Nejde instalovat Java

[PredyP]

Dobrý večer,
Chtěl jsem si aktualizovat javu tak jsem stáhl offline balíček z java stránek a při zpuštění to na mne vyplivne tuto hlášku, jsem z toho trochu jelen.
V nouzovém režimu nejsem.

[Roli]

Zdravím, tak jdi na stránky Microsoftu a stáhni si novou verzi Windows installeru.

Pokud to nezabere dej vědět.

[PredyP]

Jo dík to bylo ono, mne to nenapadlo.
Prosil bych ještě o kontrolu, kluk si instaloval nevím pořádně ani co ale v ie mi přibyli lišty ty jsem odinstaloval, ale při otvírání tento počítač se mi to nechce otvírat jezdí tam baterka a hledá, přitom procesor nevykazuje zvíšenou činost.

Logfile of random's system information tool 1.09 (written by random/random)
Run by Petr at 2012-01-07 12:47:15
WIN_XP Service Pack 3
System drive C: has 43 GB (58%) free of 75 GB
Total RAM: 2047 MB (65% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 12:47:20, on 7.1.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\ConMet\ConMet.exe
C:\WINDOWS\tsnpstd3.exe
C:\WINDOWS\vsnpstd3.exe
C:\Program Files\COMODO\COMODO Internet Security\cfp.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\APC\APC PowerChute Personal Edition\apcsystray.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
C:\Program Files\Rubikon\RubikonUpdateServer.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\msiexec.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Windows Live\Mail\wlmail.exe
C:\Program Files\Adobe\Reader 8.0\Reader\AcroRd32.exe
C:\Program Files\Windows Live\Contacts\wlcomm.exe
C:\RSIT.exe
C:\Program Files\trend micro\Petr.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicus& ... Terms}&f=4
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WebTransBHO Class - {2DB66063-BB98-466A-AA0D-3E7ACF5ED853} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O2 - BHO: Canon Easy Web Print Helper - {68F9551E-0411-48E4-9AAF-4BC42A6A46BE} - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Pomocník pro přihlášení ke službě Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll (file missing)
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Easy-WebPrint - {327C2873-E90D-4c37-AA9D-10AC9BABA46C} - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll
O3 - Toolbar: WebTranslator - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (file missing)
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [ConMet] C:\Program Files\ConMet\ConMet.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [COMODO Internet Security] "C:\Program Files\COMODO\COMODO Internet Security\cfp.exe" -h
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKUS\S-1-5-21-1659004503-602609370-682003330-1003\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-1659004503-602609370-682003330-1003\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized (User '?')
O4 - HKUS\S-1-5-21-1659004503-602609370-682003330-1003\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun (User '?')
O4 - HKUS\S-1-5-21-1659004503-602609370-682003330-1003\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe (User '?')
O4 - Global Startup: APC UPS Status.lnk = ?
O8 - Extra context menu item: &Google Search - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsearch.html
O8 - Extra context menu item: Backward Links - res://C:\Program Files\Google\GoogleToolbar1.dll/cmbacklinks.html
O8 - Extra context menu item: Cached Snapshot of Page - res://C:\Program Files\Google\GoogleToolbar1.dll/cmcache.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Easy-WebPrint - Náhled - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
O8 - Extra context menu item: Easy-WebPrint - Přidat na seznam k tisku - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
O8 - Extra context menu item: Easy-WebPrint - Tisk - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
O8 - Extra context menu item: Easy-WebPrint - Vysokorychlostní tisk - res://C:\Program Files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
O8 - Extra context menu item: Similar Pages - res://C:\Program Files\Google\GoogleToolbar1.dll/cmsimilar.html
O8 - Extra context menu item: Translate into English - res://C:\Program Files\Google\GoogleToolbar1.dll/cmtrans.html
O9 - Extra button: Přidat na blog - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra 'Tools' menuitem: &Přidat na blog Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll
O9 - Extra button: Odeslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Od&eslat do aplikace OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: WebTran - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Nastavit překladač - {CC963627-B1DC-40E0-B52A-CF21EE748449} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: &Slovník - {CC963627-B1DC-40E0-B52A-CF21EE748450} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &označený text - {CC963627-B1DC-40E0-B52A-CF21EE748451} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra 'Tools' menuitem: Přeložit &stránku - {CC963627-B1DC-40E0-B52A-CF21EE748452} - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 3293737622
O17 - HKLM\System\CCS\Services\Tcpip\..\{F02D19B6-DBCE-4071-874C-6B2098E4223C}: NameServer = 8.26.56.26,156.154.70.22
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - AppInit_DLLs: C:\WINDOWS\system32\guard32.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: APC UPS Service - American Power Conversion Corporation - C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: COMODO Internet Security Helper Service (cmdAgent) - COMODO - C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
O23 - Service: SW Distributed TS Coordinator Service (CoordinatorServiceHost) - Dassault Systemes SolidWorks Corp. - D:\Daniel\Program Files\Solid works\SolidWorks\swScheduler\DTSCoordinatorService.exe
O23 - Service: FLEXnet Licensing Service - Flexera Software, Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: LogMeIn Hamachi Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Nero BackItUp Scheduler 4.0 - Nero AG - C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: SolidWorks Licensing Service - SolidWorks - C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe
O23 - Service: Sony Ericsson PCCompanion - Avanquest Software - C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe

--
End of file - 13046 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\fujepkn9.default

prefs.js - "browser.startup.homepage" - "seznam.cz"

"wrc@avast.com"=C:\Program Files\AVAST Software\Avast\WebRep\FF
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
"jqs@sun.com"=C:\Program Files\Java\jre6\lib\deploy\jqs\ff


[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@java.com/JavaPlugin]
"Description"=Oracle® Next Generation Java™ Plug-In
"Path"=C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WLPG,version=14.0.8081.0709]
"Description"=WLPG Install MIME type
"Path"=C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
{CAFEEFAC-0016-0000-0030-ABCDEFFEDCBA}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
fcmdSrchstonicus.xml
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml

C:\Documents and Settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\fujepkn9.default\extensions\
ffxtlbr@Facemoods.com

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-23 62080]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{2DB66063-BB98-466A-AA0D-3E7ACF5ED853}]
WebTransBHO Class - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2011-12-11 798771]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{68F9551E-0411-48E4-9AAF-4BC42A6A46BE}]
EWPBrowseObject Class - C:\Program Files\Canon\Easy-WebPrint\EWPBrowseLoader.dll [2006-04-18 34304]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
Java(tm) Plug-In SSV Helper - C:\Program Files\Java\jre6\bin\ssv.dll [2012-01-07 325408]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Pomocník pro přihlášení ke službě Windows Live - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22 408448]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - c:\program files\google\googletoolbar1.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2012-01-07 42272]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2012-01-07 79648]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{327C2873-E90D-4c37-AA9D-10AC9BABA46C} - Easy-WebPrint - C:\Program Files\Canon\Easy-WebPrint\Toolband.dll [2006-04-18 552960]
{BFC32E1D-EE75-4A48-BC60-104E11EE2431} - WebTranslator - C:\Documents and Settings\All Users\Data aplikací\LangSoft\WebIE.dll [2011-12-11 798771]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google - c:\program files\google\googletoolbar1.dll []

