Nelze vypnout počítač, zmizela spodní lišta

Zpráva

zdenpok · #1 Příspěvek od **zdenpok** » 15 črc 2010 21:13

Dobrý den! Prosím o kontrolu, nelze vypnout počítač, vždy se jen zrestartuje, teď mi navíc zmizela spodní lišta, kterou nelze nijak vyvolat, stejně tak nabídku start, nefunguje ani na klávesnici ani zkratka ctrl+esc. Děkuji.

Windows XP SP 2 (build 2600)
Boot Mode: Normal
Ověření souborů Microsoftu: Ano
Whitelist: Ano
Internet Explorer v6.00.2900.2180 (xpsp_sp2_rtm.040803-2158)
Log vygenerován: 15.7.2010 22:05:18
================================================================

SmallARK
================================================================
[R]NtClose -> C:\windows\system32\drivers\fwdrv.sys
[R]NtCreateFile -> C:\windows\system32\drivers\fwdrv.sys
[R]NtCreateKey -> C:\windows\system32\drivers\fwdrv.sys
[R]NtCreateProcess -> C:\windows\system32\drivers\fwdrv.sys
[R]NtCreateProcessEx -> C:\windows\system32\drivers\fwdrv.sys
[R]NtCreateThread -> C:\windows\system32\drivers\fwdrv.sys
[R]NtDeleteFile -> C:\windows\system32\drivers\fwdrv.sys
[R]NtDeleteKey -> C:\windows\system32\drivers\fwdrv.sys
[R]NtDeleteValueKey -> C:\windows\system32\drivers\fwdrv.sys
[R]NtLoadDriver -> C:\windows\system32\drivers\khips.sys
[R]NtMapViewOfSection -> C:\windows\system32\drivers\khips.sys
[R]NtOpenFile -> C:\windows\system32\drivers\fwdrv.sys
[R]NtOpenKey -> C:\windows\system32\drivers\fwdrv.sys
[R]NtResumeThread -> C:\windows\system32\drivers\fwdrv.sys
[R]NtSetInformationFile -> C:\windows\system32\drivers\fwdrv.sys
[R]NtSetValueKey -> C:\windows\system32\drivers\fwdrv.sys
[R]NtWriteFile -> C:\windows\system32\drivers\fwdrv.sys

Běžící procesy
================================================================

C:\WINDOWS\SYSTEM32\NVSVC32.EXE
C:\PROGRA~1\SPYWAR~1\SP_RSSER.EXE
C:\PROGRAM FILES\ALCOHOL SOFT\ALCOHOL 120\STARWIND\STARWINDSERVICE.EXE
C:\PROGRAM FILES\KERIO\MAILSERVER\MAILSERVER.EXE
C:\PROGRAM FILES\KERIO\MAILSERVER\PLUGINS\AVSERVER.EXE
C:\PROGRAM FILES\KERIO\MAILSERVER\PLUGINS\SPAMSERVER.EXE
C:\PROGRA~1\SPYWAR~1\SPYWARETERMINATORSHIELD.EXE
C:\HP\KBD\KBD.EXE
C:\PROGRAM FILES\ENHANCEKEYBOARD\KB_2K.EXE
C:\DOCUME~1\ADMINI~1\LOCALS~1\TEMP\AVENGER.EXE

Scanner
================================================================
[?] nvsvc32.exe
Non Microsoft v System32:
Soubor 7%

[?] sp_rsser.exe
EntryPoint v sekci: .ITEXT
|_ Celkový počet sekcí: 9
Nemá okno
Soubor 70%

[?] StarWindService.exe
Nemá okno
Soubor 7%

[?] mailserver.exe
Nemá okno
Soubor 7%

[?] avserver.exe
Nemá okno
Soubor 7%

[?] spamserver.exe
Nemá okno
Soubor 7%

[R] OpWareSE4.exe
Spouští se po startu HKLM Run [OpwareSE4]

[?] SpywareTerminatorShield.Exe
Spouští se po startu HKLM Run [SpywareTerminator]
EntryPoint v sekci: .ITEXT
|_ Celkový počet sekcí: 9
Soubor 70%

[S] rundll32.exe
Spouští se po startu HKLM Run [NvCplDaemon]

[?] kbd.exe
Spouští se po startu HKLM Run [KBD]
Soubor 7%

[S] rundll32.exe
Spouští se po startu HKLM Run [NvCplDaemon]

[R] realsched.exe
Spouští se po startu HKLM Run [TkBellExe]

[R] jusched.exe
Spouští se po startu HKLM Run [SunJavaUpdateSched]

[?] kb_2k.exe
Spouští se po startu Po spuštění []
Soubor 7%

[S] explorer.exe
Spouští se po startu HKLM Winlogon [Shell]

[?] avenger.exe
Bez výrobce
EntryPoint v sekci: UPX1
|_ Celkový počet sekcí: 3
Soubor 100%

[S] ctfmon.exe
Spouští se po startu HKCU Run [ctfmon.exe]

Po spuštění
================================================================

HKLM Run
|_ [?][nwiz] nwiz.exe /install
|_ [?][NvCplDaemon] C:\WINDOWS\system32\NvCpl.dll ,NvStartup
|_ [!][SpywareTerminator] C:\PROGRA~1\SPYWAR~1\SpywareTerminatorShield.exe
|_ [?][WinSys2] C:\WINDOWS\system32\winsys2.exe
|_ [?][NvMediaCenter] C:\WINDOWS\system32\NvMcTray.dll ,NvTaskbarInit
|_ [?][KBD] C:\HP\KBD\KBD.EXE
|_ [R][TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe -osboot

