-10-14 15:09 -------- d-----w- c:\program files\ICQ6.5
2010-01-28 10:04 . 2008-04-14 06:51 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-01-28 07:45 . 2009-11-29 10:17 -------- d-----w- c:\program files\CPUID
2010-01-26 22:18 . 2001-10-25 16:00 92298 ----a-w- c:\windows\system32\perfc005.dat
2010-01-26 22:18 . 2001-10-25 16:00 462004 ----a-w- c:\windows\system32\perfh005.dat
2010-01-22 19:19 . 2009-10-24 15:46 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-20 17:57 . 2009-10-19 15:06 304160 ----a-w- C:\StiImg.dat
2010-01-17 18:24 . 2009-12-07 12:01 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-17 12:46 . 2009-12-16 07:42 -------- d-----w- c:\program files\Ashampoo
2010-01-12 16:25 . 2009-10-14 14:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-12 04:03 . 2009-11-26 17:45 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-01-12 04:03 . 2009-11-26 17:45 11632640 ----a-w- c:\windows\system32\nvcompiler.dll
2010-01-12 04:03 . 2009-09-27 14:12 6359168 ----a-w- c:\windows\system32\nv4_disp.dll
2010-01-12 04:03 . 2009-09-27 14:12 4104192 ----a-w- c:\windows\system32\nvcuda.dll
2010-01-12 04:03 . 2009-09-27 14:12 4077672 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-01-12 04:03 . 2009-09-27 14:12 2283526 ----a-w- c:\windows\system32\nvdata.bin
2010-01-12 04:03 . 2009-09-27 14:12 2259560 ----a-w- c:\windows\system32\nvcuvid.dll
2010-01-12 04:03 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcodins.dll
2010-01-12 04:03 . 2009-09-27 14:12 14458880 ----a-w- c:\windows\system32\nvoglnt.dll
2010-01-12 04:03 . 2009-09-27 14:12 1081344 ----a-w- c:\windows\system32\nvapi.dll
2010-01-12 04:03 . 2009-09-27 14:12 10276768 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-01-10 07:26 . 2009-10-23 19:51 -------- d-----w- c:\program files\Bonjour
2010-01-09 17:59 . 2009-10-17 18:42 -------- d-----w- c:\program files\Winamp
2010-01-02 19:23 . 2009-11-16 10:07 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-30 13:55 . 2009-11-16 10:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-30 13:54 . 2009-11-16 10:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-29 20:27 . 2009-12-29 20:26 -------- d-----w- c:\program files\SweetIM
2009-12-29 19:47 . 2009-10-14 17:42 -------- d-----w- c:\program files\ESET
2009-12-29 19:45 . 2009-12-03 17:17 -------- d-----w- c:\program files\Common Files\PC Tools
2009-12-29 19:43 . 2009-11-28 15:11 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2009-12-29 08:52 . 2009-12-23 17:34 -------- d-----w- c:\program files\Paragon Software
2009-12-28 21:17 . 2009-12-28 21:17 902592 ----a-w- c:\windows\system32\drivers\tdrpm228.sys
2009-12-28 21:16 . 2009-12-28 21:16 138208 ----a-w- c:\windows\system32\drivers\snman423.sys
2009-12-28 21:16 . 2009-12-03 20:01 138208 ----a-w- c:\windows\system32\drivers\snapman.sys
2009-12-28 21:16 . 2009-10-14 15:26 -------- d-----w- c:\program files\Common Files\Acronis
2009-12-28 20:06 . 2009-12-28 20:06 1827240 ----a-w- c:\windows\system32\auto_reactivate.exe
2009-12-28 18:06 . 2009-12-28 18:06 -------- d-----w- c:\program files\oZone3D
2009-12-28 17:02 . 2009-12-28 17:02 -------- d-----w- c:\program files\PowerQuest
2009-12-26 11:13 . 2009-10-14 14:39 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-12-26 11:13 . 2009-12-26 11:02 -------- d-----w- c:\program files\Common Files\BioWare
2009-12-25 05:01 . 2009-10-17 08:28 24576 --sh--r- C:\bootwiz.sys
2009-12-23 10:13 . 2009-12-22 07:47 -------- d-----w- c:\program files\HDD Regenerator
2009-12-21 19:08 . 2008-03-01 13:02 916480 ------w- c:\windows\system32\wininet.dll
2009-12-20 07:54 . 2009-12-20 07:37 -------- d-----w- c:\program files\Common Files\Nero
2009-12-20 07:45 . 2009-12-20 07:37 -------- d-----w- c:\program files\Nero
2009-12-19 06:31 . 2009-10-23 19:04 -------- d-----w- c:\program files\Norton Internet Security
2009-12-14 11:33 . 2009-10-14 14:53 53248 ----a-w- c:\windows\system32\CSVer.dll
2009-12-14 10:18 . 2009-12-14 10:18 -------- d-----w- c:\program files\Sony
2009-12-13 21:05 . 2009-12-03 18:08 -------- d-----w- c:\program files\Garmin
2009-12-10 13:45 . 2009-11-02 12:01 -------- d-----w- c:\program files\Uniblue
2009-12-10 10:58 . 2009-10-14 16:37 -------- d-----w- c:\program files\Canon
2009-12-10 10:48 . 2009-10-14 14:39 -------- d-----w- c:\program files\AGEIA Technologies
2009-12-10 10:48 . 2009-10-14 14:38 -------- d-----w- c:\program files\NVIDIA Corporation
2009-12-08 17:56 . 2009-12-08 17:56 -------- d-----w- c:\program files\Audio Studio Gold
2009-12-06 15:45 . 2009-10-19 17:19 -------- d-----w- c:\program files\Common Files\Nokia
2009-12-06 15:44 . 2009-10-19 17:19 -------- d-----w- c:\program files\Nokia
2009-12-03 20:01 . 2009-12-03 20:01 160288 ----a-w- c:\windows\system32\drivers\afcdp.sys
2009-12-03 20:01 . 2009-12-03 20:01 911680 ----a-w- c:\windows\system32\drivers\tdrpm258.sys
2009-12-03 20:01 . 2009-12-28 21:17 581984 ----a-w- c:\windows\system32\drivers\timntr.sys
2009-12-03 18:08 . 2009-10-19 17:19 -------- d-----w- c:\program files\DIFX
2009-12-03 16:35 . 2009-12-01 17:17 -------- d-----w- c:\program files\Startup Faster
2009-12-03 06:09 . 2009-11-04 08:21 47408 ----a-r- c:\windows\system32\drivers\SymIM.sys
2009-12-01 17:46 . 2009-12-01 17:46 -------- d-----w- c:\program files\Common Files\PCSuite
2009-12-01 17:45 . 2009-12-01 17:45 -------- d-----w- c:\program files\PC Connectivity Solution
2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe
2009-11-21 16:03 . 2008-04-14 06:51 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-21 02:34 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcod.dll
2009-11-19 14:02 . 2009-11-19 14:02 191488 ----a-w- c:\windows\system32\hlvdd.dll
2009-11-17 09:37 . 2009-12-07 12:01 29512 ----a-w- c:\windows\system32\TURegOpt.exe
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-11-02 19:42 . 2009-10-14 22:33 195456 ------w- c:\windows\system32\MpSigStub.exe
2005-08-24 22:10 . 2010-01-08 12:28 174592 --sha-w- c:\windows\system32\ncfpsys.exe
.
