Zdravim,
prosim o kontrolu logu. Musim vzdy po ranu 2x restartovat pc aby mi nabehlo bezdratove pripojeni (wifi)
Logfile of random's system information tool 1.09 (written by random/random)
Run by AKE at 2012-10-17 06:44:06
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 3 GB (10%) free of 30 GB
Total RAM: 2046 MB (51% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 06:44:20, on 17.10.2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\oodag.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Cyberlink\Shared files\RichVideo.exe
C:\Program Files\Spyware Terminator\sp_rsser.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Vivotek\ST3402\Launcher_VV.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Apoint\Apoint.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\WINDOWS\stsystra.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe
C:\Program Files\Apoint\ApMsgFwd.exe
C:\Program Files\Apoint\HidFind.exe
C:\Program Files\Apoint\Apntex.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtKbd.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtHsp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
C:\Program Files\Vivotek\ST3402\LauncherUI_VV.exe
C:\Program Files\Vivotek\ST3402\Monitor_VV.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\OO Software\Defrag Professional\oodcnt.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
C:\Documents and Settings\AKE\Local Settings\Temporary Internet Files\Content.IE5\P9G78WSW\RSIT[1].exe
C:\Program Files\trend micro\AKE.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://centrum.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: Podpora odkazu pro Adobe PDF Reader - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: Ask Toolbar BHO - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Ask Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [gemstrmw] C:\WINDOWS\system32\gemstrmw.exe /r
O4 - HKLM\..\Run: [SigmatelSysTrayApp] stsystra.exe
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe nvHotkey.dll,Start
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [ITSecMng] %ProgramFiles%\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe /START
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [T-Mobile Communication Centre] "C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe" -autorun
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - Global Startup: Bluetooth Manager.lnk = ?
O8 - Extra context menu item: Append to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: E&xportovat do aplikace Microsoft Office Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: Zdroje informací - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O16 - DPF: {01A88BB1-1174-41EC-ACCB-963509EAE56B} (SysProWmi Class) - http://support.euro.dell.com/systemprofiler/SysPro.CAB
O16 - DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} (ICASign Class) - https://ib24.csob.cz/Comp/IcaSignerCZ.cab
O16 - DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} (CSOBEnroll Class) - https://ib24.csob.cz/(S(s3kzpz45aepymu554iutc445))/Comp/CSOBEnroll.dll
O16 - DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} (Active602XMLFiller Control) - https://www.mojedatovaschranka.cz/stati ... ?3,16,13,0
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/s ... wflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
O20 - AppInit_DLLs:
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: 602Updater (602XML Updater) - Software602 a.s. - C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Web'n'walk Manager mobile equipment installation service (ameisvc) - Gemfor s.r.o. - C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Intel(R) PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Služba Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Logitech Bluetooth Service (LBTServ) - Logitech Inc. - C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\WINDOWS\system32\oodag.exe
O23 - Service: Intel(R) PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\Cyberlink\Shared files\RichVideo.exe
O23 - Service: Intel(R) PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: SentinelProtectionServer - SafeNet, Inc - C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
O23 - Service: Spyware Terminator Realtime Shield Service (sp_rssrv) - Crawler.com - C:\Program Files\Spyware Terminator\sp_rsser.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
O23 - Service: Vivotek ST3402 Launcher (Vivotek_ST3402) - Vivotek Inc. - C:\Program Files\Vivotek\ST3402\Launcher_VV.exe
O23 - Service: Intel(R) PROSet/Wireless SSO Service (WLANKEEPER) - Intel(R) Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE
--
End of file - 12439 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Adobe Flash Player Updater.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1229272821-1604221776-839522115-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1229272821-1604221776-839522115-1003UA.job
C:\WINDOWS\tasks\Low Battery Alarm Program.job
C:\WINDOWS\tasks\Scheduled Update for Ask Toolbar.job
C:\WINDOWS\tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
=========Mozilla firefox=========
ProfilePath - C:\Documents and Settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default
prefs.js - "browser.startup.homepage" - "http://www.satelitnisledovani.cz/"
prefs.js - "extensions.enabledItems" - "{19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.3.0.2, {20a82645-c095-46ed-80e3-08825760534b}:1.2.1, cs@dictionaries.addons.mozilla.org:1.0.2, toolbar@ask.com:3.12.2.100006, {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.6.18"
"{20a82645-c095-46ed-80e3-08825760534b}"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 9
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0]
"Description"=DivX® Web Player
"Path"=C:\Program Files\DivX\DivX Web Player\npdivx32.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@foxitsoftware.com/Foxit Reader Plugin,version=1.0,application/pdf]
"Description"=
"Path"=C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@microsoft.com/WPF,version=3.5]
"Description"=Windows Presentation Foundation plug-in for Mozilla browsers
"Path"=C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@software602.cz/602XML Filler]
"Description"=Software602 Form Filler Plugin
"Path"=C:\Program Files\Software602\602XML\Filler\npfiller.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=3]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@tools.google.com/Google Update;version=9]
"Description"=Google Update
"Path"=C:\Program Files\Google\Update\1.3.21.123\npGoogleUpdate3.dll
C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}
C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll
C:\Program Files\Mozilla Firefox\plugins\
npFoxitReaderPlugin.dll
C:\Program Files\Mozilla Firefox\searchplugins\
google.xml
heureka-cz.xml
jyxo-cz.xml
seznam-cz.xml
slunecnice-cz.xml
wikipedia-cz.xml
C:\Documents and Settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\extensions\
cs@dictionaries.addons.mozilla.org
toolbar@ask.com
{003D3EDC-99B9-4a34-9C20-60CB94F7E829}
{20a82645-c095-46ed-80e3-08825760534b}
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Podpora odkazu pro Adobe PDF Reader - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2010-09-22 61888]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll [2007-09-25 501136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-09-23 192144]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE7CD045-E861-484f-8273-0445EE161910}]
Adobe PDF Conversion Toolbar Helper - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10 321120]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll [2012-08-16 1002992]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-06-06 1519304]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{47833539-D0C5-4125-9FA8-0819E2EAAC93} - Adobe PDF - C:\Program Files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll [2007-05-10 321120]
{D4027C7F-154A-4066-A1AD-4243D8127440} - Ask Toolbar - C:\Program Files\Ask.com\GenericAskToolbar.dll [2012-06-06 1519304]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2012-09-23 192144]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Apoint"=C:\Program Files\Apoint\Apoint.exe [2007-04-15 159744]
"Dell QuickSet"=C:\Program Files\Dell\QuickSet\quickset.exe [2007-07-20 1228800]
"gemstrmw"=C:\WINDOWS\system32\gemstrmw.exe [2003-08-29 24576]
"SigmatelSysTrayApp"=C:\WINDOWS\stsystra.exe [2007-02-19 303104]
"NVHotkey"=nvHotkey.dll,Start []
"IntelWireless"=C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe [2007-07-25 974848]
"Broadcom Wireless Manager UI"=C:\WINDOWS\system32\WLTRAY.exe [2007-03-16 1392640]
"ITSecMng"=C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe [2007-07-31 65536]
""= []
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2011-09-22 3080264]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2007-04-28 8429568]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"T-Mobile Communication Centre"=C:\Program Files\T-Mobile\Web'n'walk Manager\Manager.exe [2012-06-12 1368824]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2012-04-10 39408]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3
"sdAuxService"=3
"O&O Defrag"=3
"ose"=3
"Iap"=2
"Autodesk Licensing Service"=3
"Pml Driver HPZ12"=2
"FMMService"=2
"FirebirdServerDefaultInstance"=3
"FirebirdGuardianDefaultInstance"=3
C:\Documents and Settings\All Users\Start Menu\Programs\Startup
Bluetooth Manager.lnk - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"=" "
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\LBTWlgn]
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll [2007-02-20 65536]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2011-07-19 113024]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\!SASCORE]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\aawservice]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\WdfLoadGroup]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=255
"NoDrives"=0
"HonorAutoRunSetting"=1
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\WINDOWS\system32\sessmgr.exe"="C:\WINDOWS\system32\sessmgr.exe:*:Disabled:@xpsp2res.dll,-22019"
"C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe"="C:\Program Files\Spyware Terminator\SpywareTerminatorUpdate.exe:*:Disabled:Crawler Spyware Terminator"
"C:\Program Files\TeamViewer3\TeamViewer.exe"="C:\Program Files\TeamViewer3\TeamViewer.exe:*:Disabled:TeamViewer Remote Control Application"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"vidc.DIVX"=DivX.dll
"vidc.yv12"=DivX.dll
"vidc.ffds"=C:\Programy\COMBIN~1\Filters\FFDShow\ff_vfw.dll
"vidc.tscc"=tsccvid.dll
"msacm.voxacm160"=vct3216.acm
"msacm.scg726"=scg726.acm
"msacm.alf2cd"=alf2cd.acm
"msacm.ac3acm"=AC3ACM.acm
"vidc.dvsd"=mcdvd_32.dll
"vidc.xvid"=xvidvfw.dll
"vidc.mpg4"=mpg4c32.dll
"vidc.mp42"=mpg4c32.dll
"vidc.mp43"=mpg4c32.dll
======File associations======
.js - edit -
.js - open -
.txt - open -
======List of files/folders created in the last 1 month======
2012-10-17 06:44:07 ----D---- C:\Program Files\trend micro
2012-10-17 06:44:06 ----D---- C:\rsit
2012-10-13 06:39:51 ----D---- C:\Documents and Settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 06:39:27 ----D---- C:\Program Files\SUPERAntiSpyware
2012-10-13 06:39:27 ----D---- C:\Documents and Settings\All Users\Data aplikací\SUPERAntiSpyware.com
2012-10-10 13:40:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2724197$
2012-10-10 13:38:10 ----HDC---- C:\WINDOWS\$NtUninstallKB2756822$
2012-10-10 13:38:04 ----HDC---- C:\WINDOWS\$NtUninstallKB2749655$
2012-10-10 13:37:53 ----HDC---- C:\WINDOWS\$NtUninstallKB2661254-v2$
2012-09-26 10:11:46 ----D---- C:\Program Files\Mozilla Firefox
======List of files/folders modified in the last 1 month======
2012-10-17 06:44:07 ----D---- C:\Program Files
2012-10-17 06:00:14 ----D---- C:\WINDOWS\system32
2012-10-17 06:00:14 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2012-10-17 05:59:38 ----D---- C:\WINDOWS\Temp
2012-10-17 05:55:47 ----D---- C:\WINDOWS
2012-10-16 16:00:23 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-10-15 14:42:01 ----D---- C:\WINDOWS\system32\CatRoot2
2012-10-15 14:41:49 ----A---- C:\WINDOWS\ModemLog_Conexant HDA D330 MDC V.92 Modem.txt
2012-10-13 07:45:08 ----D---- C:\WINDOWS\Debug
2012-10-13 06:40:34 ----SD---- C:\WINDOWS\Tasks
2012-10-13 06:39:58 ----A---- C:\WINDOWS\wincmd.ini
2012-10-13 06:23:28 ----D---- C:\WINDOWS\network diagnostic
2012-10-10 13:40:52 ----HD---- C:\WINDOWS\inf
2012-10-10 13:40:49 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-10-10 13:38:21 ----A---- C:\WINDOWS\system32\MRT.exe
2012-10-10 06:01:16 ----D---- C:\WINDOWS\Prefetch
2012-10-10 05:48:46 ----HD---- C:\WINDOWS\$hf_mig$
2012-10-09 07:36:10 ----A---- C:\WINDOWS\system32\FlashPlayerApp.exe
2012-10-06 08:19:44 ----D---- C:\WINDOWS\system32\oodag
2012-09-27 05:47:01 ----D---- C:\Program Files\Mozilla Maintenance Service
2012-09-23 10:06:49 ----SHD---- C:\WINDOWS\Installer
2012-09-22 09:21:03 ----D---- C:\Program Files\Internet Explorer
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 a347bus;a347bus; C:\WINDOWS\system32\DRIVERS\a347bus.sys [2004-04-30 160640]
R0 a347scsi;a347scsi; C:\WINDOWS\System32\Drivers\a347scsi.sys [2004-04-30 5248]
R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R1 APPDRV;APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [2005-08-12 16128]
R1 ASPI32;ASPI32; C:\WINDOWS\system32\drivers\ASPI32.sys [2002-07-17 16877]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2011-08-04 118104]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2011-08-04 61936]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R1 omci;OMCI WDM Device Driver; C:\WINDOWS\system32\DRIVERS\omci.sys [2006-10-27 19968]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS []
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS []
R1 sp_rsdrv2;Spyware Terminator Driver 2; \??\C:\WINDOWS\system32\drivers\sp_rsdrv2.sys []
R1 Tosrfcom;Bluetooth RFCOMM; C:\WINDOWS\System32\Drivers\tosrfcom.sys [2007-05-24 64000]
R1 truecrypt;truecrypt; C:\WINDOWS\System32\drivers\truecrypt.sys [2007-05-03 188672]
R1 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2008-04-13 8832]
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44:05]; \??\C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl []
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33:42]; \??\C:\Program Files\PowerDVD9\PowerDVD9\000.fcl []
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.7.4.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2007-09-27 21393]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2011-08-09 154136]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2011-08-04 147480]
R2 Ethpdrv;Ethernet Packet Driver; C:\WINDOWS\system32\DRIVERS\ethpdrv.sys [2005-09-08 9728]
R2 mdmxsdk;mdmxsdk; C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 s24trans;WLAN Transport; C:\WINDOWS\system32\DRIVERS\s24trans.sys [2007-05-29 12416]
R2 Sentinel;Sentinel; C:\WINDOWS\System32\Drivers\SENTINEL.SYS [2004-09-10 84064]
R3 ApfiltrService;Alps Touch Pad Filter Driver for Windows 2000/XP/Vista; C:\WINDOWS\system32\DRIVERS\Apfiltr.sys [2007-04-15 132608]
R3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
R3 b57w2k;Broadcom NetXtreme Gigabit Ethernet; C:\WINDOWS\system32\DRIVERS\b57xp32.sys [2007-02-16 160256]
R3 DXEC01;DXEC01; C:\WINDOWS\system32\drivers\dxec01.sys [2006-11-02 97536]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2011-08-09 39824]
R3 guardian2;guardian2; C:\WINDOWS\System32\Drivers\oz776.sys [2007-02-23 56576]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 HSF_DPV;HSF_DPV; C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys [2006-11-02 989696]
R3 HSFHWAZL;HSFHWAZL; C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys [2006-11-02 209152]
R3 huawei_enumerator;huawei_enumerator; C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys [2011-01-30 73216]
R3 LHidFilt;Logitech SetPoint KMDF HID Filter Driver; C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys [2007-01-11 32272]
R3 LMouFilt;Logitech SetPoint KMDF Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys [2007-01-11 32528]
R3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
R3 NETw4x32;Ovladač adaptéru Intel(R) Wireless WiFi Link pro systém Windows XP 32 Bit; C:\WINDOWS\system32\DRIVERS\NETw4x32.sys [2007-08-08 2211456]
R3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2007-04-28 6727136]
R3 NWADI;NWADI Bus Enumerator; C:\WINDOWS\system32\DRIVERS\NWADIenum.sys [2007-06-01 178176]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver; C:\WINDOWS\system32\DRIVERS\nwdelmdm.sys [2007-02-05 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver; C:\WINDOWS\system32\DRIVERS\nwdelser.sys [2007-02-05 92288]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\WINDOWS\system32\drivers\sthda.sys [2007-02-19 1228296]
R3 toshidpt;Bluetooth HID Port; C:\WINDOWS\system32\drivers\Toshidpt.sys [2005-07-11 3712]
R3 tosporte;Bluetooth COM Port; C:\WINDOWS\system32\DRIVERS\tosporte.sys [2006-10-10 41600]
R3 tosrfbd;Bluetooth RFBUS; C:\WINDOWS\system32\DRIVERS\tosrfbd.sys [2007-04-24 113920]
R3 tosrfbnp;Bluetooth RFBNEP; C:\WINDOWS\System32\Drivers\tosrfbnp.sys [2006-11-20 36480]
R3 Tosrfhid;Bluetooth RFHID; C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys [2007-03-01 73728]
R3 tosrfnds;Bluetooth Personal Area Network; C:\WINDOWS\system32\DRIVERS\tosrfnds.sys [2005-01-06 18612]
R3 Tosrfusb;Bluetooth USB Controller; C:\WINDOWS\system32\DRIVERS\tosrfusb.sys [2007-06-11 41856]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 Wdf01000;Wdf01000; C:\WINDOWS\system32\DRIVERS\Wdf01000.sys [2008-03-27 503008]
R3 winachsf;winachsf; C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys [2006-11-02 730112]
S0 cercsr6;cercsr6; C:\WINDOWS\system32\drivers\cercsr6.sys [2004-12-13 39904]
S3 ACSSCR;ACR38 Smart Card Reader; C:\WINDOWS\system32\DRIVERS\a38usb.sys [2006-03-24 33536]
S3 Ad-Watch Connect Filter;Ad-Watch Connect Kernel Filter; \??\C:\WINDOWS\system32\drivers\NSDriver.sys []
S3 CSRBC;CSRBC.Sys CSR test driver; C:\WINDOWS\System32\Drivers\csrbcxp.sys [2007-01-16 31744]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device; C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys [2010-07-27 102784]
S3 ft1000;Flarion Flash OFDM wireless service; C:\WINDOWS\system32\DRIVERS\ft1000.sys [2007-07-09 62208]
S3 GTwinUSB;GTwinUSB; C:\WINDOWS\System32\Drivers\GTwinUSB.sys [2002-10-04 61776]
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2006-04-13 49664]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2006-04-13 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2006-04-13 21568]
S3 huawei_cdcacm;huawei_cdcacm; C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys [2011-02-25 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter; C:\WINDOWS\system32\DRIVERS\ipwpnet.sys [2005-07-30 43184]
S3 LUsbFilt;Logitech SetPoint KMDF USB Filter; C:\WINDOWS\System32\Drivers\LUsbFilt.Sys [2007-01-11 28048]
S3 massfilter;Mass Storage Filter Driver; C:\WINDOWS\system32\drivers\massfilter.sys [2010-02-22 9216]
S3 mbr;mbr; \??\C:\DOCUME~1\AKE\LOCALS~1\Temp\mbr.sys []
S3 mirrorv3;mirrorv3; C:\WINDOWS\system32\DRIVERS\rminiv3.sys [2006-11-01 3328]
S3 PCASp50;PCASp50 NDIS Protocol Driver; C:\WINDOWS\System32\Drivers\PCASp50.sys [2007-05-30 27072]
S3 ROOTMODEM;Microsoft Legacy Modem Driver; C:\WINDOWS\System32\Drivers\RootMdm.sys [2004-08-18 5888]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader; C:\WINDOWS\system32\DRIVERS\SCR33X2K.sys [2004-04-06 64088]
S3 SNTNLUSB;Rainbow USB SuperPro; C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS [2004-09-10 27056]
S3 SONYPVU1;Sony USB Filter Driver (SONYPVU1); C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS [2001-08-17 7552]
S3 TosRfSnd;Bluetooth Audio; C:\WINDOWS\system32\drivers\tosrfsnd.sys []
S3 USBCCID;USB Smart Card reader; C:\WINDOWS\system32\DRIVERS\usbccid.sys [2005-05-13 28672]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-13 15104]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]
S3 ZTEusbmdm6k;ZTE Proprietary USB Driver; C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys [2010-03-02 105856]
S3 ZTEusbnmea;ZTE NMEA Port; C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys [2010-03-02 105856]
S3 ZTEusbser6k;ZTE Diagnostic Port; C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys [2010-03-02 105856]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 !SASCORE;SAS Core Service; C:\Program Files\SUPERAntiSpyware\SASCORE.EXE [2012-07-11 116608]
R2 602XML Updater;602Updater; C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe [2010-04-14 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service; C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe [2012-06-12 124856]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2011-09-22 974944]
R2 EvtEng;Intel(R) PROSet/Wireless Event Log; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [2007-07-25 647168]
R2 LBTServ;Logitech Bluetooth Service; C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE [2007-02-20 110592]
R2 NICCONFIGSVC;NICCONFIGSVC; C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe [2007-07-20 475136]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2007-05-31 163908]
R2 O&O Defrag;O&O Defrag; C:\WINDOWS\system32\oodag.exe [2007-05-11 1050120]
R2 RegSrvc;Intel(R) PROSet/Wireless Registry Service; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [2007-07-25 327680]
R2 RichVideo;Cyberlink RichVideo Service(CRVS); C:\Program Files\Cyberlink\Shared files\RichVideo.exe [2009-04-27 271760]
R2 S24EventMonitor;Intel(R) PROSet/Wireless Service; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [2007-07-25 987136]
R2 sp_rssrv;Spyware Terminator Realtime Shield Service; C:\Program Files\Spyware Terminator\sp_rsser.exe [2010-04-14 488960]
R2 STacSV;SigmaTel Audio Service; C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe [2007-02-19 90112]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher; C:\Program Files\Vivotek\ST3402\Launcher_VV.exe [2008-12-10 335872]
R2 WLANKEEPER;Intel(R) PROSet/Wireless SSO Service; C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe [2007-07-25 294912]
R2 wltrysvc;Dell Wireless WLAN Tray Service; C:\WINDOWS\System32\WLTRYSVC.EXE [2007-03-16 20480]
R3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2012-08-16 194032]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-10 136176]
S3 aawservice;Ad-Aware 2007 Service; C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe [2008-01-29 587096]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service; C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-10-09 250808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2007-09-28 654848]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 gupdatem;Služba Google Update (gupdatem); C:\Program Files\Google\Update\GoogleUpdate.exe [2012-04-10 136176]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 MozillaMaintenance;Mozilla Maintenance Service; C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe [2012-09-26 114144]
S3 SentinelProtectionServer;SentinelProtectionServer; C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe [2004-09-10 189536]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbguard.exe [2007-03-02 81920]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance; C:\Program Files\Firebird\Firebird_2_0\bin\fbserver.exe [2007-03-02 1994752]
S4 FMMService;FMMService; C:\PROGRA~1\MOBILI~1\FMMSER~1.EXE [2007-04-10 40960]
S4 Iap;Iap; C:\Program Files\Dell\OpenManage\Client\Iap.exe [2007-07-13 240416]
S4 Nero BackItUp Scheduler 3;Nero BackItUp Scheduler 3; C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe [2007-09-20 853288]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]
S4 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2007-09-20 382248]
S4 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S4 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.exe [2006-03-03 69632]
-----------------EOF-----------------
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
prosim o kontrolu-blbne pripojeni
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: prosim o kontrolu-blbne pripojeni
neporadil by mi nekdo prosim?popripadne nezkontroloval log?diky
Re: prosim o kontrolu-blbne pripojeni
Dobrý večer 
Poprosím ještě o druhý log s názvem info.txt.