HKLM IC
|_ [X][>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP (Soubor nenalezen)
|_ [?][{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] C:\WINDOWS\INF\msnetmtg.inf ,NetMtg.Install.PerUser.NT
|_ [?][{5945c046-1e7d-11d1-bc44-00c04fd912be}] C:\WINDOWS\INF\msmsgs.inf ,BLC.QuietInstall.PerUser
|_ [?][{6BF52A52-394A-11d3-B153-00C04F79FAA6}] C:\WINDOWS\INF\wmp.inf ,PerUserStub
|_ [?][{89820200-ECBD-11cf-8B85-00AA005B4340}] regsvr32.exe /s /n /i:U shell32.dll

Po spuštění
|_ C:\Program Files\EnhanceKeyboard\kb_2k.exe

HKLM BHO
|_ [?][{83B80A9C-D91A-4F22-8DCF-EA7204039F79}] C:\Program Files\Xi\NetXfer\NXIEHelper.dll
|_ [?][{91DE4477-9CDC-4806-9BCB-28A963988E94}] C:\Program Files\Cerience\RepliGo\RepliGoIEHelper.dll
|_ [?][{C451C08A-EC37-45DF-AAAD-18B51AB5E837}] C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll

HKCU IE WebBrowser Toolbar
|_ [X][{855F3B16-6D32-4FE6-8A56-BBB695989046}] (Soubor nenalezen)
|_ [?][{81F4066B-F330-4872-8094-3E9FBCCEC8C1}] C:\Program Files\Cerience\RepliGo\RepliGoIEBar.dll
|_ [?][{B71B15CF-3093-459C-B764-AEB2486F2273}] F:\Programy\Postak\SRank.dll
|_ [X][{4B3803EA-5230-4DC3-A7FC-33638F3D3542}] (Soubor nenalezen)
|_ [?][{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}] C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll

HKLM IE Toolbar
|_ [?][{BFC32E1D-EE75-4A48-BC60-104E11EE2431}] C:\TRANSLAT\WEBIE.DLL
|_ [?][{81F4066B-F330-4872-8094-3E9FBCCEC8C1}] C:\Program Files\Cerience\RepliGo\RepliGoIEBar.dll
|_ [?][{C16CBAAC-A75C-4DB5-A0DD-CDF5CAFCDD3A}] C:\Program Files\Xi\NetXfer\NXToolBar.dll
|_ [?][{31CF9EBE-5755-4A1D-AC25-2834D952D9B4}] C:\Program Files\PDFCreator Toolbar\v3.3.0.1\PDFCreator_Toolbar.dll
|_ [?][{2913D3DD-9363-4C21-B205-C19A584A0674}] C:\Program Files\Spb Wallet\SpbWalletToolbar.dll

Služby (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[X] Java Quick Starter
|_ Cesta: C:\Program Files\Java\jre6\bin\jqs.exe -service -config C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: JavaQuickStarterService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[?] Kerio MailServer
|_ Cesta: C:\Program Files\Kerio\MailServer\mailserver.exe
| |_ Výrobce: Kerio Technologies
| |_ Popis: Kerio MailServer
| |_ MD5: 5475361171EDF132317A39A2AF8CAB2E
|
|_ Jméno: KerioMailServer
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ:
|_ Dependency: NTLmSsp

[?] Machine Debug Manager
|_ Cesta: C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Machine Debug Manager
| |_ MD5: 5B4D0134533B93849C4C19D88CBBB50C
|
|_ Jméno: MDM
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Zastaveno
|_ Typ:
|_ Dependency: RPCSS

[?] NVIDIA Display Driver Service
|_ Cesta: C:\windows\system32\nvsvc32.exe
| |_ Výrobce: NVIDIA Corporation
| |_ Popis: NVIDIA Driver Helper Service, Version 178.24
| |_ MD5: 42321AC5448078131903B272E6C49024
|
|_ Jméno: NVSvc
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

[!] Spyware Terminator Realtime Shield Service
|_ Cesta: C:\PROGRA~1\SPYWAR~1\sp_rsser.exe
| |_ Výrobce: Crawler.com
| |_ Popis: Spyware Terminator Realtime Shield Service
| |_ MD5: 20CC04B6DC942027B294415CC7689204
|
|_ Jméno: sp_rssrv
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency: sp_rsdrv2

[?] StarWind iSCSI Service
|_ Cesta: C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
| |_ Výrobce: Rocket Division Software
| |_ Popis: StarWind iSCSI Target (Alcohol Edition)
| |_ MD5: AB2B9349ADA4AC5EC74B622B8303FE23
|
|_ Jméno: StarWindService
|_ StartName: LocalSystem
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Win32 Own Process
|_ Dependency:

Ovladače (Zobraz běžící: True, Zobraz zastavené: False, Zobraz i bezpečné služby: False)
================================================================
[?] Microsoft ACPI Driver
|_ Cesta: C:\windows\System32\DRIVERS\ACPI.sys
| |_ Výrobce: Microsoft Corporation
| |_ Popis: ACPI Driver for NT
| |_ MD5: 093E76E0FD5C63515CA4DE1ED61556F9
|
|_ Jméno: ACPI
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Service for WDM 3D Audio Driver
|_ Cesta: C:\windows\system32\drivers\ALCXSENS.SYS
| |_ Výrobce: Sensaura Ltd
| |_ Popis: Sensaura WDM 3D Audio Driver
| |_ MD5: FBBCB95F677CBAA924140B6EA2D9A97B
|
|_ Jméno: ALCXSENS
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Service for Realtek AC97 Audio (WDM)
|_ Cesta: C:\windows\system32\drivers\ALCXWDM.SYS
| |_ Výrobce: Realtek Semiconductor Corp.
| |_ Popis: Realtek AC'97 Audio Driver (WDM)
| |_ MD5: BC5C55B49C4BD1FDFAAA128FE21F9FEA
|
|_ Jméno: ALCXWDM
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Standardní řadič disku IDE či ESDI
|_ Cesta: C:\windows\System32\DRIVERS\atapi.sys
| |_ Výrobce: Microsoft Corporation
| |_ Popis: IDE/ATAPI Port Driver
| |_ MD5: A64013E98426E1877CB653685C5C0009
|
|_ Jméno: atapi
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[X] catchme
|_ Cesta: C:\ComboFix\catchme.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5:
|
|_ Jméno: catchme
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] EUTRON SmartKey Parallel Driver
|_ Cesta: C:\WINDOWS\system32\Drivers\eusk2par.sys
| |_ Výrobce: EUTRON
| |_ Popis: SmartKey Parallel driver for Windows
| |_ MD5: F7955F5273F7CA5DA13EBEEF4F736C44
|
|_ Jméno: eusk2par
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Pinnacle Marvin Bus
|_ Cesta: C:\windows\system32\DRIVERS\MarvinBus.sys
| |_ Výrobce: Pinnacle Systems GmbH
| |_ Popis: Pinnacle Marvin Discrete Bus Enumerator
| |_ MD5: 269C14D512B74CC28D2812FF7D1EB066
|
|_ Jméno: MarvinBus
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] MxlW2k
|_ Cesta: C:\windows\system32\drivers\MxlW2k.sys
| |_ Výrobce: MusicMatch, Inc.
| |_ Popis: MusicMatch Access Layer KMD
| |_ MD5: 88F57A15B786BF2AF9458F7903768085
|
|_ Jméno: MxlW2k
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] nv
|_ Cesta: C:\windows\System32\DRIVERS\nv4_mini.sys
| |_ Výrobce: NVIDIA Corporation
| |_ Popis: NVIDIA Compatible Windows 2000 Miniport Driver, Version 178.24
| |_ MD5: 83780F3A86D2804912F22F6E37CD2254
|
|_ Jméno: nv
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Řadič sběrnice PCI
|_ Cesta: C:\windows\System32\DRIVERS\pci.sys
| |_ Výrobce: Microsoft Corporation
| |_ Popis: NT Plug and Play PCI Enumerator
| |_ MD5: 7B1A1A348127D32268884C0CE046652F
|
|_ Jméno: PCI
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] PCLEPCI
|_ Cesta: C:\WINDOWS\system32\drivers\pclepci.sys
| |_ Výrobce: Pinnacle Systems GmbH
| |_ Popis: PCLEPCI
| |_ MD5: 1BEBE7DE8508A02650CDCE45C664C2A2
|
|_ Jméno: PCLEPCI
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] port_nt
|_ Cesta: c:\windows\system32\drivers\port_nt.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5: 03280BC3DEB62F4C44AA5CC34C27DDB0
|
|_ Jméno: port_nt
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Star Force copy protection driver v4
|_ Cesta: C:\windows\System32\drivers\prodrv04.sys
| |_ Výrobce: Protection Technology Co.
| |_ Popis: Star Force copy protection driver
| |_ MD5: 4AA86B6F5FDF5ED32ADC723B0E5B052D
|
|_ Jméno: prodrv04
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] PS2
|_ Cesta: C:\windows\system32\DRIVERS\PS2.sys
| |_ Výrobce: Hewlett-Packard Company
| |_ Popis: PS2 SYS
| |_ MD5: 390C204CED3785609AB24E9C52054A84
|
|_ Jméno: Ps2
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Ovladač přesměrovače zařízení terminálového serveru
|_ Cesta: C:\windows\System32\DRIVERS\rdpdr.sys
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Microsoft RDP Device redirector
| |_ MD5: 57F34F83E278DD804BA4A0593D789312
|
|_ Jméno: rdpdr
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Realtek RTL8139/810x/8169/8110 all in one NDIS NT Driver
|_ Cesta: C:\windows\System32\DRIVERS\Rtlnic51.sys
| |_ Výrobce: Realtek Semiconductor Corporation
| |_ Popis: Realtek 10/100/1000 NDIS 5.1 Driver
| |_ MD5: 29F9879A1FD386F7251AE9FDADB2CBF1
|
|_ Jméno: RTL8023
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Secdrv
|_ Cesta: C:\windows\System32\DRIVERS\secdrv.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5: D26E26EA516450AF9D072635C60387F4
|
|_ Jméno: Secdrv
|_ StartName:
|_ Typ spouštění: Auto Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Splitcam, WDM Camera Stream Splitter
|_ Cesta: C:\windows\System32\DRIVERS\splitcam.sys
| |_ Výrobce: LoteSoft Co.
| |_ Popis: Video Capture Stream Splitter
| |_ MD5: C7C361A04742AB187E10583BBF4FA975
|
|_ Jméno: SPLITCAM
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] sptd
|_ Cesta: C:\windows\System32\Drivers\sptd.sys
| |_ Výrobce: Duplex Secure Ltd.
| |_ Popis: SCSI Pass Through Direct Host
| |_ MD5: E85C4AA61CF1729AA28BA3457167628A
|
|_ Jméno: sptd
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Zastaveno
|_ Typ: Kernel Driver
|_ Dependency:

[?] StarOpen
|_ Cesta: C:\windows\system32\drivers\StarOpen.sys
| |_ Výrobce:
| |_ Popis:
| |_ MD5: 306521935042FC0A6988D528643619B3
|
|_ Jméno: StarOpen
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: File System Driver
|_ Dependency:

[?] Ovladač terminálového zařízení
|_ Cesta: C:\windows\System32\DRIVERS\termdd.sys
| |_ Výrobce: Microsoft Corporation
| |_ Popis: Terminal Server Driver
| |_ MD5: 68B71EB2E79F60640B4B3A1A714317E5
|
|_ Jméno: TermDD
|_ StartName:
|_ Typ spouštění: System Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] M-Systems DiskOnChip 2000
|_ Cesta: C:\windows\System32\DRIVERS\tffsport.sys
| |_ Výrobce: M-Systems
| |_ Popis: TrueFFS Port Driver
| |_ MD5: E70124B772AD84B6BC1E3A92A59D1799
|
|_ Jméno: tffsport
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft
|_ Cesta: C:\windows\System32\DRIVERS\usbuhci.sys
| |_ Výrobce: Microsoft Corporation
| |_ Popis: UHCI USB Miniport Driver
| |_ MD5: B8F6119FD7DF389D823BA27A3023E150
|
|_ Jméno: usbuhci
|_ StartName:
|_ Typ spouštění: Ruční spuštění
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Vax347b
|_ Cesta: C:\windows\system32\DRIVERS\Vax347b.sys
| |_ Výrobce:
| |_ Popis: Plug and Play BIOS Extension
| |_ MD5: CB3400D696BEE266C38CAE330C2B4337
|
|_ Jméno: Vax347b
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Zastaveno
|_ Typ: Kernel Driver
|_ Dependency:

[?] Vax347s
|_ Cesta: C:\windows\System32\Drivers\Vax347s.sys
| |_ Výrobce:
| |_ Popis: SCSI miniport
| |_ MD5: 113E4B318BBAA7483CA4E582A4D63F49
|
|_ Jméno: Vax347s
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

[?] ViaIde
|_ Cesta: C:\windows\System32\DRIVERS\viaidexp.sys
| |_ Výrobce: VIA Technologies, Inc.
| |_ Popis: VIA Generic PCI IDE Bus Driver
| |_ MD5: A5D8B6C8D43786D4215C1DF6FAB0AAE0
|
|_ Jméno: ViaIde
|_ StartName:
|_ Typ spouštění: Boot Start
|_ Status: Spuštěno
|_ Typ: Kernel Driver
|_ Dependency:

lNetStat
================================================================
Typ: PID Proces Local <-> Remote Status
-----------------------------------------------------------------------------------------
TCP (404) mailserver.exe 0.0.0.0:25 LISTENING
TCP (404) mailserver.exe 0.0.0.0:80 LISTENING
TCP (404) mailserver.exe 0.0.0.0:110 LISTENING
TCP (404) mailserver.exe 0.0.0.0:119 LISTENING
TCP (404) mailserver.exe 0.0.0.0:143 LISTENING
TCP (404) mailserver.exe 0.0.0.0:389 LISTENING
TCP (404) mailserver.exe 0.0.0.0:443 LISTENING
TCP (4) Systém 0.0.0.0:445 LISTENING
TCP (404) mailserver.exe 0.0.0.0:465 LISTENING
TCP (404) mailserver.exe 0.0.0.0:563 LISTENING
TCP (404) mailserver.exe 0.0.0.0:636 LISTENING
TCP (404) mailserver.exe 0.0.0.0:993 LISTENING
TCP (404) mailserver.exe 0.0.0.0:995 LISTENING
TCP (548) kpf4gui.exe 0.0.0.0:1028 LISTENING
TCP (608) kpf4gui.exe 0.0.0.0:1047 LISTENING
TCP (264) StarWindService.exe 0.0.0.0:3260 LISTENING
TCP (264) StarWindService.exe 0.0.0.0:3261 LISTENING
TCP (212) kpf4ss.exe 0.0.0.0:44334 LISTENING
TCP (404) mailserver.exe 0.0.0.0:44337 LISTENING
TCP (212) kpf4ss.exe 0.0.0.0:44501 LISTENING
TCP (4) Systém 10.10.10.101:139 LISTENING
TCP (0) 10.10.10.101:1588 TIME_WAIT
TCP (1664) UPM.exe 10.10.10.101:1603 <-> 199.7.52.190:80 ESTABLISHED
TCP (0) 10.10.10.101:1605 TIME_WAIT
TCP (1664) UPM.exe 10.10.10.101:1606 <-> 199.7.52.190:80 ESTABLISHED
TCP (0) 10.10.10.101:1608 TIME_WAIT
TCP (1664) UPM.exe 10.10.10.101:1609 <-> 199.7.51.190:80 ESTABLISHED
TCP (0) 10.10.10.101:1617 TIME_WAIT
TCP (0) 10.10.10.101:1621 TIME_WAIT
TCP (1092) firefox.exe 10.10.10.101:1622 <-> 95.168.205.43:80 ESTABLISHED
TCP (1092) firefox.exe 10.10.10.101:1624 <-> 72.14.221.101:80 ESTABLISHED
TCP (0) 10.10.10.101:1639 TIME_WAIT
TCP (0) 10.10.10.101:1661 TIME_WAIT
TCP (0) 10.10.10.101:1662 TIME_WAIT
TCP (0) 10.10.10.101:1663 TIME_WAIT
TCP (0) 10.10.10.101:1664 TIME_WAIT
TCP (0) 10.10.10.101:1665 TIME_WAIT
TCP (0) 10.10.10.101:1666 TIME_WAIT
TCP (0) 10.10.10.101:1680 TIME_WAIT
TCP (0) 10.10.10.101:1682 TIME_WAIT
TCP (548) kpf4gui.exe 127.0.0.1:1026 <-> 127.0.0.1:44334 ESTABLISHED
TCP (548) kpf4gui.exe 127.0.0.1:1028 <-> 127.0.0.1:1030 ESTABLISHED
TCP (212) kpf4ss.exe 127.0.0.1:1030 <-> 127.0.0.1:1028 ESTABLISHED
TCP (608) kpf4gui.exe 127.0.0.1:1045 <-> 127.0.0.1:44334 ESTABLISHED
TCP (608) kpf4gui.exe 127.0.0.1:1047 <-> 127.0.0.1:1049 ESTABLISHED
TCP (212) kpf4ss.exe 127.0.0.1:1049 <-> 127.0.0.1:1047 ESTABLISHED
TCP (1092) firefox.exe 127.0.0.1:1050 <-> 127.0.0.1:1051 ESTABLISHED
TCP (1092) firefox.exe 127.0.0.1:1051 <-> 127.0.0.1:1050 ESTABLISHED
TCP (1092) firefox.exe 127.0.0.1:1055 <-> 127.0.0.1:1056 ESTABLISHED
TCP (1092) firefox.exe 127.0.0.1:1056 <-> 127.0.0.1:1055 ESTABLISHED
TCP (136) jqs.exe 127.0.0.1:5152 LISTENING
TCP (136) jqs.exe 127.0.0.1:5152 CLOSE_WAIT
TCP (2000) mDNSResponder.exe 127.0.0.1:5354 LISTENING
TCP (212) kpf4ss.exe 127.0.0.1:44334 <-> 127.0.0.1:1026 ESTABLISHED
UDP (4) Systém 0.0.0.0:445 <-> 127.0.0.1:1045 ESTABLISHED
UDP (2000) mDNSResponder.exe 0.0.0.0:1025
UDP (548) kpf4gui.exe 0.0.0.0:1027
UDP (548) kpf4gui.exe 0.0.0.0:1029
UDP (608) kpf4gui.exe 0.0.0.0:1046
UDP (608) kpf4gui.exe 0.0.0.0:1048
UDP (212) kpf4ss.exe 0.0.0.0:44334
UDP (404) mailserver.exe 0.0.0.0:44337
UDP (2000) mDNSResponder.exe 0.0.0.0:60064
UDP (1560) svchost.exe 10.10.10.101:123
UDP (4) Systém 10.10.10.101:137
UDP (4) Systém 10.10.10.101:138
UDP (2000) mDNSResponder.exe 10.10.10.101:5353
UDP (1560) svchost.exe 127.0.0.1:123

Moduly (Zobraz i bezpečné DLL: False, Jen bez výrobce: True, Zobraz registrované: False)
================================================================
[X] msaud32_divx.acm
|_ Cesta: C:\WINDOWS\system32\msaud32_divx.acm
|_ MD5: 71EA3DCE8B998B6730A942469D15ED44
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ winlogon.exe (1284)

[?] iac25_32.ax
|_ Cesta: C:\WINDOWS\system32\iac25_32.ax
|_ MD5: 785520F2A50AA9D0B2731DD5E51E439B
|_ Výrobce: Intel Corporation
|_ Procesy
|_ winlogon.exe (1284)

[?] l3codeca.acm
|_ Cesta: C:\WINDOWS\system32\l3codeca.acm
|_ MD5: 5FECE484A70476A0EB33CA63714C6A84
|_ Výrobce: Fraunhofer Institut Integrierte Schaltungen IIS
|_ Procesy
|_ winlogon.exe (1284)

[?] msacm32.drv
|_ Cesta: C:\WINDOWS\system32\msacm32.drv
|_ MD5: A32FBE6F7B96529E4898A008382FFAFC
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ winlogon.exe (1284)
|_ explorer.exe (1172)
|_ plugin-container.exe (504)

[?] aswcmnos.dll
|_ Cesta: F:\Programy\aswCmnOS.dll
|_ MD5: 489819CDA9F1778A604EBC411713AD9A
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1984)

[?] aswcmnb.dll
|_ Cesta: F:\Programy\aswCmnB.dll
|_ MD5: 61994F1EC2495D31F413C494A41292A3
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1984)

