Jak odstranit Hamachi z "Po spuštění"?

[CZechBoY]

ITCrowd: já sem zkoušel CCleaner, ten tam to Hamachi ani nenašel, a ten podle mě kontorluje zrovna tuhe složku

[Reklama]

[jaro3]

Asi by se to dalo odstranit Combofixem..

[CZechBoY]

nee ComboFix nemám rád, jen tenhle víkend je pro mě černý z neustále restartování

[jaro3]

Fajn..

Tak zkus:

Stáhni si a spusť DDS (by sUBs)
a ulož si ho na plochu.
- spusť ho, objeví se ti okno a tak do něho neklikej a počkej až program proběhne
- po ukončení své činnosti program vytvoří 2 logy a vyhodí ti informativní okno. To zavři přes OK
- vlož sem pak oba logy z DDS

+
Stáhni si RSIT (by random/random)
- spusť ho, objeví se ti okno, tak pro pokračování klikni na Continue
- počkej až program proběhne a zobrazí se ti log jinak ho najdeš zde: C:\rsit\log.txt zkopíruj sem prosím celý jeho obsah

[CZechBoY]

DDS 1. log:

DDS (Ver_10-03-17.01) - NTFSX64
Run by CZechBoY at 8:28:57,45 on po 24.05.2010
Internet Explorer: 8.0.7600.16385
Microsoft Windows 7 Ultimate 6.1.7600.0.1250.420.1029.18.4094.2364 [GMT 2:00]


============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\atieclxx.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ACTHelperService.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Fraps\fraps.exe
C:\Program Files\OO Software\CleverCache\ooccag.exe
C:\Program Files\OO Software\Defrag\oodag.exe
D:\Program Files\Skype\Phone\Skype.exe
F:\Programy(x86)\Desktop Sidebar\dsidebar.exe
C:\Program Files (x86)\Windows Live\Messenger\msnmsgr.exe
F:\Programy(x86)\TeamViewer\TeamViewer_Service.exe
C:\Windows\SysWOW64\svchost.exe -k netsvcs
F:\Programy(x86)\DAEMON Tools Lite\DTLite.exe
C:\Program Files (x86)\Ashampoo\Ashampoo Core Tuner\ct.exe
F:\Programy(x86)\ATi CCC\ATI.ACE\Core-Static\MOM.exe
F:\Programy(x86)\ATi CCC\ATI.ACE\Core-Static\CCC.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Fraps\fraps64.dat
F:\Programy(x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Windows Live\Contacts\wlcomm.exe
F:\Programy(x86)\Winamp\winamp.exe
F:\Programy(x86)\QIP Infium\infium.exe
C:\Windows\System32\svchost.exe -k LocalServiceAndNoImpersonation
F:\Programy(x86)\TeamViewer\TeamViewer.exe
F:\Programy(x86)\uTorrent\utorrent.exe
C:\Users\CZechBoY\Desktop\muj server\SERVER01.exe
C:\Program Files (x86)\Opera\opera.exe
F:\Programy (x86)\PSPad editor\PSPad.exe
C:\Windows\system32\taskeng.exe
C:\Users\CZechBoY\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uSearch Page = hxxp://search.qip.ru
uStart Page = hxxp://www.google.cz/
uDefault_Page_URL = hxxp://qip.ru
uDefault_Search_URL = hxxp://search.qip.ru
uSearch Bar = hxxp://search.qip.ru/ie
mDefault_Search_URL = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
uSearchAssistant = hxxp://search.qip.ru/ie
uURLSearchHooks: QIPBHO Class: {a55f9c95-2bb1-4ea2-bc77-dfaab78832ce} - c:\users\czechboy\appdata\roaming\microsoft\internet explorer\qipsearchbar.dll
uURLSearchHooks: H - No File
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files (x86)\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Idea2 SidebarBrowserMonitor Class: {45ad732c-2ce2-4666-b366-b2214ad57a49} - f:\programy(x86)\desktop sidebar\sbhelp.dll
BHO: {8A4A36C2-0535-4D2C-BD3D-496CB7EED6E3} - No File
BHO: Pomocník pro přihlášení ke službě Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files (x86)\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: QIPBHO Class: {a55f9c95-2bb1-4ea2-bc77-dfaab78832ce} - c:\users\czechboy\appdata\roaming\microsoft\internet explorer\qipsearchbar.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files (x86)\java\jre6\bin\jp2ssv.dll
TB: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
uRun: [Skype] "d:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [uTorrent] "f:\programy(x86)\utorrent\utorrent.exe"
uRun: [SIDEBAR] "f:\programy(x86)\desktop sidebar\dsidebar.exe"
uRun: [msnmsgr] "c:\program files (x86)\windows live\messenger\msnmsgr.exe" /background
uRun: [DAEMON Tools Lite] "f:\programy(x86)\daemon tools lite\DTLite.exe" -autorun
uRun: [Infium] "f:\programy(x86)\qip infium\infium.exe" /autorun
mRun: [Ashampoo Core Tuner] "c:\program files (x86)\ashampoo\ashampoo core tuner\autostarter.exe"
mRun: [StartCCC] "f:\programy(x86)\ati ccc\ati.ace\core-static\CLIStart.exe" MSRun
mRun: [Malwarebytes' Anti-Malware] "f:\programy(x86)\malwarebytes' anti-malware\mbamgui.exe" /starttray
uPolicies-explorer: NoRecentDocsNetHood = 1 (0x1)
uPolicies-explorer: NoInstrumentation = 1 (0x1)
uPolicies-system: NoDispSettingsPage = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 0 (0x0)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableLUA = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
mPolicies-system: PromptOnSecureDesktop = 0 (0x0)
mPolicies-system: SynchronousMachineGroupPolicy = 0 (0x0)
mPolicies-system: SynchronousUserGroupPolicy = 0 (0x0)
IE: E&xportovat do aplikace Microsoft Office Excel - f:\progra~2\micros~1\office11\EXCEL.EXE/3000
IE: {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe
IE: {09FE188B-6E85-479e-9411-51FB2220DF80} - {45AD732C-2CE2-4666-B366-B2214AD57A49} - f:\programy(x86)\desktop sidebar\sbhelp.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - f:\progra~2\micros~1\office11\REFIEBAR.DLL
DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} - hxxp://download.bitdefender.com/resourc ... oscan8.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan ... stubie.cab
DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} - hxxp://v4.windowsupdate.microsoft.com/C ... 2363194444
DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinsta ... s-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: {1B80841A-0029-48AD-87BC-AAB888D81B5D} = 10.0.0.100,10.0.0.200
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~2\common~1\skype\Skype4COM.dll
AppInit_DLLs: c:\windows\syswow64\guard32.dll
mASetup: {ELSLYA8V-88M1-43N6-X8E0-F006Q1K0S15V} - c:\users\czechboy\appdata\roaming\microsoft_kb73729795\update_dir72938749.exe
TB-X64: {EE2AC4E5-B0B0-4EC6-88A9-BCA1A32AB107} - No File
mRun-x64: [OOCCCTRL.EXE] "c:\program files\oo software\clevercache\ooccctrl.exe" /tasktray
mRun-x64: [OODefragTray] c:\program files\oo software\defrag\oodtray.exe
mRun-x64: [Ashampoo Core Tuner] c:\program files (x86)\ashampoo\ashampoo core tuner\autostarter.exe
AppInit_DLLs-X64: c:\windows\system32\guard64.dll