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2006-08-02 577536]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2011-01-07 111208]
"avast"=C:\Program Files\AVAST Software\Avast\avastUI.exe [2011-02-23 3451496]
"ConMet"=C:\Program Files\ConMet\ConMet.exe [2011-12-07 4668416]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-01-07 13880424]
"tsnpstd3"=C:\WINDOWS\tsnpstd3.exe [2006-06-19 262144]
"snpstd3"=C:\WINDOWS\vsnpstd3.exe [2006-05-12 831488]
"COMODO Internet Security"=C:\Program Files\COMODO\COMODO Internet Security\cfp.exe [2011-12-21 6676808]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"Skype"=C:\Program Files\Skype\Phone\Skype.exe [2011-10-13 17351304]
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]
"SUPERAntiSpyware"=C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2011-12-16 4616064]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\COMODO]
C:\Program Files\COMODO\COMODO GeekBuddy\CLPSLA.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CPA]
C:\Program Files\COMODO\COMODO GeekBuddy\VALA.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-01-20 1305408]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2009-02-26 30040]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2011-08-15 1955208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
C:\Program Files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe [2006-03-21 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe [2011-10-21 433872]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2003-09-30 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Common Files\Java\Java Update\jusched.exe [2011-06-09 254696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\READER~1.EXE [2006-10-23 40048]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Synchronizer.lnk]
C:\PROGRA~1\Adobe\READER~1.0\Reader\ADOBEC~1.EXE [2006-10-23 734872]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
APC UPS Status.lnk - C:\Program Files\APC\APC PowerChute Personal Edition\Display.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" C:\WINDOWS\system32\guard32.dll"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2011-12-08 548352]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2008-05-19 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-12-08 113024]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2009-02-26 2217832]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\TeamViewer\Version7\TeamViewer.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer.exe:*:Enabled:Teamviewer Remote Control Application"
"C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe"="C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe:*:Enabled:Teamviewer Remote Control Service"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE"="C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook"
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE"="C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove"
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE"="C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote"
"D:\Daniel\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="D:\Daniel\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"D:\Daniel\Program Files\EA Games\Battlefield 2\BF2.exe"="D:\Daniel\Program Files\EA Games\Battlefield 2\BF2.exe:*:Enabled:Battlefield 2"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe"="C:\Program Files\Windows Live\Sync\WindowsLiveSync.exe:*:Enabled:Windows Live Sync"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"VIDC.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"VIDC.IYUV"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"VIDC.UYVY"=msyuv.dll
"VIDC.YUY2"=msyuv.dll
"VIDC.YVU9"=tsbyuv.dll
"VIDC.YVYU"=msyuv.dll
"wavemapper"=msacm32.drv
"midi"=wdmaud.drv
"wave"=wdmaud.drv
"midi1"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave1"=wdmaud.drv
"midi2"=wdmaud.drv
"mixer1"=wdmaud.drv
"vidc.ffds"=ffdshow.ax
"MSVideo8"=VfWWDM32.dll
"msacm.ac3filter"=ac3filter.acm
"wave2"=wdmaud.drv
"midi3"=wdmaud.drv
"mixer2"=wdmaud.drv
"aux1"=wdmaud.drv