[?] aswcmns.dll
|_ Cesta: F:\Programy\aswCmnS.dll
|_ MD5: 633E8927E1E5F289A49DB8A3763AA55A
|_ Výrobce: ALWIL Software
|_ Procesy
|_ aswUpdSv.exe (1984)

[?] kmsperf.dll
|_ Cesta: C:\WINDOWS\system32\kmsperf.dll
|_ MD5: 5C1728AE506431A16D96756113C8E11C
|_ Výrobce: Kerio Technologies
|_ Procesy
|_ jqs.exe (136)

[?] nvapi.dll
|_ Cesta: C:\WINDOWS\system32\nvapi.dll
|_ MD5: 2710D99D67D60E89A7856CFF34D03B84
|_ Výrobce: NVIDIA Corporation
|_ Procesy
|_ nvsvc32.exe (188)
|_ rundll32.exe (1396)

[?] curllib.dll
|_ Cesta: C:\Program Files\Sunbelt Software\Personal Firewall\curllib.dll
|_ MD5: A019D3B990AAFA370BA360E2886645AC
|_ Výrobce: The cURL library, http://curl.haxx.se/
|_ Procesy
|_ kpf4ss.exe (212)

[?] mdnsnsp.dll
|_ Cesta: C:\Program Files\Bonjour\mdnsNSP.dll
|_ MD5: 0E3E56064E162EE9CC48698355098301
|_ Výrobce: Apple Inc.
|_ Procesy
|_ kpf4ss.exe (212)
|_ StarWindService.exe (264)
|_ firefox.exe (1092)
|_ UPM.exe (1664)

[?] ktlibeay32_0.9.8.2.dll
|_ Cesta: C:\WINDOWS\system32\ktlibeay32_0.9.8.2.dll
|_ MD5: E147850F0CC665D6DACD00A77FF2E591
|_ Výrobce: The OpenSSL Project, http://www.openssl.org/
|_ Procesy
|_ mailserver.exe (404)
|_ avserver.exe (616)

[?] php4ts.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\php4ts.dll
|_ MD5: D37C6466FF3CA8FDE8968938F66306BC
|_ Výrobce: The PHP Group
|_ Procesy
|_ mailserver.exe (404)

[?] kticonv.dll
|_ Cesta: C:\WINDOWS\system32\kticonv.dll
|_ MD5: E8EC9FF0B02EFB7AB1EFA145975A0B85
|_ Výrobce: Free Software Foundation
|_ Procesy
|_ mailserver.exe (404)

[?] ktssleay32_0.9.8.2.dll
|_ Cesta: C:\WINDOWS\system32\ktssleay32_0.9.8.2.dll
|_ MD5: 2D85D2E7F91502B292F5B72D9E7820CB
|_ Výrobce: The OpenSSL Project, http://www.openssl.org/
|_ Procesy
|_ mailserver.exe (404)

[?] msvcr70.dll
|_ Cesta: C:\WINDOWS\system32\msvcr70.dll
|_ MD5: 5A542C4E0F036431D0B7B607FC08758F
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ mailserver.exe (404)
|_ avserver.exe (616)
|_ spamserver.exe (640)

[?] ktzlib.dll
|_ Cesta: C:\WINDOWS\system32\ktzlib.dll
|_ MD5: 80E74562366416BB899612FEB0D8D9AF
|_ Výrobce: ?
|_ Procesy
|_ avserver.exe (616)

[?] avir_mcafee.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\Avirs\avir_mcafee.dll
|_ MD5: 7188CD80451332EB0ABD71AD20A72523
|_ Výrobce: Kerio Technologies
|_ Procesy
|_ avserver.exe (616)

[?] mcscan32.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\mcafee\mcscan32.dll
|_ MD5: D5FA1043DA20F12373B529E3CCDAAFB0
|_ Výrobce: McAfee, Inc.
|_ Procesy
|_ avserver.exe (616)

[?] base64.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\MIME\Base64\Base64.dll
|_ MD5: B01606C4282EDA94FDC3DC956CE0E8F7
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] posix.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\POSIX\POSIX.dll
|_ MD5: F233ACCCAA88B693BEE9367FBA335F45
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] io.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\IO\IO.dll
|_ MD5: 079484A9E69D714A3B8197619C248C65
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] socket.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\Socket\Socket.dll
|_ MD5: CF4EF0B8FC9C31EEC805567BD885ED52
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] winerror.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\site\lib\auto\Win32\WinError\WinError.dll
|_ MD5: 3F300EB3E3AD2714DC8BC5C9F3A1970C
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] registry.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\site\lib\auto\Win32\Registry\Registry.dll
|_ MD5: 08ED655CAFDEE84D386581515A2B9D0A
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] sha1.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\site\lib\auto\Digest\SHA1\SHA1.dll
|_ MD5: 376E4DB12DCE4F648FAD4B138F8D80D2
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] db_file.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\DB_File\DB_File.dll
|_ MD5: 9FC9808B46883DEF8F131E68E73B08AD
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] parser.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\site\lib\auto\HTML\Parser\Parser.dll
|_ MD5: F360203110103D58D7377E59BA58767D
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] cwd.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\Cwd\Cwd.dll
|_ MD5: 6724D31249BEB91403E90F5CFCEEEEDC
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] hires.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\Time\HiRes\HiRes.dll
|_ MD5: B2551F7A83739E8BAFB92F762830228C
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] dbi.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\site\lib\auto\DBI\DBI.dll
|_ MD5: 8FEAD791FDAE1685DC25E50E34E07137
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] util.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\List\Util\Util.dll
|_ MD5: B658E248F1414914CA6031AB0AE31484
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] sdbm_file.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\SDBM_File\SDBM_File.dll
|_ MD5: 875B06A5B2AFD7CC6F7994D3D17A4120
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] hostname.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\spamassassin\lib\auto\Sys\Hostname\Hostname.dll
|_ MD5: 460D7EB03372B508DAA524F4518D8F08
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] perl58.dll
|_ Cesta: C:\Program Files\Kerio\MailServer\plugins\perl58.dll
|_ MD5: 6207E64E6F0C5F8D317137E7D7E6F81C
|_ Výrobce:
|_ Procesy
|_ spamserver.exe (640)