------- Sigcheck -------
[-] 2008-05-19 . E3B22F050F840306FD522227F68046C5 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2010-01-28_07.06.15 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-01-29 07:24 . 2010-01-29 07:24 16384 c:\windows\Temp\Perflib_Perfdata_328.dat
+ 2010-01-28 09:20 . 2009-11-21 02:34 69632 c:\windows\system32\ReinstallBackups\0024\DriverFiles\OpenCL.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 592488 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvudisp.exe
+ 2010-01-28 09:20 . 2009-11-21 02:34 182888 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcod.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 2293286 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvdata.bin
+ 2010-01-28 09:20 . 2009-11-21 02:34 2259560 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcuvid.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 1989224 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcuvenc.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 4038656 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcuda.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 1056768 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvapi.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 6282752 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nv4_disp.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 13602816 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvoglnt.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 11374592 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcompiler.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 10235968 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nv4_mini.sys
+ 2009-09-27 14:12 . 2010-01-12 04:03 10276768 c:\windows\system32\dllcache\nv4_mini.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files\Winamp Toolbar\winamptb.dll" [2009-05-06 1262888]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 187192]
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15 1345336 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-01-22 3179952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-11 110696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0c:\progra~1\Paragon Software\Partition Manager 10.0 Personal\bluescrn\bluescrn.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Aktualizovat ESET licenci.lnk]
backup=c:\windows\pss\Aktualizovat ESET licenci.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
2007-11-19 09:01 1970176 ----a-w- c:\windows\system32\xRaidSetup.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Služba Plánovač2]
2009-05-19 22:19 377528 ----a-w- c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
2009-05-19 22:25 962192 ----a-w- c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2009-12-11 14:57 948672 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-22 00:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
2009-09-25 14:03 3334488 ----a-w- c:\program files\Ashampoo\Ashampoo Core Tuner\ct.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\axcmd]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BJMyPrt]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\brs]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNSLMAIN]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleToolbarNotifier]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDD Observer]
2010-01-12 12:30 238592 ----a-w- c:\program files\HDD Observer\HDD Observer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
2010-01-22 17:11 3179952 ----a-w- c:\program files\Internet Download Manager\IDMan.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-09-21 14:36 305440 ----a-w- c:\program files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
2007-03-20 12:36 36864 ----a-w- c:\windows\RaidTool\xInsIDE.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jusched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Language]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
2009-12-30 13:55 1389904 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSASCui]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
2009-10-27 14:10 401728 ----a-w- c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-01-11 21:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2010-01-11 21:17 110696 ----a-w- c:\windows\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2010-01-08 14:48 26624 ----a-w- c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
2009-04-07 23:39 2553088 ----a-w- c:\windows\system32\oodtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
2007-02-04 10:02 79400 ----a-w- c:\program files\ScanSoft\OmniPageSE4\OpWareSE4.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSelectorReinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oss_reinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Password Protect USB 3.6.1]
2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuite]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9Serv]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QTTask]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2009-10-06 15:34 18750976 ----a-w- c:\windows\RTHDCPL.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SBAMTray]
2010-01-04 16:22 685392 ----a-w- c:\program files\Sunbelt Software\CounterSpy\SBAMTray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
2009-11-26 16:45 361976 ----a-w- c:\program files\Common Files\Acronis\Plán2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 07:03 210472 ----a-w- c:\program files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2009-11-24 06:09 2001648 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
2009-10-20 12:59 111928 ----a-r- c:\program files\SweetIM\Messenger\SweetIM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDRShortCut]
2008-12-03 20:15 218408 ----a-w- c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winampa]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD9.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"e:\\HRY\\Sins of a Solar Empire\\Sins of a Solar Empire.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daorigins.exe"=
"e:\\HRY\\Dragon Age\\DAOriginsLauncher.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\SEGA\\Vancouver 2010\\Vancouver.exe"=
"c:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 hotcore3;hc3ServiceName;c:\windows\system32\drivers\hotcore3.sys [23.12.2009 18:35 40560]
R0 pe3ah4nb;DiRT Environment Driver (pe3ah4nb);c:\windows\system32\drivers\pe3ah4nb.sys [19.7.2007 15:45 64616]
R0 ps6ah4nb;DiRT Synchronization Driver (ps6ah4nb);c:\windows\system32\drivers\ps6ah4nb.sys [19.7.2007 15:43 68208]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16.10.2009 7:42 721904]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1105000.07F\symds.sys [22.1.2010 14:06 328752]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1105000.07F\symefa.sys [22.1.2010 14:06 172592]
R0 tdrpman258;Acronis Try&Decide and Restore Points filter (build 258);c:\windows\system32\drivers\tdrpm258.sys [3.12.2009 21:01 911680]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1105000.07F\cchpx86.sys [22.1.2010 14:06 501888]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [23.11.2009 8:43 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [23.11.2009 8:43 74480]
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [16.1.2010 6:32 13360]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1105000.07F\ironx86.sys [22.1.2010 14:06 116272]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/10/21 20:22];c:\program files\CyberLink\PowerDVD9\000.fcl [5.8.2009 21:58 87536]
R2 ABBYY.Licensing.FineReader.Corporate.9.0;ABBYY FineReader 9.0 CE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe [27.10.2008 17:03 759072]
R2 afcdpsrv;Acronis Nonstop Backup service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [3.12.2009 21:01 2480048]
R2 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20100128.001\BHDrvx86.sys [28.1.2010 8:10 529456]
R2 cpuz132;cpuz132;c:\windows\system32\drivers\cpuz132_x32.sys [29.11.2009 11:17 17056]
R2 HDD Observer Service;HDD Observer Service;c:\program files\HDD Observer\HDDObserver.Service.exe [20.1.2010 13:32 7680]
R2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\17.5.0.127\ccsvchst.exe [22.1.2010 14:06 126392]
R2 NSHE;Guardant Emulator Driver;c:\windows\system32\drivers\NSHE.SYS [19.11.2009 15:30 97792]
R2 SBAMSvc;CounterSpy Antispyware;c:\program files\Sunbelt Software\CounterSpy\SBAMSvc.exe [4.1.2010 17:02 1012080]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [15.1.2010 18:52 69936]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [17.11.2009 10:34 1021256]
R3 adatadrv;Autodata Protection Service;c:\windows\system32\drivers\adatadrv.sys [21.11.2009 14:28 762112]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [3.12.2009 21:01 160288]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [14.10.2009 15:23 38656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7.12.2009 5:42 102448]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100125.001\IDSXpx86.sys [28.1.2010 8:10 329592]
R3 PAC207;Trust WB-1400T Webcam;c:\windows\system32\drivers\PFC027.sys [24.2.2005 11:29 162176]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb);c:\windows\system32\pr2ah4nb.exe svc --> c:\windows\system32\pr2ah4nb.exe svc [?]