======List of files/folders created in the last 1 month======

2012-01-07 12:47:15 ----D---- C:\rsit
2012-01-07 12:46:58 ----A---- C:\RSIT.exe
2012-01-07 12:39:03 ----A---- C:\WINDOWS\system32\javaws.exe
2012-01-07 12:39:03 ----A---- C:\WINDOWS\system32\javaw.exe
2012-01-07 12:39:03 ----A---- C:\WINDOWS\system32\java.exe
2012-01-07 12:38:45 ----D---- C:\Program Files\Java
2012-01-07 12:33:26 ----HDC---- C:\WINDOWS\$NtUninstallKB942288-v3$
2012-01-06 17:44:07 ----D---- C:\Documents and Settings\Petr\Data aplikací\Samsung
2012-01-06 17:39:37 ----A---- C:\WINDOWS\system32\framedyn.dll
2012-01-06 17:38:57 ----A---- C:\WINDOWS\system32\drivers\ss_mdm.sys
2012-01-06 17:38:56 ----D---- C:\WINDOWS\system32\Samsung_USB_Drivers
2012-01-06 17:38:56 ----A---- C:\WINDOWS\system32\drivers\ss_whnt.sys
2012-01-06 17:38:56 ----A---- C:\WINDOWS\system32\drivers\ss_wh.sys
2012-01-06 17:38:56 ----A---- C:\WINDOWS\system32\drivers\ss_mdfl.sys
2012-01-06 17:38:56 ----A---- C:\WINDOWS\system32\drivers\ss_cmnt.sys
2012-01-06 17:38:56 ----A---- C:\WINDOWS\system32\drivers\ss_cm.sys
2012-01-06 17:38:56 ----A---- C:\WINDOWS\system32\drivers\ss_bus.sys
2012-01-06 17:38:23 ----A---- C:\WINDOWS\system32\drivers\StarOpen.sys
2012-01-06 17:38:07 ----D---- C:\Program Files\Samsung
2012-01-06 14:59:16 ----D---- C:\Documents and Settings\Petr\Data aplikací\facemoods.com
2012-01-06 14:58:30 ----D---- C:\Program Files\facemoods.com
2012-01-06 14:34:37 ----D---- C:\Documents and Settings\Petr\Data aplikací\TS3Client
2012-01-06 14:22:48 ----D---- C:\Program Files\TeamSpeak 3 Client
2012-01-06 14:06:39 ----D---- C:\Program Files\LogMeIn Hamachi
2012-01-04 19:06:29 ----D---- C:\Program Files\CrystalDiskInfo
2012-01-03 18:13:19 ----D---- C:\Program Files\HD Tune
2012-01-03 18:06:43 ----ASH---- C:\pagefile.sys
2011-12-23 23:03:12 ----D---- C:\WINDOWS\Sun
2011-12-18 16:52:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\vsosdk
2011-12-18 15:04:43 ----D---- C:\Documents and Settings\Petr\Data aplikací\Vso
2011-12-18 15:04:17 ----A---- C:\WINDOWS\system32\sipr3260.dll
2011-12-18 15:04:16 ----A---- C:\WINDOWS\system32\drv43260.dll
2011-12-18 15:04:16 ----A---- C:\WINDOWS\system32\drv33260.dll
2011-12-18 15:04:16 ----A---- C:\WINDOWS\system32\drv23260.dll
2011-12-18 15:04:16 ----A---- C:\WINDOWS\system32\cook3260.dll
2011-12-18 15:04:13 ----A---- C:\WINDOWS\system32\vp7vfw.dll
2011-12-18 15:04:11 ----A---- C:\WINDOWS\system32\wvc1dmod.dll
2011-12-18 15:04:09 ----D---- C:\Program Files\VSO
2011-12-18 13:16:58 ----D---- C:\Program Files\Rubikon
2011-12-16 19:54:30 ----A---- C:\WINDOWS\AviSplitter.INI
2011-12-14 22:43:40 ----HDC---- C:\WINDOWS\$NtUninstallKB2639417$
2011-12-14 22:43:29 ----HDC---- C:\WINDOWS\$NtUninstallKB2624667$
2011-12-14 22:40:00 ----HDC---- C:\WINDOWS\$NtUninstallKB2633952$
2011-12-14 22:39:55 ----HDC---- C:\WINDOWS\$NtUninstallKB2619339$
2011-12-14 22:39:33 ----HDC---- C:\WINDOWS\$NtUninstallKB2618451$
2011-12-14 22:39:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2620712$
2011-12-14 22:38:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2633171$
2011-12-14 00:35:52 ----D---- C:\Program Files\Lavalys
2011-12-13 19:03:59 ----D---- C:\WINDOWS\Minidump
2011-12-13 11:45:42 ----D---- C:\Documents and Settings\All Users\Data aplikací\Comodo
2011-12-13 11:45:33 ----D---- C:\Program Files\COMODO
2011-12-13 10:49:37 ----D---- C:\Documents and Settings\All Users\Data aplikací\CPA_VA
2011-12-12 18:21:55 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2011-12-12 18:21:55 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2011-12-12 18:21:55 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2011-12-12 18:21:54 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2011-12-12 18:21:54 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2011-12-12 18:21:53 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2011-12-12 18:21:53 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2011-12-12 18:21:53 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2011-12-12 18:21:52 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2011-12-12 18:21:52 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2011-12-12 18:21:52 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2011-12-12 18:21:51 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2011-12-12 18:21:51 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2011-12-12 18:21:50 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2011-12-12 18:21:50 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2011-12-12 18:21:47 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2011-12-12 18:21:47 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2011-12-12 18:21:46 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2011-12-12 18:21:46 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2011-12-12 18:21:45 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2011-12-12 18:21:45 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2011-12-12 18:21:45 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2011-12-12 18:21:44 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2011-12-12 18:21:44 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2011-12-12 18:21:44 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2011-12-12 18:21:43 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2011-12-12 18:21:42 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2011-12-12 18:21:42 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2011-12-12 18:21:42 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2011-12-12 18:21:41 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2011-12-12 18:21:41 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2011-12-12 18:21:41 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2011-12-12 18:21:41 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2011-12-12 18:21:40 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2011-12-12 18:21:40 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2011-12-12 18:21:39 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2011-12-12 18:21:39 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2011-12-12 18:21:39 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2011-12-12 18:21:38 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2011-12-12 18:21:38 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2011-12-12 18:21:38 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2011-12-12 18:21:37 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2011-12-12 18:21:37 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2011-12-12 18:21:36 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2011-12-12 18:21:36 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2011-12-12 18:21:35 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2011-12-12 18:21:35 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2011-12-12 18:21:34 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2011-12-12 18:21:34 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2011-12-12 18:21:33 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2011-12-12 18:21:33 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2011-12-12 18:21:33 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2011-12-12 18:21:32 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2011-12-12 18:21:31 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2011-12-12 18:21:31 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2011-12-12 18:21:31 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2011-12-12 18:21:30 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2011-12-12 18:21:29 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2011-12-12 18:21:29 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2011-12-12 18:21:28 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2011-12-12 17:18:22 ----A---- C:\WINDOWS\CoD.INI
2011-12-12 15:30:57 ----D---- C:\Documents and Settings\Petr\Data aplikací\dvdcss
2011-12-12 15:29:52 ----D---- C:\Documents and Settings\Petr\Data aplikací\vlc
2011-12-12 15:29:14 ----D---- C:\Program Files\VideoLAN
2011-12-12 14:03:07 ----D---- C:\WINDOWS\system32\LogFiles
2011-12-12 14:01:10 ----D---- C:\WINDOWS\Logs
2011-12-11 21:30:45 ----A---- C:\WINDOWS\system32\drivers\s1039nd5.sys
2011-12-11 21:30:44 ----A---- C:\WINDOWS\system32\drivers\s1039unic.sys
2011-12-11 21:30:44 ----A---- C:\WINDOWS\system32\drivers\s1039obex.sys
2011-12-11 21:30:44 ----A---- C:\WINDOWS\system32\drivers\s1039mgmt.sys
2011-12-11 21:30:44 ----A---- C:\WINDOWS\system32\drivers\s1039cr.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039whnt.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039wh.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039mdm.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039mdfl.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039cmnt.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039cm.sys
2011-12-11 21:30:43 ----A---- C:\WINDOWS\system32\drivers\s1039bus.sys
2011-12-11 21:30:39 ----DC---- C:\WINDOWS\system32\DRVSTORE
2011-12-11 21:29:56 ----D---- C:\Program Files\Sony Ericsson
2011-12-11 21:29:56 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sony Ericsson
2011-12-11 20:40:03 ----A---- C:\WINDOWS\NeroDigital.ini
2011-12-11 17:31:30 ----D---- C:\TRANSLAT
2011-12-11 17:31:28 ----D---- C:\Documents and Settings\All Users\Data aplikací\LangSoft
2011-12-11 17:31:11 ----D---- C:\Documents and Settings\Petr\Data aplikací\LangSoft
2011-12-11 17:26:40 ----D---- C:\Documents and Settings\Petr\Data aplikací\Zoner
2011-12-11 17:26:17 ----D---- C:\Program Files\Zoner
2011-12-11 12:32:05 ----D---- C:\Program Files\XP Codec Pack
2011-12-09 20:38:00 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2011-12-09 20:38:00 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2011-12-09 20:38:00 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2011-12-09 20:38:00 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2011-12-09 20:37:59 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2011-12-09 20:37:59 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2011-12-09 20:37:58 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2011-12-09 20:37:57 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2011-12-09 20:37:57 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2011-12-09 20:37:55 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2011-12-09 20:37:55 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2011-12-09 20:37:55 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2011-12-09 20:37:54 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2011-12-09 20:37:54 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2011-12-09 20:37:54 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2011-12-09 20:37:53 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2011-12-09 20:37:53 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2011-12-09 20:37:53 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2011-12-09 20:37:53 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2011-12-09 20:37:52 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2011-12-09 20:37:46 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2011-12-09 20:37:46 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2011-12-09 20:37:45 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2011-12-09 20:37:45 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2011-12-09 20:37:45 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2011-12-09 20:37:44 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2011-12-09 20:37:44 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2011-12-09 20:37:42 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2011-12-09 20:24:18 ----D---- C:\Documents and Settings\Petr\Data aplikací\Nero
2011-12-09 18:41:19 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2011-12-09 18:41:02 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2011-12-09 18:31:56 ----A---- C:\WINDOWS\MAXLINK.INI
2011-12-09 18:31:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\InstallShield
2011-12-09 18:31:51 ----D---- C:\Documents and Settings\Petr\Data aplikací\ScanSoft
2011-12-09 18:31:44 ----D---- C:\Program Files\Common Files\ScanSoft Shared
2011-12-09 18:31:44 ----D---- C:\Documents and Settings\All Users\Data aplikací\ScanSoft
2011-12-09 18:31:12 ----D---- C:\Program Files\ScanSoft
2011-12-09 18:24:43 ----A---- C:\WINDOWS\IsUn0405.exe
2011-12-09 18:08:22 ----HD---- C:\Documents and Settings\All Users\Data aplikací\CanonBJ
2011-12-09 18:08:15 ----A---- C:\WINDOWS\system32\CNMLM81.DLL
2011-12-09 18:08:10 ----HD---- C:\WINDOWS\system32\CanonIJ Uninstaller Information
2011-12-09 18:08:02 ----A---- C:\WINDOWS\system32\cnco460.dll
2011-12-09 18:08:01 ----A---- C:\WINDOWS\system32\CNCL460.DLL
2011-12-09 18:08:01 ----A---- C:\WINDOWS\system32\CNCI460.DLL
2011-12-09 18:08:01 ----A---- C:\WINDOWS\system32\CNCC460.DLL
2011-12-09 18:07:53 ----HD---- C:\Program Files\CanonBJ
2011-12-09 18:06:33 ----D---- C:\Program Files\Canon
2011-12-09 15:52:53 ----D---- C:\Program Files\Windows Sidebar
2011-12-09 15:52:26 ----A---- C:\WINDOWS\Irremote.ini
2011-12-09 15:40:32 ----D---- C:\Program Files\Nero
2011-12-09 15:40:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2011-12-09 15:40:08 ----D---- C:\Program Files\Common Files\Nero
2011-12-09 15:40:02 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2011-12-09 13:41:16 ----A---- C:\WINDOWS\system32\vfwwdm32.dll
2011-12-09 13:39:28 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2011-12-09 13:38:52 ----A---- C:\WINDOWS\system32\rsnpstd3.dll
2011-12-09 13:38:51 ----A---- C:\WINDOWS\tsnpstd3.exe
2011-12-09 13:38:51 ----A---- C:\WINDOWS\amcap.exe
2011-12-09 13:38:50 ----D---- C:\Program Files\Common Files\StarCam
2011-12-09 13:38:50 ----A---- C:\WINDOWS\vsnpstd3.exe
2011-12-09 13:38:50 ----A---- C:\WINDOWS\system32\vsnpstd3.dll
2011-12-09 13:38:50 ----A---- C:\WINDOWS\system32\drivers\snpstd3.sys
2011-12-09 13:38:50 ----A---- C:\WINDOWS\snpstd3.src
2011-12-09 13:38:50 ----A---- C:\WINDOWS\snpstd3.ini
2011-12-09 13:38:48 ----A---- C:\WINDOWS\system32\csnpstd3.dll
2011-12-09 10:53:56 ----A---- C:\WINDOWS\imsins.BAK
2011-12-09 10:53:40 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2011-12-09 10:53:15 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2011-12-09 10:30:36 ----D---- C:\Program Files\MSXML 4.0
2011-12-08 23:35:33 ----A---- C:\WINDOWS\system32\msonpmon.dll
2011-12-08 23:33:52 ----D---- C:\Program Files\Microsoft Works
2011-12-08 23:33:20 ----D---- C:\Program Files\Microsoft Visual Studio
2011-12-08 23:29:49 ----D---- C:\WINDOWS\SHELLNEW
2011-12-08 23:28:53 ----RHD---- C:\MSOCache
2011-12-08 20:47:29 ----D---- C:\Program Files\trend micro
2011-12-08 20:17:48 ----ASH---- C:\hiberfil.sys
2011-12-08 20:17:42 ----A---- C:\WINDOWS\system32\qtintf.dll
2011-12-08 20:17:41 ----D---- C:\Program Files\APC
2011-12-08 20:06:11 ----D---- C:\Program Files\RegCleaner
2011-12-08 20:04:50 ----A---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2011-12-08 20:04:33 ----D---- C:\Program Files\DAEMON Tools Lite
2011-12-08 20:04:19 ----D---- C:\Documents and Settings\Petr\Data aplikací\DAEMON Tools Lite
2011-12-08 20:04:19 ----D---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2011-12-08 18:09:24 ----D---- C:\Program Files\SUPERAntiSpyware
2011-12-08 18:09:12 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2011-12-08 18:03:09 ----A---- C:\WINDOWS\system32\drivers\revoflt.sys
2011-12-08 18:03:08 ----D---- C:\Program Files\VS Revo Group
2011-12-08 17:53:32 ----SHD---- C:\WINDOWS\ftpcache
2011-12-08 17:52:38 ----D---- C:\WINDOWS\RegisteredPackages
2011-12-08 17:52:16 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2011-12-08 17:52:16 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2011-12-08 17:52:16 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\psisdecd.dll
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\msdv.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\mpe.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2011-12-08 17:52:15 ----A---- C:\WINDOWS\system32\drivers\bdasup.sys
2011-12-08 17:52:12 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2011-12-08 17:51:28 ----A---- C:\WINDOWS\game.ini
2011-12-08 17:34:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2011-12-08 17:34:44 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2011-12-08 17:30:43 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2011-12-08 15:44:04 ----A---- C:\WINDOWS\eDrawingOfficeAutomator.INI
2011-12-08 15:40:18 ----D---- C:\Documents and Settings\Petr\Data aplikací\DassaultSystemes
2011-12-08 15:40:18 ----D---- C:\Documents and Settings\All Users\Data aplikací\DassaultSystemes
2011-12-08 15:32:45 ----D---- C:\Documents and Settings\All Users\Data aplikací\SolidWorks
2011-12-08 15:29:14 ----D---- C:\Program Files\Common Files\Designer
2011-12-08 15:28:24 ----D---- C:\Program Files\Microsoft Visual Studio 8
2011-12-08 15:28:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\Microsoft Help
2011-12-08 15:17:36 ----D---- C:\WINDOWS\SxsCaPendDel
2011-12-08 15:05:20 ----D---- C:\Program Files\Microsoft Office
2011-12-08 15:05:05 ----D---- C:\Program Files\Microsoft.NET
2011-12-08 15:02:50 ----D---- C:\Program Files\MSECache
2011-12-08 15:01:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\FLEXnet
2011-12-08 15:01:36 ----D---- C:\Program Files\Common Files\SolidWorks Shared
2011-12-08 15:01:33 ----D---- C:\Program Files\Common Files\Macrovision Shared
2011-12-08 14:59:20 ----D---- C:\Program Files\Common Files\Manažer instalací SolidWorks
2011-12-08 14:58:13 ----D---- C:\WINDOWS\SolidWorks
2011-12-08 14:58:08 ----D---- C:\Documents and Settings\Petr\Data aplikací\SolidWorks
2011-12-08 14:28:27 ----A---- C:\WINDOWS\War3Unin.dat
2011-12-08 14:28:26 ----A---- C:\WINDOWS\War3Unin.pif
2011-12-08 14:28:26 ----A---- C:\WINDOWS\War3Unin.exe
2011-12-08 13:05:21 ----D---- C:\Program Files\Common Files\DirectX
2011-12-08 12:47:19 ----A---- C:\WINDOWS\system32\mucltui.dll