================= FIREFOX ===================

FF - ProfilePath - c:\users\czechboy\appdata\roaming\mozilla\firefox\profiles\d7h0cvez.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - about:blank
FF - prefs.js: keyword.URL - hxxp://search.qip.ru/search?from=FF&query=
FF - plugin: f:\programy (x86)\adobe\reader 9.0\reader\browser\nppdf32.dll

---- FIREFOX POLICIES ----
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("capability.policy.default.XMLHttpRequest.channel", "noAccess");
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("javascript.options.jit.chrome", true);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("security.checkloaduri", true);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("bidi.characterset", 1);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
f:\programy(x86)\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
f:\programy(x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
f:\programy(x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
f:\programy(x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
f:\programy(x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
f:\programy(x86)\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
f:\programy(x86)\mozilla firefox\defaults\pref\channel-prefs.js - pref("app.update.channel", "release");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
f:\programy(x86)\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R0 pavboot;Panda boot driver;c:\windows\system32\drivers\pavboot64.sys [2010-2-5 33800]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2010-2-1 120136]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2010-2-1 33128]
R2 acthelper;Ashampoo CoreTuner Helper Service;c:\program files (x86)\ashampoo\ashampoo core tuner\ACTHelperService.exe [2010-3-12 902488]
R2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2010-4-18 202752]
R2 MBAMService;MBAMService;f:\programy(x86)\malwarebytes' anti-malware\mbamservice.exe [2010-3-30 304464]
R2 O&O CleverCache;O&O CleverCache;c:\program files\oo software\clevercache\ooccag.exe [2009-10-30 843592]
R2 TeamViewer5;TeamViewer 5;f:\programy(x86)\teamviewer\TeamViewer_Service.exe [2010-2-11 172328]
R2 wmcmgc;Windows Management Configuration;c:\windows\system32\svchost.exe -k netsvcs [2009-7-14 27136]
R3 amdkmdag;amdkmdag;c:\windows\system32\drivers\atipmdag.sys [2010-4-18 6402560]
R3 amdkmdap;amdkmdap;c:\windows\system32\drivers\atikmpag.sys [2010-4-18 188928]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2009-12-24 24664]
R3 RTL8167;Ovladač Realtek 8167 NT;c:\windows\system32\drivers\Rt64win7.sys [2009-6-10 187392]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\microsoft.net\framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;f:\program files (x86)\logmein hamachi\hamachi-2.exe [2010-3-30 1823112]
S3 GVTDrv64;GVTDrv64;c:\windows\GVTDrv64.sys [2009-12-23 30528]
S3 pctNDIS;PC Tools Driver;c:\windows\system32\drivers\pctNdis64.sys [2010-2-14 81584]