S2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 18:19 13592]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [17.10.2009 9:23 1684736]
S3 BioNT_BS;BioNT_BS;c:\program files\Paragon Software\Partition Manager 10.0 Personal\bluescrn\biont_bs.sys [29.9.2009 13:06 18248]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;e:\hry\Dragon Age\bin_ship\daupdatersvc.service.exe [26.12.2009 12:09 25832]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\DfSdkS.exe [16.12.2009 8:43 406016]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [17.1.2010 8:11 23456]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [23.11.2009 8:43 7408]
S3 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [13.10.2009 8:22 95024]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [1.1.2010 18:48 23600]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
2010-01-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-01-29 c:\windows\Tasks\Automatic troubleshooting.job
- c:\program files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-11-17 09:40]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
mStart Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/
uInternet Settings,ProxyOverride = *.local
IE: &Stáhnout FlashGetem
IE: &Stáhnout všechno FlashGetem
IE: &Winamp Search - c:\documents and settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
LSP: c:\windows\system32\idmmbc.dll
FF - ProfilePath - c:\documents and settings\1\Data aplikací\Mozilla\Firefox\Profiles\f6vkytno.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - component: c:\documents and settings\1\Data aplikací\IDM\idmmzcc3\components\idmmzcc.dll
FF - component: c:\documents and settings\1\Data aplikací\Mozilla\Firefox\Profiles\f6vkytno.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}\components\nsWebFF15.dll
FF - component: c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\components\coFFPlgn.dll
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
MSConfigStartUp-nwiz - nwiz.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-29 08:26
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spew.sys >>UNKNOWN [0x8B2E9938]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb810cf28
\Driver\ACPI -> ACPI.sys @ 0xb7e66cb8
\Driver\atapi -> atapi.sys @ 0xb7dcab40
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
NDIS: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller -> SendCompleteHandler -> NDIS.sys @ 0xb7c3dbb0
PacketIndicateHandler -> NDIS.sys @ 0xb7c4aa21
SendHandler -> NDIS.sys @ 0xb7c2887b
user & kernel MBR OK
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\NIS]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\17.5.0.127\diMaster.dll\" /prefetch:1"
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(1580)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
- - - - - - - > 'explorer.exe'(3616)
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\cs-cz\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\cs-cz\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\program files\Internet Download Manager\idmmkb.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Common Files\Acronis\Plán2\schedul2.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Norton Internet Security\AddOns\Norton AddOn Pack\Engine\4.5.0.24\ccProxy.exe
c:\program files\Canon\IJPLM\IJPLMSVC.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\system32\oodag.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\windows\System32\PAStiSvc.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\Internet Download Manager\IEMonitor.exe
.
**************************************************************************
.
Celkový čas: 2010-01-29 08:28:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-01-29 07:28
ComboFix2.txt 2010-01-28 07:07
ComboFix3.txt 2009-11-16 09:13
Před spuštěním: Volných bajtů: 106 157 961 216
Po spuštění: Volných bajtů: 106 021 388 288
Current=8 Default=8 Failed=7 LastKnownGood=9 Sets=1,2,3,4,5,6,7,8,9
- - End Of File - - 5462A97B5B8F9E7A926D7DAA400189FC
ComboFix 10-01-27.03 - 1 29.01.2010 8:19.2.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.3327.2763 [GMT 1:00]
Spuštěný z: c:\documents and settings\1\Dokumenty\Downloads\Programs\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\1\Plocha\CFScript.txt
AV: Norton Internet Security *On-access scanning disabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *disabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
file zipped: c:\documents and settings\1\Data aplikací\systemfl.$dk
file zipped: c:\windows\system32\sys_drv.dat
file zipped: c:\windows\system32\sys_drv_2.dat
file zipped: c:\windows\system32\WinFLdrv.sys
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
c:\documents and settings\1\Data aplikací\systemfl.$dk
c:\program files\ICQ6.5\ICQLRun.exe
c:\windows\system32\sys_drv.dat
c:\windows\system32\sys_drv_2.dat
c:\windows\system32\WinFLdrv.sys
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
-------\Legacy_WinFLdrv
-------\Service_WinFLdrv
((((((((((((((((((((((((( Soubory vytvořené od 2009-12-28 do 2010-01-29 )))))))))))))))))))))))))))))))
.