Poprosím ještě o druhý log s názvem info.txt.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: prosim o kontrolu-blbne pripojeni
Zdravim a dekuji
info.txt logfile of random's system information tool 1.09 2012-10-17 06:44:26
======Uninstall list======
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\ISUN0405.EXE -fc:\pc-form\UP10\Uninst.isu -cc:\pc-form\UP10\Uninst.dll
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Add or Remove Adobe Creative Suite 3 Web Premium-->C:\Program Files\Common Files\Adobe\Installers\247961ef275e20c5cb073c36394ac32\Setup.exe
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color EU Extra Settings-->MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color NA Recommended Settings-->MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe Flash Player 11 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -maintain activex
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe MotionPicture Color Files-->MsiExec.exe /I{6B708481-748A-4EB4-97C1-CD386244FF77}
Adobe Setup-->MsiExec.exe /I{6A5D1A94-624A-4D20-B178-3A283B500370}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
AHV content for Acrobat and Flash-->MsiExec.exe /I{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}
Aktualizace systému Windows Internet Explorer 7 (KB976749)-->"C:\WINDOWS\ie7updates\KB976749-IE7\spuninst\spuninst.exe"
Aktualizace systému Windows Internet Explorer 7 (KB980182)-->"C:\WINDOWS\ie7updates\KB980182-IE7\spuninst\spuninst.exe"
Aktualizace systému Windows Internet Explorer 8 (KB2598845)-->"C:\WINDOWS\ie8updates\KB2598845-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2467659)-->"C:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2541763)-->"C:\WINDOWS\$NtUninstallKB2541763$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2607712)-->"C:\WINDOWS\$NtUninstallKB2607712$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2616676)-->"C:\WINDOWS\$NtUninstallKB2616676$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2641690)-->"C:\WINDOWS\$NtUninstallKB2641690$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2661254-v2)-->"C:\WINDOWS\$NtUninstallKB2661254-v2$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2718704)-->"C:\WINDOWS\$NtUninstallKB2718704$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2736233)-->"C:\WINDOWS\$NtUninstallKB2736233$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2749655)-->"C:\WINDOWS\$NtUninstallKB2749655$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971029)-->"C:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Aktualizace zabezpečení pro Microsoft Windows (KB2564958)-->"C:\WINDOWS\$NtUninstallKB2564958$\spuninst\spuninst.exe"
Aktualizace zabezpečení produktu Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461)-->"C:\WINDOWS\ie7updates\KB2183461-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131)-->"C:\WINDOWS\ie7updates\KB2360131-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400)-->"C:\WINDOWS\ie7updates\KB2416400-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017)-->"C:\WINDOWS\ie7updates\KB2482017-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640)-->"C:\WINDOWS\ie7updates\KB2497640-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548)-->"C:\WINDOWS\ie7updates\KB2530548-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521)-->"C:\WINDOWS\ie7updates\KB2544521-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049)-->"C:\WINDOWS\ie7updates\KB2559049-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448)-->"C:\WINDOWS\ie7updates\KB2586448-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260)-->"C:\WINDOWS\ie7updates\KB972260-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455)-->"C:\WINDOWS\ie7updates\KB974455-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325)-->"C:\WINDOWS\ie7updates\KB976325-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207)-->"C:\WINDOWS\ie7updates\KB978207-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381)-->"C:\WINDOWS\ie7updates\KB982381-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531)-->"C:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521)-->"C:\WINDOWS\ie8updates\KB2544521-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2586448)-->"C:\WINDOWS\ie8updates\KB2586448-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2618444)-->"C:\WINDOWS\ie8updates\KB2618444-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2647516)-->"C:\WINDOWS\ie8updates\KB2647516-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2675157)-->"C:\WINDOWS\ie8updates\KB2675157-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2699988)-->"C:\WINDOWS\ie8updates\KB2699988-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2722913)-->"C:\WINDOWS\ie8updates\KB2722913-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2744842)-->"C:\WINDOWS\ie8updates\KB2744842-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296199)-->"C:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2412687)-->"C:\WINDOWS\$NtUninstallKB2412687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2419632)-->"C:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2436673)-->"C:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476490)-->"C:\WINDOWS\$NtUninstallKB2476490$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479628)-->"C:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479943)-->"C:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2481109)-->"C:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485376)-->"C:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485663)-->"C:\WINDOWS\$NtUninstallKB2485663$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2503658)-->"C:\WINDOWS\$NtUninstallKB2503658$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2503665)-->"C:\WINDOWS\$NtUninstallKB2503665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2506212)-->"C:\WINDOWS\$NtUninstallKB2506212$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2506223)-->"C:\WINDOWS\$NtUninstallKB2506223$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2507618)-->"C:\WINDOWS\$NtUninstallKB2507618$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2507938)-->"C:\WINDOWS\$NtUninstallKB2507938$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2508272)-->"C:\WINDOWS\$NtUninstallKB2508272$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2508429)-->"C:\WINDOWS\$NtUninstallKB2508429$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2509553)-->"C:\WINDOWS\$NtUninstallKB2509553$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2510581)-->"C:\WINDOWS\$NtUninstallKB2510581$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2511455)-->"C:\WINDOWS\$NtUninstallKB2511455$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2524375)-->"C:\WINDOWS\$NtUninstallKB2524375$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2535512)-->"C:\WINDOWS\$NtUninstallKB2535512$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276)-->"C:\WINDOWS\$NtUninstallKB2536276$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276-v2)-->"C:\WINDOWS\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544893)-->"C:\WINDOWS\$NtUninstallKB2544893$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544893-v2)-->"C:\WINDOWS\$NtUninstallKB2544893-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2555917)-->"C:\WINDOWS\$NtUninstallKB2555917$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2562937)-->"C:\WINDOWS\$NtUninstallKB2562937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2566454)-->"C:\WINDOWS\$NtUninstallKB2566454$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567053)-->"C:\WINDOWS\$NtUninstallKB2567053$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567680)-->"C:\WINDOWS\$NtUninstallKB2567680$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570222)-->"C:\WINDOWS\$NtUninstallKB2570222$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570947)-->"C:\WINDOWS\$NtUninstallKB2570947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2584146)-->"C:\WINDOWS\$NtUninstallKB2584146$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2585542)-->"C:\WINDOWS\$NtUninstallKB2585542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2592799)-->"C:\WINDOWS\$NtUninstallKB2592799$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2598479)-->"C:\WINDOWS\$NtUninstallKB2598479$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2603381)-->"C:\WINDOWS\$NtUninstallKB2603381$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2618451)-->"C:\WINDOWS\$NtUninstallKB2618451$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2619339)-->"C:\WINDOWS\$NtUninstallKB2619339$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2620712)-->"C:\WINDOWS\$NtUninstallKB2620712$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2621440)-->"C:\WINDOWS\$NtUninstallKB2621440$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2624667)-->"C:\WINDOWS\$NtUninstallKB2624667$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2631813)-->"C:\WINDOWS\$NtUninstallKB2631813$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2633171)-->"C:\WINDOWS\$NtUninstallKB2633171$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2639417)-->"C:\WINDOWS\$NtUninstallKB2639417$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2641653)-->"C:\WINDOWS\$NtUninstallKB2641653$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2646524)-->"C:\WINDOWS\$NtUninstallKB2646524$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2647518)-->"C:\WINDOWS\$NtUninstallKB2647518$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2653956)-->"C:\WINDOWS\$NtUninstallKB2653956$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2655992)-->"C:\WINDOWS\$NtUninstallKB2655992$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2659262)-->"C:\WINDOWS\$NtUninstallKB2659262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2660465)-->"C:\WINDOWS\$NtUninstallKB2660465$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2661637)-->"C:\WINDOWS\$NtUninstallKB2661637$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2676562)-->"C:\WINDOWS\$NtUninstallKB2676562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2685939)-->"C:\WINDOWS\$NtUninstallKB2685939$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2686509)-->"C:\WINDOWS\$NtUninstallKB2686509$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2691442)-->"C:\WINDOWS\$NtUninstallKB2691442$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2695962)-->"C:\WINDOWS\$NtUninstallKB2695962$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2698365)-->"C:\WINDOWS\$NtUninstallKB2698365$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2705219)-->"C:\WINDOWS\$NtUninstallKB2705219$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2707511)-->"C:\WINDOWS\$NtUninstallKB2707511$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2709162)-->"C:\WINDOWS\$NtUninstallKB2709162$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2712808)-->"C:\WINDOWS\$NtUninstallKB2712808$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2718523)-->"C:\WINDOWS\$NtUninstallKB2718523$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2719985)-->"C:\WINDOWS\$NtUninstallKB2719985$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2723135)-->"C:\WINDOWS\$NtUninstallKB2723135$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2724197)-->"C:\WINDOWS\$NtUninstallKB2724197$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2731847)-->"C:\WINDOWS\$NtUninstallKB2731847$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizace zabezpečení systému Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982802)-->"C:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
Ashampoo WinOptimizer Platinum 3-->"C:\Programy\Ashampoo\Ashampoo WinOptimizer Platinum 3\Uninstall\WOP3_Uninstall.exe"
Ask Toolbar-->MsiExec.exe /X{86D4B82A-ABED-442A-BE86-96357B70F4FE}
AVS Media Player 3.1-->"C:\Program Files\dvd\AVSMediaPlayer\unins000.exe"
AVS Update Manager 1.0-->"C:\Program Files\AVS4YOU\AVSUpdateManager\unins000.exe"
AVS4YOU Software Navigator 1.3-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
CCleaner-->"C:\Programy\CCleaner\uninst.exe"
CDDRV_Installer-->MsiExec.exe /I{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}
Codec Pack - All In 1 6.0.3.0-->C:\WINDOWS\iun6002.exe "C:\Program Files\Codec Pack - All In 1\irunin.ini"
Combined Community Codec Pack 2008-09-21 16:18-->"C:\Programy\Combined Community Codec Pack\unins000.exe"
Conexant HDA D330 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F\HXFSETUP.EXE -U -Idel000f5.inf
CyberLink PowerDVD 10-->"C:\Program Files\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\Setup.exe" /z-uninstall
CyberLink PowerDVD 9-->"C:\Program Files\InstallShield Installation Information\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\Setup.exe" /z-uninstall
Dell Touchpad-->C:\Program Files\Apoint\Uninstap.exe ADDREMOVE
Dell Wireless WLAN Card-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"
DevalVR plugin for Internet Explorer (remove)-->C:\Program Files\DevalVR\installdevalvr.exe /u
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
Důležitá aktualizace aplikace Windows Media Player 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Ekonomický systém Money S3-->C:\Program Files\CIGLER SOFTWARE\Common Files\Money S3\Setup\Uninst.exe
Firebird 2.0.1-->"C:\Program Files\Firebird\Firebird_2_0\unins000.exe"
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Free PDF to Word Doc Converter v1.1-->"C:\Program Files\Free PDF to Word Doc Converter\unins000.exe"
Gemplus Smart Card Reader Tools-->C:\Program Files\Gemplus\ReaderTools\Installer\setup.exe /u
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E6C807F38EB64284.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Programy\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Photosmart, Officejet and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{3A316611-45D1-429C-AA26-B71259C44689}\setup\hpzscr01.exe -datfile hposcr11.dat
I.CA CryptoPlus v1.0-->C:\Program Files\CryptoPlus\I.CA CryptoPlus v1.0\UnInstCM.exe C:\Program Files\CryptoPlus\I.CA CryptoPlus v1.0\crypto.inf
I:key & ComfortChip-->C:\Program Files\ComfortChip\Uninstall.exe
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
KhalSetup-->MsiExec.exe /I{9060B698-2B29-4A1F-B876-BEAC4C0A25D5}
KProbe 2.5.2-->C:\WINDOWS\iun6002.exe "C:\Program Files\KProbe\irunin.ini"
mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
mHlpDell-->MsiExec.exe /I{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2656353)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2656353\M2656353Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB2656370)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2656370\M2656370Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Language Pack - CSY-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - CSY\install.exe
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7-->"C:\WINDOWS\$NtUninstallWdf01007$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
mIWA-->MsiExec.exe /I{3E9D596A-61D4-4239-BD19-2DB984D2A16F}
mLogView-->MsiExec.exe /I{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}
Mobility Manager-->"C:\Program Files\Mobility Manager\Uninstall Mobility Manager\Uninstall Mobility Manager.exe"
Mozilla Firefox 15.0.1 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
Mozilla Thunderbird (2.0.0.9)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
mPfWiz-->MsiExec.exe /I{90B0D222-8C21-4B35-9262-53B042F18AF9}
mProSafe-->MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
mSCfg-->MsiExec.exe /I{829CD169-E692-48E8-9BDE-A3E8D8B65538}
mSSO-->MsiExec.exe /I{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP3 Parser (KB2721691)-->MsiExec.exe /I{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
mWMI-->MsiExec.exe /I{63DB9CCD-2B56-4217-9A3D-507AC78320CA}
mZConfig-->MsiExec.exe /I{94658027-9F16-4509-BBD7-A59FE57C3023}
Nero 8 Demo-->MsiExec.exe /X{6F8A555E-F2E1-415D-AD8A-67C0A7671029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
O&O Defrag Professional Edition-->MsiExec.exe /I{53480330-E1D1-41CA-B8F8-7F78644F7F50}
OMCI-->MsiExec.exe /X{73F1BDB7-11E1-11D5-9DC6-00C04F2FC33B}
Oprava hotfix aplikace Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2570791)-->"C:\WINDOWS\$NtUninstallKB2570791$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2633952)-->"C:\WINDOWS\$NtUninstallKB2633952$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2756822)-->"C:\WINDOWS\$NtUninstallKB2756822$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
OZ776 SCR Driver V1.1.3.9-->C:\Program Files\InstallShield Installation Information\{343D8DE3-AE1F-431A-830C-B66352E8CA12}\setup.exe -runfromtemp -l0x0409
PDP 2009.01-->"C:\Program Files\LEGIS\PDP2009\unins000.exe"
PDP 2012.01-->"C:\Program Files\LEGIS\PDP2012\unins000.exe"
PPD-->"C:\Program Files\LEGIS\PPD\unins000.exe"
Sada Compatibility Pack pro systém Office 2007-->MsiExec.exe /X{90120000-0020-0405-0000-0000000FF1CE}
ScanSoft OmniPage SE 4.0-->MsiExec.exe /I{29D851C2-048C-4B5E-8D1F-25D473342BB5}
SCR33xx USB Smartcard Reader-->MsiExec.exe /I{96F28051-0D57-4B5C-BD17-0C42F03A8AD0}
SecureStore I.CA 2.5-->C:\Program Files\I.CA\SecureStore\uninst.exe
Sentinel Protection Installer 7.0.0-->MsiExec.exe /I{547D4265-AF45-42E9-A62A-C58182AA35B9}
SetPoint-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 -removeonly
SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x5 -remove -removeonly
Software Intel(R) PROSet/Wireless-->C:\WINDOWS\Installer\iProInst.exe
Software602 Form Filler rozšíření pro internetové prohlížeče-->rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\filler.inf,DefaultUninstall.NT,,N
Sonic Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Spyware Terminator-->"C:\Program Files\Spyware Terminator\unins000.exe"
Střechy od projektu k realizaci 1.1-->"C:\Program Files\Verlag Dashöfer s.r.o\Střech\unins000.exe"
TeamViewer 3-->C:\Program Files\TeamViewer3\uninstall.exe
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
Total Commander (Remove or Repair)-->c:\programy\totalcmd\tcuninst.exe
TrueCrypt-->"C:\Programy\TrueCrypt\TrueCrypt Setup.exe" /u C:\Programy\TrueCrypt\
Truss 4 (pouze odstranit)-->C:\WINDOWS\IsUn0405.exe -f"C:\Program Files\Fine\Truss4\UnInst.isu"
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
VeryPDF PDF2Word v3.0-->"C:\Program Files\VeryPDF PDF2Word v3.0\unins000.exe"
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Visual C++ 8.0 CRT (x86) WinSXS MSM-->MsiExec.exe /I{10944289-8401-4B95-8E2A-61B0024C8C3A}
Vivotek ST3402-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{34BC92E4-6310-4EEB-887F-559EB1AA1479}
Web'n'walk Manager-->C:\Program Files\T-Mobile\Web'n'walk Manager\uninstall.exe
Winamp (remove only)-->"C:\Programy\Winamp\UninstWA.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WinZip-->"C:\Programy\WinZip\WINZIP32.EXE" /uninstall
Zoner Photo Studio 12-->"C:\Program Files\Zoner\Photo Studio 12\unins000.exe" /SILENT
======Security center information======
AV: ESET Smart Security 5.0
FW: ESET personal firewall
======System event log======
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545573
Source Name: DCOM
Time Written: 20121010064422.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545572
Source Name: DCOM
Time Written: 20121010064421.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545571
Source Name: DCOM
Time Written: 20121010064421.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545570
Source Name: DCOM
Time Written: 20121010064419.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545569
Source Name: DCOM
Time Written: 20121010064419.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
=====Application event log=====
Computer Name: DELL
Event Code: 0
Message:
Record Number: 28422
Source Name: EvtEng
Time Written: 20120802194522.000000+120
Event Type: Informace
User:
Computer Name: DELL
Event Code: 2000
Message:
Record Number: 28421
Source Name: Microsoft Office 11
Time Written: 20120802162926.000000+120
Event Type: Chyba
User:
Computer Name: DELL
Event Code: 1000
Message:
Record Number: 28420
Source Name: Microsoft Office 11
Time Written: 20120802162921.000000+120
Event Type: Chyba
User:
Computer Name: DELL
Event Code: 1000
Message: Čítače výkonu pro službu WmiApRpl (WmiApRpl) byly úspěšně načteny.
Data záznamu obsahují nové indexové hodnoty přiřazené
této službě.
Record Number: 28419
Source Name: LoadPerf
Time Written: 20120802162816.000000+120
Event Type: Informace
User:
Computer Name: DELL
Event Code: 1001
Message: Čítače výkonu pro službu WmiApRpl (WmiApRpl) byly úspěšně odstraněny.
Data záznamu obsahují nové hodnoty položek Last Counter a
Last Help systémového registru.
Record Number: 28418
Source Name: LoadPerf
Time Written: 20120802162815.000000+120
Event Type: Informace
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared;C:\Program Files\Common Files\Autodesk Shared
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=0f0a
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
Diky
info.txt logfile of random's system information tool 1.09 2012-10-17 06:44:26
======Uninstall list======
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\ISUN0405.EXE -fc:\pc-form\UP10\Uninst.isu -cc:\pc-form\UP10\Uninst.dll
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Add or Remove Adobe Creative Suite 3 Web Premium-->C:\Program Files\Common Files\Adobe\Installers\247961ef275e20c5cb073c36394ac32\Setup.exe
Adobe Anchor Service CS3-->MsiExec.exe /I{90176341-0A8B-4CCC-A78D-F862228A6B95}
Adobe Asset Services CS3-->MsiExec.exe /I{6FF5DD7A-FE28-4439-B8CF-1E9AF4EA0A61}
Adobe Bridge CS3-->MsiExec.exe /I{9C9824D9-9000-4373-A6A5-D0E5D4831394}
Adobe Bridge Start Meeting-->MsiExec.exe /I{08B32819-6EEF-4057-AEDA-5AB681A36A23}
Adobe CMaps-->MsiExec.exe /I{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}
Adobe Color - Photoshop Specific-->MsiExec.exe /I{A2D81E70-2A98-4A08-A628-94388B063C5E}
Adobe Color EU Extra Settings-->MsiExec.exe /I{51846830-E7B2-4218-8968-B77F0FF475B8}
Adobe Color NA Recommended Settings-->MsiExec.exe /I{95655ED4-7CA5-46DF-907F-7144877A32E5}
Adobe Device Central CS3-->MsiExec.exe /I{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}
Adobe Flash Player 11 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_11_4_402_287_ActiveX.exe -maintain activex
Adobe Flash Player Plugin-->C:\WINDOWS\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Fonts All-->MsiExec.exe /I{6ABE0BEE-D572-4FE8-B434-9E72A289431B}
Adobe Help Viewer CS3-->MsiExec.exe /I{04AF207D-9A77-465A-8B76-991F6AB66245}
Adobe Linguistics CS3-->MsiExec.exe /I{54793AA1-5001-42F4-ABB6-C364617C6078}
Adobe MotionPicture Color Files-->MsiExec.exe /I{6B708481-748A-4EB4-97C1-CD386244FF77}
Adobe Setup-->MsiExec.exe /I{6A5D1A94-624A-4D20-B178-3A283B500370}
Adobe Stock Photos CS3-->MsiExec.exe /I{29E5EA97-5F74-4A57-B8B2-D4F169117183}
Adobe Type Support-->MsiExec.exe /I{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}
Adobe WinSoft Linguistics Plugin-->MsiExec.exe /I{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}
Adobe XMP Panels CS3-->MsiExec.exe /I{802771A9-A856-4A41-ACF7-1450E523C923}
AHV content for Acrobat and Flash-->MsiExec.exe /I{6BBAA81D-6A7E-43AD-8889-2F002DCAAFDD}
Aktualizace systému Windows Internet Explorer 7 (KB976749)-->"C:\WINDOWS\ie7updates\KB976749-IE7\spuninst\spuninst.exe"
Aktualizace systému Windows Internet Explorer 7 (KB980182)-->"C:\WINDOWS\ie7updates\KB980182-IE7\spuninst\spuninst.exe"
Aktualizace systému Windows Internet Explorer 8 (KB2598845)-->"C:\WINDOWS\ie8updates\KB2598845-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2467659)-->"C:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2541763)-->"C:\WINDOWS\$NtUninstallKB2541763$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2607712)-->"C:\WINDOWS\$NtUninstallKB2607712$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2616676)-->"C:\WINDOWS\$NtUninstallKB2616676$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2641690)-->"C:\WINDOWS\$NtUninstallKB2641690$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2661254-v2)-->"C:\WINDOWS\$NtUninstallKB2661254-v2$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2718704)-->"C:\WINDOWS\$NtUninstallKB2718704$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2736233)-->"C:\WINDOWS\$NtUninstallKB2736233$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2749655)-->"C:\WINDOWS\$NtUninstallKB2749655$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB951072-v2)-->"C:\WINDOWS\$NtUninstallKB951072-v2$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB951978)-->"C:\WINDOWS\$NtUninstallKB951978$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955839)-->"C:\WINDOWS\$NtUninstallKB955839$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB967715)-->"C:\WINDOWS\$NtUninstallKB967715$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971029)-->"C:\WINDOWS\$NtUninstallKB971029$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB952069)-->"C:\WINDOWS\$NtUninstallKB952069_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB936782)-->"C:\WINDOWS\$NtUninstallKB936782_WMP11$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player 11 (KB954154)-->"C:\WINDOWS\$NtUninstallKB954154_WM11$\spuninst\spuninst.exe"
Aktualizace zabezpečení pro Microsoft Windows (KB2564958)-->"C:\WINDOWS\$NtUninstallKB2564958$\spuninst\spuninst.exe"
Aktualizace zabezpečení produktu Windows XP (KB941569)-->"C:\WINDOWS\$NtUninstallKB941569$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2183461)-->"C:\WINDOWS\ie7updates\KB2183461-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2360131)-->"C:\WINDOWS\ie7updates\KB2360131-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2416400)-->"C:\WINDOWS\ie7updates\KB2416400-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2482017)-->"C:\WINDOWS\ie7updates\KB2482017-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2497640)-->"C:\WINDOWS\ie7updates\KB2497640-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2530548)-->"C:\WINDOWS\ie7updates\KB2530548-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2544521)-->"C:\WINDOWS\ie7updates\KB2544521-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2559049)-->"C:\WINDOWS\ie7updates\KB2559049-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB2586448)-->"C:\WINDOWS\ie7updates\KB2586448-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB937143)-->"C:\WINDOWS\ie7updates\KB937143-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB938127)-->"C:\WINDOWS\ie7updates\KB938127-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB939653)-->"C:\WINDOWS\ie7updates\KB939653-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB942615)-->"C:\WINDOWS\ie7updates\KB942615-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB944533)-->"C:\WINDOWS\ie7updates\KB944533-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB950759)-->"C:\WINDOWS\ie7updates\KB950759-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB953838)-->"C:\WINDOWS\ie7updates\KB953838-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB956390)-->"C:\WINDOWS\ie7updates\KB956390-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB958215)-->"C:\WINDOWS\ie7updates\KB958215-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB960714)-->"C:\WINDOWS\ie7updates\KB960714-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB961260)-->"C:\WINDOWS\ie7updates\KB961260-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB963027)-->"C:\WINDOWS\ie7updates\KB963027-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB969897)-->"C:\WINDOWS\ie7updates\KB969897-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB972260)-->"C:\WINDOWS\ie7updates\KB972260-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB974455)-->"C:\WINDOWS\ie7updates\KB974455-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB976325)-->"C:\WINDOWS\ie7updates\KB976325-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207)-->"C:\WINDOWS\ie7updates\KB978207-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB982381)-->"C:\WINDOWS\ie7updates\KB982381-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2510531)-->"C:\WINDOWS\ie8updates\KB2510531-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2544521)-->"C:\WINDOWS\ie8updates\KB2544521-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2586448)-->"C:\WINDOWS\ie8updates\KB2586448-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2618444)-->"C:\WINDOWS\ie8updates\KB2618444-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2647516)-->"C:\WINDOWS\ie8updates\KB2647516-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2675157)-->"C:\WINDOWS\ie8updates\KB2675157-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2699988)-->"C:\WINDOWS\ie8updates\KB2699988-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2722913)-->"C:\WINDOWS\ie8updates\KB2722913-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2744842)-->"C:\WINDOWS\ie8updates\KB2744842-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296199)-->"C:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2393802)-->"C:\WINDOWS\$NtUninstallKB2393802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2412687)-->"C:\WINDOWS\$NtUninstallKB2412687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2419632)-->"C:\WINDOWS\$NtUninstallKB2419632$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2436673)-->"C:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476490)-->"C:\WINDOWS\$NtUninstallKB2476490$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2476687)-->"C:\WINDOWS\$NtUninstallKB2476687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478960)-->"C:\WINDOWS\$NtUninstallKB2478960$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2478971)-->"C:\WINDOWS\$NtUninstallKB2478971$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479628)-->"C:\WINDOWS\$NtUninstallKB2479628$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2479943)-->"C:\WINDOWS\$NtUninstallKB2479943$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2481109)-->"C:\WINDOWS\$NtUninstallKB2481109$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2483185)-->"C:\WINDOWS\$NtUninstallKB2483185$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485376)-->"C:\WINDOWS\$NtUninstallKB2485376$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2485663)-->"C:\WINDOWS\$NtUninstallKB2485663$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2503658)-->"C:\WINDOWS\$NtUninstallKB2503658$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2503665)-->"C:\WINDOWS\$NtUninstallKB2503665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2506212)-->"C:\WINDOWS\$NtUninstallKB2506212$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2506223)-->"C:\WINDOWS\$NtUninstallKB2506223$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2507618)-->"C:\WINDOWS\$NtUninstallKB2507618$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2507938)-->"C:\WINDOWS\$NtUninstallKB2507938$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2508272)-->"C:\WINDOWS\$NtUninstallKB2508272$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2508429)-->"C:\WINDOWS\$NtUninstallKB2508429$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2509553)-->"C:\WINDOWS\$NtUninstallKB2509553$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2510581)-->"C:\WINDOWS\$NtUninstallKB2510581$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2511455)-->"C:\WINDOWS\$NtUninstallKB2511455$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2524375)-->"C:\WINDOWS\$NtUninstallKB2524375$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2535512)-->"C:\WINDOWS\$NtUninstallKB2535512$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276)-->"C:\WINDOWS\$NtUninstallKB2536276$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2536276-v2)-->"C:\WINDOWS\$NtUninstallKB2536276-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544893)-->"C:\WINDOWS\$NtUninstallKB2544893$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2544893-v2)-->"C:\WINDOWS\$NtUninstallKB2544893-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2555917)-->"C:\WINDOWS\$NtUninstallKB2555917$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2562937)-->"C:\WINDOWS\$NtUninstallKB2562937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2566454)-->"C:\WINDOWS\$NtUninstallKB2566454$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567053)-->"C:\WINDOWS\$NtUninstallKB2567053$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2567680)-->"C:\WINDOWS\$NtUninstallKB2567680$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570222)-->"C:\WINDOWS\$NtUninstallKB2570222$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2570947)-->"C:\WINDOWS\$NtUninstallKB2570947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2584146)-->"C:\WINDOWS\$NtUninstallKB2584146$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2585542)-->"C:\WINDOWS\$NtUninstallKB2585542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2592799)-->"C:\WINDOWS\$NtUninstallKB2592799$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2598479)-->"C:\WINDOWS\$NtUninstallKB2598479$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2603381)-->"C:\WINDOWS\$NtUninstallKB2603381$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2618451)-->"C:\WINDOWS\$NtUninstallKB2618451$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2619339)-->"C:\WINDOWS\$NtUninstallKB2619339$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2620712)-->"C:\WINDOWS\$NtUninstallKB2620712$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2621440)-->"C:\WINDOWS\$NtUninstallKB2621440$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2624667)-->"C:\WINDOWS\$NtUninstallKB2624667$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2631813)-->"C:\WINDOWS\$NtUninstallKB2631813$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2633171)-->"C:\WINDOWS\$NtUninstallKB2633171$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2639417)-->"C:\WINDOWS\$NtUninstallKB2639417$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2641653)-->"C:\WINDOWS\$NtUninstallKB2641653$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2646524)-->"C:\WINDOWS\$NtUninstallKB2646524$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2647518)-->"C:\WINDOWS\$NtUninstallKB2647518$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2653956)-->"C:\WINDOWS\$NtUninstallKB2653956$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2655992)-->"C:\WINDOWS\$NtUninstallKB2655992$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2659262)-->"C:\WINDOWS\$NtUninstallKB2659262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2660465)-->"C:\WINDOWS\$NtUninstallKB2660465$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2661637)-->"C:\WINDOWS\$NtUninstallKB2661637$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2676562)-->"C:\WINDOWS\$NtUninstallKB2676562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2685939)-->"C:\WINDOWS\$NtUninstallKB2685939$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2686509)-->"C:\WINDOWS\$NtUninstallKB2686509$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2691442)-->"C:\WINDOWS\$NtUninstallKB2691442$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2695962)-->"C:\WINDOWS\$NtUninstallKB2695962$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2698365)-->"C:\WINDOWS\$NtUninstallKB2698365$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2705219)-->"C:\WINDOWS\$NtUninstallKB2705219$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2707511)-->"C:\WINDOWS\$NtUninstallKB2707511$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2709162)-->"C:\WINDOWS\$NtUninstallKB2709162$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2712808)-->"C:\WINDOWS\$NtUninstallKB2712808$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2718523)-->"C:\WINDOWS\$NtUninstallKB2718523$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2719985)-->"C:\WINDOWS\$NtUninstallKB2719985$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2723135)-->"C:\WINDOWS\$NtUninstallKB2723135$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2724197)-->"C:\WINDOWS\$NtUninstallKB2724197$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2731847)-->"C:\WINDOWS\$NtUninstallKB2731847$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizace zabezpečení systému Windows XP (KB938464)-->"C:\WINDOWS\$NtUninstallKB938464$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB946648)-->"C:\WINDOWS\$NtUninstallKB946648$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950760)-->"C:\WINDOWS\$NtUninstallKB950760$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950762)-->"C:\WINDOWS\$NtUninstallKB950762$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB950974)-->"C:\WINDOWS\$NtUninstallKB950974$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951066)-->"C:\WINDOWS\$NtUninstallKB951066$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376)-->"C:\WINDOWS\$NtUninstallKB951376$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951376-v2)-->"C:\WINDOWS\$NtUninstallKB951376-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951698)-->"C:\WINDOWS\$NtUninstallKB951698$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB951748)-->"C:\WINDOWS\$NtUninstallKB951748$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB952954)-->"C:\WINDOWS\$NtUninstallKB952954$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB953839)-->"C:\WINDOWS\$NtUninstallKB953839$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954211)-->"C:\WINDOWS\$NtUninstallKB954211$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954459)-->"C:\WINDOWS\$NtUninstallKB954459$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB954600)-->"C:\WINDOWS\$NtUninstallKB954600$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB955069)-->"C:\WINDOWS\$NtUninstallKB955069$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956391)-->"C:\WINDOWS\$NtUninstallKB956391$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956802)-->"C:\WINDOWS\$NtUninstallKB956802$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956803)-->"C:\WINDOWS\$NtUninstallKB956803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956841)-->"C:\WINDOWS\$NtUninstallKB956841$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957095)-->"C:\WINDOWS\$NtUninstallKB957095$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB957097)-->"C:\WINDOWS\$NtUninstallKB957097$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958644)-->"C:\WINDOWS\$NtUninstallKB958644$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958687)-->"C:\WINDOWS\$NtUninstallKB958687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958690)-->"C:\WINDOWS\$NtUninstallKB958690$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960715)-->"C:\WINDOWS\$NtUninstallKB960715$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961371)-->"C:\WINDOWS\$NtUninstallKB961371$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961373)-->"C:\WINDOWS\$NtUninstallKB961373$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB968537)-->"C:\WINDOWS\$NtUninstallKB968537$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969898)-->"C:\WINDOWS\$NtUninstallKB969898$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971557)-->"C:\WINDOWS\$NtUninstallKB971557$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971633)-->"C:\WINDOWS\$NtUninstallKB971633$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973346)-->"C:\WINDOWS\$NtUninstallKB973346$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973525)-->"C:\WINDOWS\$NtUninstallKB973525$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977165)-->"C:\WINDOWS\$NtUninstallKB977165$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981349)-->"C:\WINDOWS\$NtUninstallKB981349$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982802)-->"C:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
