Zdarvím.Stáhl jsem jeden program a jak sem ho otevrel tak me tam naskocila stranka http://myego.cz/extra/cv.Ted se mne kazdych 20 minut vypne pocitac.Nevite prosim vas co stim?
Log:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Doma at 2010-10-28 20:06:00
Microsoft Windows 7 Ultimate
System drive C: has 85 GB (36%) free of 238 GB
Total RAM: 2047 MB (47% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 20:06:05, on 28.10.2010
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16671)
Boot mode: Normal
Running processes:
C:\Program Files (x86)\IObit\Advanced SystemCare 3\AWC.exe
C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\DNA\btdna.exe
C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE
C:\Program Files (x86)\uTorrent\uTorrent.exe
C:\Program Files (x86)\Xfire\Xfire.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files\trend micro\Doma.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.qip.ru
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.qip.ru/ie
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.qip.ru
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://eu.ask.com?o=15161&l=dis
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.qip.ru/ie
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: UrlSearchHook Class - {00000000-6E41-4FD3-8538-502F5495E5FC} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
R3 - URLSearchHook: QIPBHO Class - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
R3 - URLSearchHook: (no name) - - (no file)
R3 - URLSearchHook: Hunt TB Toolbar - {d3f4b70a-92e0-4393-a0f3-976d03b1ebf5} - C:\Program Files (x86)\Hunt_TB\tbHunt.dll
R3 - URLSearchHook: (no name) - {00A6FAF6-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
F2 - REG:system.ini: UserInit=userinit.exe
O2 - BHO: MyWebSearch Search Assistant BHO - {00A6FAF1-072E-44cf-8957-5838F569A31D} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL
O2 - BHO: mwsBar BHO - {07B18EA1-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.4.8.11.dll
O2 - BHO: RadioBar Toolbar - {5B291E6C-9A74-4034-971B-A4B007A0B315} - C:\Program Files (x86)\RadioBar\toolbar.ni.dll
O2 - BHO: QipLI - {6B5863A0-C43F-4C0A-982B-CC0E9125783F} - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll
O2 - BHO: QIPBHO - {A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE} - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll
O2 - BHO: Hunt TB Toolbar - {d3f4b70a-92e0-4393-a0f3-976d03b1ebf5} - C:\Program Files (x86)\Hunt_TB\tbHunt.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll
O3 - Toolbar: RadioBar Toolbar - {5B291E6C-9A74-4034-971B-A4B007A0B315} - C:\Program Files (x86)\RadioBar\toolbar.ni.dll
O3 - Toolbar: Hunt TB Toolbar - {d3f4b70a-92e0-4393-a0f3-976d03b1ebf5} - C:\Program Files (x86)\Hunt_TB\tbHunt.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll
O3 - Toolbar: My Web Search - {07B18EA9-A523-4961-B6BB-170DE4475CCA} - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKLM\..\Run: [ISUSScheduler] "C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [My Web Search Bar Search Scope Monitor] "C:\PROGRA~2\MYWEBS~1\bar\1.bin\m3SrchMn.exe" /m=2 /w /h
O4 - HKLM\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKLM\..\Run: [LogMeIn Hamachi Ui] "C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
O4 - HKLM\..\Run: [reset] regedit /s reset.reg
O4 - HKCU\..\Run: [Google Update] "C:\Users\Doma\AppData\Local\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [EA Core] "C:\Program Files (x86)\Electronic Arts\EADM\Core.exe" -silent
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ISUSPM Startup] C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Program Files (x86)\DNA\btdna.exe"