[?] nview.dll
|_ Cesta: C:\WINDOWS\system32\nview.dll
|_ MD5: CF8CCC929E38C30C2F8D63DC0EF480BD
|_ Výrobce: ?
|_ Procesy
|_ OpWareSE4.exe (1152)
|_ SpywareTerminatorShield.Exe (1252)
|_ rundll32.exe (1348)
|_ kbd.exe (1432)
|_ rundll32.exe (1396)
|_ realsched.exe (780)
|_ kb_2k.exe (1156)
|_ explorer.exe (1172)
|_ kpf4gui.exe (608)
|_ firefox.exe (1092)
|_ avenger.exe (1720)
|_ plugin-container.exe (504)
|_ ctfmon.exe (1448)
|_ UPM.exe (1664)

[?] nvmctray.dll
|_ Cesta: C:\WINDOWS\system32\nvmctray.dll
|_ MD5: C4170F4788F0A5BE48B1307DB1647958
|_ Výrobce: NVIDIA Corporation
|_ Procesy
|_ rundll32.exe (1348)

[?] aol.dll
|_ Cesta: C:\HP\KBD\aol.dll
|_ MD5: 308C9DDBD043903534514B097396E017
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] cfg.dll
|_ Cesta: C:\HP\KBD\cfg.dll
|_ MD5: 261E5E3602941656A1442B255C936B9E
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] led.dll
|_ Cesta: C:\HP\KBD\led.dll
|_ MD5: F68A3F0D63BE926ED65ED1C8C5B03A3D
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] msg.dll
|_ Cesta: C:\HP\KBD\msg.dll
|_ MD5: 205DB5A0DD15DF2657EFD4B64D0CC4A3
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] msikbdif.dll
|_ Cesta: C:\HP\KBD\msikbdif.dll
|_ MD5: 60DB5561F7B646FA217E9EA6561E6705
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] onl.dll
|_ Cesta: C:\HP\KBD\Onl.dll
|_ MD5: FB8BFCDF02173E59F8336C3EAECE76E5
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] osd.dll
|_ Cesta: C:\HP\KBD\OSD.DLL
|_ MD5: 5F1EC8079DCC3ACB3315966A9A7E2391
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] ps2.dll
|_ Cesta: C:\HP\KBD\PS2.dll
|_ MD5: 2AE54F20144B2AF570587A8478D02885
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] sct.dll
|_ Cesta: C:\HP\KBD\sct.dll
|_ MD5: 2F420C4DCFFACF50F73CAB6C27DDA901
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] url.dll
|_ Cesta: C:\HP\KBD\url.dll
|_ MD5: 996FC333026A68A66078A4AB6C9EA54C
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] usb.dll
|_ Cesta: C:\HP\KBD\usb.dll
|_ MD5: F8C008DA6F620E822394781C894A06DB
|_ Výrobce: Hewlett-Packard Company
|_ Procesy
|_ kbd.exe (1432)

[?] nvwddi.dll
|_ Cesta: C:\WINDOWS\system32\nvwddi.dll
|_ MD5: F61FCBAB80AD9708A6061D0084F59B49
|_ Výrobce: NVIDIA Corporation
|_ Procesy
|_ rundll32.exe (1396)
|_ kpf4gui.exe (608)
|_ firefox.exe (1092)
|_ avenger.exe (1720)
|_ UPM.exe (1664)

[?] nvshell.dll
|_ Cesta: C:\WINDOWS\system32\nvshell.dll
|_ MD5: E9ABB1D1A6D7245595984950E5DCCED0
|_ Výrobce: ?
|_ Procesy
|_ rundll32.exe (1396)
|_ explorer.exe (1172)

[?] sckbd.dll
|_ Cesta: C:\Program Files\EnhanceKeyboard\sckbd.dll
|_ MD5: E985E58FD1BAB4E9268272DF7CC2380C
|_ Výrobce:
|_ Procesy
|_ kb_2k.exe (1156)

[?] rexpctxu.dll
|_ Cesta: C:\Program Files\Resco\Pocket Encryption\RExpCtxU.dll
|_ MD5: 1DB6EBACF9C0B3A7B08A3309EA745A6B
|_ Výrobce: Copyright (C) 1999
|_ Procesy
|_ explorer.exe (1172)
|_ firefox.exe (1092)

[?] mmfinfo.dll
|_ Cesta: F:\Program Files\The FilmMachine\Filters\mmfinfo.dll
|_ MD5: 3F9AC1CF344CCE3D48782E8F6B81569C
|_ Výrobce:
|_ Procesy
|_ explorer.exe (1172)