Ashampoo WinOptimizer Platinum 3-->"C:\Programy\Ashampoo\Ashampoo WinOptimizer Platinum 3\Uninstall\WOP3_Uninstall.exe"
Ask Toolbar-->MsiExec.exe /X{86D4B82A-ABED-442A-BE86-96357B70F4FE}
AVS Media Player 3.1-->"C:\Program Files\dvd\AVSMediaPlayer\unins000.exe"
AVS Update Manager 1.0-->"C:\Program Files\AVS4YOU\AVSUpdateManager\unins000.exe"
AVS4YOU Software Navigator 1.3-->"C:\Program Files\AVS4YOU\AVSSoftwareNavigator\unins000.exe"
Balíček zprostředkovatele služby Microsoft Base Smart Card Cryptographic Service-->"C:\WINDOWS\$NtUninstallbasecsp$\spuninst\spuninst.exe"
CCleaner-->"C:\Programy\CCleaner\uninst.exe"
CDDRV_Installer-->MsiExec.exe /I{8CC990CD-87C8-475C-AC32-8A7984E2FCFA}
Codec Pack - All In 1 6.0.3.0-->C:\WINDOWS\iun6002.exe "C:\Program Files\Codec Pack - All In 1\irunin.ini"
Combined Community Codec Pack 2008-09-21 16:18-->"C:\Programy\Combined Community Codec Pack\unins000.exe"
Conexant HDA D330 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2C06&SUBSYS_14F1000F\HXFSETUP.EXE -U -Idel000f5.inf
CyberLink PowerDVD 10-->"C:\Program Files\InstallShield Installation Information\{DEC235ED-58A4-4517-A278-C41E8DAEAB3B}\Setup.exe" /z-uninstall
CyberLink PowerDVD 9-->"C:\Program Files\InstallShield Installation Information\{A8516AC9-AAF1-47F9-9766-03E2D4CDBCF8}\Setup.exe" /z-uninstall
Dell Touchpad-->C:\Program Files\Apoint\Uninstap.exe ADDREMOVE
Dell Wireless WLAN Card-->"C:\Program Files\Dell\Dell Wireless WLAN Card\bcmwlu00.exe" verbose /rootkey="Software\Broadcom\802.11\UninstallInfo" /rootdir="C:\Program Files\Dell\Dell Wireless WLAN Card"
DevalVR plugin for Internet Explorer (remove)-->C:\Program Files\DevalVR\installdevalvr.exe /u
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
Důležitá aktualizace aplikace Windows Media Player 11 (KB959772)-->"C:\WINDOWS\$NtUninstallKB959772_WM11$\spuninst\spuninst.exe"
Ekonomický systém Money S3-->C:\Program Files\CIGLER SOFTWARE\Common Files\Money S3\Setup\Uninst.exe
Firebird 2.0.1-->"C:\Program Files\Firebird\Firebird_2_0\unins000.exe"
Foxit Reader-->C:\Program Files\Foxit Software\Foxit Reader\Uninstall.exe
Free PDF to Word Doc Converter v1.1-->"C:\Program Files\Free PDF to Word Doc Converter\unins000.exe"
Gemplus Smart Card Reader Tools-->C:\Program Files\Gemplus\ReaderTools\Installer\setup.exe /u
Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_E6C807F38EB64284.exe" /uninstall
Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C}
High Definition Audio Driver Package - KB888111-->"C:\WINDOWS\$NtUninstallKB888111WXPSP2$\spuninst\spuninst.exe"
HijackThis 2.0.2-->"C:\Programy\HijackThis\HijackThis.exe" /uninstall
Hotfix for Windows Media Format 11 SDK (KB929399)-->"C:\WINDOWS\$NtUninstallKB929399$\spuninst\spuninst.exe"
HP Photosmart, Officejet and Deskjet 7.0.A-->C:\Program Files\HP\Digital Imaging\{3A316611-45D1-429C-AA26-B71259C44689}\setup\hpzscr01.exe -datfile hposcr11.dat
I.CA CryptoPlus v1.0-->C:\Program Files\CryptoPlus\I.CA CryptoPlus v1.0\UnInstCM.exe C:\Program Files\CryptoPlus\I.CA CryptoPlus v1.0\crypto.inf
I:key & ComfortChip-->C:\Program Files\ComfortChip\Uninstall.exe
Java(TM) 6 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160030}
KhalSetup-->MsiExec.exe /I{9060B698-2B29-4A1F-B876-BEAC4C0A25D5}
KProbe 2.5.2-->C:\WINDOWS\iun6002.exe "C:\Program Files\KProbe\irunin.ini"
mDriver-->MsiExec.exe /I{A0F925BF-5C55-44C2-A4E7-5A4C59791C29}
mHlpDell-->MsiExec.exe /I{49D687E5-6784-431B-A0A2-2F23B8CC5A1B}
Microsoft .NET Framework 1.1 Czech Language Pack-->MsiExec.exe /X{5E65E94D-69F2-4850-9E93-6459C53A0F50}
Microsoft .NET Framework 1.1 Security Update (KB2656353)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2656353\M2656353Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB2656370)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M2656370\M2656370Uninstall.msp"
Microsoft .NET Framework 1.1 Security Update (KB979906)-->"C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\Updates\M979906\M979906Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 2.0 Language Pack - CSY-->C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Microsoft .NET Framework 2.0 Language Pack - CSY\install.exe
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft Compression Client Pack 1.0 for Windows XP-->"C:\WINDOWS\$NtUninstallMSCompPackV1$\spuninst\spuninst.exe"
Microsoft Internationalized Domain Names Mitigation APIs-->"C:\WINDOWS\$NtServicePackUninstallIDNMitigationAPIs$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.5-->"C:\WINDOWS\$NtUninstallWdf01005$\spuninst\spuninst.exe"
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7-->"C:\WINDOWS\$NtUninstallWdf01007$\spuninst\spuninst.exe"
Microsoft National Language Support Downlevel APIs-->"C:\WINDOWS\$NtServicePackUninstallNLSDownlevelMapping$\spuninst\spuninst.exe"
Microsoft Office Professional Edition 2003-->MsiExec.exe /I{90110405-6000-11D3-8CFE-0150048383C9}
Microsoft User-Mode Driver Framework Feature Pack 1.0-->"C:\WINDOWS\$NtUninstallWudf01000$\spuninst\spuninst.exe"
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
mIWA-->MsiExec.exe /I{3E9D596A-61D4-4239-BD19-2DB984D2A16F}
mLogView-->MsiExec.exe /I{0E2B0B41-7E08-4F9F-B21F-41C4133F43B7}
Mobility Manager-->"C:\Program Files\Mobility Manager\Uninstall Mobility Manager\Uninstall Mobility Manager.exe"
Mozilla Firefox 15.0.1 (x86 cs)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
Mozilla Maintenance Service-->"C:\Program Files\Mozilla Maintenance Service\uninstall.exe"
Mozilla Thunderbird (2.0.0.9)-->C:\Program Files\Mozilla Thunderbird\uninstall\helper.exe
mPfMgr-->MsiExec.exe /I{8B928BA1-EDEC-4227-A2DA-DD83026C36F5}
mPfWiz-->MsiExec.exe /I{90B0D222-8C21-4B35-9262-53B042F18AF9}
mProSafe-->MsiExec.exe /I{23FB368F-1399-4EAC-817C-4B83ECBE3D83}
mSCfg-->MsiExec.exe /I{829CD169-E692-48E8-9BDE-A3E8D8B65538}
mSSO-->MsiExec.exe /I{06BE8AFD-A8E2-4B63-BAE7-287016D16ACB}
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP3 Parser (KB2721691)-->MsiExec.exe /I{355B5AC0-CEEE-42C5-AD4D-7F3CFD806C36}
MSXML 4.0 SP3 Parser (KB973685)-->MsiExec.exe /I{859DFA95-E4A6-48CD-B88E-A3E483E89B44}
MSXML 6.0 Parser (KB933579)-->MsiExec.exe /I{0A869A65-8C94-4F7C-A5C7-972D3C8CED9E}
mWMI-->MsiExec.exe /I{63DB9CCD-2B56-4217-9A3D-507AC78320CA}
mZConfig-->MsiExec.exe /I{94658027-9F16-4509-BBD7-A59FE57C3023}
Nero 8 Demo-->MsiExec.exe /X{6F8A555E-F2E1-415D-AD8A-67C0A7671029}
neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B}
NVIDIA Drivers-->C:\WINDOWS\system32\nvudisp.exe UninstallGUI
O&O Defrag Professional Edition-->MsiExec.exe /I{53480330-E1D1-41CA-B8F8-7F78644F7F50}
OMCI-->MsiExec.exe /X{73F1BDB7-11E1-11D5-9DC6-00C04F2FC33B}
Oprava hotfix aplikace Windows Media Player 11 (KB939683)-->"C:\WINDOWS\$NtUninstallKB939683$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows Internet Explorer 7 (KB947864)-->"C:\WINDOWS\ie7updates\KB947864-IE7\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2570791)-->"C:\WINDOWS\$NtUninstallKB2570791$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2633952)-->"C:\WINDOWS\$NtUninstallKB2633952$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2756822)-->"C:\WINDOWS\$NtUninstallKB2756822$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB952287)-->"C:\WINDOWS\$NtUninstallKB952287$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB961118)-->"C:\WINDOWS\$NtUninstallKB961118$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB970653-v3)-->"C:\WINDOWS\$NtUninstallKB970653-v3$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB976098-v2)-->"C:\WINDOWS\$NtUninstallKB976098-v2$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
OZ776 SCR Driver V1.1.3.9-->C:\Program Files\InstallShield Installation Information\{343D8DE3-AE1F-431A-830C-B66352E8CA12}\setup.exe -runfromtemp -l0x0409
PDP 2009.01-->"C:\Program Files\LEGIS\PDP2009\unins000.exe"
PDP 2012.01-->"C:\Program Files\LEGIS\PDP2012\unins000.exe"
PPD-->"C:\Program Files\LEGIS\PPD\unins000.exe"
Sada Compatibility Pack pro systém Office 2007-->MsiExec.exe /X{90120000-0020-0405-0000-0000000FF1CE}
ScanSoft OmniPage SE 4.0-->MsiExec.exe /I{29D851C2-048C-4B5E-8D1F-25D473342BB5}
SCR33xx USB Smartcard Reader-->MsiExec.exe /I{96F28051-0D57-4B5C-BD17-0C42F03A8AD0}
SecureStore I.CA 2.5-->C:\Program Files\I.CA\SecureStore\uninst.exe
Sentinel Protection Installer 7.0.0-->MsiExec.exe /I{547D4265-AF45-42E9-A62A-C58182AA35B9}
SetPoint-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}\setup.exe" -l0x9 -removeonly
SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\setup.exe" -l0x5 -remove -removeonly
Software Intel(R) PROSet/Wireless-->C:\WINDOWS\Installer\iProInst.exe
Software602 Form Filler rozšíření pro internetové prohlížeče-->rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\filler.inf,DefaultUninstall.NT,,N
Sonic Activation Module-->MsiExec.exe /I{35E1EC43-D4FC-4E4A-AAB3-20DDA27E8BB0}
SpeedFan (remove only)-->"C:\Program Files\SpeedFan\uninstall.exe"
Spyware Terminator-->"C:\Program Files\Spyware Terminator\unins000.exe"
Střechy od projektu k realizaci 1.1-->"C:\Program Files\Verlag Dashöfer s.r.o\Střech\unins000.exe"
TeamViewer 3-->C:\Program Files\TeamViewer3\uninstall.exe
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
Total Commander (Remove or Repair)-->c:\programy\totalcmd\tcuninst.exe
TrueCrypt-->"C:\Programy\TrueCrypt\TrueCrypt Setup.exe" /u C:\Programy\TrueCrypt\
Truss 4 (pouze odstranit)-->C:\WINDOWS\IsUn0405.exe -f"C:\Program Files\Fine\Truss4\UnInst.isu"
VCRedistSetup-->MsiExec.exe /I{3921A67A-5AB1-4E48-9444-C71814CF3027}
VeryPDF PDF2Word v3.0-->"C:\Program Files\VeryPDF PDF2Word v3.0\unins000.exe"
VideoLAN VLC media player 0.8.6c-->C:\Program Files\VideoLAN\VLC\uninstall.exe
Visual C++ 8.0 CRT (x86) WinSXS MSM-->MsiExec.exe /I{10944289-8401-4B95-8E2A-61B0024C8C3A}
Vivotek ST3402-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{34BC92E4-6310-4EEB-887F-559EB1AA1479}
Web'n'walk Manager-->C:\Program Files\T-Mobile\Web'n'walk Manager\uninstall.exe
Winamp (remove only)-->"C:\Programy\Winamp\UninstWA.exe"
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe"
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
Windows Media Player 11-->"C:\WINDOWS\$NtUninstallwmp11$\spuninst\spuninst.exe"
Windows XP Service Pack 3-->"C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe"
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WinZip-->"C:\Programy\WinZip\WINZIP32.EXE" /uninstall
Zoner Photo Studio 12-->"C:\Program Files\Zoner\Photo Studio 12\unins000.exe" /SILENT
======Security center information======
AV: ESET Smart Security 5.0
FW: ESET personal firewall
======System event log======
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545573
Source Name: DCOM
Time Written: 20121010064422.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545572
Source Name: DCOM
Time Written: 20121010064421.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545571
Source Name: DCOM
Time Written: 20121010064421.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545570
Source Name: DCOM
Time Written: 20121010064419.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
Computer Name: DELL
Event Code: 10005
Message: Služba DCOM zjistila chybu %1058 při pokusu o spuštění služby Iap s argumenty -Service
za účelem spuštění serveru:
{B0C61A79-0870-4BE4-9153-9CCAF422E31F}
Record Number: 545569
Source Name: DCOM
Time Written: 20121010064419.000000+120
Event Type: Chyba
User: NT AUTHORITY\SYSTEM
=====Application event log=====
Computer Name: DELL
Event Code: 0
Message:
Record Number: 28422
Source Name: EvtEng
Time Written: 20120802194522.000000+120
Event Type: Informace
User:
Computer Name: DELL
Event Code: 2000
Message:
Record Number: 28421
Source Name: Microsoft Office 11
Time Written: 20120802162926.000000+120
Event Type: Chyba
User:
Computer Name: DELL
Event Code: 1000
Message:
Record Number: 28420
Source Name: Microsoft Office 11
Time Written: 20120802162921.000000+120
Event Type: Chyba
User:
Computer Name: DELL
Event Code: 1000
Message: Čítače výkonu pro službu WmiApRpl (WmiApRpl) byly úspěšně načteny.
Data záznamu obsahují nové indexové hodnoty přiřazené
této službě.
Record Number: 28419
Source Name: LoadPerf
Time Written: 20120802162816.000000+120
Event Type: Informace
User:
Computer Name: DELL
Event Code: 1001
Message: Čítače výkonu pro službu WmiApRpl (WmiApRpl) byly úspěšně odstraněny.
Data záznamu obsahují nové hodnoty položek Last Counter a
Last Help systémového registru.
Record Number: 28418
Source Name: LoadPerf
Time Written: 20120802162815.000000+120
Event Type: Informace
User:
======Environment variables======
"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=%systemroot%\system32;%systemroot%;%systemroot%\system32\wbem;C:\Program Files\Common Files\Roxio Shared\DLLShared;C:\Program Files\Common Files\Autodesk Shared
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 10, GenuineIntel
"PROCESSOR_REVISION"=0f0a
"NUMBER_OF_PROCESSORS"=2
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
-----------------EOF-----------------
Diky
Re: prosim o kontrolu-blbne pripojeni
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: prosim o kontrolu-blbne pripojeni
zdravim a dekuji
ComboFix 12-10-21.01 - AKE 21.10.2012 13:22:27.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1396 [GMT 2:00]
Spuštěný z: c:\documents and settings\AKE\Plocha\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Vytvořen nový Bod Obnovení
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1921700_kk_072-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1921700_kk_072-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1926600_DSCN7581-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1926600_DSCN7581-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1926600_DSCN7581-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1927900_DSCN7707-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1927900_DSCN7707-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1927900_DSCN7707-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928600_DSCN7755-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928600_DSCN7755-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928600_DSCN7755-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928700_DSCN7781-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928700_DSCN7781-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928700_DSCN7781-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928900_DSCN7856-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928900_DSCN7856-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928900_DSCN7856-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929200_2012-05-18_15 17 43-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929700_DSCN7945-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929700_DSCN7945-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929700_DSCN7945-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929900_DSCN7911-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929900_DSCN7911-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929900_DSCN7911-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1930000_P3070009-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1930000_P3070009-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1930000_P3070009-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945100_DSCN8080-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945100_DSCN8080-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945100_DSCN8080-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945600_DSCN1014-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945600_DSCN1014-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945600_DSCN1014-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1947700_007-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1947700_007-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1947700_007-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1954500_20022012448-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1954500_20022012448-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1954500_20022012448-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1956700_DSCN8942-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1956700_DSCN8942-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1957400_P1010032-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1957400_P1010032-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1963200_DSCN5527-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1963200_DSCN5527-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1968900_DSCN9495-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1968900_DSCN9495-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1970800_DSCN9770-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1970800_DSCN9770-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1970800_DSCN9770-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971500_DSCN9736-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971500_DSCN9736-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971500_DSCN9736-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971900_DSCN0182-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971900_DSCN0182-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971900_DSCN0182-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972000_2012-05-24_17 38 34-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972000_2012-05-24_17 38 34-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972000_2012-05-24_17 38 34-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972100_DSCN0109-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972100_DSCN0109-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972300_DSCN9969-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972300_DSCN9969-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972800_DSCN9905-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972800_DSCN9905-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973800_DSCN0362-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973800_DSCN0362-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973800_DSCN0362-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973900_DSCN0388-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973900_DSCN0388-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1976900_DSCN0535-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1976900_DSCN0535-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1976900_DSCN0535-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977300_DSCN0604-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977300_DSCN0604-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977300_DSCN0604-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977400_DSCN1557-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977400_DSCN1557-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977500_2012-04-19_11 31 59-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977500_2012-04-19_11 31 59-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977500_2012-04-19_11 31 59-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1979000_DSCN0959-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980500_DSCN1437-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980500_DSCN1437-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980500_DSCN1437-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980600_DSCN0920-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980600_DSCN0920-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980600_DSCN0920-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983300_DSCN1499-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983300_DSCN1499-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983300_DSCN1499-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983500_DSCN1507-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983500_DSCN1507-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984400_DSCN2059-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984400_DSCN2059-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984400_DSCN2059-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984500_DSCN2027-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984500_DSCN2027-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984500_DSCN2027-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1985200_DSCN3024-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1985200_DSCN3024-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989100_DSCN2043-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989100_DSCN2043-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989100_DSCN2043-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989400_DSCN2054-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989400_DSCN2054-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989400_DSCN2054-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1995400_DSCN2100-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1995400_DSCN2100-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1996600_DSCN2199-1.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1997900_DSCN2984-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1997900_DSCN2984-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1998000_DSCN2958-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1998000_DSCN2958-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999500_DSCN2290-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999500_DSCN2290-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999600_DSCN2310-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999600_DSCN2310-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999600_DSCN2310-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999700_DSCN2382-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999700_DSCN2382-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999700_DSCN2382-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999800_DSCN2363-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2.png
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2004500_DSCN2558-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120711155036275.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120711155043956.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120820_week.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120827_week.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120901_month.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120903_week.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2014400_DSCN3385-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2015300_DSCN3702-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020000_DSCN1490-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020000_DSCN1490-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020000_DSCN1490-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020300_DSCN4077-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2022700_DSCN3587-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2023100_DSCN3670-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2023200_DSCN3676-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2024000_DSCN3979-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2025300_DSCN4099-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2026900_DSCN4530-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027000_DSCN4459-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027100_DSCN4442-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027300_DSCN4298-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027400_DSCN4189-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027500_DSCN4603-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027600_DSCN4587-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027700_DSCN4515-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027800_DSCN4492-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027900_DSCN4265-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2028000_DSCN4242-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2029700_DSCN4104-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2029800_DSCN4772-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2029900_DSCN4794-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2034200_DSCN5021-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2034300_DSCN5038-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2037200_DSCN5562-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2037300_DSCN5532-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2041100_DSCN5881-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2043700_DSCN6172-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2052800_DSCN7184-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2052900_DSCN7176-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2053500_DSCN6481-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2054100_DSCN6454-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2060200_2012-07-11-2711-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2060500_DSCN7224-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2062100_DSCN7061-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074100_DSCN8018-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074700_DSCN8072-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074800_DSCN8115-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074900_DSCN8123-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2075000_DSCN8155-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2076400_2012-08-14-3269-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077000_DSCN8816-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077100_DSCN8583-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077300_2012-08-20-3537-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077400_DSCN8836-0.jpg
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\AegisI5Installer.exe
c:\windows\system32\TZLog.log
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NVSVC
-------\Service_NVSvc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-21 do 2012-10-21 )))))))))))))))))))))))))))))))
.
.
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- c:\program files\trend micro
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- C:\rsit
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 04:39 . 2012-10-18 04:34 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 05:36 . 2012-04-10 09:32 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 05:36 . 2012-03-06 08:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 15:18 . 2006-03-04 03:35 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 10:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 10:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 10:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 10:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2005-03-30 17:37 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:27 . 2005-03-30 17:37 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-09-26 08:12 . 2012-09-26 08:11 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
[-] 2004-08-03 20:59 . !HASH: COULD NOT OPEN FILE !!!!! . 95360 . . [------] . . c:\windows\system32\drivers\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33 1519304 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-06-12 1368824]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-04-15 159744]
"Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2007-07-20 1228800]
"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-08-29 24576]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-7-30 2158592]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-02-20 12:57 65536 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0lsdelete
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"O&O Defrag"=3 (0x3)
"ose"=3 (0x3)
"Iap"=2 (0x2)
"Autodesk Licensing Service"=3 (0x3)
"Pml Driver HPZ12"=2 (0x2)
"FMMService"=2 (0x2)
"FirebirdServerDefaultInstance"=3 (0x3)
"FirebirdGuardianDefaultInstance"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"511:TCP"= 511:TCP:*:Disabled:money
.
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [28.9.2007 08:49 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [28.9.2007 08:49 5248]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 09:20 118104]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 18:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 23:55 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [19.10.2009 14:37 142592]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 20:54 116608]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44];c:\program files\Cyberlink\PowerDVD10\NavFilter\000.fcl [13.3.2010 13:58 87536]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33];c:\program files\PowerDVD9\PowerDVD9\000.fcl [7.5.2009 22:05 87536]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [14.4.2010 11:28 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [12.6.2012 13:01 124856]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 12:03 974944]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.4.2008 08:23 9728]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher;c:\program files\Vivotek\ST3402\Launcher_VV.exe [10.12.2008 21:53 335872]
R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2.11.2006 12:32 97536]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [7.7.2012 11:00 73216]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [27.9.2007 21:58 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [27.9.2007 21:58 92288]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 11:32 136176]
S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [3.10.2007 06:42 33536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.4.2012 11:32 250808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [7.7.2012 11:00 102784]
S3 ft1000;Flarion Flash OFDM wireless service;c:\windows\system32\drivers\ft1000.sys [3.10.2007 06:15 62208]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [22.11.2007 12:48 61776]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 11:32 136176]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [7.7.2012 11:00 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter;c:\windows\system32\drivers\ipwpnet.sys [3.4.2008 08:23 43184]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [28.10.2011 07:40 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.5.2012 11:23 114144]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [6.4.2004 05:24 64088]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
S4 FMMService;FMMService;c:\progra~1\MOBILI~1\FMMSER~1.EXE [3.10.2007 06:15 40960]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 05:36]
.
2012-10-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-21 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-06-06 19:33]
.
2012-10-13 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: csob.cz\www
Trusted Zone: tatrabanka.sk\moja
TCP: Interfaces\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
FF - ProfilePath - c:\documents and settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.satelitnisledovani.cz/
FF - ExtSQL: !HIDDEN! 2009-09-02 19:58; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
------- Asociace souborů -------
.
.txt=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-AVS Media Player_is1 - c:\program files\dvd\AVSMediaPlayer\unins000.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-Fine Truss 4.0 - c:\windows\IsUn0405.exe
AddRemove-Free PDF to Word Doc Converter_is1 - c:\program files\Free PDF to Word Doc Converter\unins000.exe
AddRemove-KProbe - c:\windows\iun6002.exe
AddRemove-Podnikový a domácí právník 2009_is1 - c:\program files\LEGIS\PDP2009\unins000.exe
AddRemove-Průvodce psaním dopisů_is1 - c:\program files\LEGIS\PPD\unins000.exe
AddRemove-Your Application Name - c:\windows\ISUN0405.EXE
AddRemove-Úprava písemností 1.0 - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-21 13:38
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1860)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(1096)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\System32\bcmwltry.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
c:\windows\system32\oodag.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\SigmaTel\C-Major Audio\WDM\StacSV.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\stsystra.exe
c:\windows\system32\rundll32.exe
c:\program files\Apoint\ApMsgFwd.exe
c:\program files\Apoint\HidFind.exe
c:\program files\Apoint\Apntex.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
.