======List of files/folders modified in the last 1 month======

2012-01-07 12:46:30 ----D---- C:\Documents and Settings\All Users\Data aplikací\ConMet
2012-01-07 12:45:56 ----D---- C:\WINDOWS\Prefetch
2012-01-07 12:44:41 ----SHD---- C:\WINDOWS\Installer
2012-01-07 12:43:35 ----D---- C:\WINDOWS\Temp
2012-01-07 12:39:57 ----D---- C:\WINDOWS\system32
2012-01-07 12:39:57 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-01-07 12:38:49 ----A---- C:\WINDOWS\system32\deployJava1.dll
2012-01-07 12:38:45 ----RD---- C:\Program Files
2012-01-07 12:36:19 ----D---- C:\Documents and Settings\Petr\Data aplikací\Skype
2012-01-07 12:36:05 ----D---- C:\Documents and Settings\Petr\Data aplikací\ConMet
2012-01-07 12:36:03 ----D---- C:\WINDOWS\system32\CatRoot2
2012-01-07 12:36:00 ----D---- C:\WINDOWS
2012-01-07 12:34:17 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-01-07 12:33:45 ----HD---- C:\WINDOWS\inf
2012-01-07 12:33:42 ----D---- C:\WINDOWS\system32\mui
2012-01-07 12:33:41 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-01-06 21:50:56 ----D---- C:\Program Files\Google
2012-01-06 19:37:56 ----D---- C:\WINDOWS\SoftwareDistribution
2012-01-06 17:43:15 ----D---- C:\WINDOWS\system32\drivers
2012-01-06 17:38:05 ----HD---- C:\Program Files\InstallShield Installation Information
2012-01-06 15:09:55 ----D---- C:\Program Files\Mozilla Firefox
2012-01-06 14:23:05 ----D---- C:\WINDOWS\WinSxS
2011-12-30 17:19:57 ----D---- C:\WINDOWS\Microsoft.NET
2011-12-30 17:19:51 ----RSD---- C:\WINDOWS\assembly
2011-12-26 19:59:16 ----SD---- C:\Documents and Settings\Petr\Data aplikací\Microsoft
2011-12-24 18:27:48 ----D---- C:\WINDOWS\system32\wbem
2011-12-23 11:53:14 ----D---- C:\WINDOWS\system32\DirectX
2011-12-19 19:58:56 ----A---- C:\WINDOWS\system32\cmdcsr.dll
2011-12-19 19:58:55 ----A---- C:\WINDOWS\system32\guard32.dll
2011-12-16 01:38:18 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2011-12-15 18:28:56 ----D---- C:\Documents and Settings\Petr\Data aplikací\TeamViewer
2011-12-15 00:32:08 ----D---- C:\WINDOWS\system32\ReinstallBackups
2011-12-14 22:43:21 ----D---- C:\Program Files\Internet Explorer
2011-12-14 22:43:11 ----D---- C:\WINDOWS\ie8updates
2011-12-14 22:43:07 ----HD---- C:\WINDOWS\$hf_mig$
2011-12-14 22:41:39 ----D---- C:\WINDOWS\Debug
2011-12-14 22:41:36 ----A---- C:\WINDOWS\system32\MRT.exe
2011-12-13 11:45:41 ----D---- C:\Documents and Settings\All Users\Data aplikací\Comodo Downloader
2011-12-13 10:06:51 ----D---- C:\Program Files\Common Files\Microsoft Shared
2011-12-13 10:04:43 ----D---- C:\Program Files\Common Files\System
2011-12-13 10:04:43 ----A---- C:\WINDOWS\win.ini
2011-12-12 15:22:45 ----D---- C:\WINDOWS\Network Diagnostic
2011-12-09 18:41:07 ----D---- C:\WINDOWS\Media
2011-12-09 18:31:44 ----D---- C:\Program Files\Common Files
2011-12-09 18:31:43 ----SD---- C:\WINDOWS\Downloaded Program Files
2011-12-09 18:31:43 ----D---- C:\Program Files\Common Files\InstallShield
2011-12-09 18:08:09 ----D---- C:\WINDOWS\twain_32
2011-12-09 10:55:22 ----D---- C:\WINDOWS\system32\CatRoot
2011-12-09 10:41:34 ----RSD---- C:\WINDOWS\Fonts
2011-12-08 23:35:25 ----D---- C:\WINDOWS\system32\config
2011-12-08 20:26:26 ----RD---- C:\Documents and Settings
2011-12-08 20:25:53 ----RD---- C:\NVIDIA
2011-12-08 15:32:48 ----D---- C:\Program Files\NVIDIA Corporation
2011-12-08 15:25:56 ----D---- C:\WINDOWS\system32\cs-cz
2011-12-08 15:25:54 ----D---- C:\WINDOWS\system32\XPSViewer
2011-12-08 15:20:06 ----D---- C:\WINDOWS\system32\en-us