2010-01-28 09:15 . 2010-01-28 09:15 -------- d-----w- c:\program files\SystemRequirementsLab
2010-01-27 08:09 . 2010-01-27 08:09 -------- d-----w- c:\program files\Fighters
2010-01-26 00:00 . 2010-01-26 00:00 0 ----a-w- c:\windows\system32\SBRC.dat
2010-01-24 09:57 . 2010-01-24 10:31 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2010-01-24 08:46 . 2010-01-24 09:05 -------- d-----w- C:\ofice
2010-01-23 10:49 . 2010-01-23 10:49 -------- d-----w- c:\program files\Common Files\DirectX
2010-01-23 10:48 . 2010-01-23 10:48 -------- d-----w- c:\program files\T34vsTiger
2010-01-23 10:45 . 2010-01-23 10:45 -------- d-----w- c:\program files\Lighthouse Interactive
2010-01-22 17:10 . 2010-01-24 10:31 -------- d-----w- c:\program files\Internet Download Manager
2010-01-20 12:42 . 2009-09-09 10:43 210352 ----a-w- c:\windows\system32\idmmbc.dll
2010-01-20 12:32 . 2010-01-24 10:23 -------- d-----w- c:\program files\HDD Observer
2010-01-18 12:52 . 2010-01-18 12:52 -------- d-----w- c:\program files\Redsystem
2010-01-18 11:26 . 2010-01-18 11:26 -------- d-----w- c:\program files\Webteh
2010-01-17 18:23 . 2009-11-17 09:31 30024 ----a-w- c:\windows\system32\uxtuneup.dll
2010-01-17 07:11 . 2010-01-17 07:11 23456 ----a-w- c:\windows\system32\drivers\DrvAgent32.sys
2010-01-16 18:06 . 2008-12-03 16:40 81408 ----a-w- c:\windows\system32\devcon_x64.exe
2010-01-16 18:06 . 2002-11-14 21:32 55808 ----a-w- c:\windows\system32\devcon.exe
2010-01-16 18:06 . 2010-01-17 17:31 -------- d-----w- c:\program files\Driver Checker
2010-01-16 06:32 . 2010-01-16 06:32 180224 ----a-w- c:\windows\system32\WinVd32.sys
2010-01-16 06:31 . 2010-01-16 06:31 7680 ----a-w- c:\windows\system32\WinFLsrv.exe
2010-01-16 05:32 . 2009-05-13 15:30 13360 ----a-w- c:\windows\system32\drivers\sbaphd.sys
2010-01-15 17:52 . 2009-08-10 18:06 69936 ----a-w- c:\windows\system32\drivers\sbapifs.sys
2010-01-15 07:35 . 2010-01-15 07:35 -------- d-----w- c:\program files\Pythagoras s.r.o
2010-01-15 07:28 . 2010-01-15 07:30 -------- d-----w- c:\program files\SuperMp3Download
2010-01-13 17:42 . 2010-01-13 17:41 737280 ----a-w- c:\windows\iun6002.exe
2010-01-13 17:42 . 2010-01-13 17:42 -------- d-----w- c:\program files\Codec Pack - All In 1
2010-01-12 16:25 . 2010-01-12 16:25 -------- d-----w- c:\program files\Asus
2010-01-12 15:38 . 2010-01-12 15:38 -------- d-----w- c:\windows\system32\wbem\Repository
2010-01-12 15:02 . 2010-01-12 15:02 -------- d-----w- c:\program files\Yamicsoft
2010-01-11 21:17 . 2010-01-11 21:17 278120 ----a-w- c:\windows\system32\nvmccs.dll
2010-01-11 21:17 . 2010-01-11 21:17 154216 ----a-w- c:\windows\system32\nvsvc32.exe
2010-01-11 21:17 . 2010-01-11 21:17 145000 ----a-w- c:\windows\system32\nvcolor.exe
2010-01-11 21:17 . 2010-01-11 21:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll
2010-01-11 21:17 . 2010-01-11 21:17 110696 ----a-w- c:\windows\system32\nvmctray.dll
2010-01-11 21:17 . 2010-01-11 21:17 81920 ----a-w- c:\windows\system32\nvwddi.dll
2010-01-11 13:43 . 2010-01-11 13:43 281760 ----a-w- c:\windows\system32\drivers\atksgt.sys
2010-01-11 13:43 . 2010-01-11 13:43 25888 ----a-w- c:\windows\system32\drivers\lirsgt.sys
2010-01-10 18:11 . 2010-01-10 18:11 -------- d-----w- c:\program files\Cyanide
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\program files\Winamp Detect
2010-01-09 17:59 . 2010-01-09 17:59 -------- d-----w- c:\windows\system32\xlive
2010-01-09 10:51 . 2010-01-09 10:51 -------- d-----w- c:\program files\Microsoft Games for Windows - LIVE
2010-01-09 10:48 . 2010-01-09 10:48 -------- d-----w- c:\program files\SEGA
2010-01-08 12:28 . 2010-01-09 17:59 -------- d-----w- c:\program files\Uninstall Password Protect USB
2010-01-08 12:28 . 2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
2010-01-06 07:22 . 2010-01-06 07:22 -------- d-----w- c:\program files\Pošta a kancelář 2
2010-01-04 16:02 . 2010-01-04 16:02 27984 ----a-w- c:\windows\system32\sbbd.exe
2010-01-01 17:48 . 2010-01-01 17:48 23600 ----a-w- c:\windows\system32\drivers\TVICHW32.SYS
2009-12-30 18:50 . 2009-12-30 18:50 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2009-12-30 18:49 . 2009-12-30 18:49 -------- d-----w- c:\program files\Sunbelt Software
2009-12-30 17:11 . 2009-12-30 17:11 -------- d-----w- c:\program files\Auran
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-29 07:22 . 2009-10-14 15:09 -------- d-----w- c:\program files\ICQ6.5
2010-01-28 10:04 . 2008-04-14 06:51 6656 ----a-w- c:\windows\system32\lpcio.dll
2010-01-28 07:45 . 2009-11-29 10:17 -------- d-----w- c:\program files\CPUID
2010-01-26 22:18 . 2001-10-25 16:00 92298 ----a-w- c:\windows\system32\perfc005.dat
2010-01-26 22:18 . 2001-10-25 16:00 462004 ----a-w- c:\windows\system32\perfh005.dat
2010-01-22 19:19 . 2009-10-24 15:46 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-20 17:57 . 2009-10-19 15:06 304160 ----a-w- C:\StiImg.dat
2010-01-17 18:24 . 2009-12-07 12:01 -------- d-----w- c:\program files\TuneUp Utilities 2010
2010-01-17 12:46 . 2009-12-16 07:42 -------- d-----w- c:\program files\Ashampoo
2010-01-12 16:25 . 2009-10-14 14:21 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-01-12 04:03 . 2009-11-26 17:45 61440 ----a-w- c:\windows\system32\OpenCL.dll
2010-01-12 04:03 . 2009-11-26 17:45 11632640 ----a-w- c:\windows\system32\nvcompiler.dll