**************************************************************************
.
Celkový čas: 2012-10-21 13:43:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-21 11:43
.
Před spuštěním: 7 186 817 024
Po spuštění: 7 805 894 656
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - B4685EDB7D15BA0F69366DEF50D378C8
ComboFix 12-10-21.01 - AKE 21.10.2012 13:22:27.4.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1396 [GMT 2:00]
Spuštěný z: c:\documents and settings\AKE\Plocha\ComboFix.exe
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Vytvořen nový Bod Obnovení
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1921700_kk_072-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1921700_kk_072-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1926600_DSCN7581-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1926600_DSCN7581-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1926600_DSCN7581-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1927900_DSCN7707-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1927900_DSCN7707-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1927900_DSCN7707-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928600_DSCN7755-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928600_DSCN7755-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928600_DSCN7755-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928700_DSCN7781-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928700_DSCN7781-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928700_DSCN7781-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928900_DSCN7856-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928900_DSCN7856-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1928900_DSCN7856-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929200_2012-05-18_15 17 43-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929700_DSCN7945-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929700_DSCN7945-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929700_DSCN7945-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929900_DSCN7911-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929900_DSCN7911-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1929900_DSCN7911-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1930000_P3070009-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1930000_P3070009-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1930000_P3070009-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945100_DSCN8080-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945100_DSCN8080-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945100_DSCN8080-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945600_DSCN1014-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945600_DSCN1014-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1945600_DSCN1014-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1947700_007-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1947700_007-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1947700_007-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1954500_20022012448-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1954500_20022012448-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1954500_20022012448-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1956700_DSCN8942-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1956700_DSCN8942-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1957400_P1010032-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1957400_P1010032-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1963200_DSCN5527-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1963200_DSCN5527-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1968900_DSCN9495-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1968900_DSCN9495-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1970800_DSCN9770-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1970800_DSCN9770-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1970800_DSCN9770-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971500_DSCN9736-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971500_DSCN9736-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971500_DSCN9736-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971900_DSCN0182-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971900_DSCN0182-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1971900_DSCN0182-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972000_2012-05-24_17 38 34-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972000_2012-05-24_17 38 34-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972000_2012-05-24_17 38 34-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972100_DSCN0109-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972100_DSCN0109-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972300_DSCN9969-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972300_DSCN9969-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972800_DSCN9905-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1972800_DSCN9905-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973800_DSCN0362-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973800_DSCN0362-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973800_DSCN0362-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973900_DSCN0388-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1973900_DSCN0388-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1976900_DSCN0535-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1976900_DSCN0535-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1976900_DSCN0535-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977300_DSCN0604-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977300_DSCN0604-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977300_DSCN0604-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977400_DSCN1557-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977400_DSCN1557-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977500_2012-04-19_11 31 59-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977500_2012-04-19_11 31 59-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1977500_2012-04-19_11 31 59-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1979000_DSCN0959-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980500_DSCN1437-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980500_DSCN1437-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980500_DSCN1437-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980600_DSCN0920-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980600_DSCN0920-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1980600_DSCN0920-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983300_DSCN1499-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983300_DSCN1499-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983300_DSCN1499-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983500_DSCN1507-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1983500_DSCN1507-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984400_DSCN2059-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984400_DSCN2059-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984400_DSCN2059-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984500_DSCN2027-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984500_DSCN2027-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1984500_DSCN2027-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1985200_DSCN3024-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1985200_DSCN3024-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989100_DSCN2043-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989100_DSCN2043-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989100_DSCN2043-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989400_DSCN2054-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989400_DSCN2054-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1989400_DSCN2054-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1995400_DSCN2100-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1995400_DSCN2100-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1996600_DSCN2199-1.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1997900_DSCN2984-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1997900_DSCN2984-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1998000_DSCN2958-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1998000_DSCN2958-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999500_DSCN2290-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999500_DSCN2290-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999600_DSCN2310-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999600_DSCN2310-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999600_DSCN2310-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999700_DSCN2382-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999700_DSCN2382-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999700_DSCN2382-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\1999800_DSCN2363-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2.png
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2004500_DSCN2558-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120711155036275.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120711155043956.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120820_week.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120827_week.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120901_month.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\20120903_week.pdf
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2014400_DSCN3385-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2015300_DSCN3702-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020000_DSCN1490-0 (2).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020000_DSCN1490-0 (3).jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020000_DSCN1490-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2020300_DSCN4077-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2022700_DSCN3587-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2023100_DSCN3670-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2023200_DSCN3676-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2024000_DSCN3979-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2025300_DSCN4099-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2026900_DSCN4530-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027000_DSCN4459-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027100_DSCN4442-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027300_DSCN4298-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027400_DSCN4189-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027500_DSCN4603-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027600_DSCN4587-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027700_DSCN4515-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027800_DSCN4492-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2027900_DSCN4265-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2028000_DSCN4242-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2029700_DSCN4104-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2029800_DSCN4772-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2029900_DSCN4794-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2034200_DSCN5021-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2034300_DSCN5038-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2037200_DSCN5562-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2037300_DSCN5532-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2041100_DSCN5881-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2043700_DSCN6172-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2052800_DSCN7184-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2052900_DSCN7176-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2053500_DSCN6481-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2054100_DSCN6454-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2060200_2012-07-11-2711-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2060500_DSCN7224-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2062100_DSCN7061-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074100_DSCN8018-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074700_DSCN8072-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074800_DSCN8115-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2074900_DSCN8123-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2075000_DSCN8155-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2076400_2012-08-14-3269-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077000_DSCN8816-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077100_DSCN8583-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077300_2012-08-20-3537-0.jpg
c:\documents and settings\AKE\Local Settings\Temporary Internet Files\2077400_DSCN8836-0.jpg
c:\windows\IsUn0405.exe
c:\windows\iun6002.exe
c:\windows\pkunzip.pif
c:\windows\pkzip.pif
c:\windows\system32\AegisI5Installer.exe
c:\windows\system32\TZLog.log
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NVSVC
-------\Service_NVSvc
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-21 do 2012-10-21 )))))))))))))))))))))))))))))))
.
.
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- c:\program files\trend micro
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- C:\rsit
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 04:39 . 2012-10-18 04:34 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 05:36 . 2012-04-10 09:32 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 05:36 . 2012-03-06 08:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 15:18 . 2006-03-04 03:35 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 10:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 10:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 10:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 10:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2005-03-30 17:37 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:27 . 2005-03-30 17:37 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-09-26 08:12 . 2012-09-26 08:11 266720 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
[-] 2004-08-03 20:59 . !HASH: COULD NOT OPEN FILE !!!!! . 95360 . . [------] . . c:\windows\system32\drivers\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33 1519304 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-06-12 1368824]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-04-15 159744]
"Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2007-07-20 1228800]
"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-08-29 24576]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-7-30 2158592]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-02-20 12:57 65536 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0lsdelete
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"O&O Defrag"=3 (0x3)
"ose"=3 (0x3)
"Iap"=2 (0x2)
"Autodesk Licensing Service"=3 (0x3)
"Pml Driver HPZ12"=2 (0x2)
"FMMService"=2 (0x2)
"FirebirdServerDefaultInstance"=3 (0x3)
"FirebirdGuardianDefaultInstance"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"511:TCP"= 511:TCP:*:Disabled:money
.
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [28.9.2007 08:49 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [28.9.2007 08:49 5248]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 09:20 118104]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 18:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 23:55 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [19.10.2009 14:37 142592]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 20:54 116608]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44];c:\program files\Cyberlink\PowerDVD10\NavFilter\000.fcl [13.3.2010 13:58 87536]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33];c:\program files\PowerDVD9\PowerDVD9\000.fcl [7.5.2009 22:05 87536]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [14.4.2010 11:28 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [12.6.2012 13:01 124856]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 12:03 974944]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.4.2008 08:23 9728]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher;c:\program files\Vivotek\ST3402\Launcher_VV.exe [10.12.2008 21:53 335872]
R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2.11.2006 12:32 97536]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [7.7.2012 11:00 73216]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [27.9.2007 21:58 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [27.9.2007 21:58 92288]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 11:32 136176]
S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [3.10.2007 06:42 33536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.4.2012 11:32 250808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [7.7.2012 11:00 102784]
S3 ft1000;Flarion Flash OFDM wireless service;c:\windows\system32\drivers\ft1000.sys [3.10.2007 06:15 62208]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [22.11.2007 12:48 61776]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 11:32 136176]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [7.7.2012 11:00 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter;c:\windows\system32\drivers\ipwpnet.sys [3.4.2008 08:23 43184]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [28.10.2011 07:40 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.5.2012 11:23 114144]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [6.4.2004 05:24 64088]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
S4 FMMService;FMMService;c:\progra~1\MOBILI~1\FMMSER~1.EXE [3.10.2007 06:15 40960]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-19 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 05:36]
.
2012-10-21 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-20 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-21 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-06-06 19:33]
.
2012-10-13 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: csob.cz\www
Trusted Zone: tatrabanka.sk\moja
TCP: Interfaces\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
FF - ProfilePath - c:\documents and settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.satelitnisledovani.cz/
FF - ExtSQL: !HIDDEN! 2009-09-02 19:58; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
.
------- Asociace souborů -------
.
.txt=
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-AVS Media Player_is1 - c:\program files\dvd\AVSMediaPlayer\unins000.exe
AddRemove-Cool's_Codec_pack_4.12 - c:\windows\iun6002.exe
AddRemove-Fine Truss 4.0 - c:\windows\IsUn0405.exe
AddRemove-Free PDF to Word Doc Converter_is1 - c:\program files\Free PDF to Word Doc Converter\unins000.exe
AddRemove-KProbe - c:\windows\iun6002.exe
AddRemove-Podnikový a domácí právník 2009_is1 - c:\program files\LEGIS\PDP2009\unins000.exe
AddRemove-Průvodce psaním dopisů_is1 - c:\program files\LEGIS\PPD\unins000.exe
AddRemove-Your Application Name - c:\windows\ISUN0405.EXE
AddRemove-Úprava písemností 1.0 - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-21 13:38
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1860)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(1096)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\System32\bcmwltry.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
c:\windows\system32\oodag.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\SigmaTel\C-Major Audio\WDM\StacSV.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\stsystra.exe
c:\windows\system32\rundll32.exe
c:\program files\Apoint\ApMsgFwd.exe
c:\program files\Apoint\HidFind.exe
c:\program files\Apoint\Apntex.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
.
**************************************************************************
.
Celkový čas: 2012-10-21 13:43:12 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-21 11:43
.
Před spuštěním: 7 186 817 024
Po spuštění: 7 805 894 656
.
WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect
.
- - End Of File - - B4685EDB7D15BA0F69366DEF50D378C8
Re: prosim o kontrolu-blbne pripojeni
Stáhněte TDSSKiller http://support.kaspersky.com/downloads/ ... killer.exe- a uložte ho na plochu.
- 2x klikněte na ikonu programu a spusťte
- dejte volbu Spustit kontrolu - pak potvrdte start sken
- pokud program najde infikovaný soubor, ukáže se Vám předvolená akce Cure, v tom případě potvrdte tlačítko Continue
- pokud bude chtít program restartovat počítač, klikněte na tlačítko Reboot Now
- pokud si restart nevyžádá, klikněte na tlačítko Report. Měl vy na Vás vyskočit log, obsah logu zkopírujte do svého topicu.
- pokud se log nezobrazí, je uložený ve Vašem kořenovém adresáři.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: prosim o kontrolu-blbne pripojeni
Zdravim,
posilam report. Program nasel jeden threat. Cure (lecit)se mi neobjevilo. Mam ny vyber preskocit, kopirovat do karanteny, nebo smazat.
Rozdeluji na dve casti kvuli vice znakum
06:40:46.0140 3416 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
06:40:46.0265 3416 ============================================================
06:40:46.0265 3416 Current date / time: 2012/10/22 06:40:46.0265
06:40:46.0265 3416 SystemInfo:
06:40:46.0265 3416
06:40:46.0265 3416 OS Version: 5.1.2600 ServicePack: 3.0
06:40:46.0265 3416 Product type: Workstation
06:40:46.0265 3416 ComputerName: DELL
06:40:46.0265 3416 UserName: AKE
06:40:46.0265 3416 Windows directory: C:\WINDOWS
06:40:46.0265 3416 System windows directory: C:\WINDOWS
06:40:46.0265 3416 Processor architecture: Intel x86
06:40:46.0265 3416 Number of processors: 2
06:40:46.0265 3416 Page size: 0x1000
06:40:46.0265 3416 Boot type: Normal boot
06:40:46.0265 3416 ============================================================
06:40:47.0390 3416 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
06:40:47.0406 3416 ============================================================
06:40:47.0406 3416 \Device\Harddisk0\DR0:
06:40:47.0406 3416 MBR partitions:
06:40:47.0406 3416 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x36E8E, BlocksNum 0x3A962F0
06:40:47.0406 3416 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3ACD1BD, BlocksNum 0xA4C6604
06:40:47.0406 3416 ============================================================
06:40:47.0437 3416 D: <-> \Device\Harddisk0\DR0\Partition2
06:40:47.0468 3416 C: <-> \Device\Harddisk0\DR0\Partition1
06:40:47.0468 3416 ============================================================
06:40:47.0468 3416 Initialize success
06:40:47.0468 3416 ============================================================
06:40:48.0546 0464 ============================================================
06:40:48.0546 0464 Scan started
06:40:48.0546 0464 Mode: Manual;
06:40:48.0546 0464 ============================================================
06:40:49.0671 0464 ================ Scan system memory ========================
06:40:50.0953 0464 System memory - ok
06:40:50.0953 0464 ================ Scan services =============================
06:40:51.0062 0464 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
06:40:51.0062 0464 !SASCORE - ok
06:40:51.0359 0464 [ EBD7BD25C1D33B10D2251194C300EE85 ] 602XML Updater C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
06:40:51.0359 0464 602XML Updater - ok
06:40:51.0453 0464 [ 1F61CACACB521215F39061789147968C ] a347bus C:\WINDOWS\system32\DRIVERS\a347bus.sys
06:40:51.0468 0464 a347bus - ok
06:40:51.0484 0464 [ 113E4B318BBAA7483CA4E582A4D63F49 ] a347scsi C:\WINDOWS\system32\Drivers\a347scsi.sys
06:40:51.0484 0464 a347scsi - ok
06:40:51.0531 0464 [ 0629361FAC4576BA48AB39F4903DCE9E ] aawservice C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
06:40:51.0546 0464 aawservice - ok
06:40:51.0546 0464 Abiosdsk - ok
06:40:51.0562 0464 abp480n5 - ok
06:40:51.0593 0464 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
06:40:51.0593 0464 ACPI - ok
06:40:51.0625 0464 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
06:40:51.0625 0464 ACPIEC - ok
06:40:51.0656 0464 [ B6A0F723A54884E77FCE0F69083F90C9 ] ACSSCR C:\WINDOWS\system32\DRIVERS\a38usb.sys
06:40:51.0656 0464 ACSSCR - ok
06:40:51.0671 0464 [ 05BDD706A847BBFA9FD5948CD636EB1A ] Ad-Watch Connect Filter C:\WINDOWS\system32\drivers\NSDriver.sys
06:40:51.0671 0464 Ad-Watch Connect Filter - ok
06:40:51.0734 0464 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
06:40:51.0734 0464 AdobeFlashPlayerUpdateSvc - ok
06:40:51.0750 0464 adpu160m - ok
06:40:51.0781 0464 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
06:40:51.0781 0464 aec - ok
06:40:51.0812 0464 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
06:40:51.0812 0464 AegisP - ok
06:40:51.0843 0464 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
06:40:51.0843 0464 AFD - ok
06:40:51.0843 0464 Aha154x - ok
06:40:51.0859 0464 aic78u2 - ok
06:40:51.0859 0464 aic78xx - ok
06:40:51.0906 0464 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
06:40:51.0906 0464 Alerter - ok
06:40:51.0921 0464 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
06:40:51.0921 0464 ALG - ok
06:40:51.0937 0464 AliIde - ok
06:40:51.0984 0464 [ 950305BB9AB6207C3E53F90E4B6BC787 ] ameisvc C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
06:40:51.0984 0464 ameisvc - ok
06:40:51.0984 0464 amsint - ok
06:40:52.0015 0464 [ B8D65DA679A4A8D048783EDE2691B5D4 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
06:40:52.0031 0464 ApfiltrService - ok
06:40:52.0046 0464 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
06:40:52.0062 0464 APPDRV - ok
06:40:52.0078 0464 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
06:40:52.0093 0464 AppMgmt - ok
06:40:52.0125 0464 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
06:40:52.0125 0464 Arp1394 - ok
06:40:52.0125 0464 asc - ok
06:40:52.0125 0464 asc3350p - ok
06:40:52.0140 0464 asc3550 - ok
06:40:52.0171 0464 [ 5B01AF89D16D562825C4DB4530F20CBB ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
06:40:52.0171 0464 ASPI32 - ok
06:40:52.0250 0464 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
06:40:52.0250 0464 aspnet_state - ok
06:40:52.0265 0464 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
06:40:52.0265 0464 AsyncMac - ok
06:40:52.0281 0464 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
06:40:52.0281 0464 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atapi.sys. md5: CDFE4411A69C224BD1D11B2DA92DAC51
06:40:52.0281 0464 atapi ( LockedFile.Multi.Generic ) - warning
06:40:52.0281 0464 atapi - detected LockedFile.Multi.Generic (1)
06:40:52.0296 0464 Atdisk - ok
06:40:52.0296 0464 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
06:40:52.0296 0464 Atmarpc - ok
06:40:52.0312 0464 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
06:40:52.0312 0464 AudioSrv - ok
06:40:52.0343 0464 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
06:40:52.0343 0464 audstub - ok
06:40:52.0375 0464 [ F96038AA1EC4013A93D2420FC689D1E9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
06:40:52.0375 0464 b57w2k - ok
06:40:52.0390 0464 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
06:40:52.0390 0464 Beep - ok
06:40:52.0421 0464 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
06:40:52.0437 0464 BITS - ok
06:40:52.0453 0464 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
06:40:52.0468 0464 Browser - ok
06:40:52.0468 0464 catchme - ok
06:40:52.0484 0464 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
06:40:52.0484 0464 cbidf2k - ok
06:40:52.0500 0464 cd20xrnt - ok
06:40:52.0500 0464 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
06:40:52.0500 0464 Cdaudio - ok
06:40:52.0515 0464 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
06:40:52.0515 0464 Cdfs - ok
06:40:52.0531 0464 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
06:40:52.0531 0464 Cdrom - ok
06:40:52.0562 0464 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
06:40:52.0562 0464 cercsr6 - ok
06:40:52.0562 0464 Changer - ok
06:40:52.0593 0464 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
06:40:52.0593 0464 CiSvc - ok
06:40:52.0609 0464 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
06:40:52.0609 0464 ClipSrv - ok
06:40:52.0640 0464 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:40:52.0640 0464 clr_optimization_v2.0.50727_32 - ok
06:40:52.0656 0464 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
06:40:52.0656 0464 CmBatt - ok
06:40:52.0656 0464 CmdIde - ok
06:40:52.0687 0464 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
06:40:52.0687 0464 Compbatt - ok
06:40:52.0687 0464 COMSysApp - ok
06:40:52.0703 0464 Cpqarray - ok
06:40:52.0734 0464 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
06:40:52.0734 0464 CryptSvc - ok
06:40:52.0765 0464 [ 8E1945984E147562F9F08E1D344A69CC ] CSRBC C:\WINDOWS\system32\Drivers\csrbcxp.sys
06:40:52.0765 0464 CSRBC - ok
06:40:52.0765 0464 dac2w2k - ok
06:40:52.0781 0464 dac960nt - ok
06:40:52.0812 0464 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
06:40:52.0828 0464 DcomLaunch - ok
06:40:52.0859 0464 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
06:40:52.0875 0464 Dhcp - ok
06:40:52.0890 0464 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
06:40:52.0890 0464 Disk - ok
06:40:52.0890 0464 dmadmin - ok
06:40:52.0937 0464 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
06:40:52.0953 0464 dmboot - ok
06:40:52.0968 0464 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
06:40:52.0984 0464 dmio - ok
06:40:53.0000 0464 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
06:40:53.0000 0464 dmload - ok
06:40:53.0031 0464 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
06:40:53.0031 0464 dmserver - ok
06:40:53.0046 0464 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
06:40:53.0062 0464 DMusic - ok
06:40:53.0078 0464 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
06:40:53.0093 0464 Dnscache - ok
06:40:53.0109 0464 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
06:40:53.0125 0464 Dot3svc - ok
06:40:53.0125 0464 dpti2o - ok
06:40:53.0171 0464 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
06:40:53.0171 0464 drmkaud - ok
06:40:53.0203 0464 [ 549734664886D91222969845E4311D1B ] DXEC01 C:\WINDOWS\system32\drivers\dxec01.sys
06:40:53.0203 0464 DXEC01 - ok
06:40:53.0234 0464 [ 9309C5C9831203436E64CF2AE605C5D7 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
06:40:53.0234 0464 eamon - ok
06:40:53.0265 0464 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
06:40:53.0265 0464 EapHost - ok
06:40:53.0281 0464 [ DEFF87F04AB5F6DD5EDF2B80853BBE10 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
06:40:53.0281 0464 ehdrv - ok
06:40:53.0375 0464 [ C7BB95CF9631AA401E4ADED1648F6AF7 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
06:40:53.0390 0464 ekrn - ok
06:40:53.0421 0464 [ 5BA193CA0AE31209AAA39939CE6736B2 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
06:40:53.0421 0464 epfw - ok
06:40:53.0437 0464 [ 75D3BCD3E0EDED0AB0F96D9A10FF01C9 ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
06:40:53.0437 0464 Epfwndis - ok
06:40:53.0453 0464 [ DC64F26F35E32C9472BBF8ACD84060D3 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
06:40:53.0453 0464 epfwtdi - ok
06:40:53.0500 0464 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
06:40:53.0500 0464 ERSvc - ok
06:40:53.0531 0464 [ 076B1A923259F7A10998FA234A01D629 ] Ethpdrv C:\WINDOWS\system32\DRIVERS\ethpdrv.sys
06:40:53.0531 0464 Ethpdrv - ok
06:40:53.0562 0464 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
06:40:53.0578 0464 Eventlog - ok
06:40:53.0609 0464 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
06:40:53.0609 0464 EventSystem - ok
06:40:53.0703 0464 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
06:40:53.0703 0464 EvtEng - ok
06:40:53.0734 0464 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys
06:40:53.0734 0464 ew_hwusbdev - ok
06:40:53.0781 0464 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
06:40:53.0781 0464 Fastfat - ok
06:40:53.0812 0464 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
06:40:53.0812 0464 FastUserSwitchingCompatibility - ok
06:40:53.0828 0464 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
06:40:53.0828 0464 Fdc - ok
06:40:53.0843 0464 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
06:40:53.0859 0464 Fips - ok
06:40:53.0890 0464 FirebirdGuardianDefaultInstance - ok
06:40:53.0890 0464 FirebirdServerDefaultInstance - ok
06:40:53.0953 0464 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
06:40:53.0968 0464 FLEXnet Licensing Service - ok
06:40:53.0984 0464 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
06:40:53.0984 0464 Flpydisk - ok
06:40:54.0031 0464 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
06:40:54.0031 0464 FltMgr - ok
06:40:54.0062 0464 [ 1CA2BBC238CC34CF2CB19B4134232611 ] FMMService C:\PROGRA~1\MOBILI~1\FMMSER~1.EXE
06:40:54.0062 0464 FMMService - ok
06:40:54.0109 0464 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
06:40:54.0125 0464 FontCache3.0.0.0 - ok
06:40:54.0125 0464 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
06:40:54.0125 0464 Fs_Rec - ok
06:40:54.0156 0464 [ 3F9F4FE3A17C5F6023088F86A8551749 ] ft1000 C:\WINDOWS\system32\DRIVERS\ft1000.sys
06:40:54.0156 0464 ft1000 - ok
06:40:54.0171 0464 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
06:40:54.0171 0464 Ftdisk - ok
06:40:54.0203 0464 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\WINDOWS\system32\giveio.sys
06:40:54.0203 0464 giveio - ok
06:40:54.0218 0464 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
06:40:54.0218 0464 Gpc - ok
06:40:54.0234 0464 [ C807DE3B18B7F638DCA7C235B00900AC ] GTwinUSB C:\WINDOWS\system32\Drivers\GTwinUSB.sys
06:40:54.0234 0464 GTwinUSB - ok
06:40:54.0250 0464 [ 0E1FD1EA2837D6B7A1D7B6C928014D05 ] guardian2 C:\WINDOWS\system32\Drivers\oz776.sys
06:40:54.0250 0464 guardian2 - ok
06:40:54.0328 0464 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
06:40:54.0328 0464 gupdate - ok
06:40:54.0328 0464 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
06:40:54.0328 0464 gupdatem - ok
06:40:54.0359 0464 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
06:40:54.0359 0464 gusvc - ok
06:40:54.0390 0464 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
06:40:54.0390 0464 HDAudBus - ok
06:40:54.0453 0464 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
06:40:54.0453 0464 helpsvc - ok
06:40:54.0484 0464 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
06:40:54.0484 0464 HidServ - ok
06:40:54.0484 0464 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
06:40:54.0484 0464 hidusb - ok
06:40:54.0515 0464 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
06:40:54.0515 0464 hkmsvc - ok
06:40:54.0515 0464 hpn - ok
06:40:54.0546 0464 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
06:40:54.0546 0464 HPZid412 - ok
06:40:54.0562 0464 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
06:40:54.0562 0464 HPZipr12 - ok
06:40:54.0578 0464 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
06:40:54.0578 0464 HPZius12 - ok
06:40:54.0625 0464 [ B1526810210980BED9D22315946C919D ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
06:40:54.0625 0464 HSFHWAZL - ok
06:40:54.0656 0464 [ DDBD528E60F5961C142A490DC4EA7780 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
06:40:54.0671 0464 HSF_DPV - ok
06:40:54.0703 0464 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
06:40:54.0703 0464 HTTP - ok
06:40:54.0734 0464 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
06:40:54.0734 0464 HTTPFilter - ok
06:40:54.0750 0464 [ 3170044AA8090F80839D3D4330BF733A ] huawei_cdcacm C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys
06:40:54.0765 0464 huawei_cdcacm - ok
06:40:54.0796 0464 [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys
06:40:54.0796 0464 huawei_enumerator - ok
06:40:54.0812 0464 i2omgmt - ok
06:40:54.0828 0464 i2omp - ok
06:40:54.0859 0464 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
06:40:54.0859 0464 i8042prt - ok
06:40:54.0921 0464 [ 6F73A1B7BA1DC2D7EBCA96C21F8B5FD8 ] Iap C:\Program Files\Dell\OpenManage\Client\Iap.exe
06:40:54.0921 0464 Iap - ok
06:40:55.0000 0464 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:40:55.0000 0464 idsvc - ok
06:40:55.0015 0464 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
06:40:55.0015 0464 Imapi - ok
06:40:55.0046 0464 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
06:40:55.0046 0464 ImapiService - ok
06:40:55.0062 0464 ini910u - ok
06:40:55.0062 0464 IntelIde - ok
06:40:55.0078 0464 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
06:40:55.0078 0464 intelppm - ok
06:40:55.0093 0464 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
06:40:55.0093 0464 Ip6Fw - ok
06:40:55.0109 0464 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
06:40:55.0109 0464 IpFilterDriver - ok
06:40:55.0140 0464 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
06:40:55.0140 0464 IpInIp - ok
06:40:55.0171 0464 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
06:40:55.0171 0464 IpNat - ok
06:40:55.0187 0464 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
06:40:55.0187 0464 IPSec - ok
06:40:55.0218 0464 [ A2C9E03FBC87B6EA82DB90407273DC01 ] IpwP C:\WINDOWS\system32\DRIVERS\ipwpnet.sys
06:40:55.0218 0464 IpwP - ok
06:40:55.0234 0464 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
06:40:55.0234 0464 IRENUM - ok
06:40:55.0250 0464 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
06:40:55.0250 0464 isapnp - ok
06:40:55.0265 0464 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
06:40:55.0265 0464 Kbdclass - ok
06:40:55.0281 0464 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
06:40:55.0281 0464 kbdhid - ok
06:40:55.0312 0464 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
06:40:55.0312 0464 kmixer - ok
06:40:55.0343 0464 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
06:40:55.0343 0464 KSecDD - ok
06:40:55.0375 0464 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
06:40:55.0375 0464 lanmanserver - ok
06:40:55.0406 0464 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
06:40:55.0406 0464 lanmanworkstation - ok
06:40:55.0421 0464 lbrtfdc - ok
06:40:55.0468 0464 [ D27DD0015DCECF445F229020D263392A ] LBTServ C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
06:40:55.0468 0464 LBTServ - ok
06:40:55.0500 0464 [ 597D79382C154CEDB638A65012925A23 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
06:40:55.0500 0464 LHidFilt - ok
06:40:55.0531 0464 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
06:40:55.0531 0464 LmHosts - ok
06:40:55.0531 0464 [ 9EAD053D28182BD6ACB19D5F58202194 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
06:40:55.0531 0464 LMouFilt - ok
06:40:55.0562 0464 [ 931D2DD3485FC045766EDDDB6405F9DC ] LUsbFilt C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
06:40:55.0562 0464 LUsbFilt - ok
06:40:55.0593 0464 [ 0B058116D3D4ECCA7DED38F16E0581B2 ] massfilter C:\WINDOWS\system32\drivers\massfilter.sys
06:40:55.0593 0464 massfilter - ok
06:40:55.0625 0464 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
06:40:55.0640 0464 mdmxsdk - ok
06:40:55.0656 0464 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
06:40:55.0656 0464 Messenger - ok
06:40:55.0671 0464 [ D96EA49AB9A9174331BC023FD0CADC18 ] mirrorv3 C:\WINDOWS\system32\DRIVERS\rminiv3.sys
06:40:55.0671 0464 mirrorv3 - ok
06:40:55.0703 0464 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
06:40:55.0703 0464 mnmdd - ok
06:40:55.0734 0464 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
06:40:55.0734 0464 mnmsrvc - ok
06:40:55.0765 0464 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
06:40:55.0765 0464 Modem - ok
06:40:55.0765 0464 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
06:40:55.0765 0464 Mouclass - ok
06:40:55.0796 0464 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
06:40:55.0796 0464 mouhid - ok
06:40:55.0796 0464 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
06:40:55.0812 0464 MountMgr - ok
06:40:55.0843 0464 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
06:40:55.0843 0464 MozillaMaintenance - ok
06:40:55.0843 0464 mraid35x - ok
06:40:55.0875 0464 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
06:40:55.0875 0464 MRxDAV - ok
06:40:55.0906 0464 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
06:40:55.0906 0464 MRxSmb - ok
06:40:55.0937 0464 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
06:40:55.0937 0464 MSDTC - ok
06:40:55.0953 0464 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
06:40:55.0953 0464 Msfs - ok
06:40:55.0968 0464 MSIServer - ok
06:40:55.0968 0464 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
06:40:55.0968 0464 MSKSSRV - ok
06:40:56.0000 0464 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
06:40:56.0000 0464 MSPCLOCK - ok
06:40:56.0015 0464 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
06:40:56.0015 0464 MSPQM - ok
06:40:56.0031 0464 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
06:40:56.0031 0464 mssmbios - ok
06:40:56.0046 0464 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
06:40:56.0046 0464 Mup - ok
06:40:56.0093 0464 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
06:40:56.0093 0464 napagent - ok
06:40:56.0109 0464 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
06:40:56.0109 0464 NDIS - ok
06:40:56.0140 0464 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
06:40:56.0140 0464 NdisTapi - ok
06:40:56.0156 0464 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
06:40:56.0156 0464 Ndisuio - ok
06:40:56.0171 0464 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
06:40:56.0171 0464 NdisWan - ok
06:40:56.0203 0464 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
06:40:56.0203 0464 NDProxy - ok
06:40:56.0296 0464 [ 6D4028D458EAAA1782099750790DC8C9 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
06:40:56.0312 0464 Nero BackItUp Scheduler 3 - ok
06:40:56.0328 0464 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
06:40:56.0328 0464 NetBIOS - ok
06:40:56.0359 0464 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
06:40:56.0359 0464 NetBT - ok
06:40:56.0390 0464 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
06:40:56.0390 0464 NetDDE - ok
06:40:56.0406 0464 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
06:40:56.0406 0464 NetDDEdsdm - ok
06:40:56.0437 0464 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
06:40:56.0437 0464 Netlogon - ok
06:40:56.0453 0464 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
06:40:56.0453 0464 Netman - ok
06:40:56.0500 0464 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:40:56.0500 0464 NetTcpPortSharing - ok
06:40:56.0578 0464 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
06:40:56.0593 0464 NETw4x32 - ok
06:40:56.0609 0464 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
06:40:56.0609 0464 NIC1394 - ok
06:40:56.0671 0464 [ C82DCFCC00C10B91346ABB953FF79EE8 ] NICCONFIGSVC C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
06:40:56.0671 0464 NICCONFIGSVC - ok
06:40:56.0687 0464 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
06:40:56.0703 0464 Nla - ok
06:40:56.0765 0464 [ 1BEF5464C06F4AF0C704378824C52ADB ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
06:40:56.0765 0464 NMIndexingService - ok
06:40:56.0796 0464 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
06:40:56.0796 0464 Npfs - ok
06:40:56.0828 0464 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
06:40:56.0843 0464 Ntfs - ok
06:40:56.0859 0464 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
06:40:56.0859 0464 NtLmSsp - ok
06:40:56.0906 0464 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
06:40:56.0906 0464 NtmsSvc - ok
posilam report. Program nasel jeden threat. Cure (lecit)se mi neobjevilo. Mam ny vyber preskocit, kopirovat do karanteny, nebo smazat.