O4 - HKCU\..\Run: [MyWebSearch Email Plugin] C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwsoemon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files (x86)\uTorrent\uTorrent.exe"
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'NETWORK SERVICE')
O4 - Startup: FIFA 11 Registration.lnk = C:\Program Files (x86)\EA Sports\FIFA 11\Support\EAregister.exe
O4 - Startup: hamachi.lnk = C:\Program Files (x86)\Hamachi\hamachi.exe
O4 - Startup: Registrace FIFA 11.lnk = C:\Program Files (x86)\EA Sports\FIFA 11\Support\EAregister.exe
O4 - Startup: Xfire.lnk = C:\Program Files (x86)\Xfire\Xfire.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\Windows\system32\GPhotos.scr/200
O8 - Extra context menu item: Stáhnout odkaz s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddLink.htm
O8 - Extra context menu item: Stáhnout všechny odkazy s použitím BitCometu - res://C:\Program Files (x86)\BitComet\BitComet.exe/AddAllLink.htm
O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.4.8.11.dll/206 (file missing)
O16 - DPF: {1D4DB7D2-6EC9-47A3-BD87-1E41684E07BB} - http://ak.exe.imgfarm.com/images/nocach ... .0.1.1.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{9E446CC1-9FFB-488F-9A09-DF8F6F1F1DF9}: NameServer = 77.48.65.3,10.97.145.1
O18 - Protocol: toolbarchrome - {718733BC-AD64-4E5F-AC18-A85FBD75D54D} - C:\Program Files (x86)\RadioBar\toolbar.ni.dll
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: AMD External Events Utility - Unknown owner - C:\Windows\system32\atiesrxx.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Dragon Age: Prameny - aktualizace obsahu (DAUpdaterSvc) - BioWare - C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe
O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: My Web Search Service (MyWebSearchService) - MyWebSearch.com - C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Wat\WatUX.exe,-601 (WatAdminSvc) - Unknown owner - C:\Windows\system32\Wat\WatAdminSvc.exe (file missing)
O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)
--
End of file - 11736 bytes
======Listing Processes======
\SystemRoot\System32\smss.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
wininit.exe
%SystemRoot%\system32\csrss.exe ObjectDirectory=\Windows SharedSection=1024,20480,768 Windows=On SubSystemType=Windows ServerDll=basesrv,1 ServerDll=winsrv:UserServerDllInitialization,3 ServerDll=winsrv:ConServerDllInitialization,2 ServerDll=sxssrv,4 ProfileControl=Off MaxRequestThreads=16
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
winlogon.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
atieclxx
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
"C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe"
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
"C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe"
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe" -s
C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
"C:\Program Files (x86)\Avira\AntiVir Desktop\avshadow.exe" avshadowcontrol0_000005d8
\??\C:\Windows\system32\conhost.exe
"taskhost.exe"
taskeng.exe {50B3580F-9744-45D4-874D-2C59B48ADCA4}
"C:\Program Files (x86)\IObit\Advanced SystemCare 3\AWC.exe" /startup
"C:\Windows\system32\Dwm.exe"
C:\Windows\Explorer.EXE
"C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
"C:\Program Files\Windows Sidebar\sidebar.exe" /autoRun
"C:\Program Files (x86)\DNA\btdna.exe"
"C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSOEMON.EXE"
"C:\Program Files (x86)\uTorrent\uTorrent.exe"
"C:\Program Files (x86)\Xfire\Xfire.exe"
"C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
"C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe" -start