2010-01-12 04:03 . 2009-09-27 14:12 6359168 ----a-w- c:\windows\system32\nv4_disp.dll
2010-01-12 04:03 . 2009-09-27 14:12 4104192 ----a-w- c:\windows\system32\nvcuda.dll
2010-01-12 04:03 . 2009-09-27 14:12 4077672 ----a-w- c:\windows\system32\nvcuvenc.dll
2010-01-12 04:03 . 2009-09-27 14:12 2283526 ----a-w- c:\windows\system32\nvdata.bin
2010-01-12 04:03 . 2009-09-27 14:12 2259560 ----a-w- c:\windows\system32\nvcuvid.dll
2010-01-12 04:03 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcodins.dll
2010-01-12 04:03 . 2009-09-27 14:12 14458880 ----a-w- c:\windows\system32\nvoglnt.dll
2010-01-12 04:03 . 2009-09-27 14:12 1081344 ----a-w- c:\windows\system32\nvapi.dll
2010-01-12 04:03 . 2009-09-27 14:12 10276768 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2010-01-10 07:26 . 2009-10-23 19:51 -------- d-----w- c:\program files\Bonjour
2010-01-09 17:59 . 2009-10-17 18:42 -------- d-----w- c:\program files\Winamp
2010-01-02 19:23 . 2009-11-16 10:07 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-30 13:55 . 2009-11-16 10:07 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-30 13:54 . 2009-11-16 10:07 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-29 20:27 . 2009-12-29 20:26 -------- d-----w- c:\program files\SweetIM
2009-12-29 19:47 . 2009-10-14 17:42 -------- d-----w- c:\program files\ESET
2009-12-29 19:45 . 2009-12-03 17:17 -------- d-----w- c:\program files\Common Files\PC Tools
2009-12-29 19:43 . 2009-11-28 15:11 -------- d-----w- c:\program files\Smarty Uninstaller Pro
2009-12-29 08:52 . 2009-12-23 17:34 -------- d-----w- c:\program files\Paragon Software
2009-12-28 21:17 . 2009-12-28 21:17 902592 ----a-w- c:\windows\system32\drivers\tdrpm228.sys
2009-12-28 21:16 . 2009-12-28 21:16 138208 ----a-w- c:\windows\system32\drivers\snman423.sys
2009-12-28 21:16 . 2009-12-03 20:01 138208 ----a-w- c:\windows\system32\drivers\snapman.sys
2009-12-28 21:16 . 2009-10-14 15:26 -------- d-----w- c:\program files\Common Files\Acronis
2009-12-28 20:06 . 2009-12-28 20:06 1827240 ----a-w- c:\windows\system32\auto_reactivate.exe
2009-12-28 18:06 . 2009-12-28 18:06 -------- d-----w- c:\program files\oZone3D
2009-12-28 17:02 . 2009-12-28 17:02 -------- d-----w- c:\program files\PowerQuest
2009-12-26 11:13 . 2009-10-14 14:39 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard
2009-12-26 11:13 . 2009-12-26 11:02 -------- d-----w- c:\program files\Common Files\BioWare
2009-12-25 05:01 . 2009-10-17 08:28 24576 --sh--r- C:\bootwiz.sys
2009-12-23 10:13 . 2009-12-22 07:47 -------- d-----w- c:\program files\HDD Regenerator
2009-12-21 19:08 . 2008-03-01 13:02 916480 ------w- c:\windows\system32\wininet.dll
2009-12-20 07:54 . 2009-12-20 07:37 -------- d-----w- c:\program files\Common Files\Nero
2009-12-20 07:45 . 2009-12-20 07:37 -------- d-----w- c:\program files\Nero
2009-12-19 06:31 . 2009-10-23 19:04 -------- d-----w- c:\program files\Norton Internet Security
2009-12-14 11:33 . 2009-10-14 14:53 53248 ----a-w- c:\windows\system32\CSVer.dll
2009-12-14 10:18 . 2009-12-14 10:18 -------- d-----w- c:\program files\Sony
2009-12-13 21:05 . 2009-12-03 18:08 -------- d-----w- c:\program files\Garmin
2009-12-10 13:45 . 2009-11-02 12:01 -------- d-----w- c:\program files\Uniblue
2009-12-10 10:58 . 2009-10-14 16:37 -------- d-----w- c:\program files\Canon
2009-12-10 10:48 . 2009-10-14 14:39 -------- d-----w- c:\program files\AGEIA Technologies
2009-12-10 10:48 . 2009-10-14 14:38 -------- d-----w- c:\program files\NVIDIA Corporation
2009-12-08 17:56 . 2009-12-08 17:56 -------- d-----w- c:\program files\Audio Studio Gold
2009-12-06 15:45 . 2009-10-19 17:19 -------- d-----w- c:\program files\Common Files\Nokia
2009-12-06 15:44 . 2009-10-19 17:19 -------- d-----w- c:\program files\Nokia
2009-12-03 20:01 . 2009-12-03 20:01 160288 ----a-w- c:\windows\system32\drivers\afcdp.sys
2009-12-03 20:01 . 2009-12-03 20:01 911680 ----a-w- c:\windows\system32\drivers\tdrpm258.sys
2009-12-03 20:01 . 2009-12-28 21:17 581984 ----a-w- c:\windows\system32\drivers\timntr.sys
2009-12-03 18:08 . 2009-10-19 17:19 -------- d-----w- c:\program files\DIFX
2009-12-03 16:35 . 2009-12-01 17:17 -------- d-----w- c:\program files\Startup Faster
2009-12-03 06:09 . 2009-11-04 08:21 47408 ----a-r- c:\windows\system32\drivers\SymIM.sys
2009-12-01 17:46 . 2009-12-01 17:46 -------- d-----w- c:\program files\Common Files\PCSuite
2009-12-01 17:45 . 2009-12-01 17:45 -------- d-----w- c:\program files\PC Connectivity Solution
2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- c:\windows\system32\xliveinstall.dll
2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- c:\windows\system32\xliveinstallhost.exe
2009-11-21 16:03 . 2008-04-14 06:51 471552 ----a-w- c:\windows\AppPatch\aclayers.dll
2009-11-21 02:34 . 2009-09-27 14:12 182888 ----a-w- c:\windows\system32\nvcod.dll
2009-11-19 14:02 . 2009-11-19 14:02 191488 ----a-w- c:\windows\system32\hlvdd.dll
2009-11-17 09:37 . 2009-12-07 12:01 29512 ----a-w- c:\windows\system32\TURegOpt.exe
2009-11-06 09:59 . 2009-11-06 09:59 15406728 ----a-w- c:\windows\system32\xlive.dll
2009-11-06 09:59 . 2009-11-06 09:59 13642888 ----a-w- c:\windows\system32\xlivefnt.dll
2009-11-02 19:42 . 2009-10-14 22:33 195456 ------w- c:\windows\system32\MpSigStub.exe
2005-08-24 22:10 . 2010-01-08 12:28 174592 --sha-w- c:\windows\system32\ncfpsys.exe
.