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-14 46464]
R0 Inspect;COMODO Internet Security Firewall Driver; C:\WINDOWS\System32\DRIVERS\inspect.sys [2011-12-19 97760]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2008-05-19 77568]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2011-02-23 30680]
R1 AmdPPM;Ovladač procesoru HwPState AMD; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792]
R1 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2011-02-23 25432]
R1 aswSnx;aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [2011-02-23 371544]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2011-02-23 301528]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2011-02-23 49240]
R1 cmdGuard;COMODO Internet Security Sandbox Driver; C:\WINDOWS\System32\DRIVERS\cmdguard.sys [2011-12-19 494816]
R1 cmdHlp;COMODO Internet Security Helper Driver; C:\WINDOWS\System32\DRIVERS\cmdhlp.sys [2011-12-19 31704]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-12-08 218688]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys []
R1 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2006-07-24 5632]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2011-02-23 19544]
R2 aswMon2;aswMon2; C:\WINDOWS\system32\drivers\aswMon2.sys [2011-02-23 102232]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2006-08-18 4017536]
R3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-25 12160]
R3 ms_mpu401;Microsoft MPU-401 MIDI UART Driver; C:\WINDOWS\system32\drivers\msmpu401.sys [2001-08-17 2944]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-01-08 9888672]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
R3 SNPSTD3;StarCam Clip; C:\WINDOWS\system32\DRIVERS\snpstd3.sys [2006-06-27 10148480]
R3 usbaudio;Ovladač zvukové karty USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-14 60032]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
S3 CCDECODE;Dekodér Closed Caption; C:\WINDOWS\system32\DRIVERS\CCDECODE.sys [2004-07-09 16384]
S3 HidBatt;Ovladač baterie zdroje UPS standardu HID; C:\WINDOWS\system32\DRIVERS\HidBatt.sys [2008-04-14 20352]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\WINDOWS\system32\drivers\MSTEE.sys [2002-12-12 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec; C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys [2004-07-09 83968]
S3 NdisIP;Microsoft TV/Video Connection; C:\WINDOWS\system32\DRIVERS\NdisIP.sys [2004-07-09 10112]
S3 Revoflt;Revoflt; C:\WINDOWS\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
S3 s1039bus;Sony Ericsson Device 1039 driver (WDM); C:\WINDOWS\system32\DRIVERS\s1039bus.sys [2010-03-15 98672]
S3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\s1039mdfl.sys [2010-03-15 14960]
S3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\s1039mdm.sys [2010-03-15 124016]
S3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\s1039mgmt.sys [2010-03-15 117872]
S3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS); C:\WINDOWS\system32\DRIVERS\s1039nd5.sys [2010-03-15 25456]
S3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\s1039obex.sys [2010-03-15 113904]
S3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM); C:\WINDOWS\system32\DRIVERS\s1039unic.sys [2010-03-15 123504]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS []
S3 SLIP;BDA Slip De-Framer; C:\WINDOWS\system32\DRIVERS\SLIP.sys [2004-07-09 10880]
S3 ss_bus;SAMSUNG Mobile USB Device 1.0 driver (WDM); C:\WINDOWS\system32\DRIVERS\ss_bus.sys [2007-05-02 83592]
S3 ss_mdfl;SAMSUNG Mobile USB Modem 1.0 Filter; C:\WINDOWS\system32\DRIVERS\ss_mdfl.sys [2007-05-02 15112]
S3 ss_mdm;SAMSUNG Mobile USB Modem 1.0 Drivers; C:\WINDOWS\system32\DRIVERS\ss_mdm.sys [2007-05-02 109704]
S3 streamip;BDA IPSink; C:\WINDOWS\system32\DRIVERS\StreamIP.sys [2004-07-09 14976]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2008-05-19 38528]
S3 WSTCODEC;World Standard Teletext Codec; C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS [2004-07-09 18688]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2008-05-19 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2011-12-08 116608]
R2 APC UPS Service;APC UPS Service; C:\Program Files\APC\APC PowerChute Personal Edition\mainserv.exe [2005-12-12 176193]
R2 avast! Antivirus;avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [2011-02-23 42184]
R2 cmdAgent;COMODO Internet Security Helper Service; C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe [2011-12-19 1960584]
R2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2011-08-15 1361288]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2012-01-07 153376]
R2 nvsvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2011-01-07 156776]
R2 RubikonUpdateService;RubikonUpdateService; C:\Program Files\Rubikon\RubikonUpdateServer.exe [2011-12-14 43008]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-07 136176]
S2 Nero BackItUp Scheduler 4.0;Nero BackItUp Scheduler 4.0; C:\Program Files\Common Files\Nero\Nero BackItUp 4\NBService.exe [2009-05-15 935208]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 CoordinatorServiceHost;SW Distributed TS Coordinator Service; D:\Daniel\Program Files\Solid works\SolidWorks\swScheduler\DTSCoordinatorService.exe [2011-01-08 87336]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2011-12-08 1044816]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-12-07 136176]
S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2011-12-07 182768]
S3 idsvc;Služba Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2009-02-26 64856]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2011-07-20 440696]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SolidWorks Licensing Service;SolidWorks Licensing Service; C:\Program Files\Common Files\SolidWorks Shared\Service\SolidWorksLicensing.exe [2011-12-08 79360]
S3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-06-29 155344]
S4 msvsmon80;Visual Studio 2005 Remote Debugger; C:\Program Files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2005-09-23 2799808]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[Roli]

Tohle fixni v HJT :

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicus& ... Terms}&f=4
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll (file missing)
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7018.1622\swg.dll (file missing)
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll (file missing)
O4 - HKLM\..\Run: [tsnpstd3] C:\WINDOWS\tsnpstd3.exe
O4 - HKLM\..\Run: [snpstd3] C:\WINDOWS\vsnpstd3.exe
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O9 - Extra button: (no name) - {BFC32E1D-EE75-4A48-BC60-104E11EE2431} - (no file)

HJT najdeš zde :

C:\Program Files\trend micro\Petr.exe

Fix znamená že spustíš HJT jako admin

v okně které se ti otevře klikneš na Do a system scan only

v dalším okně najdeš řádky které jsem ti vypsal,

vedle nich je čtvereček do kterého uděláš zatržítko,

pak klikneš na Fix checked které je vlevo dole,

program se ti zeptá zda opravdu ANO s tím samozřejmě souhlasíš a je hotovo.