"C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM"
"C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe" --auto-start
"C:\Program Files (x86)\Xfire\xfire64.exe" xfire64.exe /pid 2368
C:\Windows\system32\SearchIndexer.exe /Embedding
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
"C:\Windows\system32\WUDFHost.exe" -HostGUID:{193a1820-d9ac-4997-8c55-be817523f6aa} -IoEventPortName:HostProcess-d92b49f4-7e3a-499b-b8bc-f65d353bcbf3 -SystemEventPortName:HostProcess-eb910518-658c-48b5-9e44-d41e3f17bd5d -IoCancelEventPortName:HostProcess-edb37f71-6001-4d13-9d32-d051d43c57e6 -NonStateChangingEventPortName:HostProcess-40da2d78-6187-49a1-9b3f-ac50cbdbf113 -ServiceSID:S-1-5-80-2652678385-582572993-1835434367-1344795993-749280709 -LifetimeId:39be3828-8af0-491d-9d0d-c9464f8d788e
"C:\Program Files\Windows Media Player\wmpnetwk.exe"
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe"
"C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe" 0
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=3396.043A8C00.892460319 /prefetch:3
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=3396.0272F000.536001921 /prefetch:3 --ignored=" --type=renderer "
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe" --type=extension --lang=cs --force-fieldtest=ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=3396.0272F900.1503646410 /prefetch:3 --ignored=" --type=renderer "
"C:\Program Files (x86)\Xfire\xfire64.exe" xfire64.exe /pid 2368
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe" --type=plugin --plugin-path="C:\Users\Doma\AppData\Local\Google\Chrome\Application\7.0.517.41\gcswf32.dll" --lang=cs --plugin-data-dir="C:\Users\Doma\AppData\Local\Google\Chrome\User Data\Default" --channel=3396.06BF044C.1395470095 /prefetch:4
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_6/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=3396.07C97480.434130573 /prefetch:3
"C:\Users\Doma\AppData\Local\Google\Chrome\Application\chrome.exe" --type=renderer --lang=cs --force-fieldtest=CacheSize/CacheSizeGroup_6/ConnCountImpact/conn_count_6/ConnnectBackupJobs/ConnectBackupJobsEnabled/DnsImpact/default_enabled_prefetch/GlobalSdch/global_enable_sdch/IdleSktToImpact/idle_timeout_60/Prefetch/ContentPrefetchDisabled/ProxyConnectionImpact/proxy_connections_32/SpdyImpact/npn_with_spdy/ --channel=3396.043A8000.873585275 /prefetch:3
C:\Windows\system32\sppsvc.exe
C:\Windows\System32\svchost.exe -k secsvcs
taskhost.exe $(Arg0)
C:\Windows\system32\wbem\wmiprvse.exe
"C:\Windows\system32\SearchProtocolHost.exe" Global\UsGthrFltPipeMssGthrPipe3_ Global\UsGthrCtrlFltPipeMssGthrPipe3 1 -2147483646 "Software\Microsoft\Windows Search" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT; MS Search 4.0 Robot)" "C:\ProgramData\Microsoft\Search\Data\Temp\usgthrsvc" "DownLevelDaemon"
"C:\Windows\system32\SearchFilterHost.exe" 0 508 512 520 65536 516
"C:\Users\Doma\Desktop\RSITx64.exe"
======Scheduled tasks folder======
C:\Windows\tasks\At1.job
C:\Windows\tasks\At10.job
C:\Windows\tasks\At11.job
C:\Windows\tasks\At12.job
C:\Windows\tasks\At13.job
C:\Windows\tasks\At14.job
C:\Windows\tasks\At15.job
C:\Windows\tasks\At16.job
C:\Windows\tasks\At17.job
C:\Windows\tasks\At18.job
C:\Windows\tasks\At19.job
C:\Windows\tasks\At2.job
C:\Windows\tasks\At20.job
C:\Windows\tasks\At21.job
C:\Windows\tasks\At22.job
C:\Windows\tasks\At23.job
C:\Windows\tasks\At24.job
C:\Windows\tasks\At25.job
C:\Windows\tasks\At26.job
C:\Windows\tasks\At27.job
C:\Windows\tasks\At28.job
C:\Windows\tasks\At29.job
C:\Windows\tasks\At3.job
C:\Windows\tasks\At30.job
C:\Windows\tasks\At31.job
C:\Windows\tasks\At32.job
C:\Windows\tasks\At33.job
C:\Windows\tasks\At34.job
C:\Windows\tasks\At35.job