------- Sigcheck -------
[-] 2008-05-19 . E3B22F050F840306FD522227F68046C5 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
((((((((((((((((((((((((((((( SnapShot@2010-01-28_07.06.15 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-01-29 07:24 . 2010-01-29 07:24 16384 c:\windows\Temp\Perflib_Perfdata_328.dat
+ 2010-01-28 09:20 . 2009-11-21 02:34 69632 c:\windows\system32\ReinstallBackups\0024\DriverFiles\OpenCL.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 592488 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvudisp.exe
+ 2010-01-28 09:20 . 2009-11-21 02:34 182888 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcod.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 2293286 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvdata.bin
+ 2010-01-28 09:20 . 2009-11-21 02:34 2259560 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcuvid.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 1989224 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcuvenc.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 4038656 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcuda.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 1056768 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvapi.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 6282752 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nv4_disp.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 13602816 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvoglnt.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 11374592 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nvcompiler.dll
+ 2010-01-28 09:20 . 2009-11-21 02:34 10235968 c:\windows\system32\ReinstallBackups\0024\DriverFiles\nv4_mini.sys
+ 2009-09-27 14:12 . 2010-01-12 04:03 10276768 c:\windows\system32\dllcache\nv4_mini.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{57BCA5FA-5DBB-45a2-B558-1755C3F6253B}"= "c:\program files\Winamp Toolbar\winamptb.dll" [2009-05-06 1262888]
"{EEE6C35D-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll" [2009-10-19 187192]
[HKEY_CLASSES_ROOT\clsid\{57bca5fa-5dbb-45a2-b558-1755c3f6253b}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch.1]
[HKEY_CLASSES_ROOT\TypeLib\{538CD77C-BFDD-49b0-9562-77419CAB89D1}]
[HKEY_CLASSES_ROOT\WINAMPTB.AOLTBSearch]
[HKEY_CLASSES_ROOT\clsid\{eee6c35d-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35F-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SweetIM_URLSearchHook.ToolbarURLSearchHook]
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{EEE6C35C-6118-11DC-9C72-001320C79847}]
2009-10-19 15:15 1345336 ----a-w- c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{EEE6C35B-6118-11DC-9C72-001320C79847}"= "c:\program files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll" [2009-10-19 1345336]
[HKEY_CLASSES_ROOT\clsid\{eee6c35b-6118-11dc-9c72-001320c79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar.1]
[HKEY_CLASSES_ROOT\TypeLib\{EEE6C35E-6118-11DC-9C72-001320C79847}]
[HKEY_CLASSES_ROOT\SWEETIE.IEToolbar]
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IDMan"="c:\program files\Internet Download Manager\IDMan.exe" [2010-01-22 3179952]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2010-01-11 13666408]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2010-01-11 110696]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"nltide_2"="shell32" [X]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"NoResolveTrack"= 1 (0x1)
"NoFileAssociate"= 0 (0x0)
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2009-09-03 13:21 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.dll
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0c:\progra~1\Paragon Software\Partition Manager 10.0 Personal\bluescrn\bluescrn.exe
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Aktualizovat ESET licenci.lnk]
backup=c:\windows\pss\Aktualizovat ESET licenci.lnkCommon Startup
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
backup=c:\windows\pss\Windows Search.lnkCommon Startup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaMServer]
c:\program files\Common Files\Nokia\MPlatform\NokiaMServer [X]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\36X Raid Configurer]
2007-11-19 09:01 1970176 ----a-w- c:\windows\system32\xRaidSetup.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Acronis Služba Plánovač2]
2009-05-19 22:19 377528 ----a-w- c:\program files\Common Files\Acronis\Schedule2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AcronisTimounterMonitor]
2009-05-19 22:25 962192 ----a-w- c:\program files\Acronis\TrueImageHome\TimounterMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2009-12-11 14:57 948672 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
2009-12-22 00:57 35760 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcoholAutomount]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ashampoo Core Tuner]
2009-09-25 14:03 3334488 ----a-w- c:\program files\Ashampoo\Ashampoo Core Tuner\ct.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\axcmd]
2009-04-24 03:21 203928 ----a-w- c:\program files\Alcohol Soft\Alcohol 120\AxCmd.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BDRegion]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BJMyPrt]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\brs]
2009-08-05 20:59 75048 ----a-w- c:\program files\CyberLink\Shared files\brs.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonMyPrinter]
2009-10-19 01:12 1983816 ----a-w- c:\program files\Canon\MyPrinter\BJMYPRT.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CanonSolutionMenu]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CNSLMAIN]
2007-05-14 16:01 644696 ----a-w- c:\program files\Canon\SolutionMenu\CNSLMAIN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GoogleToolbarNotifier]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2008-10-25 09:44 31072 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HDD Observer]
2010-01-12 12:30 238592 ----a-w- c:\program files\HDD Observer\HDD Observer.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IDMan]
2010-01-22 17:11 3179952 ----a-w- c:\program files\Internet Download Manager\IDMan.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2009-09-21 14:36 305440 ----a-w- c:\program files\iTunes\iTunesHelper.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\JMB36X IDE Setup]
2007-03-20 12:36 36864 ----a-w- c:\windows\RaidTool\xInsIDE.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\jusched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Language]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
2009-12-30 13:55 1389904 ----a-w- c:\program files\Malwarebytes' Anti-Malware\mbam.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSASCui]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NokiaOviSuite2]
2009-10-27 14:10 401728 ----a-w- c:\program files\Nokia\Nokia Ovi Suite\NokiaOviSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2010-01-11 21:17 13666408 ----a-w- c:\windows\system32\nvcpl.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2010-01-11 21:17 110696 ----a-w- c:\windows\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OEXPRESS]
2010-01-08 14:48 26624 ----a-w- c:\documents and settings\All Users\Data aplikací\LangSoft\OETRN.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
2009-04-07 23:39 2553088 ----a-w- c:\windows\system32\oodtray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
2007-02-04 10:02 79400 ----a-w- c:\program files\ScanSoft\OmniPageSE4\OpWareSE4.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OSSelectorReinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\oss_reinstall]