Rozdeluji na dve casti kvuli vice znakum
06:40:46.0140 3416 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
06:40:46.0265 3416 ============================================================
06:40:46.0265 3416 Current date / time: 2012/10/22 06:40:46.0265
06:40:46.0265 3416 SystemInfo:
06:40:46.0265 3416
06:40:46.0265 3416 OS Version: 5.1.2600 ServicePack: 3.0
06:40:46.0265 3416 Product type: Workstation
06:40:46.0265 3416 ComputerName: DELL
06:40:46.0265 3416 UserName: AKE
06:40:46.0265 3416 Windows directory: C:\WINDOWS
06:40:46.0265 3416 System windows directory: C:\WINDOWS
06:40:46.0265 3416 Processor architecture: Intel x86
06:40:46.0265 3416 Number of processors: 2
06:40:46.0265 3416 Page size: 0x1000
06:40:46.0265 3416 Boot type: Normal boot
06:40:46.0265 3416 ============================================================
06:40:47.0390 3416 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
06:40:47.0406 3416 ============================================================
06:40:47.0406 3416 \Device\Harddisk0\DR0:
06:40:47.0406 3416 MBR partitions:
06:40:47.0406 3416 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x36E8E, BlocksNum 0x3A962F0
06:40:47.0406 3416 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x3ACD1BD, BlocksNum 0xA4C6604
06:40:47.0406 3416 ============================================================
06:40:47.0437 3416 D: <-> \Device\Harddisk0\DR0\Partition2
06:40:47.0468 3416 C: <-> \Device\Harddisk0\DR0\Partition1
06:40:47.0468 3416 ============================================================
06:40:47.0468 3416 Initialize success
06:40:47.0468 3416 ============================================================
06:40:48.0546 0464 ============================================================
06:40:48.0546 0464 Scan started
06:40:48.0546 0464 Mode: Manual;
06:40:48.0546 0464 ============================================================
06:40:49.0671 0464 ================ Scan system memory ========================
06:40:50.0953 0464 System memory - ok
06:40:50.0953 0464 ================ Scan services =============================
06:40:51.0062 0464 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
06:40:51.0062 0464 !SASCORE - ok
06:40:51.0359 0464 [ EBD7BD25C1D33B10D2251194C300EE85 ] 602XML Updater C:\Program Files\Common Files\soft602\602updsvc\602updsvc.exe
06:40:51.0359 0464 602XML Updater - ok
06:40:51.0453 0464 [ 1F61CACACB521215F39061789147968C ] a347bus C:\WINDOWS\system32\DRIVERS\a347bus.sys
06:40:51.0468 0464 a347bus - ok
06:40:51.0484 0464 [ 113E4B318BBAA7483CA4E582A4D63F49 ] a347scsi C:\WINDOWS\system32\Drivers\a347scsi.sys
06:40:51.0484 0464 a347scsi - ok
06:40:51.0531 0464 [ 0629361FAC4576BA48AB39F4903DCE9E ] aawservice C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
06:40:51.0546 0464 aawservice - ok
06:40:51.0546 0464 Abiosdsk - ok
06:40:51.0562 0464 abp480n5 - ok
06:40:51.0593 0464 [ 4FE34F1F3126B61FCC6B2043AA8112C9 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
06:40:51.0593 0464 ACPI - ok
06:40:51.0625 0464 [ AFDFF022A01F0B11C776F0860C3B282F ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
06:40:51.0625 0464 ACPIEC - ok
06:40:51.0656 0464 [ B6A0F723A54884E77FCE0F69083F90C9 ] ACSSCR C:\WINDOWS\system32\DRIVERS\a38usb.sys
06:40:51.0656 0464 ACSSCR - ok
06:40:51.0671 0464 [ 05BDD706A847BBFA9FD5948CD636EB1A ] Ad-Watch Connect Filter C:\WINDOWS\system32\drivers\NSDriver.sys
06:40:51.0671 0464 Ad-Watch Connect Filter - ok
06:40:51.0734 0464 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
06:40:51.0734 0464 AdobeFlashPlayerUpdateSvc - ok
06:40:51.0750 0464 adpu160m - ok
06:40:51.0781 0464 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
06:40:51.0781 0464 aec - ok
06:40:51.0812 0464 [ A1AD1A4A9F18D900CA9C93FA3EFDCB56 ] AegisP C:\WINDOWS\system32\DRIVERS\AegisP.sys
06:40:51.0812 0464 AegisP - ok
06:40:51.0843 0464 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
06:40:51.0843 0464 AFD - ok
06:40:51.0843 0464 Aha154x - ok
06:40:51.0859 0464 aic78u2 - ok
06:40:51.0859 0464 aic78xx - ok
06:40:51.0906 0464 [ E0A6FA244B8624D78FE5FF6F56A33BAE ] Alerter C:\WINDOWS\system32\alrsvc.dll
06:40:51.0906 0464 Alerter - ok
06:40:51.0921 0464 [ 88842DE939A827577BF24243699AC80A ] ALG C:\WINDOWS\System32\alg.exe
06:40:51.0921 0464 ALG - ok
06:40:51.0937 0464 AliIde - ok
06:40:51.0984 0464 [ 950305BB9AB6207C3E53F90E4B6BC787 ] ameisvc C:\Program Files\T-Mobile\Web'n'walk Manager\ameisvc.exe
06:40:51.0984 0464 ameisvc - ok
06:40:51.0984 0464 amsint - ok
06:40:52.0015 0464 [ B8D65DA679A4A8D048783EDE2691B5D4 ] ApfiltrService C:\WINDOWS\system32\DRIVERS\Apfiltr.sys
06:40:52.0031 0464 ApfiltrService - ok
06:40:52.0046 0464 [ EC94E05B76D033B74394E7B2175103CF ] APPDRV C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
06:40:52.0062 0464 APPDRV - ok
06:40:52.0078 0464 [ 6B8E7A90E576D4FE308F97C69060A171 ] AppMgmt C:\WINDOWS\System32\appmgmts.dll
06:40:52.0093 0464 AppMgmt - ok
06:40:52.0125 0464 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
06:40:52.0125 0464 Arp1394 - ok
06:40:52.0125 0464 asc - ok
06:40:52.0125 0464 asc3350p - ok
06:40:52.0140 0464 asc3550 - ok
06:40:52.0171 0464 [ 5B01AF89D16D562825C4DB4530F20CBB ] ASPI32 C:\WINDOWS\system32\drivers\ASPI32.sys
06:40:52.0171 0464 ASPI32 - ok
06:40:52.0250 0464 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
06:40:52.0250 0464 aspnet_state - ok
06:40:52.0265 0464 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
06:40:52.0265 0464 AsyncMac - ok
06:40:52.0281 0464 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
06:40:52.0281 0464 Suspicious file (NoAccess): C:\WINDOWS\system32\DRIVERS\atapi.sys. md5: CDFE4411A69C224BD1D11B2DA92DAC51
06:40:52.0281 0464 atapi ( LockedFile.Multi.Generic ) - warning
06:40:52.0281 0464 atapi - detected LockedFile.Multi.Generic (1)
06:40:52.0296 0464 Atdisk - ok
06:40:52.0296 0464 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
06:40:52.0296 0464 Atmarpc - ok
06:40:52.0312 0464 [ DE31B88962A8645DBA5A37B993E7B0F1 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
06:40:52.0312 0464 AudioSrv - ok
06:40:52.0343 0464 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
06:40:52.0343 0464 audstub - ok
06:40:52.0375 0464 [ F96038AA1EC4013A93D2420FC689D1E9 ] b57w2k C:\WINDOWS\system32\DRIVERS\b57xp32.sys
06:40:52.0375 0464 b57w2k - ok
06:40:52.0390 0464 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
06:40:52.0390 0464 Beep - ok
06:40:52.0421 0464 [ 19395D092FD85DDC2D9C7729CF5A2AC8 ] BITS C:\WINDOWS\system32\qmgr.dll
06:40:52.0437 0464 BITS - ok
06:40:52.0453 0464 [ 89E739BBA5F636297EA5B5F811189E06 ] Browser C:\WINDOWS\System32\browser.dll
06:40:52.0468 0464 Browser - ok
06:40:52.0468 0464 catchme - ok
06:40:52.0484 0464 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
06:40:52.0484 0464 cbidf2k - ok
06:40:52.0500 0464 cd20xrnt - ok
06:40:52.0500 0464 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
06:40:52.0500 0464 Cdaudio - ok
06:40:52.0515 0464 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
06:40:52.0515 0464 Cdfs - ok
06:40:52.0531 0464 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
06:40:52.0531 0464 Cdrom - ok
06:40:52.0562 0464 [ 84853B3FD012251690570E9E7E43343F ] cercsr6 C:\WINDOWS\system32\drivers\cercsr6.sys
06:40:52.0562 0464 cercsr6 - ok
06:40:52.0562 0464 Changer - ok
06:40:52.0593 0464 [ E390DC1D7C461D7D56EC53402F329928 ] CiSvc C:\WINDOWS\system32\cisvc.exe
06:40:52.0593 0464 CiSvc - ok
06:40:52.0609 0464 [ 064507A8DFA8C5C7E2FFDDD3E6F424FA ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
06:40:52.0609 0464 ClipSrv - ok
06:40:52.0640 0464 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
06:40:52.0640 0464 clr_optimization_v2.0.50727_32 - ok
06:40:52.0656 0464 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
06:40:52.0656 0464 CmBatt - ok
06:40:52.0656 0464 CmdIde - ok
06:40:52.0687 0464 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
06:40:52.0687 0464 Compbatt - ok
06:40:52.0687 0464 COMSysApp - ok
06:40:52.0703 0464 Cpqarray - ok
06:40:52.0734 0464 [ F3AB0933CBD166D271992F411C27CCAF ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
06:40:52.0734 0464 CryptSvc - ok
06:40:52.0765 0464 [ 8E1945984E147562F9F08E1D344A69CC ] CSRBC C:\WINDOWS\system32\Drivers\csrbcxp.sys
06:40:52.0765 0464 CSRBC - ok
06:40:52.0765 0464 dac2w2k - ok
06:40:52.0781 0464 dac960nt - ok
06:40:52.0812 0464 [ BE27674D1CBC3214AEC84B4336A38BBF ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
06:40:52.0828 0464 DcomLaunch - ok
06:40:52.0859 0464 [ 8C9A53E285AC5E6704844D0459EC85BE ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
06:40:52.0875 0464 Dhcp - ok
06:40:52.0890 0464 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
06:40:52.0890 0464 Disk - ok
06:40:52.0890 0464 dmadmin - ok
06:40:52.0937 0464 [ DB5FD2BF5B07DC54BFCB3664FF05BD7C ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
06:40:52.0953 0464 dmboot - ok
06:40:52.0968 0464 [ FFF1720AF51171F32F1EAD5CF71F2810 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
06:40:52.0984 0464 dmio - ok
06:40:53.0000 0464 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
06:40:53.0000 0464 dmload - ok
06:40:53.0031 0464 [ 2BFEFE9E865655A76982F050450B9591 ] dmserver C:\WINDOWS\System32\dmserver.dll
06:40:53.0031 0464 dmserver - ok
06:40:53.0046 0464 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
06:40:53.0062 0464 DMusic - ok
06:40:53.0078 0464 [ DFAA406BF19F4EE806A6F8D4342137F7 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
06:40:53.0093 0464 Dnscache - ok
06:40:53.0109 0464 [ 4A3E2BD20157A0946751229E92EB8621 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
06:40:53.0125 0464 Dot3svc - ok
06:40:53.0125 0464 dpti2o - ok
06:40:53.0171 0464 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
06:40:53.0171 0464 drmkaud - ok
06:40:53.0203 0464 [ 549734664886D91222969845E4311D1B ] DXEC01 C:\WINDOWS\system32\drivers\dxec01.sys
06:40:53.0203 0464 DXEC01 - ok
06:40:53.0234 0464 [ 9309C5C9831203436E64CF2AE605C5D7 ] eamon C:\WINDOWS\system32\DRIVERS\eamon.sys
06:40:53.0234 0464 eamon - ok
06:40:53.0265 0464 [ 0887D9C2BE8D940778CAD1E3B85F2A41 ] EapHost C:\WINDOWS\System32\eapsvc.dll
06:40:53.0265 0464 EapHost - ok
06:40:53.0281 0464 [ DEFF87F04AB5F6DD5EDF2B80853BBE10 ] ehdrv C:\WINDOWS\system32\DRIVERS\ehdrv.sys
06:40:53.0281 0464 ehdrv - ok
06:40:53.0375 0464 [ C7BB95CF9631AA401E4ADED1648F6AF7 ] ekrn C:\Program Files\ESET\ESET Smart Security\ekrn.exe
06:40:53.0390 0464 ekrn - ok
06:40:53.0421 0464 [ 5BA193CA0AE31209AAA39939CE6736B2 ] epfw C:\WINDOWS\system32\DRIVERS\epfw.sys
06:40:53.0421 0464 epfw - ok
06:40:53.0437 0464 [ 75D3BCD3E0EDED0AB0F96D9A10FF01C9 ] Epfwndis C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
06:40:53.0437 0464 Epfwndis - ok
06:40:53.0453 0464 [ DC64F26F35E32C9472BBF8ACD84060D3 ] epfwtdi C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
06:40:53.0453 0464 epfwtdi - ok
06:40:53.0500 0464 [ A2A4912798F2BE706ABADD3D30800D16 ] ERSvc C:\WINDOWS\System32\ersvc.dll
06:40:53.0500 0464 ERSvc - ok
06:40:53.0531 0464 [ 076B1A923259F7A10998FA234A01D629 ] Ethpdrv C:\WINDOWS\system32\DRIVERS\ethpdrv.sys
06:40:53.0531 0464 Ethpdrv - ok
06:40:53.0562 0464 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] Eventlog C:\WINDOWS\system32\services.exe
06:40:53.0578 0464 Eventlog - ok
06:40:53.0609 0464 [ A371F11EF07653591C8DE26AFB13CE7F ] EventSystem C:\WINDOWS\system32\es.dll
06:40:53.0609 0464 EventSystem - ok
06:40:53.0703 0464 [ E71B03FF6B819AE1A286AA27E956D523 ] EvtEng C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
06:40:53.0703 0464 EvtEng - ok
06:40:53.0734 0464 [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys
06:40:53.0734 0464 ew_hwusbdev - ok
06:40:53.0781 0464 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
06:40:53.0781 0464 Fastfat - ok
06:40:53.0812 0464 [ EE9A2B9EA968A792A053C9D1A86BF870 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
06:40:53.0812 0464 FastUserSwitchingCompatibility - ok
06:40:53.0828 0464 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
06:40:53.0828 0464 Fdc - ok
06:40:53.0843 0464 [ AC366695A0796560AA37215AD5762AAF ] Fips C:\WINDOWS\system32\drivers\Fips.sys
06:40:53.0859 0464 Fips - ok
06:40:53.0890 0464 FirebirdGuardianDefaultInstance - ok
06:40:53.0890 0464 FirebirdServerDefaultInstance - ok
06:40:53.0953 0464 [ 227846995AFEEFA70D328BF5334A86A5 ] FLEXnet Licensing Service C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
06:40:53.0968 0464 FLEXnet Licensing Service - ok
06:40:53.0984 0464 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
06:40:53.0984 0464 Flpydisk - ok
06:40:54.0031 0464 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
06:40:54.0031 0464 FltMgr - ok
06:40:54.0062 0464 [ 1CA2BBC238CC34CF2CB19B4134232611 ] FMMService C:\PROGRA~1\MOBILI~1\FMMSER~1.EXE
06:40:54.0062 0464 FMMService - ok
06:40:54.0109 0464 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
06:40:54.0125 0464 FontCache3.0.0.0 - ok
06:40:54.0125 0464 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
06:40:54.0125 0464 Fs_Rec - ok
06:40:54.0156 0464 [ 3F9F4FE3A17C5F6023088F86A8551749 ] ft1000 C:\WINDOWS\system32\DRIVERS\ft1000.sys
06:40:54.0156 0464 ft1000 - ok
06:40:54.0171 0464 [ 4E664D8541DB4A66B73A24257E322E1F ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
06:40:54.0171 0464 Ftdisk - ok
06:40:54.0203 0464 [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio C:\WINDOWS\system32\giveio.sys
06:40:54.0203 0464 giveio - ok
06:40:54.0218 0464 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
06:40:54.0218 0464 Gpc - ok
06:40:54.0234 0464 [ C807DE3B18B7F638DCA7C235B00900AC ] GTwinUSB C:\WINDOWS\system32\Drivers\GTwinUSB.sys
06:40:54.0234 0464 GTwinUSB - ok
06:40:54.0250 0464 [ 0E1FD1EA2837D6B7A1D7B6C928014D05 ] guardian2 C:\WINDOWS\system32\Drivers\oz776.sys
06:40:54.0250 0464 guardian2 - ok
06:40:54.0328 0464 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
06:40:54.0328 0464 gupdate - ok
06:40:54.0328 0464 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
06:40:54.0328 0464 gupdatem - ok
06:40:54.0359 0464 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
06:40:54.0359 0464 gusvc - ok
06:40:54.0390 0464 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
06:40:54.0390 0464 HDAudBus - ok
06:40:54.0453 0464 [ FCFE31FB75F8A6295B6B0AF87A626282 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
06:40:54.0453 0464 helpsvc - ok
06:40:54.0484 0464 [ 00E25EE90166B3E1BE6E74AEBF858306 ] HidServ C:\WINDOWS\System32\hidserv.dll
06:40:54.0484 0464 HidServ - ok
06:40:54.0484 0464 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys
06:40:54.0484 0464 hidusb - ok
06:40:54.0515 0464 [ 7A6B320928F86BC851530D63C82965D9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
06:40:54.0515 0464 hkmsvc - ok
06:40:54.0515 0464 hpn - ok
06:40:54.0546 0464 [ 30CA91E657CEDE2F95359D6EF186F650 ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
06:40:54.0546 0464 HPZid412 - ok
06:40:54.0562 0464 [ EFD31AFA752AA7C7BBB57BCBE2B01C78 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
06:40:54.0562 0464 HPZipr12 - ok
06:40:54.0578 0464 [ 7AC43C38CA8FD7ED0B0A4466F753E06E ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
06:40:54.0578 0464 HPZius12 - ok
06:40:54.0625 0464 [ B1526810210980BED9D22315946C919D ] HSFHWAZL C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
06:40:54.0625 0464 HSFHWAZL - ok
06:40:54.0656 0464 [ DDBD528E60F5961C142A490DC4EA7780 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
06:40:54.0671 0464 HSF_DPV - ok
06:40:54.0703 0464 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
06:40:54.0703 0464 HTTP - ok
06:40:54.0734 0464 [ 58FE2F2DA3BC5573F4A35B3760D3125F ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
06:40:54.0734 0464 HTTPFilter - ok
06:40:54.0750 0464 [ 3170044AA8090F80839D3D4330BF733A ] huawei_cdcacm C:\WINDOWS\system32\DRIVERS\ew_jucdcacm.sys
06:40:54.0765 0464 huawei_cdcacm - ok
06:40:54.0796 0464 [ F44461E66F1B7DD267957FE9BAA63ED0 ] huawei_enumerator C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys
06:40:54.0796 0464 huawei_enumerator - ok
06:40:54.0812 0464 i2omgmt - ok
06:40:54.0828 0464 i2omp - ok
06:40:54.0859 0464 [ C528E27945367191E7BAE364930B6932 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
06:40:54.0859 0464 i8042prt - ok
06:40:54.0921 0464 [ 6F73A1B7BA1DC2D7EBCA96C21F8B5FD8 ] Iap C:\Program Files\Dell\OpenManage\Client\Iap.exe
06:40:54.0921 0464 Iap - ok
06:40:55.0000 0464 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
06:40:55.0000 0464 idsvc - ok
06:40:55.0015 0464 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
06:40:55.0015 0464 Imapi - ok
06:40:55.0046 0464 [ F7B93AAFAD33B2320954C17E26C8D361 ] ImapiService C:\WINDOWS\system32\imapi.exe
06:40:55.0046 0464 ImapiService - ok
06:40:55.0062 0464 ini910u - ok
06:40:55.0062 0464 IntelIde - ok
06:40:55.0078 0464 [ 27B290D632AF2CF3CF40BFDDB7370985 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
06:40:55.0078 0464 intelppm - ok
06:40:55.0093 0464 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
06:40:55.0093 0464 Ip6Fw - ok
06:40:55.0109 0464 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
06:40:55.0109 0464 IpFilterDriver - ok
06:40:55.0140 0464 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
06:40:55.0140 0464 IpInIp - ok
06:40:55.0171 0464 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
06:40:55.0171 0464 IpNat - ok
06:40:55.0187 0464 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
06:40:55.0187 0464 IPSec - ok
06:40:55.0218 0464 [ A2C9E03FBC87B6EA82DB90407273DC01 ] IpwP C:\WINDOWS\system32\DRIVERS\ipwpnet.sys
06:40:55.0218 0464 IpwP - ok
06:40:55.0234 0464 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
06:40:55.0234 0464 IRENUM - ok
06:40:55.0250 0464 [ CC9F8A2D60AED1A51A3AC34C59B987AE ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
06:40:55.0250 0464 isapnp - ok
06:40:55.0265 0464 [ 1B6162FE7F66B1A71A4B70F941C4AA9B ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
06:40:55.0265 0464 Kbdclass - ok
06:40:55.0281 0464 [ 86C8F23616C6C6E5B2776901C17B945B ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
06:40:55.0281 0464 kbdhid - ok
06:40:55.0312 0464 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
06:40:55.0312 0464 kmixer - ok
06:40:55.0343 0464 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
06:40:55.0343 0464 KSecDD - ok
06:40:55.0375 0464 [ 3428E8F86F8ADD36B42FB23542C7B3E4 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
06:40:55.0375 0464 lanmanserver - ok
06:40:55.0406 0464 [ 936C1D110232D23B621CB0196E4F80F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
06:40:55.0406 0464 lanmanworkstation - ok
06:40:55.0421 0464 lbrtfdc - ok
06:40:55.0468 0464 [ D27DD0015DCECF445F229020D263392A ] LBTServ C:\Program Files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
06:40:55.0468 0464 LBTServ - ok
06:40:55.0500 0464 [ 597D79382C154CEDB638A65012925A23 ] LHidFilt C:\WINDOWS\system32\DRIVERS\LHidFilt.Sys
06:40:55.0500 0464 LHidFilt - ok
06:40:55.0531 0464 [ 0AB159F536E3E8F7F07113702A07CCA5 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
06:40:55.0531 0464 LmHosts - ok
06:40:55.0531 0464 [ 9EAD053D28182BD6ACB19D5F58202194 ] LMouFilt C:\WINDOWS\system32\DRIVERS\LMouFilt.Sys
06:40:55.0531 0464 LMouFilt - ok
06:40:55.0562 0464 [ 931D2DD3485FC045766EDDDB6405F9DC ] LUsbFilt C:\WINDOWS\system32\Drivers\LUsbFilt.Sys
06:40:55.0562 0464 LUsbFilt - ok
06:40:55.0593 0464 [ 0B058116D3D4ECCA7DED38F16E0581B2 ] massfilter C:\WINDOWS\system32\drivers\massfilter.sys
06:40:55.0593 0464 massfilter - ok
06:40:55.0625 0464 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
06:40:55.0640 0464 mdmxsdk - ok
06:40:55.0656 0464 [ 221CD1C815B8A6B79389C3F5D1018DE8 ] Messenger C:\WINDOWS\System32\msgsvc.dll
06:40:55.0656 0464 Messenger - ok
06:40:55.0671 0464 [ D96EA49AB9A9174331BC023FD0CADC18 ] mirrorv3 C:\WINDOWS\system32\DRIVERS\rminiv3.sys
06:40:55.0671 0464 mirrorv3 - ok
06:40:55.0703 0464 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
06:40:55.0703 0464 mnmdd - ok
06:40:55.0734 0464 [ 9A57D046F88F4B69751B11FD40088A61 ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
06:40:55.0734 0464 mnmsrvc - ok
06:40:55.0765 0464 [ 44032B0C6D9954D3FD26438330B99EE7 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
06:40:55.0765 0464 Modem - ok
06:40:55.0765 0464 [ 4CB582831DBDE63CE43B45D771218374 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
06:40:55.0765 0464 Mouclass - ok
06:40:55.0796 0464 [ BB269EBA740737AB749B214D568B6812 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
06:40:55.0796 0464 mouhid - ok
06:40:55.0796 0464 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
06:40:55.0812 0464 MountMgr - ok
06:40:55.0843 0464 [ CB8AF049AC9BE419A77ADAE288673359 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
06:40:55.0843 0464 MozillaMaintenance - ok
06:40:55.0843 0464 mraid35x - ok
06:40:55.0875 0464 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
06:40:55.0875 0464 MRxDAV - ok
06:40:55.0906 0464 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
06:40:55.0906 0464 MRxSmb - ok
06:40:55.0937 0464 [ 6DB4D1521CABA9A5FFAB54ADE0AE867D ] MSDTC C:\WINDOWS\system32\msdtc.exe
06:40:55.0937 0464 MSDTC - ok
06:40:55.0953 0464 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
06:40:55.0953 0464 Msfs - ok
06:40:55.0968 0464 MSIServer - ok
06:40:55.0968 0464 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
06:40:55.0968 0464 MSKSSRV - ok
06:40:56.0000 0464 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
06:40:56.0000 0464 MSPCLOCK - ok
06:40:56.0015 0464 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
06:40:56.0015 0464 MSPQM - ok
06:40:56.0031 0464 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
06:40:56.0031 0464 mssmbios - ok
06:40:56.0046 0464 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