C:\Windows\tasks\At36.job
C:\Windows\tasks\At37.job
C:\Windows\tasks\At38.job
C:\Windows\tasks\At39.job
C:\Windows\tasks\At4.job
C:\Windows\tasks\At40.job
C:\Windows\tasks\At41.job
C:\Windows\tasks\At42.job
C:\Windows\tasks\At43.job
C:\Windows\tasks\At44.job
C:\Windows\tasks\At45.job
C:\Windows\tasks\At46.job
C:\Windows\tasks\At5.job
C:\Windows\tasks\At6.job
C:\Windows\tasks\At7.job
C:\Windows\tasks\At8.job
C:\Windows\tasks\At9.job
C:\Windows\tasks\AWC Startup.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3613523559-1804579166-700084293-1000Core.job
C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3613523559-1804579166-700084293-1000UA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{00A6FAF1-072E-44cf-8957-5838F569A31D}]
MyWebSearch Search Assistant BHO - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSSRCAS.DLL [2010-09-21 54704]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{07B18EA1-A523-4961-B6BB-170DE4475CCA}]
mwsBar BHO - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2010-09-21 775696]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-09-12 3863136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{39F7E362-828A-4B5A-BCAF-5B79BFDFEA60}]
BitComet Helper - C:\Program Files (x86)\BitComet\tools\BitCometBHO_1.4.8.11.dll [2010-08-11 735024]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5B291E6C-9A74-4034-971B-A4B007A0B315}]
RadioBar Toolbar - C:\Program Files (x86)\RadioBar\toolbar.ni.dll [2010-01-11 451808]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6B5863A0-C43F-4C0A-982B-CC0E9125783F}]
QipLI Class - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qstatsrv.dll [2010-06-10 48080]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{A55F9C95-2BB1-4EA2-BC77-DFAAB78832CE}]
QIPBHO Class - C:\Users\Doma\AppData\Roaming\Microsoft\Internet Explorer\qipsearchbar.dll [2010-06-10 149968]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{d3f4b70a-92e0-4393-a0f3-976d03b1ebf5}]
Hunt TB Toolbar - C:\Program Files (x86)\Hunt_TB\tbHunt.dll [2010-09-12 3863136]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [2010-08-23 41760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll [2010-03-25 1548096]
[HKEY_LOCAL_MACHINE\SOFTWARE\wow6432node\Microsoft\Internet Explorer\Toolbar]
{32099AAC-C132-4136-9E9A-4E364A424E17} - DAEMON Tools Toolbar - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll [2010-03-25 968000]
{5B291E6C-9A74-4034-971B-A4B007A0B315} - RadioBar Toolbar - C:\Program Files (x86)\RadioBar\toolbar.ni.dll [2010-01-11 451808]
{d3f4b70a-92e0-4393-a0f3-976d03b1ebf5} - Hunt TB Toolbar - C:\Program Files (x86)\Hunt_TB\tbHunt.dll [2010-09-12 3863136]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files (x86)\ConduitEngine\ConduitEngine.dll [2010-09-12 3863136]
{07B18EA9-A523-4961-B6BB-170DE4475CCA} - My Web Search - C:\Program Files (x86)\MyWebSearch\bar\1.bin\MWSBAR.DLL [2010-09-21 775696]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files (x86)\Ask.com\GenericAskToolbar.dll [2010-09-28 1400712]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Google Update"=C:\Users\Doma\AppData\Local\Google\Update\GoogleUpdate.exe [2010-07-29 136176]
"EA Core"=C:\Program Files (x86)\Electronic Arts\EADM\Core.exe [2009-09-03 3342336]
"DAEMON Tools Lite"=C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1475072]
"ISUSPM Startup"=C:\PROGRA~2\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe [2004-06-16 221184]
"BitTorrent DNA"=C:\Program Files (x86)\DNA\btdna.exe [2010-09-20 323392]
"MyWebSearch Email Plugin"=C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwsoemon.exe [2010-09-21 32849]
"uTorrent"=C:\Program Files (x86)\uTorrent\uTorrent.exe [2010-10-13 328056]