Přes Start >> Spustit >> napiš - services.msc >> OK. Najdi službu :

Služba Google Update (gupdate)

Služba Google Update (gupdatem)

Google Software Updater (gusvc)

Nero BackItUp Scheduler 4.0

klikni na ni pravým myšítkem, zvol vlastnosti, na další kartě nejprve službu zastav tlačítkem Zastavit a u položky Typ spouštění zvol Zakázáno.


Přes Start >> Ovládací panely >> Přidat nebo odebrat odinstaluj facemoods.com


Stáhni a ulož na plochu ComboFix,

spusť aplikaci jako Administrátor a povol instalaci Konzole pro zotavení - Recovery Console.

Poté se zobrazí okno s licenčními podmínkami které potvrdíš kliknutím na ANO,

pak ještě jednou klik na ANO a už to jede.

Celá akce trvá okolo 10 minut ale může i déle, během skenu se nepokoušej spouštět nic jiného.

Při skenovaní může být PC i restartováno nelekat se.

Upozornění: po dobu skenu vypni rezidentní štít Antiviru a AntiSpy programu,

protože Combofix se pokouší napadené soubory smazat a tyto programy mu můžou bránit.

Po dokončení skenu nebo následném restartu aplikace vytvoří log, uložený na C:/Combofix.txt

(při opakovaném použití jsou logy číslovány Combofix2.txt atd.), jeho obsah zkopíruj sem.


V případě nejasností je ZDE obrázkový návod.

[PredyP]

Nejde mi to otevřít jak píšeš

[Roli]

Ani když klikneš na tlačítko Scan tak se nic neděje ?

A co v Nouzáku ?

[PredyP]

zkusím

[PredyP]

Toto jem v HJT nenašel
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
facemoods.com v přidat odebrat nebyl