2007-03-15 08:06 2225208 ----a-w- c:\program files\Common Files\Acronis\Acronis Disk Director\oss_reinstall.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Password Protect USB 3.6.1]
2005-08-24 22:10 174592 --sha-w- c:\windows\system32\ncfpsys.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PC Suite Tray]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCSuite]
2009-11-11 09:57 1451520 ----a-w- c:\program files\Nokia\Nokia PC Suite 7\PCSuite.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9LanguageShortcut]
2009-04-27 15:50 50472 ------w- c:\program files\CyberLink\PowerDVD9\Language\Language.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDVD9Serv]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QTTask]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2009-09-04 23:54 417792 ----a-w- c:\program files\QuickTime\QTTask.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RemoteControl9]
2009-07-06 12:22 87336 ------w- c:\program files\CyberLink\PowerDVD9\PDVD9Serv.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RTHDCPL]
2009-10-06 15:34 18750976 ----a-w- c:\windows\RTHDCPL.EXE
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SBAMTray]
2010-01-04 16:22 685392 ----a-w- c:\program files\Sunbelt Software\CounterSpy\SBAMTray.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Služba Acronis Scheduler2]
2009-11-26 16:45 361976 ----a-w- c:\program files\Common Files\Acronis\Plán2\schedhlp.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2006-10-25 07:03 210472 ----a-w- c:\program files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2009-10-16 06:30 149280 ----a-w- c:\program files\Java\jre6\bin\jusched.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
2009-11-24 06:09 2001648 ----a-w- c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SweetIM]
2009-10-20 12:59 111928 ----a-r- c:\program files\SweetIM\Messenger\SweetIM.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-10-14 17:47 68856 ----a-w- c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrueImageMonitor.exe]
2009-05-19 22:02 4381776 ----a-w- c:\program files\Acronis\TrueImageHome\TrueImageMonitor.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdatePDRShortCut]
2008-12-03 20:15 218408 ----a-w- c:\program files\CyberLink\PowerDirector\MUITransfer\MUIStartMenu.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\winampa]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
2009-12-21 05:45 39424 ----a-w- c:\program files\Winamp\winampa.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
2006-11-03 17:20 866584 ----a-w- c:\program files\Windows Defender\MSASCui.exe
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"NvCplDaemon"=RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\CyberLink\\PowerDVD9\\PowerDVD9.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"e:\\HRY\\Sins of a Solar Empire\\Sins of a Solar Empire.exe"=
"c:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daorigins.exe"=
"e:\\HRY\\Dragon Age\\DAOriginsLauncher.exe"=
"e:\\HRY\\Dragon Age\\bin_ship\\daupdatersvc.service.exe"=
"c:\\Program Files\\SEGA\\Vancouver 2010\\Vancouver.exe"=
"c:\\Program Files\\Cyanide\\GameCenter\\GameCenter.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
R0 hotcore3;hc3ServiceName;c:\windows\system32\drivers\hotcore3.sys [23.12.2009 18:35 40560]
R0 pe3ah4nb;DiRT Environment Driver (pe3ah4nb);c:\windows\system32\drivers\pe3ah4nb.sys [19.7.2007 15:45 64616]
R0 ps6ah4nb;DiRT Synchronization Driver (ps6ah4nb);c:\windows\system32\drivers\ps6ah4nb.sys [19.7.2007 15:43 68208]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [16.10.2009 7:42 721904]
R0 SymDS;Symantec Data Store;c:\windows\system32\drivers\NIS\1105000.07F\symds.sys [22.1.2010 14:06 328752]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\NIS\1105000.07F\symefa.sys [22.1.2010 14:06 172592]
R0 tdrpman258;Acronis Try&Decide and Restore Points filter (build 258);c:\windows\system32\drivers\tdrpm258.sys [3.12.2009 21:01 911680]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\NIS\1105000.07F\cchpx86.sys [22.1.2010 14:06 501888]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [23.11.2009 8:43 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [23.11.2009 8:43 74480]
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [16.1.2010 6:32 13360]
R1 SymIRON;Symantec Iron Driver;c:\windows\system32\drivers\NIS\1105000.07F\ironx86.sys [22.1.2010 14:06 116272]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/10/21 20:22];c:\program files\CyberLink\PowerDVD9\000.fcl [5.8.2009 21:58 87536]
R2 ABBYY.Licensing.FineReader.Corporate.9.0;ABBYY FineReader 9.0 CE Licensing Service;c:\program files\Common Files\ABBYY\FineReader\9.00\Licensing\CE\NetworkLicenseServer.exe [27.10.2008 17:03 759072]
R2 afcdpsrv;Acronis Nonstop Backup service;c:\program files\Common Files\Acronis\CDP\afcdpsrv.exe [3.12.2009 21:01 2480048]
R2 BHDrvx86;BHDrvx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20100128.001\BHDrvx86.sys [28.1.2010 8:10 529456]
R2 cpuz132;cpuz132;c:\windows\system32\drivers\cpuz132_x32.sys [29.11.2009 11:17 17056]
R2 HDD Observer Service;HDD Observer Service;c:\program files\HDD Observer\HDDObserver.Service.exe [20.1.2010 13:32 7680]
R2 NIS;Norton Internet Security;c:\program files\Norton Internet Security\Engine\17.5.0.127\ccsvchst.exe [22.1.2010 14:06 126392]
R2 NSHE;Guardant Emulator Driver;c:\windows\system32\drivers\NSHE.SYS [19.11.2009 15:30 97792]
R2 SBAMSvc;CounterSpy Antispyware;c:\program files\Sunbelt Software\CounterSpy\SBAMSvc.exe [4.1.2010 17:02 1012080]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [15.1.2010 18:52 69936]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesService32.exe [17.11.2009 10:34 1021256]
R3 adatadrv;Autodata Protection Service;c:\windows\system32\drivers\adatadrv.sys [21.11.2009 14:28 762112]
R3 afcdp;afcdp;c:\windows\system32\drivers\afcdp.sys [3.12.2009 21:01 160288]
R3 AtcL001;NDIS Miniport Driver for Attansic L1 Gigabit Ethernet Controller;c:\windows\system32\drivers\atl01_xp.sys [14.10.2009 15:23 38656]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [7.12.2009 5:42 102448]
R3 IDSxpx86;IDSxpx86;c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20100125.001\IDSXpx86.sys [28.1.2010 8:10 329592]
R3 PAC207;Trust WB-1400T Webcam;c:\windows\system32\drivers\PFC027.sys [24.2.2005 11:29 162176]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesDriver32.sys [14.10.2009 7:24 10064]
S2 pr2ah4nb;DiRT Drivers Auto Removal (pr2ah4nb);c:\windows\system32\pr2ah4nb.exe svc --> c:\windows\system32\pr2ah4nb.exe svc [?]
S2 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [3.11.2006 18:19 13592]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [17.10.2009 9:23 1684736]
S3 BioNT_BS;BioNT_BS;c:\program files\Paragon Software\Partition Manager 10.0 Personal\bluescrn\biont_bs.sys [29.9.2009 13:06 18248]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu;e:\hry\Dragon Age\bin_ship\daupdatersvc.service.exe [26.12.2009 12:09 25832]
S3 DfSdkS;Defragmentation-Service;c:\program files\Ashampoo\Ashampoo WinOptimizer 2010 Advanced\DfSdkS.exe [16.12.2009 8:43 406016]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [17.1.2010 8:11 23456]
S3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [23.11.2009 8:43 7408]
S3 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [13.10.2009 8:22 95024]
S3 TVICHW32;TVICHW32;c:\windows\system32\drivers\TVICHW32.SYS [1.1.2010 18:48 23600]
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
UxTuneUp
.