[HKEY_LOCAL_MACHINE\Software\wow6432node\Microsoft\Windows\CurrentVersion\Run]
"StartCCC"=C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-07-06 98304]
"avgnt"=C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe [2010-03-02 282792]
"ISUSScheduler"=C:\Program Files (x86)\Common Files\InstallShield\UpdateService\issch.exe [2004-06-16 81920]
"SunJavaUpdateSched"=C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"My Web Search Bar Search Scope Monitor"=C:\PROGRA~2\MYWEBS~1\bar\1.bin\m3SrchMn.exe [2010-09-21 28783]
"MyWebSearch Email Plugin"=C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwsoemon.exe [2010-09-21 32849]
"LogMeIn Hamachi Ui"=C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2-ui.exe [2010-03-30 1820040]
"reset"=regedit /s reset.reg []
C:\Users\Doma\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
FIFA 11 Registration.lnk - C:\Program Files (x86)\EA Sports\FIFA 11\Support\EAregister.exe
hamachi.lnk - C:\Program Files (x86)\Hamachi\hamachi.exe
Registrace FIFA 11.lnk - C:\Program Files (x86)\EA Sports\FIFA 11\Support\EAregister.exe
Xfire.lnk - C:\Program Files (x86)\Xfire\Xfire.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED}
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoActiveDesktop"=1
"NoActiveDesktopChanges"=1
"ForceActiveDesktopOn"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files (x86)\BitTorrent\bittorrent.exe"="C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
.js - open - C:\Windows\System32\WScript.exe "%1" %*
======List of files/folders created in the last 1 months======
2010-10-28 19:49:33 ----D---- C:\Program Files\trend micro
2010-10-28 19:49:32 ----D---- C:\rsit
2010-10-28 19:38:57 ----A---- C:\avenger.txt
2010-10-28 16:13:41 ----D---- C:\Users\Doma\AppData\Roaming\Nero
2010-10-28 16:12:43 ----D---- C:\Program Files (x86)\Nero
2010-10-28 16:12:30 ----D---- C:\ProgramData\Nero
2010-10-27 10:18:07 ----A---- C:\Windows\SYSWOW64\CPFilters.dll
2010-10-27 10:18:07 ----A---- C:\Windows\system32\msdri.dll
2010-10-27 10:18:07 ----A---- C:\Windows\system32\CPFilters.dll
2010-10-27 10:18:01 ----A---- C:\Windows\system32\drivers\Diskdump.sys
2010-10-26 17:39:41 ----D---- C:\ProgramData\BioWare
2010-10-26 17:21:49 ----D---- C:\Program Files (x86)\Dragon Age
2010-10-26 15:16:45 ----D---- C:\Program Files (x86)\Google
2010-10-22 21:32:04 ----D---- C:\Program Files (x86)\JoWood
2010-10-16 07:57:05 ----D---- C:\Program Files (x86)\JoWooD Entertainment AG
2010-10-13 19:38:41 ----D---- C:\Program Files (x86)\Ask.com
2010-10-13 19:38:16 ----D---- C:\Program Files (x86)\uTorrent
2010-10-13 19:38:12 ----D---- C:\Users\Doma\AppData\Roaming\uTorrent
2010-10-13 07:28:42 ----A---- C:\Windows\SYSWOW64\t2embed.dll
2010-10-13 07:28:42 ----A---- C:\Windows\system32\t2embed.dll
2010-10-13 07:28:41 ----A---- C:\Windows\SYSWOW64\ole32.dll
2010-10-13 07:28:41 ----A---- C:\Windows\system32\ole32.dll
2010-10-13 07:28:40 ----A---- C:\Windows\SYSWOW64\StructuredQuery.dll
2010-10-13 07:28:40 ----A---- C:\Windows\system32\StructuredQuery.dll
2010-10-13 07:28:38 ----A---- C:\Windows\SYSWOW64\schannel.dll
2010-10-13 07:28:38 ----A---- C:\Windows\system32\schannel.dll
2010-10-13 07:28:34 ----A---- C:\Windows\SYSWOW64\comctl32.dll
2010-10-13 07:28:34 ----A---- C:\Windows\system32\comctl32.dll
2010-10-13 07:28:33 ----A---- C:\Windows\SYSWOW64\wmpmde.dll
2010-10-13 07:28:33 ----A---- C:\Windows\system32\wmpmde.dll
2010-10-13 07:28:32 ----A---- C:\Windows\SYSWOW64\mfc40u.dll
2010-10-13 07:28:32 ----A---- C:\Windows\SYSWOW64\mfc40.dll
2010-10-13 07:28:30 ----A---- C:\Windows\system32\mshtml.dll
2010-10-13 07:28:29 ----A---- C:\Windows\system32\ieframe.dll