=============== Created Last 30 ================

2010-05-20 15:16:54 108458 ----a-w- c:\users\czechboy\.recently-used.xbel
2010-05-13 15:30:12 0 d-----w- c:\users\czechboy\Library
2010-05-07 15:32:01 49472 ----a-w- c:\windows\syswow64\netfxperf.dll
2010-05-07 15:32:01 48960 ----a-w- c:\windows\system32\netfxperf.dll
2010-05-07 15:32:00 99176 ----a-w- c:\windows\syswow64\PresentationHostProxy.dll
2010-05-07 15:32:00 444752 ----a-w- c:\windows\system32\mscoree.dll
2010-05-07 15:32:00 320352 ----a-w- c:\windows\system32\PresentationHost.exe
2010-05-07 15:32:00 297808 ----a-w- c:\windows\syswow64\mscoree.dll
2010-05-07 15:32:00 295264 ----a-w- c:\windows\syswow64\PresentationHost.exe
2010-05-07 15:32:00 1942856 ----a-w- c:\windows\system32\dfshim.dll
2010-05-07 15:32:00 1130824 ----a-w- c:\windows\syswow64\dfshim.dll
2010-05-07 15:32:00 109912 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-05-05 16:06:27 557568 ----a-w- c:\windows\syswow64\B4FM.dll
2010-05-05 14:39:36 673280 ----a-w- c:\windows\is-LPBG0.exe
2010-05-05 14:39:36 166 ----a-w- c:\windows\is-LPBG0.lst
2010-05-05 14:39:36 12255 ----a-w- c:\windows\is-LPBG0.msg
2010-05-03 14:44:52 35376 ----a-w- c:\users\czechboy\appdata\roaming\SQLite3.dll