ComboFix 12-01-07.03 - Petr 08.01.2012 21:53:30.1.1 - x86
Spuštěný z: c:\documents and settings\Petr\Plocha\ComboFix.exe
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\facemoods.com
c:\windows\alcrmv.exe
c:\windows\IsUn0405.exe
c:\windows\msmqinst.log
c:\windows\msxml4-KB973688-enu.LOG
c:\windows\system32\TZLog.log
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2011-12-08 do 2012-01-08 )))))))))))))))))))))))))))))))
.
.
2012-01-07 11:47 . 2012-01-07 11:47 -------- d-----w- C:\rsit
2012-01-07 11:46 . 2012-01-07 11:46 781383 ----a-w- C:\RSIT.exe
2012-01-07 11:39 . 2012-01-07 11:38 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-01-07 11:38 . 2012-01-07 11:38 -------- d-----w- c:\program files\Java
2012-01-06 16:44 . 2012-01-06 16:44 -------- d-----w- c:\documents and settings\Petr\Data aplikací\Samsung
2012-01-06 16:39 . 2006-05-03 21:53 174592 ----a-w- c:\windows\system32\framedyn.dll
2012-01-06 16:38 . 2007-05-02 10:11 109704 ----a-w- c:\windows\system32\drivers\ss_mdm.sys
2012-01-06 16:38 . 2012-01-06 16:39 -------- d-----w- c:\windows\system32\Samsung_USB_Drivers
2012-01-06 16:38 . 2007-05-02 10:11 15112 ----a-w- c:\windows\system32\drivers\ss_mdfl.sys
2012-01-06 16:38 . 2007-05-02 10:11 12424 ----a-w- c:\windows\system32\drivers\ss_whnt.sys
2012-01-06 16:38 . 2007-05-02 10:11 12424 ----a-w- c:\windows\system32\drivers\ss_wh.sys
2012-01-06 16:38 . 2007-05-02 10:11 83592 ----a-w- c:\windows\system32\drivers\ss_bus.sys
2012-01-06 16:38 . 2007-05-02 10:11 12424 ----a-w- c:\windows\system32\drivers\ss_cmnt.sys
2012-01-06 16:38 . 2007-05-02 10:11 12424 ----a-w- c:\windows\system32\drivers\ss_cm.sys
2012-01-06 16:38 . 2006-07-24 15:05 5632 ----a-w- c:\windows\system32\drivers\StarOpen.sys
2012-01-06 16:38 . 2012-01-06 16:38 -------- d-----w- c:\program files\Samsung
2012-01-06 13:59 . 2012-01-06 13:59 -------- d-----w- c:\documents and settings\Petr\Data aplikací\facemoods.com
2012-01-06 13:58 . 2011-11-21 04:21 801752 ----a-w- c:\program files\Mozilla Firefox\sqlite3.dll
2012-01-06 13:34 . 2012-01-06 13:34 -------- d-----w- c:\documents and settings\Petr\Data aplikací\TS3Client
2012-01-06 13:07 . 2012-01-08 18:33 -------- d-----w- c:\documents and settings\Petr\Local Settings\Data aplikací\LogMeIn Hamachi
2012-01-06 13:07 . 2012-01-08 21:04 -------- d-----w- c:\documents and settings\LocalService\Local Settings\Data aplikací\LogMeIn Hamachi
2012-01-06 13:06 . 2012-01-06 13:41 -------- d-----w- c:\program files\LogMeIn Hamachi
2012-01-04 18:06 . 2012-01-04 18:06 -------- d-----w- c:\program files\CrystalDiskInfo
2012-01-03 17:13 . 2012-01-03 17:13 -------- d-----w- c:\program files\HD Tune
2011-12-23 22:03 . 2011-12-23 22:03 -------- d-----w- c:\documents and settings\Petr\Local Settings\Data aplikací\Unity
2011-12-23 22:03 . 2011-12-23 22:03 -------- d-----w- c:\windows\Sun
2011-12-18 15:52 . 2011-12-18 15:52 -------- d-----w- c:\documents and settings\All Users\Data aplikací\vsosdk
2011-12-18 14:04 . 2011-12-19 16:06 -------- d-----w- c:\documents and settings\Petr\Data aplikací\Vso
2011-12-18 14:04 . 2009-09-02 12:44 102439 ----a-w- c:\windows\system32\sipr3260.dll
2011-12-18 14:04 . 2009-09-02 12:44 65602 ----a-w- c:\windows\system32\cook3260.dll
2011-12-18 14:04 . 2009-09-02 12:44 217127 ----a-w- c:\windows\system32\drv43260.dll
2011-12-18 14:04 . 2009-09-02 12:44 208935 ----a-w- c:\windows\system32\drv33260.dll
2011-12-18 14:04 . 2009-09-02 12:44 176165 ----a-w- c:\windows\system32\drv23260.dll
2011-12-18 14:04 . 2009-09-02 12:44 626688 ----a-w- c:\windows\system32\vp7vfw.dll
2011-12-18 14:04 . 2009-09-02 12:44 1184984 ----a-w- c:\windows\system32\wvc1dmod.dll
2011-12-18 14:04 . 2011-12-18 14:04 -------- d-----w- c:\program files\VSO
2011-12-18 12:16 . 2012-01-08 20:05 -------- d-----w- c:\program files\Rubikon
2011-12-13 23:35 . 2011-12-13 23:35 -------- d-----w- c:\program files\Lavalys
2011-12-13 16:24 . 2004-10-22 01:17 69715 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\ctor.dll
2011-12-13 16:24 . 2004-10-22 01:17 274432 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iscript.dll
2011-12-13 16:24 . 2004-10-22 01:16 180224 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iuser.dll
2011-12-13 16:24 . 2004-10-22 01:16 5632 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\DotNetInstaller.exe
2011-12-13 16:24 . 2004-10-22 01:18 749568 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iKernel.dll
2011-12-13 16:24 . 2011-12-13 16:24 192644 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\iGdi.dll
2011-12-13 16:24 . 2011-12-13 16:24 323716 ----a-w- c:\program files\Common Files\InstallShield\Professional\RunTime\10\50\Intel32\setup.dll
2011-12-13 10:45 . 2011-12-13 10:51 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Comodo
2011-12-13 10:45 . 2011-12-13 10:45 -------- d-----w- c:\program files\COMODO
2011-12-13 09:49 . 2011-12-13 09:49 -------- d-----w- c:\documents and settings\All Users\Data aplikací\CPA_VA
2011-12-12 14:30 . 2011-12-12 14:30 -------- d-----w- c:\documents and settings\Petr\Data aplikací\dvdcss
2011-12-12 14:29 . 2011-12-12 14:31 -------- d-----w- c:\documents and settings\Petr\Data aplikací\vlc
2011-12-12 14:29 . 2011-12-12 14:29 -------- d-----w- c:\program files\VideoLAN
2011-12-12 13:03 . 2011-12-12 13:03 -------- d-----w- c:\windows\system32\LogFiles
2011-12-12 13:01 . 2011-12-12 13:01 -------- d-----w- c:\windows\Logs
2011-12-11 20:29 . 2011-12-11 20:29 -------- d-----w- c:\program files\Sony Ericsson
2011-12-11 20:29 . 2011-12-11 20:29 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Sony Ericsson
2011-12-11 19:40 . 2011-12-11 19:40 -------- d-----w- c:\documents and settings\Petr\Local Settings\Data aplikací\Nero
2011-12-11 16:31 . 2011-12-11 16:32 -------- d-----w- C:\TRANSLAT
2011-12-11 16:31 . 2011-12-11 16:32 -------- d-----w- c:\documents and settings\All Users\Data aplikací\LangSoft
2011-12-11 16:31 . 2011-12-11 16:57 -------- d-----w- c:\documents and settings\Petr\Data aplikací\LangSoft
2011-12-11 16:26 . 2011-12-11 16:27 -------- d-----w- c:\documents and settings\Petr\Data aplikací\Zoner
2011-12-11 16:26 . 2011-12-11 16:26 -------- d-----w- c:\program files\Zoner
2011-12-11 11:32 . 2008-07-09 09:05 421888 ----a-w- c:\windows\system32\ac3filter.acm
2011-12-11 11:32 . 2011-12-11 11:32 -------- d-----w- c:\program files\XP Codec Pack
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-01-07 11:38 . 2011-12-07 19:34 472808 ----a-w- c:\windows\system32\deployJava1.dll
2011-12-21 15:46 . 2011-12-07 19:35 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-19 18:59 . 2011-10-07 17:48 97760 ----a-w- c:\windows\system32\drivers\inspect.sys
2011-12-19 18:59 . 2011-10-07 17:48 31704 ----a-w- c:\windows\system32\drivers\cmdhlp.sys
2011-12-19 18:59 . 2011-10-07 17:48 494816 ----a-w- c:\windows\system32\drivers\cmdGuard.sys
2011-12-19 18:59 . 2011-10-07 17:48 18056 ----a-w- c:\windows\system32\drivers\cmderd.sys
2011-12-19 18:58 . 2011-10-07 17:47 33984 ----a-w- c:\windows\system32\cmdcsr.dll
2011-12-19 18:58 . 2011-10-07 17:47 301224 ----a-w- c:\windows\system32\guard32.dll
2011-12-08 19:04 . 2011-12-08 19:04 218688 ----a-w- c:\windows\system32\drivers\dtsoftbus01.sys
2011-12-08 13:28 . 2011-12-08 13:28 2829 ----a-w- c:\windows\War3Unin.pif
2011-12-08 13:28 . 2011-12-08 13:28 126976 ----a-w- c:\windows\War3Unin.exe
2011-12-07 17:56 . 2011-12-07 17:56 348160 ----a-w- c:\windows\system32\msvcr71.dll
2011-12-07 17:56 . 2011-12-07 17:56 1700352 ----a-w- c:\windows\system32\gdiplus.dll
2011-12-07 17:56 . 2011-12-07 17:56 1060864 ----a-w- c:\windows\system32\mfc71.dll
2011-11-23 14:40 . 2008-04-14 05:45 1859584 ----a-w- c:\windows\system32\win32k.sys
2011-11-04 19:13 . 2008-05-19 09:15 43520 ------w- c:\windows\system32\licmgr10.dll
2011-11-04 19:13 . 2008-03-01 13:02 916992 ----a-w- c:\windows\system32\wininet.dll
2011-11-04 19:13 . 2008-03-01 13:02 1469440 ------w- c:\windows\system32\inetcpl.cpl
2011-11-04 11:23 . 2008-05-19 09:15 385024 ------w- c:\windows\system32\html.iec
2011-11-01 16:07 . 2008-04-14 06:51 1288192 ----a-w- c:\windows\system32\ole32.dll
2011-10-28 05:32 . 2008-04-14 06:51 33280 ----a-w- c:\windows\system32\csrsrv.dll
2011-10-26 10:50 . 2008-04-14 08:06 2071552 ----a-w- c:\windows\system32\ntkrnlpa.exe
2011-10-26 10:50 . 2008-04-14 06:07 2194944 ----a-w- c:\windows\system32\ntoskrnl.exe
2011-10-18 11:13 . 2008-04-14 06:51 186880 ----a-w- c:\windows\system32\encdec.dll
2011-11-21 04:21 . 2011-12-07 19:15 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[-] 2008-05-19 . E3B22F050F840306FD522227F68046C5 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2011-02-23 15:04 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2011-10-13 17351304]
"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-12-15 4616064]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2006-08-02 577536]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2011-01-07 111208]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-02-23 3451496]
"ConMet"="c:\program files\ConMet\ConMet.exe" [2011-12-07 4668416]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2011-01-07 13880424]
"COMODO Internet Security"="c:\program files\COMODO\COMODO Internet Security\cfp.exe" [2011-12-21 6676808]
.
c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\
APC UPS Status.lnk - c:\program files\APC\APC PowerChute Personal Edition\Display.exe [2011-12-8 221247]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-12-08 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon]
"UIHost"="d:\petr\Obrázky přihlašovací obrazovka\ms_rainbow_li\ms-rainbow\logonui.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2011-12-08 18:07 548352 ----a-w- c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\windows\system32\guard32.dll
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\tcpip\parameters\persistentroutes]
"195.137.182.212,255.255.255.255,192.168.1.15,1"=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Speed Launch.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Speed Launch.lnk
backup=c:\windows\pss\Adobe Reader Speed Launch.lnkCommon Startup
.
[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Synchronizer.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Adobe Reader Synchronizer.lnk
backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KernelFaultCheck]
c:\windows\system32\dumprep 0 -k [X]
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
2011-01-20 09:20 1305408 ----a-w- c:\program files\DAEMON Tools Lite\DTLite.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\GrooveMonitor]
2009-02-26 17:36 30040 ----a-w- c:\program files\Microsoft Office\Office12\GrooveMonitor.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
2011-08-15 15:18 1955208 ----a-w- c:\program files\LogMeIn Hamachi\hamachi-2-ui.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpwareSE4]
2006-03-21 12:19 69632 ----a-w- c:\program files\ScanSoft\OmniPageSE4.0\OpWareSE4.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Companion]
2011-10-21 13:06 433872 ----a-w- c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
2003-09-29 23:14 155648 ----a-r- c:\program files\Common Files\ScanSoft Shared\SSBkgdUpdate\SSBkgdUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2011-06-09 12:06 254696 ----a-w- c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer.exe"=
"c:\\Program Files\\TeamViewer\\Version7\\TeamViewer_Service.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\GROOVE.EXE"=
"c:\\Program Files\\Microsoft Office\\Office12\\ONENOTE.EXE"=
"d:\\Daniel\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"d:\\Daniel\\Program Files\\EA Games\\Battlefield 2\\BF2.exe"=
.
R3 CoordinatorServiceHost;SW Distributed TS Coordinator Service;d:\daniel\Program Files\Solid works\SolidWorks\swScheduler\DTSCoordinatorService.exe [2011-01-08 87336]
R3 Revoflt;Revoflt;c:\windows\system32\DRIVERS\revoflt.sys [2009-12-30 27064]
R3 s1039bus;Sony Ericsson Device 1039 driver (WDM);c:\windows\system32\DRIVERS\s1039bus.sys [2010-03-15 98672]
R3 s1039mdfl;Sony Ericsson Device 1039 USB WMC Modem Filter;c:\windows\system32\DRIVERS\s1039mdfl.sys [2010-03-15 14960]
R3 s1039mdm;Sony Ericsson Device 1039 USB WMC Modem Driver;c:\windows\system32\DRIVERS\s1039mdm.sys [2010-03-15 124016]
R3 s1039mgmt;Sony Ericsson Device 1039 USB WMC Device Management Drivers (WDM);c:\windows\system32\DRIVERS\s1039mgmt.sys [2010-03-15 117872]
R3 s1039nd5;Sony Ericsson Device 1039 USB Ethernet Emulation (NDIS);c:\windows\system32\DRIVERS\s1039nd5.sys [2010-03-15 25456]
R3 s1039obex;Sony Ericsson Device 1039 USB WMC OBEX Interface;c:\windows\system32\DRIVERS\s1039obex.sys [2010-03-15 113904]
R3 s1039unic;Sony Ericsson Device 1039 USB Ethernet Emulation (WDM);c:\windows\system32\DRIVERS\s1039unic.sys [2010-03-15 123504]
R3 SASENUM;SASENUM;c:\program files\SUPERAntiSpyware\SASENUM.SYS [2011-12-08 12872]
R3 Sony Ericsson PCCompanion;Sony Ericsson PCCompanion;c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [2011-06-29 155344]
R4 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2011-12-07 136176]
R4 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2011-12-07 136176]
R4 msvsmon80;Visual Studio 2005 Remote Debugger;c:\program files\Microsoft Visual Studio 8\Common7\IDE\Remote Debugger\x86\msvsmon.exe [2005-09-23 2799808]
S1 aswSnx;aswSnx; [x]
S1 aswSP;aswSP; [x]
S1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\DRIVERS\cmdguard.sys [2011-12-19 494816]
S1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\DRIVERS\cmdhlp.sys [2011-12-19 31704]
S1 dtsoftbus01;DAEMON Tools Virtual Bus Driver;c:\windows\system32\DRIVERS\dtsoftbus01.sys [2011-12-08 218688]
S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-12-08 12880]
S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.sys [2011-12-08 67664]
S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-12-08 116608]
S2 aswFsBlk;aswFsBlk; [x]
S2 Hamachi2Svc;LogMeIn Hamachi Tunneling Engine;c:\program files\LogMeIn Hamachi\hamachi-2.exe [2011-08-15 1361288]
S2 RubikonUpdateService;RubikonUpdateService;c:\program files\Rubikon\RubikonUpdateServer.exe [2011-12-14 43008]
.
.
Obsah adresáře 'Naplánované úlohy'
.
2012-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-12-07 19:31]
.
2012-01-08 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2011-12-07 19:31]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://seznam.cz/
IE: &Google Search - c:\program files\Google\GoogleToolbar1.dll/cmsearch.html
IE: Backward Links - c:\program files\Google\GoogleToolbar1.dll/cmbacklinks.html
IE: Cached Snapshot of Page - c:\program files\Google\GoogleToolbar1.dll/cmcache.html
IE: E&xportovat do aplikace Microsoft Excel - c:\progra~1\MICROS~4\Office12\EXCEL.EXE/3000
IE: Easy-WebPrint - Náhled - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_Preview.html
IE: Easy-WebPrint - Přidat na seznam k tisku - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_AddToList.html
IE: Easy-WebPrint - Tisk - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_Print.html
IE: Easy-WebPrint - Vysokorychlostní tisk - c:\program files\Canon\Easy-WebPrint\Toolband.dll/RC_HSPrint.html
IE: Similar Pages - c:\program files\Google\GoogleToolbar1.dll/cmsimilar.html
IE: Translate into English - c:\program files\Google\GoogleToolbar1.dll/cmtrans.html
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748449} - {CC963627-B1DC-40E0-B52A-CF21EE748449} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\documents and settings\All Users\Data aplikací\LangSoft\WebIE.dll
TCP: Interfaces\{F02D19B6-DBCE-4071-874C-6B2098E4223C}: NameServer = 8.26.56.26,156.154.70.22
FF - ProfilePath - c:\documents and settings\Petr\Data aplikací\Mozilla\Firefox\Profiles\fujepkn9.default\
FF - prefs.js: browser.startup.homepage - seznam.cz
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
MSConfigStartUp-COMODO - c:\program files\COMODO\COMODO GeekBuddy\CLPSLA.exe
MSConfigStartUp-CPA - c:\program files\COMODO\COMODO GeekBuddy\VALA.exe
AddRemove-Easy-WebPrint - c:\windows\IsUn0405.exe
AddRemove-PC Translator - c:\docume~1\Petr\LOCALS~1\Temp\UN32.EXE
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-01-08 22:04
Windows 5.1.2600 Service Pack 3 NTFS
.
detected NTDLL code modification:
ZwClose
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(716)
c:\windows\system32\guard32.dll
c:\program files\SUPERAntiSpyware\SASWINLO.DLL
.
- - - - - - - > 'lsass.exe'(772)
c:\windows\system32\MPR.dll
c:\windows\system32\guard32.dll
.
- - - - - - - > 'csrss.exe'(688)
c:\windows\system32\cmdcsr.dll
.
Celkový čas: 2012-01-08 22:08:40
ComboFix-quarantined-files.txt 2012-01-08 21:08
.
Před spuštěním: Volných bajtů: 48 498 909 184
Po spuštění: Volných bajtů: 50 711 293 952
.
WindowsXP-KB310994-SP2-Home-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - CB667A644AB9EC4B33ED931ACF3A1F92