2010-10-13 07:28:28 ----A---- C:\Windows\SYSWOW64\mshtml.dll
2010-10-13 07:28:28 ----A---- C:\Windows\SYSWOW64\iertutil.dll
2010-10-13 07:28:28 ----A---- C:\Windows\system32\iertutil.dll
2010-10-13 07:28:27 ----A---- C:\Windows\SYSWOW64\msfeeds.dll
2010-10-13 07:28:27 ----A---- C:\Windows\SYSWOW64\ieframe.dll
2010-10-13 07:28:27 ----A---- C:\Windows\system32\urlmon.dll
2010-10-13 07:28:27 ----A---- C:\Windows\system32\msfeeds.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\wininet.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\urlmon.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\mstime.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\mshtmled.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\licmgr10.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\ieui.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\iepeers.dll
2010-10-13 07:28:26 ----A---- C:\Windows\SYSWOW64\iedkcs32.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\wininet.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\mstime.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\mshtmled.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\msfeedsbs.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\licmgr10.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\ieui.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\iepeers.dll
2010-10-13 07:28:26 ----A---- C:\Windows\system32\iedkcs32.dll
2010-10-13 07:28:25 ----A---- C:\Windows\SYSWOW64\msfeedssync.exe
2010-10-13 07:28:25 ----A---- C:\Windows\SYSWOW64\msfeedsbs.dll
2010-10-13 07:28:25 ----A---- C:\Windows\SYSWOW64\jsproxy.dll
2010-10-13 07:28:25 ----A---- C:\Windows\system32\msfeedssync.exe
2010-10-13 07:28:25 ----A---- C:\Windows\system32\jsproxy.dll
2010-10-13 07:28:20 ----A---- C:\Windows\system32\wmp.dll
2010-10-13 07:28:19 ----A---- C:\Windows\SYSWOW64\wmp.dll
2010-10-13 07:28:18 ----A---- C:\Windows\SYSWOW64\wmploc.DLL
2010-10-13 07:28:17 ----A---- C:\Windows\system32\wmploc.DLL
2010-10-13 07:28:16 ----A---- C:\Windows\SYSWOW64\sscore.dll
2010-10-13 07:28:16 ----A---- C:\Windows\system32\srvsvc.dll
2010-10-13 07:28:16 ----A---- C:\Windows\system32\drivers\srvnet.sys
2010-10-13 07:28:16 ----A---- C:\Windows\system32\drivers\srv2.sys
2010-10-13 07:28:16 ----A---- C:\Windows\system32\drivers\srv.sys
2010-10-13 07:28:15 ----A---- C:\Windows\system32\win32k.sys
2010-10-10 11:21:20 ----A---- C:\Windows\SYSWOW64\mkl_vml_p4.dll
2010-10-10 11:21:20 ----A---- C:\Windows\SYSWOW64\mkl_vml_p3.dll
2010-10-10 11:21:20 ----A---- C:\Windows\SYSWOW64\mkl_vml_def.dll
2010-10-10 11:21:20 ----A---- C:\Windows\SYSWOW64\mkl_p4.dll
2010-10-10 11:21:20 ----A---- C:\Windows\SYSWOW64\mkl_p3.dll
2010-10-10 11:21:20 ----A---- C:\Windows\SYSWOW64\mkl_lapack64.dll
2010-10-10 11:21:19 ----A---- C:\Windows\SYSWOW64\rapture3d_oal.dll
2010-10-10 11:21:19 ----A---- C:\Windows\SYSWOW64\mkl_lapack32.dll
2010-10-10 11:21:19 ----A---- C:\Windows\SYSWOW64\mkl_def.dll
2010-10-10 11:21:19 ----A---- C:\Windows\SYSWOW64\libguide40.dll
2010-10-10 11:21:17 ----D---- C:\Program Files (x86)\BRS
2010-10-10 11:20:31 ----D---- C:\Windows\SYSWOW64\xlive
2010-10-10 11:20:31 ----D---- C:\Program Files (x86)\Microsoft Games for Windows - LIVE
2010-10-10 11:19:58 ----RA---- C:\Windows\SYSWOW64\tmpF411.tmp
2010-10-10 11:19:58 ----D---- C:\Program Files (x86)\OpenAL
2010-10-10 11:17:58 ----RA---- C:\Windows\SYSWOW64\tmpF3D2.tmp
2010-10-10 11:04:49 ----D---- C:\Program Files (x86)\Codemasters
2010-10-07 16:44:52 ----D---- C:\Program Files (x86)\Hamachi
2010-10-07 16:44:52 ----A---- C:\Windows\system32\drivers\hamachi.sys
2010-10-07 16:15:06 ----AH---- C:\Windows\system32\hamachi.sys