==================== Find3M ====================

2010-05-09 16:54:53 660724 ----a-w- c:\windows\system32\perfh005.dat
2010-05-09 16:54:53 136592 ----a-w- c:\windows\system32\perfc005.dat
2010-05-08 21:09:00 30528 ----a-w- c:\windows\GVTDrv64.sys
2010-05-08 21:08:49 24072 ----a-w- c:\windows\gdrv.sys
2010-04-29 13:39:28 24664 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-04-19 12:50:51 6656 ----a-w- c:\windows\syswow64\lpcio.dll
2010-04-18 17:23:08 14844 ----a-w- c:\windows\crpf_sdum.bin
2010-04-18 17:23:08 13116 ----a-w- c:\windows\crpf.bin
2010-04-18 16:42:49 673280 ----a-w- c:\windows\is-4IFKK.exe
2010-03-25 17:52:36 53264 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
2010-03-25 17:52:36 318992 ----a-w- c:\windows\system32\VBoxNetFltNotify.dll
2010-03-25 17:52:36 193808 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2010-03-25 17:52:36 165776 ----a-w- c:\windows\system32\drivers\VBoxNetFlt.sys
2010-03-25 17:52:36 145936 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2010-03-18 15:23:04 20832 ----a-w- c:\windows\system32\aspnet_counters.dll
2010-03-18 14:47:22 17760 ----a-w- c:\windows\syswow64\aspnet_counters.dll
2010-03-18 12:27:14 827744 ----a-w- c:\windows\system32\msvcr100_clr0400.dll
2010-03-18 11:16:28 771424 ----a-w- c:\windows\syswow64\msvcr100_clr0400.dll
2010-03-03 04:16:38 143360 ----a-w- c:\windows\system32\atiapfxx.exe
2010-03-03 04:16:26 446464 ----a-w- c:\windows\syswow64\aticfx32.dll
2010-03-03 04:15:30 497152 ----a-w- c:\windows\system32\aticfx64.dll
2010-03-03 04:13:04 446464 ----a-w- c:\windows\system32\ATIDEMGX.dll
2010-03-03 04:12:52 450560 ----a-w- c:\windows\system32\atieclxx.exe
2010-03-03 04:12:12 202752 ----a-w- c:\windows\system32\atiesrxx.exe
2010-03-03 04:10:34 120320 ----a-w- c:\windows\system32\atitmm64.dll
2010-03-03 04:10:12 420864 ----a-w- c:\windows\system32\atipdl64.dll
2010-03-03 04:10:04 356352 ----a-w- c:\windows\syswow64\atipdlxx.dll
2010-03-03 04:09:48 274432 ----a-w- c:\windows\syswow64\Oemdspif.dll
2010-03-03 04:09:40 12288 ----a-w- c:\windows\system32\atimuixx.dll
2010-03-03 04:09:34 59392 ----a-w- c:\windows\system32\atiedu64.dll
2010-03-03 04:09:28 43520 ----a-w- c:\windows\syswow64\ati2edxx.dll
2010-03-03 04:06:18 3131392 ----a-w- c:\windows\syswow64\atidxx32.dll
2010-03-03 04:04:46 18798080 ----a-w- c:\windows\system32\atio6axx.dll
2010-03-03 03:57:00 3800576 ----a-w- c:\windows\system32\atidxx64.dll
2010-03-03 03:46:42 3703808 ----a-w- c:\windows\syswow64\atiumdag.dll
2010-03-03 03:45:02 14226944 ----a-w- c:\windows\syswow64\atioglxx.dll
2010-03-03 03:39:46 4801536 ----a-w- c:\windows\system32\atiumd64.dll
2010-03-03 03:32:06 2716160 ----a-w- c:\windows\system32\atiumd6a.dll
2010-03-03 03:24:24 2993152 ----a-w- c:\windows\syswow64\atiumdva.dll
2010-03-03 03:23:52 55296 ----a-w- c:\windows\system32\coinst.dll
2010-03-03 03:20:22 43008 ----a-w- c:\windows\system32\aticalrt64.dll
2010-03-03 03:20:20 53248 ----a-w- c:\windows\syswow64\aticalrt.dll
2010-03-03 03:20:10 39936 ----a-w- c:\windows\system32\aticalcl64.dll
2010-03-03 03:20:08 53248 ----a-w- c:\windows\syswow64\aticalcl.dll
2010-03-03 03:19:56 4781568 ----a-w- c:\windows\system32\aticaldd64.dll
2010-03-03 03:18:56 3657728 ----a-w- c:\windows\syswow64\aticaldd.dll
2010-03-03 03:08:50 53248 ----a-w- c:\windows\system32\atimpc64.dll
2010-03-03 03:08:50 53248 ----a-w- c:\windows\system32\amdpcom64.dll
2010-03-03 03:08:44 52224 ----a-w- c:\windows\syswow64\atimpc32.dll
2010-03-03 03:08:44 52224 ----a-w- c:\windows\syswow64\amdpcom32.dll
2010-03-03 03:08:14 330752 ----a-w- c:\windows\system32\atiadlxx.dll
2010-03-03 03:08:06 237568 ----a-w- c:\windows\syswow64\atiadlxy.dll
2010-03-03 03:07:54 14848 ----a-w- c:\windows\system32\atig6pxx.dll
2010-03-03 03:07:48 12800 ----a-w- c:\windows\syswow64\atiglpxx.dll
2010-03-03 03:07:48 12800 ----a-w- c:\windows\system32\atiglpxx.dll
2010-03-03 03:07:44 16896 ----a-w- c:\windows\system32\atig6txx.dll
2010-03-03 03:07:38 15360 ----a-w- c:\windows\syswow64\atigktxx.dll
2010-03-03 03:06:50 36352 ----a-w- c:\windows\system32\atiuxp64.dll
2010-03-03 03:06:42 27648 ----a-w- c:\windows\syswow64\atiuxpag.dll
2010-03-03 03:06:34 28160 ----a-w- c:\windows\system32\atiu9p64.dll
2010-03-03 03:06:26 20480 ----a-w- c:\windows\syswow64\atiu9pag.dll
2010-02-25 19:55:46 201875 ----a-w- c:\windows\system32\atiicdxx.dat
2010-02-24 09:16:06 212864 ------w- c:\windows\system32\MpSigStub.exe
2009-07-26 18:40:52 36232 ----a-w- c:\windows\inf\perflib\0405\perfd.dat
2009-07-26 18:40:52 36232 ----a-w- c:\windows\inf\perflib\0405\perfc.dat
2009-07-26 18:40:52 292004 ----a-w- c:\windows\inf\perflib\0405\perfi.dat
2009-07-26 18:40:52 292004 ----a-w- c:\windows\inf\perflib\0405\perfh.dat
2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfd.dat
2009-07-14 05:37:38 31548 ----a-w- c:\windows\inf\perflib\0409\perfc.dat
2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfi.dat
2009-07-14 05:37:38 291294 ----a-w- c:\windows\inf\perflib\0409\perfh.dat
2009-07-14 04:54:24 174 --sha-w- c:\program files\desktop.ini
2009-07-14 04:54:24 174 --sha-w- c:\program files (x86)\desktop.ini
2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfi.dat
2009-07-14 01:00:34 291294 ----a-w- c:\windows\inf\perflib\0000\perfh.dat
2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfd.dat
2009-07-14 01:00:32 31548 ----a-w- c:\windows\inf\perflib\0000\perfc.dat
2009-06-10 20:44:08 9633792 --sha-r- c:\windows\fonts\StaticCache.dat
2010-01-11 02:03:50 16384 --sha-w- c:\windows\serviceprofiles\localservice\appdata\local\temp\cookies\index.dat
2010-01-11 02:03:50 16384 --sha-w- c:\windows\serviceprofiles\localservice\appdata\local\temp\history\history.ie5\index.dat
2010-01-11 02:03:50 32768 --sha-w- c:\windows\serviceprofiles\localservice\appdata\local\temp\temporary internet files\content.ie5\index.dat
2010-02-15 20:08:10 16384 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat
2010-02-15 20:08:10 32768 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat
2010-02-15 20:08:10 16384 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat
2009-12-23 18:21:21 245760 --sha-w- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat
2010-02-10 07:00:10 16384 --sha-w- c:\windows\system32\%appdata%\microsoft\windows\ietldcache\index.dat
2009-07-14 01:39:53 398848 --sha-w- c:\windows\winsxs\amd64_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_4d4d1f2f696639a2\WinMail.exe
2009-07-14 01:14:45 396800 --sha-w- c:\windows\winsxs\x86_microsoft-windows-mail-app_31bf3856ad364e35_6.1.7600.16385_none_f12e83abb108c86c\WinMail.exe
============= FINISH: 8:29:34,48 ===============