06:40:56.0046 0464 Mup - ok
06:40:56.0093 0464 [ 6EA362E9DB03D44F6B996F4D8BE237E9 ] napagent C:\WINDOWS\System32\qagentrt.dll
06:40:56.0093 0464 napagent - ok
06:40:56.0109 0464 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
06:40:56.0109 0464 NDIS - ok
06:40:56.0140 0464 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
06:40:56.0140 0464 NdisTapi - ok
06:40:56.0156 0464 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
06:40:56.0156 0464 Ndisuio - ok
06:40:56.0171 0464 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
06:40:56.0171 0464 NdisWan - ok
06:40:56.0203 0464 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
06:40:56.0203 0464 NDProxy - ok
06:40:56.0296 0464 [ 6D4028D458EAAA1782099750790DC8C9 ] Nero BackItUp Scheduler 3 C:\Program Files\Nero\Nero8\Nero BackItUp\NBService.exe
06:40:56.0312 0464 Nero BackItUp Scheduler 3 - ok
06:40:56.0328 0464 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
06:40:56.0328 0464 NetBIOS - ok
06:40:56.0359 0464 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
06:40:56.0359 0464 NetBT - ok
06:40:56.0390 0464 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDE C:\WINDOWS\system32\netdde.exe
06:40:56.0390 0464 NetDDE - ok
06:40:56.0406 0464 [ 933DE774986EC85E48210C44AB431DE6 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
06:40:56.0406 0464 NetDDEdsdm - ok
06:40:56.0437 0464 [ ED0A176354487CEED65B80A7148AB739 ] Netlogon C:\WINDOWS\system32\lsass.exe
06:40:56.0437 0464 Netlogon - ok
06:40:56.0453 0464 [ 72E1E9E2977BE08BDEEDB6D8FD9D4D40 ] Netman C:\WINDOWS\System32\netman.dll
06:40:56.0453 0464 Netman - ok
06:40:56.0500 0464 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
06:40:56.0500 0464 NetTcpPortSharing - ok
06:40:56.0578 0464 [ B5AB1108B377B5F3D37409FABDA01453 ] NETw4x32 C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
06:40:56.0593 0464 NETw4x32 - ok
06:40:56.0609 0464 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
06:40:56.0609 0464 NIC1394 - ok
06:40:56.0671 0464 [ C82DCFCC00C10B91346ABB953FF79EE8 ] NICCONFIGSVC C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
06:40:56.0671 0464 NICCONFIGSVC - ok
06:40:56.0687 0464 [ 39EE7C3BFBC64BA87CC8CF67386E814C ] Nla C:\WINDOWS\System32\mswsock.dll
06:40:56.0703 0464 Nla - ok
06:40:56.0765 0464 [ 1BEF5464C06F4AF0C704378824C52ADB ] NMIndexingService C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe
06:40:56.0765 0464 NMIndexingService - ok
06:40:56.0796 0464 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
06:40:56.0796 0464 Npfs - ok
06:40:56.0828 0464 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
06:40:56.0843 0464 Ntfs - ok
06:40:56.0859 0464 [ ED0A176354487CEED65B80A7148AB739 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
06:40:56.0859 0464 NtLmSsp - ok
06:40:56.0906 0464 [ 023DD70573D644F3D9C8B1258A7BFD08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
06:40:56.0906 0464 NtmsSvc - ok
Re: prosim o kontrolu-blbne pripojeni
06:40:56.0921 0464 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
06:40:56.0921 0464 Null - ok
06:40:57.0140 0464 [ 8129D762CC3E3C5AB9CF2EABC377FB73 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
06:40:57.0187 0464 nv - ok
06:40:57.0250 0464 [ 9EDF6FD48A9EB4AFDF225EB9C5111DF6 ] NWADI C:\WINDOWS\system32\DRIVERS\NWADIenum.sys
06:40:57.0250 0464 NWADI - ok
06:40:57.0281 0464 [ 1A859F70728CAD712F90F9953667AD7F ] NWDellModem C:\WINDOWS\system32\DRIVERS\nwdelmdm.sys
06:40:57.0281 0464 NWDellModem - ok
06:40:57.0312 0464 [ 1A859F70728CAD712F90F9953667AD7F ] NWDellPort C:\WINDOWS\system32\DRIVERS\nwdelser.sys
06:40:57.0312 0464 NWDellPort - ok
06:40:57.0328 0464 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
06:40:57.0328 0464 NwlnkFlt - ok
06:40:57.0328 0464 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
06:40:57.0328 0464 NwlnkFwd - ok
06:40:57.0375 0464 [ AE404E89E2A936CE62A27A104894D6B4 ] O&O Defrag C:\WINDOWS\system32\oodag.exe
06:40:57.0390 0464 O&O Defrag - ok
06:40:57.0406 0464 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
06:40:57.0406 0464 ohci1394 - ok
06:40:57.0421 0464 [ 1D635B3CAAF4E6694EE917514FB3E2AC ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
06:40:57.0421 0464 omci - ok
06:40:57.0468 0464 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:40:57.0468 0464 ose - ok
06:40:57.0484 0464 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
06:40:57.0484 0464 Parport - ok
06:40:57.0484 0464 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
06:40:57.0500 0464 PartMgr - ok
06:40:57.0515 0464 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
06:40:57.0515 0464 ParVdm - ok
06:40:57.0546 0464 [ 1961590AA191B6B7DCF18A6A693AF7B8 ] PCASp50 C:\WINDOWS\system32\Drivers\PCASp50.sys
06:40:57.0546 0464 PCASp50 - ok
06:40:57.0546 0464 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
06:40:57.0546 0464 PCI - ok
06:40:57.0562 0464 PCIDump - ok
06:40:57.0578 0464 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
06:40:57.0578 0464 PCIIde - ok
06:40:57.0593 0464 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
06:40:57.0593 0464 Pcmcia - ok
06:40:57.0593 0464 PDCOMP - ok
06:40:57.0609 0464 PDFRAME - ok
06:40:57.0625 0464 PDRELI - ok
06:40:57.0640 0464 PDRFRAME - ok
06:40:57.0640 0464 perc2 - ok
06:40:57.0640 0464 perc2hib - ok
06:40:57.0656 0464 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
06:40:57.0656 0464 PlugPlay - ok
06:40:57.0687 0464 [ D31F88C5F19EEFA366A415D6BC5F2ABC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
06:40:57.0687 0464 Pml Driver HPZ12 - ok
06:40:57.0703 0464 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
06:40:57.0703 0464 PolicyAgent - ok
06:40:57.0718 0464 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
06:40:57.0718 0464 PptpMiniport - ok
06:40:57.0734 0464 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
06:40:57.0734 0464 ProtectedStorage - ok
06:40:57.0734 0464 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
06:40:57.0734 0464 PSched - ok
06:40:57.0750 0464 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
06:40:57.0750 0464 Ptilink - ok
06:40:57.0781 0464 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
06:40:57.0781 0464 PxHelp20 - ok
06:40:57.0781 0464 ql1080 - ok
06:40:57.0796 0464 Ql10wnt - ok
06:40:57.0796 0464 ql12160 - ok
06:40:57.0812 0464 ql1240 - ok
06:40:57.0828 0464 ql1280 - ok
06:40:57.0843 0464 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
06:40:57.0843 0464 RasAcd - ok
06:40:57.0875 0464 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
06:40:57.0875 0464 RasAuto - ok
06:40:57.0906 0464 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
06:40:57.0906 0464 Rasl2tp - ok
06:40:57.0937 0464 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
06:40:57.0937 0464 RasMan - ok
06:40:57.0953 0464 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
06:40:57.0968 0464 RasPppoe - ok
06:40:57.0968 0464 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
06:40:57.0984 0464 Raspti - ok
06:40:57.0984 0464 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
06:40:58.0000 0464 Rdbss - ok
06:40:58.0015 0464 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
06:40:58.0015 0464 RDPCDD - ok
06:40:58.0031 0464 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
06:40:58.0031 0464 rdpdr - ok
06:40:58.0062 0464 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
06:40:58.0062 0464 RDPWD - ok
06:40:58.0093 0464 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
06:40:58.0093 0464 RDSessMgr - ok
06:40:58.0109 0464 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
06:40:58.0109 0464 redbook - ok
06:40:58.0156 0464 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
06:40:58.0156 0464 RegSrvc - ok
06:40:58.0171 0464 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
06:40:58.0187 0464 RemoteAccess - ok
06:40:58.0187 0464 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
06:40:58.0187 0464 RemoteRegistry - ok
06:40:58.0234 0464 [ 79E740644D8D5E6057A4429F0D19A2CB ] RichVideo C:\Program Files\Cyberlink\Shared files\RichVideo.exe
06:40:58.0234 0464 RichVideo - ok
06:40:58.0265 0464 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
06:40:58.0265 0464 ROOTMODEM - ok
06:40:58.0296 0464 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
06:40:58.0296 0464 RpcLocator - ok
06:40:58.0312 0464 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
06:40:58.0312 0464 RpcSs - ok
06:40:58.0343 0464 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
06:40:58.0343 0464 RSVP - ok
06:40:58.0390 0464 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
06:40:58.0390 0464 S24EventMonitor - ok
06:40:58.0421 0464 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
06:40:58.0421 0464 s24trans - ok
06:40:58.0421 0464 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
06:40:58.0437 0464 SamSs - ok
06:40:58.0453 0464 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
06:40:58.0453 0464 SASDIFSV - ok
06:40:58.0468 0464 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
06:40:58.0468 0464 SASKUTIL - ok
06:40:58.0484 0464 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
06:40:58.0500 0464 SCardSvr - ok
06:40:58.0515 0464 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
06:40:58.0515 0464 Schedule - ok
06:40:58.0562 0464 [ 06ED7EA991838C745C8BF085C59731A7 ] SCR33X USB Smart Card Reader C:\WINDOWS\system32\DRIVERS\SCR33X2K.sys
06:40:58.0562 0464 SCR33X USB Smart Card Reader - ok
06:40:58.0593 0464 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
06:40:58.0593 0464 Secdrv - ok
06:40:58.0609 0464 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
06:40:58.0609 0464 seclogon - ok
06:40:58.0625 0464 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
06:40:58.0625 0464 SENS - ok
06:40:58.0656 0464 [ D23FC3F409FDBB2A5C230ABC137C4B45 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS
06:40:58.0656 0464 Sentinel - ok
06:40:58.0687 0464 [ 881F7E7A2A9F9E91189B4FBB70EB5F47 ] SentinelProtectionServer C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
06:40:58.0687 0464 SentinelProtectionServer - ok
06:40:58.0703 0464 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
06:40:58.0703 0464 serenum - ok
06:40:58.0734 0464 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
06:40:58.0734 0464 Serial - ok
06:40:58.0750 0464 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
06:40:58.0750 0464 Sfloppy - ok
06:40:58.0781 0464 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
06:40:58.0781 0464 SharedAccess - ok
06:40:58.0812 0464 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
06:40:58.0812 0464 ShellHWDetection - ok
06:40:58.0812 0464 Simbad - ok
06:40:58.0843 0464 [ 59A8193293AA2F0696D9F94B8BFE9D11 ] SNTNLUSB C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
06:40:58.0843 0464 SNTNLUSB - ok
06:40:58.0875 0464 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
06:40:58.0875 0464 SONYPVU1 - ok
06:40:58.0890 0464 Sparrow - ok
06:40:58.0906 0464 [ 5D6401DB90EC81B71F8E2C5C8F0FEF23 ] speedfan C:\WINDOWS\system32\speedfan.sys
06:40:58.0906 0464 speedfan - ok
06:40:58.0937 0464 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
06:40:58.0937 0464 splitter - ok
06:40:58.0968 0464 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
06:40:58.0968 0464 Spooler - ok
06:40:59.0000 0464 [ 8831252BCF05FCFB5ABD116A22E552D8 ] sp_rsdrv2 C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
06:40:59.0000 0464 sp_rsdrv2 - ok
06:40:59.0062 0464 [ 4A4A857713740E1564F0B7623493AF06 ] sp_rssrv C:\Program Files\Spyware Terminator\sp_rsser.exe
06:40:59.0062 0464 sp_rssrv - ok
06:40:59.0078 0464 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
06:40:59.0078 0464 sr - ok
06:40:59.0109 0464 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
06:40:59.0109 0464 srservice - ok
06:40:59.0156 0464 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
06:40:59.0156 0464 Srv - ok
06:40:59.0171 0464 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
06:40:59.0171 0464 SSDPSRV - ok
06:40:59.0265 0464 [ 686FA4ACFDCB4E16B7F0230B88F6D17E ] STacSV C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
06:40:59.0265 0464 STacSV - ok
06:40:59.0421 0464 [ 31BA85E1CFF39A57F702A2A0877BB8E1 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
06:40:59.0421 0464 STHDA - ok
06:40:59.0515 0464 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
06:40:59.0515 0464 stisvc - ok
06:40:59.0609 0464 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
06:40:59.0609 0464 swenum - ok
06:40:59.0640 0464 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
06:40:59.0640 0464 swmidi - ok
06:40:59.0640 0464 SwPrv - ok
06:40:59.0656 0464 symc810 - ok
06:40:59.0656 0464 symc8xx - ok
06:40:59.0656 0464 sym_hi - ok
06:40:59.0671 0464 sym_u3 - ok
06:40:59.0703 0464 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
06:40:59.0703 0464 sysaudio - ok
06:40:59.0750 0464 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
06:40:59.0750 0464 SysmonLog - ok
06:40:59.0843 0464 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
06:40:59.0843 0464 TapiSrv - ok
06:40:59.0890 0464 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
06:40:59.0890 0464 Tcpip - ok
06:40:59.0953 0464 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
06:40:59.0953 0464 TDPIPE - ok
06:41:00.0000 0464 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
06:41:00.0015 0464 TDTCP - ok
06:41:00.0093 0464 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
06:41:00.0093 0464 TermDD - ok
06:41:00.0203 0464 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
06:41:00.0203 0464 TermService - ok
06:41:00.0234 0464 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
06:41:00.0250 0464 Themes - ok
06:41:00.0281 0464 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
06:41:00.0281 0464 TlntSvr - ok
06:41:00.0312 0464 [ E362D54FD394999C4178936396664E57 ] toshidpt C:\WINDOWS\system32\drivers\Toshidpt.sys
06:41:00.0312 0464 toshidpt - ok
06:41:00.0312 0464 TosIde - ok
06:41:00.0343 0464 [ 8D624D3BD1F2D78BD1C01A2D4E954B4E ] tosporte C:\WINDOWS\system32\DRIVERS\tosporte.sys
06:41:00.0343 0464 tosporte - ok
06:41:00.0359 0464 [ 8C3BFAF3FCA90502E6FA35503B8E979E ] tosrfbd C:\WINDOWS\system32\DRIVERS\tosrfbd.sys
06:41:00.0359 0464 tosrfbd - ok
06:41:00.0375 0464 [ 90C8525BC578AAFFE87C2D0ED4379E9E ] tosrfbnp C:\WINDOWS\system32\Drivers\tosrfbnp.sys
06:41:00.0375 0464 tosrfbnp - ok
06:41:00.0390 0464 [ 4742F0BAD28268AB093ED6F4EA857997 ] Tosrfcom C:\WINDOWS\system32\Drivers\tosrfcom.sys
06:41:00.0390 0464 Tosrfcom - ok
06:41:00.0406 0464 [ 7C807BA9660E2995CC0217A14A24094C ] Tosrfhid C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
06:41:00.0406 0464 Tosrfhid - ok
06:41:00.0406 0464 [ C52FD27B9ADF3A1F22CB90E6BCF9B0CB ] tosrfnds C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
06:41:00.0406 0464 tosrfnds - ok
06:41:00.0421 0464 TosRfSnd - ok
06:41:00.0421 0464 [ 01C90086CD37E7E8D9A827E24167FCB7 ] Tosrfusb C:\WINDOWS\system32\DRIVERS\tosrfusb.sys
06:41:00.0421 0464 Tosrfusb - ok
06:41:00.0468 0464 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
06:41:00.0468 0464 TrkWks - ok
06:41:00.0500 0464 [ 0F36134BC7897AC0B038B64FA23C4DF9 ] truecrypt C:\WINDOWS\system32\drivers\truecrypt.sys
06:41:00.0500 0464 truecrypt - ok
06:41:00.0531 0464 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
06:41:00.0531 0464 Udfs - ok
06:41:00.0531 0464 ultra - ok
06:41:00.0562 0464 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
06:41:00.0562 0464 Update - ok
06:41:00.0593 0464 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
06:41:00.0593 0464 upnphost - ok
06:41:00.0609 0464 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
06:41:00.0609 0464 UPS - ok
06:41:00.0640 0464 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
06:41:00.0640 0464 usbccgp - ok
06:41:00.0671 0464 [ 6B5E4D5E6E5ECD6ACD14AED59768CE5C ] USBCCID C:\WINDOWS\system32\DRIVERS\usbccid.sys
06:41:00.0671 0464 USBCCID - ok
06:41:00.0671 0464 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
06:41:00.0671 0464 usbehci - ok
06:41:00.0687 0464 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
06:41:00.0687 0464 usbhub - ok
06:41:00.0703 0464 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
06:41:00.0703 0464 usbprint - ok
06:41:00.0718 0464 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
06:41:00.0718 0464 usbscan - ok
06:41:00.0718 0464 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
06:41:00.0718 0464 USBSTOR - ok
06:41:00.0734 0464 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
06:41:00.0734 0464 usbuhci - ok
06:41:00.0734 0464 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
06:41:00.0734 0464 VgaSave - ok
06:41:00.0750 0464 ViaIde - ok
06:41:00.0796 0464 [ 1630B88BDFE1B3FC2BCB51EED3D5DE0F ] Vivotek_ST3402 C:\Program Files\Vivotek\ST3402\Launcher_VV.exe
06:41:00.0796 0464 Vivotek_ST3402 - ok
06:41:00.0812 0464 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
06:41:00.0812 0464 VolSnap - ok
06:41:00.0843 0464 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
06:41:00.0859 0464 VSS - ok
06:41:00.0875 0464 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
06:41:00.0875 0464 W32Time - ok
06:41:00.0890 0464 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
06:41:00.0890 0464 Wanarp - ok
06:41:00.0937 0464 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
06:41:00.0937 0464 Wdf01000 - ok
06:41:00.0953 0464 WDICA - ok
06:41:00.0968 0464 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
06:41:00.0984 0464 wdmaud - ok
06:41:00.0984 0464 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
06:41:00.0984 0464 WebClient - ok
06:41:01.0031 0464 [ 96AFF1738271755A39B52EEF7E35F98F ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
06:41:01.0046 0464 winachsf - ok
06:41:01.0109 0464 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
06:41:01.0109 0464 winmgmt - ok
06:41:01.0140 0464 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
06:41:01.0140 0464 WLANKEEPER - ok
06:41:01.0140 0464 wltrysvc - ok
06:41:01.0171 0464 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
06:41:01.0171 0464 WmdmPmSN - ok
06:41:01.0203 0464 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
06:41:01.0203 0464 Wmi - ok
06:41:01.0234 0464 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
06:41:01.0234 0464 WmiAcpi - ok
06:41:01.0250 0464 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
06:41:01.0250 0464 WmiApSrv - ok
06:41:01.0328 0464 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
06:41:01.0343 0464 WMPNetworkSvc - ok
06:41:01.0359 0464 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
06:41:01.0359 0464 WS2IFSL - ok
06:41:01.0390 0464 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
06:41:01.0390 0464 wscsvc - ok
06:41:01.0421 0464 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
06:41:01.0421 0464 wuauserv - ok
06:41:01.0468 0464 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
06:41:01.0468 0464 WudfPf - ok
06:41:01.0484 0464 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
06:41:01.0484 0464 WudfRd - ok
06:41:01.0500 0464 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
06:41:01.0515 0464 WudfSvc - ok
06:41:01.0578 0464 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
06:41:01.0578 0464 WZCSVC - ok
06:41:01.0609 0464 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
06:41:01.0625 0464 xmlprov - ok
06:41:01.0640 0464 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbmdm6k C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
06:41:01.0640 0464 ZTEusbmdm6k - ok
06:41:01.0671 0464 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbnmea C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
06:41:01.0671 0464 ZTEusbnmea - ok
06:41:01.0687 0464 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbser6k C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
06:41:01.0687 0464 ZTEusbser6k - ok
06:41:01.0750 0464 [ 74EC37B9EAF9FCA015B933A526825C7A ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
06:41:01.0750 0464 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
06:41:01.0796 0464 [ 556B5CFE8D21B256ADD7F87D7F4B4123 ] {B154377D-700F-42cc-9474-23858FBDF4BD} C:\Program Files\PowerDVD9\PowerDVD9\000.fcl
06:41:01.0796 0464 {B154377D-700F-42cc-9474-23858FBDF4BD} - ok
06:41:01.0796 0464 ================ Scan global ===============================
06:41:01.0828 0464 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
06:41:01.0859 0464 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
06:41:01.0859 0464 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
06:41:01.0875 0464 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
06:41:01.0875 0464 [Global] - ok
06:41:01.0875 0464 ================ Scan MBR ==================================
06:41:01.0890 0464 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
06:41:02.0062 0464 \Device\Harddisk0\DR0 - ok
06:41:02.0062 0464 ================ Scan VBR ==================================
06:41:02.0062 0464 [ BB43B10A156B4E20346904EB190C3C74 ] \Device\Harddisk0\DR0\Partition1
06:41:02.0078 0464 \Device\Harddisk0\DR0\Partition1 - ok
06:41:02.0078 0464 [ 285D628938FB74DA7FD4F740EFD58BFA ] \Device\Harddisk0\DR0\Partition2
06:41:02.0078 0464 \Device\Harddisk0\DR0\Partition2 - ok
06:41:02.0078 0464 ============================================================
06:41:02.0078 0464 Scan finished
06:41:02.0078 0464 ============================================================
06:41:02.0093 1600 Detected object count: 1
06:41:02.0093 1600 Actual detected object count: 1
06:41:09.0484 1600 atapi ( LockedFile.Multi.Generic ) - skipped by user
06:41:09.0484 1600 atapi ( LockedFile.Multi.Generic ) - User select action: Skip
06:40:56.0921 0464 Null - ok
06:40:57.0140 0464 [ 8129D762CC3E3C5AB9CF2EABC377FB73 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