2010-10-07 16:15:04 ----D---- C:\Program Files (x86)\LogMeIn Hamachi
2010-10-07 16:09:17 ----D---- C:\Users\Doma\AppData\Roaming\Hamachi
2010-10-07 16:00:26 ----D---- C:\Program Files (x86)\TopCD
2010-09-29 18:47:00 ----D---- C:\Downloads
2010-09-29 18:46:46 ----D---- C:\Users\Doma\AppData\Roaming\BitComet
2010-09-29 18:46:44 ----D---- C:\Program Files (x86)\BitComet
2010-09-29 15:43:40 ----A---- C:\Windows\system32\drivers\ks.sys
2010-09-29 10:37:52 ----A---- C:\Windows\SYSWOW64\tzres.dll
2010-09-29 10:37:52 ----A---- C:\Windows\system32\tzres.dll
======List of files/folders modified in the last 1 months======
2010-10-28 20:06:03 ----D---- C:\Windows\Temp
2010-10-28 20:01:23 ----D---- C:\Users\Doma\AppData\Roaming\DNA
2010-10-28 20:01:23 ----D---- C:\Program Files (x86)\DNA
2010-10-28 20:00:19 ----D---- C:\Windows\system32\config
2010-10-28 19:52:14 ----D---- C:\Windows
2010-10-28 19:52:13 ----SHD---- C:\Windows\Installer
2010-10-28 19:49:33 ----RD---- C:\Program Files
2010-10-28 18:33:15 ----SHD---- C:\System Volume Information
2010-10-28 17:56:40 ----A---- C:\ashampoo-acdw-log.txt
2010-10-28 17:51:03 ----D---- C:\Windows\Tasks
2010-10-28 17:51:03 ----D---- C:\Windows\system32\Tasks
2010-10-28 17:31:02 ----D---- C:\Windows\SysWOW64
2010-10-28 16:38:31 ----RD---- C:\Program Files (x86)
2010-10-28 16:37:32 ----D---- C:\Program Files (x86)\EA Sports
2010-10-28 16:12:30 ----HD---- C:\ProgramData
2010-10-28 16:12:29 ----D---- C:\Program Files (x86)\Common Files
2010-10-28 16:11:47 ----D---- C:\Windows\winsxs
2010-10-28 14:52:04 ----D---- C:\Users\Doma\AppData\Roaming\Xfire
2010-10-28 14:17:50 ----D---- C:\Program Files (x86)\Mozilla Firefox
2010-10-27 22:27:25 ----D---- C:\Windows\AppPatch
2010-10-27 22:22:19 ----D---- C:\Windows\Microsoft.NET
2010-10-27 22:21:50 ----RSD---- C:\Windows\assembly
2010-10-27 22:14:49 ----D---- C:\Users\Doma\AppData\Roaming\BitTorrent
2010-10-27 15:10:45 ----D---- C:\Windows\System32
2010-10-27 15:10:45 ----D---- C:\Windows\ehome
2010-10-27 15:09:41 ----D---- C:\Windows\system32\drivers
2010-10-27 11:39:58 ----D---- C:\Windows\Prefetch
2010-10-27 10:17:55 ----D---- C:\Windows\system32\catroot2
2010-10-27 10:17:55 ----D---- C:\Windows\system32\catroot
2010-10-26 15:24:54 ----D---- C:\Users\Doma\AppData\Roaming\gtk-2.0
2010-10-24 08:34:24 ----D---- C:\Users\Doma\AppData\Roaming\dvdcss
2010-10-22 19:10:46 ----D---- C:\Program Files (x86)\Windows Photo Viewer
2010-10-21 09:25:48 ----D---- C:\Windows\system32\wdi
2010-10-19 11:41:44 ----N---- C:\Windows\system32\MpSigStub.exe
2010-10-17 10:37:43 ----A---- C:\Windows\system32\PerfStringBackup.INI
2010-10-17 10:37:42 ----D---- C:\Windows\inf
2010-10-16 12:09:20 ----HD---- C:\Program Files (x86)\InstallShield Installation Information
2010-10-14 21:38:19 ----D---- C:\Program Files (x86)\Electronic Arts
2010-10-13 11:56:44 ----D---- C:\Windows\SYSWOW64\migration
2010-10-13 11:56:44 ----D---- C:\Windows\system32\migration
2010-10-13 11:56:44 ----D---- C:\Program Files\Internet Explorer
2010-10-13 11:56:44 ----D---- C:\Program Files (x86)\Internet Explorer
2010-10-13 11:56:43 ----D---- C:\Program Files\Windows Media Player
2010-10-13 11:56:43 ----D---- C:\Program Files (x86)\Windows Media Player
2010-10-13 08:46:43 ----A---- C:\Windows\system32\MRT.exe
2010-10-10 19:40:04 ----SD---- C:\Users\Doma\AppData\Roaming\Microsoft
2010-10-10 11:23:31 ----D---- C:\ProgramData\Codemasters
2010-10-10 11:19:58 ----A---- C:\Windows\SYSWOW64\wrap_oal.dll
2010-10-10 11:19:58 ----A---- C:\Windows\SYSWOW64\OpenAL32.dll
2010-10-10 11:19:58 ----A---- C:\Windows\system32\wrap_oal.dll
2010-10-10 11:19:58 ----A---- C:\Windows\system32\OpenAL32.dll
2010-10-06 21:53:44 ----D---- C:\Program Files (x86)\BitTorrent