ten 2. log jsou jen nainstalovaný programy + info o jednotkách a jak dlouho je windows spuštění, ale píše mi to že je spuštěnej už od září 2010, to je zase bug prej -2506 hodin

jo a ten RSIT mi hodil nějakou chybu proměnný která je použitá ještě před deklarací, no prostě vývojáří někde udělali chybu co s tim?

[alenka_v_říši_divů]

No máš to ve službách... co takhle start/spusit services.msc a nastavit na ručně?

[CZechBoY]

takže mám dát službu Tunneling Engine na ručně?

[jaro3]

Alenka má pravdu , najdi:
Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine;f:\program files (x86)\logmein hamachi\hamachi-2.exe [2010-3-30 1823112]

V možnostech složky si povol zobrazování skrytých souborů a složek+ odškrtni zatržítko skrýt chráněné soubory operačního systému

Toto otestuj na Virustotal
c:\windows\is-4IFKK.exe
Pokud už byl soubor testován-klikni na otestovat znovu.

Až skončí test všech antivirů, vlož sem pak odkaz na stránku s výsledky.

[CZechBoY]

hele jaro3: do toho VirusTotalu můžu zadat rovnou tu cestu nemusim zobrazovat skrytý soubory btw. stejně mám zobrazený skrytý soubory pořád :-))
ten soubor hamachi-2.exe co s nim mám udělat?

jo ten soubor ve windowsu je čistej

[alenka_v_říši_divů]

Chceš používat Hamachi? Soubor nechej, tak jak je.
Nechceš používat Hamachi? Odinstaluj a soubor zmizí.
:)

[jaro3]

Udělej to , jak píše Alenka, jinak tam máš pěknej bordel..chtělo by to ten log z RSIT nebo HJT, na odstranění položek.

[Tholus]

Vy z toho teda děláte vědu.