[PredyP]

Je to stejné s tím otvíráním a ještě mi jde pomalu otevřít malování otevře se až za dobu. Face mod je tu pořád.

[Roli]

Přes Start >> Spustit zkopíruj do okna:

ComboFix /Uninstall

a stiskni Enter

To odinstaluje ComboFix a smaže s ním související soubory a složky.


V HJT jsi ten Facemood fixnul ?


Pak použij AVP Tool z mého podpisu.

[PredyP]

V HJT jsem ten Facemood fixnul
AVP Tool není žádný log na uložení

[Roli]

AVP Tool není žádný log na uložení

Jak je to možné když to normálně jde uložit ?

To je jedno, našel tedy něco ?


Stáhni TDSSKiller a ulož ho na plochu.

Spusť aplikaci, vyber volbu Spustit kontrolu a klik na Start sken

Pokud aplikace najde infikovaný soubor, ukáže se Ti předvolená akce Cure,

v tom případě potvrď tlačítko Continue

Pokud bude chtít apliakce restartovat počítač, klikni na tlačítko Reboot Now

Pokud si restart nevyžádá, klikni na tlačítko Report.

Po té na Tebe vypadne log, jeho obsah zkopíruj sem.

Pokud se log nezobrazí, je uložený na C:\TDSSKiller

[PredyP]

No podle návodu je po skončení testu Detected threats - save no a mně nejde kliknout na save. Něco bych řekl že z kraje mazal na monitoru se mi v pravo dole otevřelo malé okno a tam se něco psalo ale nevím co.

TDSSKiller udělám až dorazím z práce

[Roli]

TDSSKiller udělám až dorazím z práce

Dobře

[PredyP]

Nenašel nic, taky jsem přišel na to že ve složce síťová připojení nemám nic, je prázdná

Už jsem na to přišel co si tu instaloval, hamachi to jsem v ccleaneru zrušil startovat při zapnutí pc, ale když se podívám do správce úloh tak tam proces je zpuštěn.