2010-10-01 11:36:09 ----D---- C:\Windows\rescache
2010-09-29 17:42:55 ----D---- C:\Windows\SYSWOW64\cs-CZ
2010-09-29 17:42:55 ----D---- C:\Windows\system32\cs-CZ
2010-09-29 17:42:54 ----D---- C:\Windows\system32\DriverStore
2010-09-29 15:44:02 ----D---- C:\Program Files (x86)\Microsoft Silverlight
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12352]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 214096]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-07-29 834544]
R1 avipbb;avipbb; C:\Windows\system32\DRIVERS\avipbb.sys [2010-03-02 116568]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 514048]
R2 atksgt;atksgt; C:\Windows\system32\DRIVERS\atksgt.sys [2010-09-21 314016]
R2 avgntflt;avgntflt; C:\Windows\system32\DRIVERS\avgntflt.sys [2010-02-16 81072]
R2 lirsgt;lirsgt; C:\Windows\system32\DRIVERS\lirsgt.sys [2010-09-21 43680]
R3 amdkmdag;amdkmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-07-07 7195648]
R3 amdkmdap;amdkmdap; C:\Windows\system32\DRIVERS\atikmpag.sys [2010-07-07 265728]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\AtiHdmi.sys [2010-05-06 125456]
R3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2010-10-07 33344]
R3 MTsensor;ATK0110 ACPI UTILITY; C:\Windows\system32\DRIVERS\ASACPI.sys [2005-03-29 8192]
S3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2010-07-07 7195648]
S3 avmwjcs3;avmwjcs3; C:\Windows\system32\drivers\avmwjcs3.sys []
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 165376]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 6656]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 34896]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 200272]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 21760]
S3 X6va002;X6va002; \??\C:\Users\Doma\AppData\Local\Temp\002BA1F.tmp []
S3 X6va003;X6va003; \??\C:\Users\Doma\AppData\Local\Temp\003D3C5.tmp []
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 AMD External Events Utility;AMD External Events Utility; C:\Windows\system32\atiesrxx.exe [2010-07-07 203264]
R2 AntiVirService;Avira AntiVir Guard; C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe [2010-04-01 267432]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler; C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe [2010-02-24 135336]
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 27136]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files (x86)\LogMeIn Hamachi\hamachi-2.exe [2010-03-30 1823112]
R2 MyWebSearchService;My Web Search Service; C:\PROGRA~2\MYWEBS~1\bar\1.bin\mwssvc.exe [2010-09-21 28762]
S3 DAUpdaterSvc;Dragon Age: Prameny - aktualizace obsahu; C:\Program Files (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe [2009-07-26 25832]
S3 gusvc;Google Updater Service; C:\Program Files (x86)\Google\Common\Google Updater\GoogleUpdaterService.exe [2009-12-22 136120]
S3 ose;Office Source Engine; C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 27136]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-07-28 1255736]
S4 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 27136]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Vir
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
-
Rudy
- Site Admin
- Příspěvky: 119426
- Registrován: 30 říj 2003 13:42
- Bydliště: Plzeň
- Kontaktovat uživatele:
Re: Vir
Odinstalujte AskToolbar a udělejte kompletní sken MBAM: http://www.malwarebytes.org/mbam.php . Dejte log, předem nic nemažte.
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.
Navštivte:
e-mail: rudy(zavináč)forum.viry.cz
Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!
Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Přispějete na provoz fóra?