06:40:57.0187 0464 nv - ok
06:40:57.0250 0464 [ 9EDF6FD48A9EB4AFDF225EB9C5111DF6 ] NWADI C:\WINDOWS\system32\DRIVERS\NWADIenum.sys
06:40:57.0250 0464 NWADI - ok
06:40:57.0281 0464 [ 1A859F70728CAD712F90F9953667AD7F ] NWDellModem C:\WINDOWS\system32\DRIVERS\nwdelmdm.sys
06:40:57.0281 0464 NWDellModem - ok
06:40:57.0312 0464 [ 1A859F70728CAD712F90F9953667AD7F ] NWDellPort C:\WINDOWS\system32\DRIVERS\nwdelser.sys
06:40:57.0312 0464 NWDellPort - ok
06:40:57.0328 0464 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
06:40:57.0328 0464 NwlnkFlt - ok
06:40:57.0328 0464 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
06:40:57.0328 0464 NwlnkFwd - ok
06:40:57.0375 0464 [ AE404E89E2A936CE62A27A104894D6B4 ] O&O Defrag C:\WINDOWS\system32\oodag.exe
06:40:57.0390 0464 O&O Defrag - ok
06:40:57.0406 0464 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
06:40:57.0406 0464 ohci1394 - ok
06:40:57.0421 0464 [ 1D635B3CAAF4E6694EE917514FB3E2AC ] omci C:\WINDOWS\system32\DRIVERS\omci.sys
06:40:57.0421 0464 omci - ok
06:40:57.0468 0464 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
06:40:57.0468 0464 ose - ok
06:40:57.0484 0464 [ 46F8DB73B4A53E543F8E371DC7C75BAE ] Parport C:\WINDOWS\system32\drivers\Parport.sys
06:40:57.0484 0464 Parport - ok
06:40:57.0484 0464 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
06:40:57.0500 0464 PartMgr - ok
06:40:57.0515 0464 [ 1FAE19D0457176318BBA4A8795656EBC ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
06:40:57.0515 0464 ParVdm - ok
06:40:57.0546 0464 [ 1961590AA191B6B7DCF18A6A693AF7B8 ] PCASp50 C:\WINDOWS\system32\Drivers\PCASp50.sys
06:40:57.0546 0464 PCASp50 - ok
06:40:57.0546 0464 [ 6CE351D149CB4BEFC702951E471E1730 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
06:40:57.0546 0464 PCI - ok
06:40:57.0562 0464 PCIDump - ok
06:40:57.0578 0464 [ 2DA4EC85E0EA7A45C6B2A05820492D5A ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
06:40:57.0578 0464 PCIIde - ok
06:40:57.0593 0464 [ 4FC31E6C19A5CE5198B1ABFF94CAE758 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
06:40:57.0593 0464 Pcmcia - ok
06:40:57.0593 0464 PDCOMP - ok
06:40:57.0609 0464 PDFRAME - ok
06:40:57.0625 0464 PDRELI - ok
06:40:57.0640 0464 PDRFRAME - ok
06:40:57.0640 0464 perc2 - ok
06:40:57.0640 0464 perc2hib - ok
06:40:57.0656 0464 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] PlugPlay C:\WINDOWS\system32\services.exe
06:40:57.0656 0464 PlugPlay - ok
06:40:57.0687 0464 [ D31F88C5F19EEFA366A415D6BC5F2ABC ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
06:40:57.0687 0464 Pml Driver HPZ12 - ok
06:40:57.0703 0464 [ ED0A176354487CEED65B80A7148AB739 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
06:40:57.0703 0464 PolicyAgent - ok
06:40:57.0718 0464 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
06:40:57.0718 0464 PptpMiniport - ok
06:40:57.0734 0464 [ ED0A176354487CEED65B80A7148AB739 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
06:40:57.0734 0464 ProtectedStorage - ok
06:40:57.0734 0464 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
06:40:57.0734 0464 PSched - ok
06:40:57.0750 0464 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
06:40:57.0750 0464 Ptilink - ok
06:40:57.0781 0464 [ D86B4A68565E444D76457F14172C875A ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
06:40:57.0781 0464 PxHelp20 - ok
06:40:57.0781 0464 ql1080 - ok
06:40:57.0796 0464 Ql10wnt - ok
06:40:57.0796 0464 ql12160 - ok
06:40:57.0812 0464 ql1240 - ok
06:40:57.0828 0464 ql1280 - ok
06:40:57.0843 0464 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
06:40:57.0843 0464 RasAcd - ok
06:40:57.0875 0464 [ 2B5E44EA009F2F374B980E1E9A70635D ] RasAuto C:\WINDOWS\System32\rasauto.dll
06:40:57.0875 0464 RasAuto - ok
06:40:57.0906 0464 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
06:40:57.0906 0464 Rasl2tp - ok
06:40:57.0937 0464 [ D57554C664B64604BD1EE13EA2C07E77 ] RasMan C:\WINDOWS\System32\rasmans.dll
06:40:57.0937 0464 RasMan - ok
06:40:57.0953 0464 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
06:40:57.0968 0464 RasPppoe - ok
06:40:57.0968 0464 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
06:40:57.0984 0464 Raspti - ok
06:40:57.0984 0464 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
06:40:58.0000 0464 Rdbss - ok
06:40:58.0015 0464 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
06:40:58.0015 0464 RDPCDD - ok
06:40:58.0031 0464 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
06:40:58.0031 0464 rdpdr - ok
06:40:58.0062 0464 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
06:40:58.0062 0464 RDPWD - ok
06:40:58.0093 0464 [ C0D9D9711CB74EE9BC66353D8CBDAB0E ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
06:40:58.0093 0464 RDSessMgr - ok
06:40:58.0109 0464 [ 611BFD220305BE3A85AE876EA47D4AA5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
06:40:58.0109 0464 redbook - ok
06:40:58.0156 0464 [ 2CF574D0965F58E514A2DC94114D7ECA ] RegSrvc C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
06:40:58.0156 0464 RegSrvc - ok
06:40:58.0171 0464 [ 127C26B5371651043450E52542099ABA ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
06:40:58.0187 0464 RemoteAccess - ok
06:40:58.0187 0464 [ 8F31505484A190D5B22274708799F4EC ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll
06:40:58.0187 0464 RemoteRegistry - ok
06:40:58.0234 0464 [ 79E740644D8D5E6057A4429F0D19A2CB ] RichVideo C:\Program Files\Cyberlink\Shared files\RichVideo.exe
06:40:58.0234 0464 RichVideo - ok
06:40:58.0265 0464 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
06:40:58.0265 0464 ROOTMODEM - ok
06:40:58.0296 0464 [ 718B3BDC0BC3C2F7D065A53D26202AF9 ] RpcLocator C:\WINDOWS\system32\locator.exe
06:40:58.0296 0464 RpcLocator - ok
06:40:58.0312 0464 [ BE27674D1CBC3214AEC84B4336A38BBF ] RpcSs C:\WINDOWS\System32\rpcss.dll
06:40:58.0312 0464 RpcSs - ok
06:40:58.0343 0464 [ 09AB2E71E58B078038E3BFDBA7FFC984 ] RSVP C:\WINDOWS\system32\rsvp.exe
06:40:58.0343 0464 RSVP - ok
06:40:58.0390 0464 [ 874173EDBD4F2FE711F245855A2FFA23 ] S24EventMonitor C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
06:40:58.0390 0464 S24EventMonitor - ok
06:40:58.0421 0464 [ EADFB87F911A7A75D1B80617F92901E8 ] s24trans C:\WINDOWS\system32\DRIVERS\s24trans.sys
06:40:58.0421 0464 s24trans - ok
06:40:58.0421 0464 [ ED0A176354487CEED65B80A7148AB739 ] SamSs C:\WINDOWS\system32\lsass.exe
06:40:58.0437 0464 SamSs - ok
06:40:58.0453 0464 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
06:40:58.0453 0464 SASDIFSV - ok
06:40:58.0468 0464 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
06:40:58.0468 0464 SASKUTIL - ok
06:40:58.0484 0464 [ 410046E401EB11E1E6749E9DEEA41D4A ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
06:40:58.0500 0464 SCardSvr - ok
06:40:58.0515 0464 [ 3FF232A7731621B8902D81D42418C93C ] Schedule C:\WINDOWS\system32\schedsvc.dll
06:40:58.0515 0464 Schedule - ok
06:40:58.0562 0464 [ 06ED7EA991838C745C8BF085C59731A7 ] SCR33X USB Smart Card Reader C:\WINDOWS\system32\DRIVERS\SCR33X2K.sys
06:40:58.0562 0464 SCR33X USB Smart Card Reader - ok
06:40:58.0593 0464 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
06:40:58.0593 0464 Secdrv - ok
06:40:58.0609 0464 [ 477E2C3CC5E4A0D635BCB0EA8DCAC3C6 ] seclogon C:\WINDOWS\System32\seclogon.dll
06:40:58.0609 0464 seclogon - ok
06:40:58.0625 0464 [ A530B75C10C23C9AB28FDB6CE719E21F ] SENS C:\WINDOWS\system32\sens.dll
06:40:58.0625 0464 SENS - ok
06:40:58.0656 0464 [ D23FC3F409FDBB2A5C230ABC137C4B45 ] Sentinel C:\WINDOWS\System32\Drivers\SENTINEL.SYS
06:40:58.0656 0464 Sentinel - ok
06:40:58.0687 0464 [ 881F7E7A2A9F9E91189B4FBB70EB5F47 ] SentinelProtectionServer C:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
06:40:58.0687 0464 SentinelProtectionServer - ok
06:40:58.0703 0464 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
06:40:58.0703 0464 serenum - ok
06:40:58.0734 0464 [ B842729337C9B921615C40D3C1A1AF96 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
06:40:58.0734 0464 Serial - ok
06:40:58.0750 0464 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
06:40:58.0750 0464 Sfloppy - ok
06:40:58.0781 0464 [ F58FACA9621D2DB01BD0927D9A0A208E ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
06:40:58.0781 0464 SharedAccess - ok
06:40:58.0812 0464 [ EE9A2B9EA968A792A053C9D1A86BF870 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
06:40:58.0812 0464 ShellHWDetection - ok
06:40:58.0812 0464 Simbad - ok
06:40:58.0843 0464 [ 59A8193293AA2F0696D9F94B8BFE9D11 ] SNTNLUSB C:\WINDOWS\system32\DRIVERS\SNTNLUSB.SYS
06:40:58.0843 0464 SNTNLUSB - ok
06:40:58.0875 0464 [ A1ECEEAA5C5E74B2499EB51D38185B84 ] SONYPVU1 C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
06:40:58.0875 0464 SONYPVU1 - ok
06:40:58.0890 0464 Sparrow - ok
06:40:58.0906 0464 [ 5D6401DB90EC81B71F8E2C5C8F0FEF23 ] speedfan C:\WINDOWS\system32\speedfan.sys
06:40:58.0906 0464 speedfan - ok
06:40:58.0937 0464 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
06:40:58.0937 0464 splitter - ok
06:40:58.0968 0464 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
06:40:58.0968 0464 Spooler - ok
06:40:59.0000 0464 [ 8831252BCF05FCFB5ABD116A22E552D8 ] sp_rsdrv2 C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
06:40:59.0000 0464 sp_rsdrv2 - ok
06:40:59.0062 0464 [ 4A4A857713740E1564F0B7623493AF06 ] sp_rssrv C:\Program Files\Spyware Terminator\sp_rsser.exe
06:40:59.0062 0464 sp_rssrv - ok
06:40:59.0078 0464 [ 94610C8653635E4459316A0050D55CE7 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
06:40:59.0078 0464 sr - ok
06:40:59.0109 0464 [ 35B91147124F64AC8081A2EDB9EA4DEE ] srservice C:\WINDOWS\system32\srsvc.dll
06:40:59.0109 0464 srservice - ok
06:40:59.0156 0464 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
06:40:59.0156 0464 Srv - ok
06:40:59.0171 0464 [ BECD5271DC4E3B7C3D035F790FCBC1E5 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
06:40:59.0171 0464 SSDPSRV - ok
06:40:59.0265 0464 [ 686FA4ACFDCB4E16B7F0230B88F6D17E ] STacSV C:\Program Files\SigmaTel\C-Major Audio\WDM\StacSV.exe
06:40:59.0265 0464 STacSV - ok
06:40:59.0421 0464 [ 31BA85E1CFF39A57F702A2A0877BB8E1 ] STHDA C:\WINDOWS\system32\drivers\sthda.sys
06:40:59.0421 0464 STHDA - ok
06:40:59.0515 0464 [ C1CDD9275F6A115BB0AE1D55D8D27BA6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
06:40:59.0515 0464 stisvc - ok
06:40:59.0609 0464 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
06:40:59.0609 0464 swenum - ok
06:40:59.0640 0464 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
06:40:59.0640 0464 swmidi - ok
06:40:59.0640 0464 SwPrv - ok
06:40:59.0656 0464 symc810 - ok
06:40:59.0656 0464 symc8xx - ok
06:40:59.0656 0464 sym_hi - ok
06:40:59.0671 0464 sym_u3 - ok
06:40:59.0703 0464 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
06:40:59.0703 0464 sysaudio - ok
06:40:59.0750 0464 [ CE06F01B88ACE199A1BF460CAC29C110 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
06:40:59.0750 0464 SysmonLog - ok
06:40:59.0843 0464 [ C2546CD7A398476F9DF5614B2AE160E8 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
06:40:59.0843 0464 TapiSrv - ok
06:40:59.0890 0464 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
06:40:59.0890 0464 Tcpip - ok
06:40:59.0953 0464 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
06:40:59.0953 0464 TDPIPE - ok
06:41:00.0000 0464 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
06:41:00.0015 0464 TDTCP - ok
06:41:00.0093 0464 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
06:41:00.0093 0464 TermDD - ok
06:41:00.0203 0464 [ A75DD6FC3DBEE4FFF5EBC9F2C28BB66E ] TermService C:\WINDOWS\System32\termsrv.dll
06:41:00.0203 0464 TermService - ok
06:41:00.0234 0464 [ EE9A2B9EA968A792A053C9D1A86BF870 ] Themes C:\WINDOWS\System32\shsvcs.dll
06:41:00.0250 0464 Themes - ok
06:41:00.0281 0464 [ CD0CC7B167D78043A41C98D4921EFB54 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe
06:41:00.0281 0464 TlntSvr - ok
06:41:00.0312 0464 [ E362D54FD394999C4178936396664E57 ] toshidpt C:\WINDOWS\system32\drivers\Toshidpt.sys
06:41:00.0312 0464 toshidpt - ok
06:41:00.0312 0464 TosIde - ok
06:41:00.0343 0464 [ 8D624D3BD1F2D78BD1C01A2D4E954B4E ] tosporte C:\WINDOWS\system32\DRIVERS\tosporte.sys
06:41:00.0343 0464 tosporte - ok
06:41:00.0359 0464 [ 8C3BFAF3FCA90502E6FA35503B8E979E ] tosrfbd C:\WINDOWS\system32\DRIVERS\tosrfbd.sys
06:41:00.0359 0464 tosrfbd - ok
06:41:00.0375 0464 [ 90C8525BC578AAFFE87C2D0ED4379E9E ] tosrfbnp C:\WINDOWS\system32\Drivers\tosrfbnp.sys
06:41:00.0375 0464 tosrfbnp - ok
06:41:00.0390 0464 [ 4742F0BAD28268AB093ED6F4EA857997 ] Tosrfcom C:\WINDOWS\system32\Drivers\tosrfcom.sys
06:41:00.0390 0464 Tosrfcom - ok
06:41:00.0406 0464 [ 7C807BA9660E2995CC0217A14A24094C ] Tosrfhid C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
06:41:00.0406 0464 Tosrfhid - ok
06:41:00.0406 0464 [ C52FD27B9ADF3A1F22CB90E6BCF9B0CB ] tosrfnds C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
06:41:00.0406 0464 tosrfnds - ok
06:41:00.0421 0464 TosRfSnd - ok
06:41:00.0421 0464 [ 01C90086CD37E7E8D9A827E24167FCB7 ] Tosrfusb C:\WINDOWS\system32\DRIVERS\tosrfusb.sys
06:41:00.0421 0464 Tosrfusb - ok
06:41:00.0468 0464 [ 38853304CCB938D30E0C4CDE8D2C2A8A ] TrkWks C:\WINDOWS\system32\trkwks.dll
06:41:00.0468 0464 TrkWks - ok
06:41:00.0500 0464 [ 0F36134BC7897AC0B038B64FA23C4DF9 ] truecrypt C:\WINDOWS\system32\drivers\truecrypt.sys
06:41:00.0500 0464 truecrypt - ok
06:41:00.0531 0464 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
06:41:00.0531 0464 Udfs - ok
06:41:00.0531 0464 ultra - ok
06:41:00.0562 0464 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
06:41:00.0562 0464 Update - ok
06:41:00.0593 0464 [ 651BD90DCEE5B7BDC74A2EB7C9266F9E ] upnphost C:\WINDOWS\System32\upnphost.dll
06:41:00.0593 0464 upnphost - ok
06:41:00.0609 0464 [ 20A0F6A11959E92908717D09E87D670D ] UPS C:\WINDOWS\System32\ups.exe
06:41:00.0609 0464 UPS - ok
06:41:00.0640 0464 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
06:41:00.0640 0464 usbccgp - ok
06:41:00.0671 0464 [ 6B5E4D5E6E5ECD6ACD14AED59768CE5C ] USBCCID C:\WINDOWS\system32\DRIVERS\usbccid.sys
06:41:00.0671 0464 USBCCID - ok
06:41:00.0671 0464 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
06:41:00.0671 0464 usbehci - ok
06:41:00.0687 0464 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
06:41:00.0687 0464 usbhub - ok
06:41:00.0703 0464 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
06:41:00.0703 0464 usbprint - ok
06:41:00.0718 0464 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
06:41:00.0718 0464 usbscan - ok
06:41:00.0718 0464 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
06:41:00.0718 0464 USBSTOR - ok
06:41:00.0734 0464 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
06:41:00.0734 0464 usbuhci - ok
06:41:00.0734 0464 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
06:41:00.0734 0464 VgaSave - ok
06:41:00.0750 0464 ViaIde - ok
06:41:00.0796 0464 [ 1630B88BDFE1B3FC2BCB51EED3D5DE0F ] Vivotek_ST3402 C:\Program Files\Vivotek\ST3402\Launcher_VV.exe
06:41:00.0796 0464 Vivotek_ST3402 - ok
06:41:00.0812 0464 [ 28A4B296B47782173C346E376CB374D1 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
06:41:00.0812 0464 VolSnap - ok
06:41:00.0843 0464 [ D6BA1A63D9E00933F1CD2A885573AFB2 ] VSS C:\WINDOWS\System32\vssvc.exe
06:41:00.0859 0464 VSS - ok
06:41:00.0875 0464 [ FA4E1CDBA256787F2149F4AAD07BC91F ] W32Time C:\WINDOWS\system32\w32time.dll
06:41:00.0875 0464 W32Time - ok
06:41:00.0890 0464 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
06:41:00.0890 0464 Wanarp - ok
06:41:00.0937 0464 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
06:41:00.0937 0464 Wdf01000 - ok
06:41:00.0953 0464 WDICA - ok
06:41:00.0968 0464 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
06:41:00.0984 0464 wdmaud - ok
06:41:00.0984 0464 [ 47AE51048A82DFA1CD6B51D369F7E169 ] WebClient C:\WINDOWS\System32\webclnt.dll
06:41:00.0984 0464 WebClient - ok
06:41:01.0031 0464 [ 96AFF1738271755A39B52EEF7E35F98F ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
06:41:01.0046 0464 winachsf - ok
06:41:01.0109 0464 [ E488332126E3B1182D2B8A0C35408EC6 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
06:41:01.0109 0464 winmgmt - ok
06:41:01.0140 0464 [ 4307641CA3389A210295FDFFD2A73DEE ] WLANKEEPER C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
06:41:01.0140 0464 WLANKEEPER - ok
06:41:01.0140 0464 wltrysvc - ok
06:41:01.0171 0464 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
06:41:01.0171 0464 WmdmPmSN - ok
06:41:01.0203 0464 [ 0171CFF34BBA8C5977F18C48D8AEF8C6 ] Wmi C:\WINDOWS\System32\advapi32.dll
06:41:01.0203 0464 Wmi - ok
06:41:01.0234 0464 [ C42584FD66CE9E17403AEBCA199F7BDB ] WmiAcpi C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
06:41:01.0234 0464 WmiAcpi - ok
06:41:01.0250 0464 [ 23F6F03272F7E5679F1F050AED5ACEE6 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
06:41:01.0250 0464 WmiApSrv - ok
06:41:01.0328 0464 [ 3739866D20ABD42F26A7B85F9E2560AF ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
06:41:01.0343 0464 WMPNetworkSvc - ok
06:41:01.0359 0464 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
06:41:01.0359 0464 WS2IFSL - ok
06:41:01.0390 0464 [ 4C86D5FAF78194995AF9CC1075F65DD3 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
06:41:01.0390 0464 wscsvc - ok
06:41:01.0421 0464 [ C1364564800EE9784192145324A23308 ] wuauserv C:\WINDOWS\system32\wuauserv.dll
06:41:01.0421 0464 wuauserv - ok
06:41:01.0468 0464 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
06:41:01.0468 0464 WudfPf - ok
06:41:01.0484 0464 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
06:41:01.0484 0464 WudfRd - ok
06:41:01.0500 0464 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
06:41:01.0515 0464 WudfSvc - ok
06:41:01.0578 0464 [ A27D4BA7264C0BF52F32D10405BEA1D4 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
06:41:01.0578 0464 WZCSVC - ok
06:41:01.0609 0464 [ EAA4BB9EDB3FB10CF8979FE65E63658F ] xmlprov C:\WINDOWS\System32\xmlprov.dll
06:41:01.0625 0464 xmlprov - ok
06:41:01.0640 0464 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbmdm6k C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
06:41:01.0640 0464 ZTEusbmdm6k - ok
06:41:01.0671 0464 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbnmea C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
06:41:01.0671 0464 ZTEusbnmea - ok
06:41:01.0687 0464 [ 28FB86AD7CC64AE5639E6E87F3B017D9 ] ZTEusbser6k C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
06:41:01.0687 0464 ZTEusbser6k - ok
06:41:01.0750 0464 [ 74EC37B9EAF9FCA015B933A526825C7A ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
06:41:01.0750 0464 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
06:41:01.0796 0464 [ 556B5CFE8D21B256ADD7F87D7F4B4123 ] {B154377D-700F-42cc-9474-23858FBDF4BD} C:\Program Files\PowerDVD9\PowerDVD9\000.fcl
06:41:01.0796 0464 {B154377D-700F-42cc-9474-23858FBDF4BD} - ok
06:41:01.0796 0464 ================ Scan global ===============================
06:41:01.0828 0464 [ F36278E42C8C5DF03CE17DAC8231C91C ] C:\WINDOWS\system32\basesrv.dll
06:41:01.0859 0464 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
06:41:01.0859 0464 [ F3FA14A297BC687D0B51289D034033C9 ] C:\WINDOWS\system32\winsrv.dll
06:41:01.0875 0464 [ 9EF697AF07BB8DD82C3B02CA953A95B7 ] C:\WINDOWS\system32\services.exe
06:41:01.0875 0464 [Global] - ok
06:41:01.0875 0464 ================ Scan MBR ==================================
06:41:01.0890 0464 [ 413FC2A0C716421B3158746D63736515 ] \Device\Harddisk0\DR0
06:41:02.0062 0464 \Device\Harddisk0\DR0 - ok
06:41:02.0062 0464 ================ Scan VBR ==================================
06:41:02.0062 0464 [ BB43B10A156B4E20346904EB190C3C74 ] \Device\Harddisk0\DR0\Partition1
06:41:02.0078 0464 \Device\Harddisk0\DR0\Partition1 - ok
06:41:02.0078 0464 [ 285D628938FB74DA7FD4F740EFD58BFA ] \Device\Harddisk0\DR0\Partition2
06:41:02.0078 0464 \Device\Harddisk0\DR0\Partition2 - ok
06:41:02.0078 0464 ============================================================
06:41:02.0078 0464 Scan finished
06:41:02.0078 0464 ============================================================
06:41:02.0093 1600 Detected object count: 1
06:41:02.0093 1600 Actual detected object count: 1
06:41:09.0484 1600 atapi ( LockedFile.Multi.Generic ) - skipped by user
06:41:09.0484 1600 atapi ( LockedFile.Multi.Generic ) - User select action: Skip
Re: prosim o kontrolu-blbne pripojeni
Prosim zkontroloval by mi nekdo log. Jestli je vse OK.
Dekuji
Dekuji
Re: prosim o kontrolu-blbne pripojeni
Omlouvám se, nestíhám 
V pořádku to není, máte napadený atapi. Zkusíme ho nahradit přes combofix, ale někdy se mrška drží.
Pokud nemáte, přesuňte Combofix na plochu
-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:
-po aplikaci na Vás vypadne další log,vložte ho sem
V pořádku to není, máte napadený atapi. Zkusíme ho nahradit přes combofix, ale někdy se mrška drží.
Pokud nemáte, přesuňte Combofix na plochu-otevřete si Poznámkový blok
-Do něj zkopírujte text z tohoto okénka
Restore::
c:\windows\system32\drivers\atapi.sys
uložte Vámi vytvořený TXT soubor jako CFScript.txt na plochu
-po uložení uchopte vámi vytvořený skript levým myšítkem a -přesuňte ho nad ikonu Combofixu, kde ho upustíte:
-po aplikaci na Vás vypadne další log,vložte ho sem
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: prosim o kontrolu-blbne pripojeni
Dobry den,
dekuji za pomoc
ComboFix 12-10-21.01 - AKE 28.10.2012 10:46:59.5.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1404 [GMT 1:00]
Spuštěný z: c:\documents and settings\AKE\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\AKE\Plocha\CFScript.txt
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
Nakažená kopie c:\windows\system32\drivers\atapi.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\atapi.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-28 do 2012-10-28 )))))))))))))))))))))))))))))))
.