Obsah adresáře 'Naplánované úlohy'
2010-01-25 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 10:34]
2010-01-29 c:\windows\Tasks\Automatic troubleshooting.job
- c:\program files\TuneUp Utilities 2010\TuneUpSystemStatusCheck.exe [2009-11-17 09:40]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
mStart Page = hxxp://securityresponse.symantec.com/avcenter/fix_homepage/
uInternet Settings,ProxyOverride = *.local
IE: &Stáhnout FlashGetem
IE: &Stáhnout všechno FlashGetem
IE: &Winamp Search - c:\documents and settings\All Users\Data aplikací\Winamp Toolbar\ieToolbar\resources\en-US\local\search.html
IE: Download all links with IDM - c:\program files\Internet Download Manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\Internet Download Manager\IEGetVL.htm
IE: Download with IDM - c:\program files\Internet Download Manager\IEExt.htm
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
LSP: c:\windows\system32\idmmbc.dll
FF - ProfilePath - c:\documents and settings\1\Data aplikací\Mozilla\Firefox\Profiles\f6vkytno.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.sweetim.com/search.asp?src=2&q=
FF - component: c:\documents and settings\1\Data aplikací\IDM\idmmzcc3\components\idmmzcc.dll
FF - component: c:\documents and settings\1\Data aplikací\Mozilla\Firefox\Profiles\f6vkytno.default\extensions\{003D3EDC-99B9-4a34-9C20-60CB94F7E829}\components\nsWebFF15.dll
FF - component: c:\documents and settings\All Users\Data aplikací\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\components\coFFPlgn.dll
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\Canon\Easy-PhotoPrint EX\NPEZFFPI.DLL
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
---- NASTAVENÍ FIREFOXU ----
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
FF - user.js: browser.blink_allowed - true
FF - user.js: network.prefetch-next - true
FF - user.js: layout.spellcheckDefault - 1
FF - user.js: browser.urlbar.autoFill - false
FF - user.js: browser.search.openintab - false
FF - user.js: browser.tabs.closeButtons - 1
FF - user.js: browser.tabs.opentabfor.middleclick - true
FF - user.js: browser.tabs.tabMinWidth - 100
FF - user.js: browser.urlbar.hideGoButton - false
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
MSConfigStartUp-nwiz - nwiz.exe
**************************************************************************
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-29 08:26
Windows 5.1.2600 Service Pack 3 NTFS
skenování skrytých procesů ...
skenování skrytých položek 'Po spuštění' ...
skenování skrytých souborů ...
sken byl úspešně dokončen
skryté soubory: 0
**************************************************************************
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys spew.sys >>UNKNOWN [0x8B2E9938]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xb810cf28
\Driver\ACPI -> ACPI.sys @ 0xb7e66cb8
\Driver\atapi -> atapi.sys @ 0xb7dcab40
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x805836a8
ParseProcedure -> ntkrnlpa.exe @ 0x805827e8
NDIS: Attansic L1 Gigabit Ethernet 10/100/1000Base-T Controller -> SendCompleteHandler -> NDIS.sys @ 0xb7c3dbb0
PacketIndicateHandler -> NDIS.sys @ 0xb7c4aa21
SendHandler -> NDIS.sys @ 0xb7c2887b
user & kernel MBR OK
**************************************************************************
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\NIS]
"ImagePath"="\"c:\program files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe\" /s \"NIS\" /m \"c:\program files\Norton Internet Security\Engine\17.5.0.127\diMaster.dll\" /prefetch:1"
[HKEY_LOCAL_MACHINE\System\ControlSet008\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
- - - - - - - > 'winlogon.exe'(1580)
c:\program files\SUPERAntiSpyware\SASWINLO.dll
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\UIREPAIR.DLL
c:\documents and settings\1\Data aplikací\SUPERAntiSpyware.com\SUPERAntiSpyware\SDDLLS\SD10005.dll
- - - - - - - > 'explorer.exe'(3616)
c:\program files\Windows Desktop Search\deskbar.dll
c:\program files\Windows Desktop Search\cs-cz\dbres.dll.mui
c:\program files\Windows Desktop Search\dbres.dll
c:\program files\Windows Desktop Search\wordwheel.dll
c:\program files\Windows Desktop Search\cs-cz\msnlExtRes.dll.mui
c:\program files\Windows Desktop Search\msnlExtRes.dll
c:\program files\Internet Download Manager\idmmkb.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\program files\Nokia\Nokia PC Suite 7\PhoneBrowser.dll
c:\program files\Nokia\Nokia PC Suite 7\NGSCM.DLL
c:\program files\Nokia\Nokia PC Suite 7\Lang\PhoneBrowser_cze.nlr
c:\program files\Nokia\Nokia PC Suite 7\Resource\PhoneBrowser_Nokia.ngr
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\windows\system32\nvsvc32.exe
c:\program files\Common Files\Acronis\Plán2\schedul2.exe
c:\program files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
c:\program files\Common Files\Autodata Limited Shared\Service\ADCDLicSvc.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Norton Internet Security\AddOns\Norton AddOn Pack\Engine\4.5.0.24\ccProxy.exe
c:\program files\Canon\IJPLM\IJPLMSVC.EXE
c:\program files\Java\jre6\bin\jqs.exe
c:\program files\Common Files\Nero\Nero BackItUp 4\NBService.exe
c:\windows\system32\oodag.exe
c:\program files\CyberLink\Shared files\RichVideo.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
c:\windows\System32\PAStiSvc.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\wbem\wmiapsrv.exe
c:\windows\system32\wscntfy.exe
c:\program files\TuneUp Utilities 2010\TuneUpUtilitiesApp32.exe
c:\program files\Internet Download Manager\IEMonitor.exe
.
**************************************************************************
.
Celkový čas: 2010-01-29 08:28:16 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-01-29 07:28
ComboFix2.txt 2010-01-28 07:07
ComboFix3.txt 2009-11-16 09:13
Před spuštěním: Volných bajtů: 106 157 961 216
Po spuštění: Volných bajtů: 106 021 388 288
Current=8 Default=8 Failed=7 LastKnownGood=9 Sets=1,2,3,4,5,6,7,8,9
- - End Of File - - 5462A97B5B8F9E7A926D7DAA400189FC
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený start Win-XP a zasekávání PC
CF vše smazal. Ještě poprosím o kontrolu MBR: http://www2.gmer.net/mbr/mbr.exe a log z něj.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený start Win-XP a zasekávání PC
Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net
device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK
device: opened successfully
user: MBR read successfully
kernel: MBR read successfully
user & kernel MBR OK
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený start Win-XP a zasekávání PC
MBR je v pořádku a PC vypadá čistý. Nastala nějaká změna?
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený start Win-XP a zasekávání PC
to sekání pc přestalo a ten start je pořád pomalejší ale už je to v mezích.předtím to trvalo o moc déle
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený start Win-XP a zasekávání PC
Už zbývá jen optimalizace pomocí XPManageru: http://www.viry.cz/forum/viewtopic.php?f=46&t=17549 .
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Re: Zpomalený start Win-XP a zasekávání PC
moc děkuji za pomoc.je to lepší
-
Rudy
- Site Admin
- Příspěvky: 118275
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Zpomalený start Win-XP a zasekávání PC
Nemáte zač!
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?