.
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- c:\program files\trend micro
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- C:\rsit
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 04:39 . 2012-10-18 04:34 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 05:36 . 2012-04-10 09:32 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 05:36 . 2012-03-06 08:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 15:18 . 2006-03-04 03:35 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 10:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 10:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 10:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 10:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2005-03-30 17:37 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:27 . 2005-03-30 17:37 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-26 09:37 . 2012-10-26 09:37 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[-] 2008-04-13 18:40 . !HASH: COULD NOT OPEN FILE !!!!! . 96512 . . [------] . . c:\windows\system32\drivers\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33 1519304 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-06-12 1368824]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-04-15 159744]
"Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2007-07-20 1228800]
"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-08-29 24576]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-7-30 2158592]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-02-20 12:57 65536 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0lsdelete
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"O&O Defrag"=3 (0x3)
"ose"=3 (0x3)
"Iap"=2 (0x2)
"Autodesk Licensing Service"=3 (0x3)
"Pml Driver HPZ12"=2 (0x2)
"FMMService"=2 (0x2)
"FirebirdServerDefaultInstance"=3 (0x3)
"FirebirdGuardianDefaultInstance"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"511:TCP"= 511:TCP:*:Disabled:money
.
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [28.9.2007 07:49 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [28.9.2007 07:49 5248]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 08:20 118104]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [19.10.2009 13:37 142592]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 19:54 116608]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44];c:\program files\Cyberlink\PowerDVD10\NavFilter\000.fcl [13.3.2010 12:58 87536]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33];c:\program files\PowerDVD9\PowerDVD9\000.fcl [7.5.2009 21:05 87536]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [14.4.2010 10:28 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [12.6.2012 12:01 124856]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 11:03 974944]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.4.2008 07:23 9728]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher;c:\program files\Vivotek\ST3402\Launcher_VV.exe [10.12.2008 20:53 335872]
R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2.11.2006 11:32 97536]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [7.7.2012 10:00 73216]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [27.9.2007 20:58 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [27.9.2007 20:58 92288]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [3.10.2007 05:42 33536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.4.2012 10:32 250808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [7.7.2012 10:00 102784]
S3 ft1000;Flarion Flash OFDM wireless service;c:\windows\system32\drivers\ft1000.sys [3.10.2007 05:15 62208]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [22.11.2007 11:48 61776]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [7.7.2012 10:00 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter;c:\windows\system32\drivers\ipwpnet.sys [3.4.2008 07:23 43184]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [28.10.2011 06:40 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.5.2012 10:23 115168]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [6.4.2004 04:24 64088]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
S4 FMMService;FMMService;c:\progra~1\MOBILI~1\FMMSER~1.EXE [3.10.2007 05:15 40960]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 05:36]
.
2012-10-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-28 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-06-06 19:33]
.
2012-10-13 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: csob.cz\www
Trusted Zone: tatrabanka.sk\moja
TCP: Interfaces\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
FF - ProfilePath - c:\documents and settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.satelitnisledovani.cz/
FF - ExtSQL: !HIDDEN! 2009-09-02 19:58; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Úprava písemností 1.0 - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-28 10:54
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1860)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(2600)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\System32\bcmwltry.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
c:\windows\system32\oodag.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\SigmaTel\C-Major Audio\WDM\StacSV.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\stsystra.exe
c:\windows\system32\rundll32.exe
c:\program files\Apoint\ApMsgFwd.exe
c:\program files\Apoint\HidFind.exe
c:\program files\Apoint\Apntex.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
c:\program files\Mozilla Firefox\firefox.exe
.
**************************************************************************
.
Celkový čas: 2012-10-28 10:59:29 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-28 09:59
ComboFix2.txt 2012-10-21 11:43
.
Před spuštěním: 5 341 835 264
Po spuštění: 7 754 960 896
.
- - End Of File - - DD322E104384BD1CA97F1D732556715B
dekuji za pomoc
ComboFix 12-10-21.01 - AKE 28.10.2012 10:46:59.5.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1404 [GMT 1:00]
Spuštěný z: c:\documents and settings\AKE\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\AKE\Plocha\CFScript.txt
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Vytvořen nový Bod Obnovení
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
Nakažená kopie c:\windows\system32\drivers\atapi.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\atapi.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-28 do 2012-10-28 )))))))))))))))))))))))))))))))
.
.
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- c:\program files\trend micro
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- C:\rsit
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 04:39 . 2012-10-18 04:34 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 05:36 . 2012-04-10 09:32 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 05:36 . 2012-03-06 08:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 15:18 . 2006-03-04 03:35 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 10:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 10:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 10:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 10:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2005-03-30 17:37 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:27 . 2005-03-30 17:37 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-26 09:37 . 2012-10-26 09:37 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
------- Sigcheck -------
Note: Unsigned files aren't necessarily malware.
.
[7] 2008-04-13 . 9F3A2F5AA6875C72BF062C712CFA2674 . 96512 . . [5.1.2600.5512] . . c:\windows\ServicePackFiles\i386\atapi.sys
[-] 2008-04-13 18:40 . !HASH: COULD NOT OPEN FILE !!!!! . 96512 . . [------] . . c:\windows\system32\drivers\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\$NtServicePackUninstall$\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0003\DriverFiles\i386\atapi.sys
[7] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0010\DriverFiles\i386\atapi.sys
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}]
2012-06-06 19:33 1519304 ----a-w- c:\program files\Ask.com\GenericAskToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{D4027C7F-154A-4066-A1AD-4243D8127440}"= "c:\program files\Ask.com\GenericAskToolbar.dll" [2012-06-06 1519304]
.
[HKEY_CLASSES_ROOT\clsid\{d4027c7f-154a-4066-a1ad-4243d8127440}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd.1]
[HKEY_CLASSES_ROOT\TypeLib\{2996F0E7-292B-4CAE-893F-47B8B1C05B56}]
[HKEY_CLASSES_ROOT\GenericAskToolbar.ToolbarWnd]
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-06-12 1368824]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-04-15 159744]
"Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2007-07-20 1228800]
"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-08-29 24576]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-7-30 2158592]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-02-20 12:57 65536 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0lsdelete
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"O&O Defrag"=3 (0x3)
"ose"=3 (0x3)
"Iap"=2 (0x2)
"Autodesk Licensing Service"=3 (0x3)
"Pml Driver HPZ12"=2 (0x2)
"FMMService"=2 (0x2)
"FirebirdServerDefaultInstance"=3 (0x3)
"FirebirdGuardianDefaultInstance"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"511:TCP"= 511:TCP:*:Disabled:money
.
R0 a347bus;a347bus;c:\windows\system32\drivers\a347bus.sys [28.9.2007 07:49 160640]
R0 a347scsi;a347scsi;c:\windows\system32\drivers\a347scsi.sys [28.9.2007 07:49 5248]
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 08:20 118104]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [19.10.2009 13:37 142592]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 19:54 116608]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44];c:\program files\Cyberlink\PowerDVD10\NavFilter\000.fcl [13.3.2010 12:58 87536]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33];c:\program files\PowerDVD9\PowerDVD9\000.fcl [7.5.2009 21:05 87536]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [14.4.2010 10:28 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [12.6.2012 12:01 124856]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 11:03 974944]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.4.2008 07:23 9728]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher;c:\program files\Vivotek\ST3402\Launcher_VV.exe [10.12.2008 20:53 335872]
R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2.11.2006 11:32 97536]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [7.7.2012 10:00 73216]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [27.9.2007 20:58 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [27.9.2007 20:58 92288]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [3.10.2007 05:42 33536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.4.2012 10:32 250808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [7.7.2012 10:00 102784]
S3 ft1000;Flarion Flash OFDM wireless service;c:\windows\system32\drivers\ft1000.sys [3.10.2007 05:15 62208]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [22.11.2007 11:48 61776]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [7.7.2012 10:00 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter;c:\windows\system32\drivers\ipwpnet.sys [3.4.2008 07:23 43184]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [28.10.2011 06:40 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.5.2012 10:23 115168]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [6.4.2004 04:24 64088]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
S4 FMMService;FMMService;c:\progra~1\MOBILI~1\FMMSER~1.EXE [3.10.2007 05:15 40960]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 05:36]
.
2012-10-28 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-28 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-28 c:\windows\Tasks\Scheduled Update for Ask Toolbar.job
- c:\program files\Ask.com\UpdateTask.exe [2012-06-06 19:33]
.
2012-10-13 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: csob.cz\www
Trusted Zone: tatrabanka.sk\moja
TCP: Interfaces\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
FF - ProfilePath - c:\documents and settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.satelitnisledovani.cz/
FF - ExtSQL: !HIDDEN! 2009-09-02 19:58; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
AddRemove-Úprava písemností 1.0 - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-28 10:54
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1860)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(2600)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\System32\bcmwltry.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
c:\windows\system32\oodag.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\SigmaTel\C-Major Audio\WDM\StacSV.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\stsystra.exe
c:\windows\system32\rundll32.exe
c:\program files\Apoint\ApMsgFwd.exe
c:\program files\Apoint\HidFind.exe
c:\program files\Apoint\Apntex.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
c:\program files\Mozilla Firefox\firefox.exe
.
**************************************************************************
.
Celkový čas: 2012-10-28 10:59:29 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-28 09:59
ComboFix2.txt 2012-10-21 11:43
.
Před spuštěním: 5 341 835 264
Po spuštění: 7 754 960 896
.
- - End Of File - - DD322E104384BD1CA97F1D732556715B
Re: prosim o kontrolu-blbne pripojeni
Používáte daemon nebo alcohol? Budete ho muset odinstalovat.
odinstalujte všechny virtuální jednotky (Daemon nebo alcohol)
Stáhněte SPTD http://www.duplexsecure.com/en/downloads
-vyberte verzi podle svého operačního systému. SPTD for Windows (32 bit) nebo (64b)
-uložte na plochu a spusťte
- zvolte možnost Uninstall
- restart PC
Stahněte http://www.jpshortstuff.247fixes.com/Defogger.exe
- spustte,
- potvrdte disabled
-log vložte zde
A pak zopakujte ocmbofix s tím předchozím skriptem.
odinstalujte všechny virtuální jednotky (Daemon nebo alcohol) Stáhněte SPTD http://www.duplexsecure.com/en/downloads-vyberte verzi podle svého operačního systému. SPTD for Windows (32 bit) nebo (64b)
-uložte na plochu a spusťte
- zvolte možnost Uninstall
- restart PC
Stahněte http://www.jpshortstuff.247fixes.com/Defogger.exe - spustte,
- potvrdte disabled
-log vložte zde
A pak zopakujte ocmbofix s tím předchozím skriptem.
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Re: prosim o kontrolu-blbne pripojeni
zdravim,
1.alcohol odinstalovan
2.SPTD nejde zvolit uninstall. Pouze install
3.Log
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 10:13 on 29/10/2012 (AKE)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
1.alcohol odinstalovan
2.SPTD nejde zvolit uninstall. Pouze install
3.Log
defogger_disable by jpshortstuff (23.02.10.1)
Log created at 10:13 on 29/10/2012 (AKE)
Checking for autostart values...
HKCU\~\Run values retrieved.
HKLM\~\Run values retrieved.
Checking for services/drivers...
-=E.O.F=-
Re: prosim o kontrolu-blbne pripojeni
aComboFix 12-10-29.01 - AKE 29.10.2012 10:20:36.6.2 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1331 [GMT 1:00]
Spuštěný z: c:\documents and settings\AKE\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\AKE\Plocha\CFScript.txt
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
Nakažená kopie c:\windows\system32\drivers\atapi.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\atapi.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-28 do 2012-10-29 )))))))))))))))))))))))))))))))
.
.
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- c:\program files\trend micro
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- C:\rsit
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 04:39 . 2012-10-18 04:34 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 05:36 . 2012-04-10 09:32 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 05:36 . 2012-03-06 08:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 15:18 . 2006-03-04 03:35 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 10:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 10:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 10:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 10:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2005-03-30 17:37 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:27 . 2005-03-30 17:37 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-26 09:37 . 2012-10-26 09:37 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-06-12 1368824]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-04-15 159744]
"Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2007-07-20 1228800]
"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-08-29 24576]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-7-30 2158592]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-02-20 12:57 65536 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0lsdelete
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"O&O Defrag"=3 (0x3)
"ose"=3 (0x3)
"Iap"=2 (0x2)
"Autodesk Licensing Service"=3 (0x3)
"Pml Driver HPZ12"=2 (0x2)
"FMMService"=2 (0x2)
"FirebirdServerDefaultInstance"=3 (0x3)
"FirebirdGuardianDefaultInstance"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"511:TCP"= 511:TCP:*:Disabled:money
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 08:20 118104]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [19.10.2009 13:37 142592]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 19:54 116608]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44];c:\program files\Cyberlink\PowerDVD10\NavFilter\000.fcl [13.3.2010 12:58 87536]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33];c:\program files\PowerDVD9\PowerDVD9\000.fcl [7.5.2009 21:05 87536]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [14.4.2010 10:28 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [12.6.2012 12:01 124856]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 11:03 974944]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.4.2008 07:23 9728]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher;c:\program files\Vivotek\ST3402\Launcher_VV.exe [10.12.2008 20:53 335872]
R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2.11.2006 11:32 97536]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [7.7.2012 10:00 73216]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [27.9.2007 20:58 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [27.9.2007 20:58 92288]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [3.10.2007 05:42 33536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.4.2012 10:32 250808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [7.7.2012 10:00 102784]
S3 ft1000;Flarion Flash OFDM wireless service;c:\windows\system32\drivers\ft1000.sys [3.10.2007 05:15 62208]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [22.11.2007 11:48 61776]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [7.7.2012 10:00 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter;c:\windows\system32\drivers\ipwpnet.sys [3.4.2008 07:23 43184]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [28.10.2011 06:40 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.5.2012 10:23 115168]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [6.4.2004 04:24 64088]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
S4 FMMService;FMMService;c:\progra~1\MOBILI~1\FMMSER~1.EXE [3.10.2007 05:15 40960]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 05:36]
.
2012-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-13 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: csob.cz\www
Trusted Zone: tatrabanka.sk\moja
TCP: Interfaces\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} - hxxps://ib24.csob.cz/(S(s3kzpz45aepymu554iutc445))/Comp/CSOBEnroll.dll
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} - hxxps://www.mojedatovaschranka.cz/static/pages/ ... ?3,16,13,0
FF - ProfilePath - c:\documents and settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.satelitnisledovani.cz/
FF - ExtSQL: !HIDDEN! 2009-09-02 19:58; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-Úprava písemností 1.0 - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-29 10:27
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1832)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(3432)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\System32\WLTRYSVC.EXE
c:\windows\System32\bcmwltry.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
c:\windows\system32\oodag.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\SigmaTel\C-Major Audio\WDM\StacSV.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\stsystra.exe
c:\windows\system32\rundll32.exe
c:\program files\Apoint\ApMsgFwd.exe
c:\program files\Apoint\HidFind.exe
c:\program files\Apoint\Apntex.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
.
**************************************************************************
.
Celkový čas: 2012-10-29 10:29:51 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-29 09:29
ComboFix2.txt 2012-10-28 09:59
ComboFix3.txt 2012-10-21 11:43
.
Před spuštěním: 7 600 553 984
Po spuštění: 7 659 446 272
.
- - End Of File - - E07831D59857CB6903CF1C57B88868D5
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.2046.1331 [GMT 1:00]
Spuštěný z: c:\documents and settings\AKE\Plocha\ComboFix.exe
Použité ovládací přepínače :: c:\documents and settings\AKE\Plocha\CFScript.txt
AV: ESET Smart Security 5.0 *Disabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *Disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
.
.
((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
Nakažená kopie c:\windows\system32\drivers\atapi.sys byla nalezena a vyléčena.
Obnovena kopie z - c:\windows\ServicePackFiles\i386\atapi.sys
.
.
((((((((((((((((((((((((( Soubory vytvořené od 2012-09-28 do 2012-10-29 )))))))))))))))))))))))))))))))
.
.
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- c:\program files\trend micro
2012-10-17 04:44 . 2012-10-17 04:44 -------- d-----w- C:\rsit
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\AKE\Data aplikací\SUPERAntiSpyware.com
2012-10-13 04:39 . 2012-10-18 04:34 -------- d-----w- c:\program files\SUPERAntiSpyware
2012-10-13 04:39 . 2012-10-13 04:39 -------- d-----w- c:\documents and settings\All Users\Data aplikací\SUPERAntiSpyware.com
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-10-09 05:36 . 2012-04-10 09:32 696760 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-10-09 05:36 . 2012-03-06 08:54 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-28 15:18 . 2006-03-04 03:35 916992 ----a-w- c:\windows\system32\wininet.dll
2012-08-28 15:18 . 2004-08-18 10:00 43520 ------w- c:\windows\system32\licmgr10.dll
2012-08-28 15:18 . 2004-08-18 10:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-08-28 12:07 . 2004-08-18 10:00 385024 ------w- c:\windows\system32\html.iec
2012-08-24 13:53 . 2004-08-18 10:00 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-08-23 06:27 . 2005-03-30 17:37 2029568 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-08-23 06:27 . 2005-03-30 17:37 2150912 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-10-26 09:37 . 2012-10-26 09:37 261600 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"T-Mobile Communication Centre"="c:\program files\T-Mobile\Web'n'walk Manager\Manager.exe" [2012-06-12 1368824]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-04-10 39408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="c:\program files\Apoint\Apoint.exe" [2007-04-15 159744]
"Dell QuickSet"="c:\program files\Dell\QuickSet\quickset.exe" [2007-07-20 1228800]
"gemstrmw"="c:\windows\system32\gemstrmw.exe" [2003-08-29 24576]
"SigmatelSysTrayApp"="stsystra.exe" [2007-02-19 303104]
"NVHotkey"="nvHotkey.dll" [2007-04-28 67584]
"IntelWireless"="c:\program files\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
"Broadcom Wireless Manager UI"="c:\windows\system32\WLTRAY.exe" [2007-03-16 1392640]
"ITSecMng"="c:\program files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe" [2007-07-31 65536]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2011-09-22 3080264]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-28 8429568]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Bluetooth Manager.lnk - c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtMng.exe [2007-7-30 2158592]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-07-19 113024]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\LBTWlgn]
2007-02-20 12:57 65536 ----a-w- c:\program files\Common Files\Logitech\Bluetooth\LBTWlgn.DLL
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS\0lsdelete
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WdfLoadGroup]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"sdCoreService"=3 (0x3)
"sdAuxService"=3 (0x3)
"O&O Defrag"=3 (0x3)
"ose"=3 (0x3)
"Iap"=2 (0x2)
"Autodesk Licensing Service"=3 (0x3)
"Pml Driver HPZ12"=2 (0x2)
"FMMService"=2 (0x2)
"FirebirdServerDefaultInstance"=3 (0x3)
"FirebirdGuardianDefaultInstance"=3 (0x3)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\WINDOWS\\system32\\sessmgr.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\TeamViewer3\\TeamViewer.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"511:TCP"= 511:TCP:*:Disabled:money
.
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [4.8.2011 08:20 118104]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\sasdifsv.sys [22.7.2011 17:27 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [12.7.2011 22:55 67664]
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [19.10.2009 13:37 142592]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCore.exe [11.7.2012 19:54 116608]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2011/03/07 10:44];c:\program files\Cyberlink\PowerDVD10\NavFilter\000.fcl [13.3.2010 12:58 87536]
R2 {B154377D-700F-42cc-9474-23858FBDF4BD};Power Control [2009/12/02 09:33];c:\program files\PowerDVD9\PowerDVD9\000.fcl [7.5.2009 21:05 87536]
R2 602XML Updater;602Updater;c:\program files\Common Files\soft602\602updsvc\602updsvc.exe [14.4.2010 10:28 73728]
R2 ameisvc;Web'n'walk Manager mobile equipment installation service;c:\program files\T-Mobile\Web'n'walk Manager\ameisvc.exe [12.6.2012 12:01 124856]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [22.9.2011 11:03 974944]
R2 Ethpdrv;Ethernet Packet Driver;c:\windows\system32\drivers\ethpdrv.sys [3.4.2008 07:23 9728]
R2 Vivotek_ST3402;Vivotek ST3402 Launcher;c:\program files\Vivotek\ST3402\Launcher_VV.exe [10.12.2008 20:53 335872]
R3 DXEC01;DXEC01;c:\windows\system32\drivers\dxec01.sys [2.11.2006 11:32 97536]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [7.7.2012 10:00 73216]
R3 NWDellModem;Dell Wireless Mobile Broadband Modem Driver;c:\windows\system32\drivers\nwdelmdm.sys [27.9.2007 20:58 92288]
R3 NWDellPort;Dell Wireless Mobile Broadband Status Port Driver;c:\windows\system32\drivers\nwdelser.sys [27.9.2007 20:58 92288]
S2 gupdate;Služba Google Update (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 ACSSCR;ACR38 Smart Card Reader;c:\windows\system32\drivers\a38usb.sys [3.10.2007 05:42 33536]
S3 AdobeFlashPlayerUpdateSvc;Adobe Flash Player Update Service;c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [10.4.2012 10:32 250808]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [7.7.2012 10:00 102784]
S3 ft1000;Flarion Flash OFDM wireless service;c:\windows\system32\drivers\ft1000.sys [3.10.2007 05:15 62208]
S3 GTwinUSB;GTwinUSB;c:\windows\system32\drivers\GTwinUSB.sys [22.11.2007 11:48 61776]
S3 gupdatem;Služba Google Update (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [10.4.2012 10:32 136176]
S3 huawei_cdcacm;huawei_cdcacm;c:\windows\system32\drivers\ew_jucdcacm.sys [7.7.2012 10:00 90368]
S3 IpwP;IPWireless 3G PCMCIA Network Adapter;c:\windows\system32\drivers\ipwpnet.sys [3.4.2008 07:23 43184]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [28.10.2011 06:40 9216]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\Mozilla Maintenance Service\maintenanceservice.exe [15.5.2012 10:23 115168]
S3 SCR33X USB Smart Card Reader;SCR33X USB Smart Card Reader;c:\windows\system32\drivers\SCR33X2K.sys [6.4.2004 04:24 64088]
S4 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbguard.exe -s [?]
S4 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s --> c:\program files\Firebird\Firebird_2_0\bin\fbserver.exe -s [?]
S4 FMMService;FMMService;c:\progra~1\MOBILI~1\FMMSER~1.EXE [3.10.2007 05:15 40960]
.
Obsah adresáře 'Naplánované úlohy'
.
2012-10-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-04-10 05:36]
.
2012-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-04-10 09:32]
.
2012-10-13 c:\windows\Tasks\SUPERAntiSpyware Scheduled Task 935e5c7e-a1b3-4984-a71c-774de4c5f3fe.job
- c:\program files\SUPERAntiSpyware\SASTask.exe [2011-05-04 17:52]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://centrum.cz/
mSearch Bar = hxxp://www.google.com/ie
uInternet Connection Wizard,ShellNext = iexplore
uInternet Settings,ProxyOverride = *.local
IE: Append to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert link target to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert link target to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert selected links to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert selected links to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Convert selection to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: Convert selection to existing PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert to Adobe PDF - c:\program files\Adobe\Acrobat 8.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
IE: E&xportovat do aplikace Microsoft Office Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
Trusted Zone: csob.cz\www
Trusted Zone: tatrabanka.sk\moja
TCP: Interfaces\{775F14B0-0D9D-48DA-85A7-FB08A810BE39}: NameServer = 85.132.180.62
DPF: {1AE23F24-D3E4-4C57-8468-6618B9B8B70F} - hxxps://ib24.csob.cz/Comp/IcaSignerCZ.cab
DPF: {461A37E7-17B3-40E3-B6BB-7CAEC732C9E4} - hxxps://ib24.csob.cz/(S(s3kzpz45aepymu554iutc445))/Comp/CSOBEnroll.dll
DPF: {672EE252-D813-4F5E-81BB-5DD163DD4FA5} - hxxps://www.mojedatovaschranka.cz/static/pages/ ... ?3,16,13,0
FF - ProfilePath - c:\documents and settings\AKE\Data aplikací\Mozilla\Firefox\Profiles\tj0ldnc5.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.satelitnisledovani.cz/
FF - ExtSQL: !HIDDEN! 2009-09-02 19:58; {20a82645-c095-46ed-80e3-08825760534b}; c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -
.
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
AddRemove-Úprava písemností 1.0 - c:\windows\IsUn0405.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-10-29 10:27
Windows 5.1.2600 Service Pack 3 NTFS
.
skenování skrytých procesů ...
.
skenování skrytých položek 'Po spuštění' ...
.
skenování skrytých souborů ...
.
sken byl úspešně dokončen
skryté soubory: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC}]
"ImagePath"="\??\c:\program files\CyberLink\PowerDVD10\NavFilter\000.fcl"
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\{B154377D-700F-42cc-9474-23858FBDF4BD}]
"ImagePath"="\??\c:\program files\PowerDVD9\PowerDVD9\000.fcl"
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_4_402_287_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- Knihovny navázané na běžící procesy ---------------------
.
- - - - - - - > 'winlogon.exe'(1832)
c:\program files\common files\logitech\bluetooth\LBTWlgn.dll
c:\program files\common files\logitech\bluetooth\LBTServ.dll
.
- - - - - - - > 'explorer.exe'(3432)
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
c:\program files\Common Files\Logitech\Bluetooth\LBTSERV.EXE
c:\program files\Intel\Wireless\Bin\S24EvMon.exe
c:\windows\System32\WLTRYSVC.EXE
c:\windows\System32\bcmwltry.exe
c:\windows\System32\SCardSvr.exe
c:\program files\Intel\Wireless\Bin\EvtEng.exe
c:\program files\Dell\QuickSet\NICCONFIGSVC.exe
c:\windows\system32\oodag.exe
c:\program files\Intel\Wireless\Bin\RegSrvc.exe
c:\program files\Cyberlink\Shared files\RichVideo.exe
c:\program files\Spyware Terminator\sp_rsser.exe
c:\program files\SigmaTel\C-Major Audio\WDM\StacSV.exe
c:\program files\Intel\Wireless\Bin\WLKeeper.exe
c:\windows\stsystra.exe
c:\windows\system32\rundll32.exe
c:\program files\Apoint\ApMsgFwd.exe
c:\program files\Apoint\HidFind.exe
c:\program files\Apoint\Apntex.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosA2dp.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtHid.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosBtBty.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\TosAVRC.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosOBEX.exe
c:\program files\Toshiba\Bluetooth Toshiba Stack\tosBtProc.exe
.
**************************************************************************
.
Celkový čas: 2012-10-29 10:29:51 - počítač byl restartován
ComboFix-quarantined-files.txt 2012-10-29 09:29
ComboFix2.txt 2012-10-28 09:59
ComboFix3.txt 2012-10-21 11:43
.
Před spuštěním: 7 600 553 984
Po spuštění: 7 659 446 272
.
- - End Of File - - E07831D59857CB6903CF1C57B88868D5
Přispějete na provoz fóra?