[?] mkunicode.dll
|_ Cesta: F:\Program Files\The FilmMachine\Filters\mkunicode.dll
|_ MD5: CB4037BE4793D12B09A8B920A94BFFB3
|_ Výrobce:
|_ Procesy
|_ explorer.exe (1172)

[?] nerodigitalext.dll
|_ Cesta: C:\Program Files\Common Files\Ahead\Lib\NeroDigitalExt.dll
|_ MD5: 5384C2F361DBF801BE6DF2BEB2D8C6DB
|_ Výrobce: Nero AG
|_ Procesy
|_ explorer.exe (1172)

[?] uwinapi.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.2\program\uwinapi.dll
|_ MD5: 81F8EA1ACE1C1BA81DE6947BF3D4B224
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ explorer.exe (1172)

[?] stlport_vc7145.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.2\program\stlport_vc7145.dll
|_ MD5: 227FECF89F82EE95342878FB0D7388B9
|_ Výrobce: STLport Consulting, Inc.
|_ Procesy
|_ explorer.exe (1172)

[?] shlxthdl.dll
|_ Cesta: C:\Program Files\OpenOffice.org 2.2\program\shlxthdl.dll
|_ MD5: 570D1D0FFEAA52D24FD2E803A087C231
|_ Výrobce: Sun Microsystems, Inc.
|_ Procesy
|_ explorer.exe (1172)

[?] nssdbm3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\nssdbm3.dll
|_ MD5: A0B507E037C3D2369F42A7BBFD08D878
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (1092)

[?] softokn3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\softokn3.dll
|_ MD5: 7206DA15F187595389741F85DC47D2A5
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (1092)

[?] freebl3.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\freebl3.dll
|_ MD5: 6F9B85C270D7287011670411801C9DBF
|_ Výrobce: Mozilla Foundation
|_ Procesy
|_ firefox.exe (1092)

[?] spbwallettoolbar.dll
|_ Cesta: C:\Program Files\Mozilla Firefox\extensions\SpbWalletToolbar@SpbSoftwareHouse.com\components\SpbWalletToolbar.dll
|_ MD5: 4A1A80DD0ABD336288E658171344DF83
|_ Výrobce: Spb Software
|_ Procesy
|_ firefox.exe (1092)

[?] rpmainbrowserrecordplugin.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\rpmainbrowserrecordplugin.dll
|_ MD5: 84858A69B867E0087BFBCD20C07D8843
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (1092)

[?] nprpffbrowserrecordext.dll
|_ Cesta: C:\Program Files\Real\RealPlayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
|_ MD5: D59112569B1E92C6E74E49D2F64DD48A
|_ Výrobce: RealPlayer
|_ Procesy
|_ firefox.exe (1092)

[?] msvbvm60.dll
|_ Cesta: C:\WINDOWS\system32\MSVBVM60.DLL
|_ MD5: F4A1F1A1990F0619AB30F62F66B03836
|_ Výrobce: Microsoft Corporation
|_ Procesy
|_ UPM.exe (1664)

================================================================
Ultimate Process Manager v4.1.3 - [ Lodus Software ]

#2 Příspěvek od **Rudy** » 15 črc 2010 21:56

Dejte log z ComboFix.

Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware

zdenpok · #3 Příspěvek od **zdenpok** » 16 črc 2010 07:14

Tady vkládám combo fix, dělal jsem ho včera ještě před vložením UPM logu, snad to nevadí.

ComboFix 10-07-15.01 - Administrator 15.07.2010 20:36:02.1.1 - x86
Spuštěný z: f:\stahování\ComboFix.exe

VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Internet Explorer\msimg32.dll
c:\windows\system32\csftxctl.ocx
c:\windows\system32\Ijl11.dll
c:\windows\system32\scvideo.dll
c:\windows\system32\Temp
c:\windows\system32\vbpng1.dll

.
((((((((((((((((((((((((((((((((((((((( Ovladače/Služby )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Service_npf

((((((((((((((((((((((((( Soubory vytvořené od 2010-06-15 do 2010-07-15 )))))))))))))))))))))))))))))))
.

2010-07-01 07:49 . 2010-07-01 07:49 -------- d-----w- c:\program files\Tomas Slavicek
2010-07-01 07:35 . 2006-06-29 11:07 14048 ------w- c:\windows\system32\spmsg2.dll
2010-07-01 07:35 . 2010-07-01 07:35 -------- d-----w- c:\windows\system32\cs-CZ
2010-07-01 07:31 . 2010-07-01 07:31 -------- d-----w- c:\windows\system32\XPSViewer
2010-07-01 07:30 . 2010-07-01 07:30 -------- d-----w- c:\program files\Reference Assemblies
2010-07-01 07:29 . 2008-07-06 12:06 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2010-07-01 07:29 . 2008-07-06 12:06 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2010-07-01 07:29 . 2008-07-06 12:06 575488 ------w- c:\windows\system32\xpsshhdr.dll
2010-07-01 07:29 . 2008-07-06 12:06 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2010-07-01 07:29 . 2008-07-06 12:06 1676288 ------w- c:\windows\system32\xpssvcs.dll
2010-07-01 07:29 . 2008-07-06 12:06 117760 ------w- c:\windows\system32\prntvpt.dll
2010-07-01 07:29 . 2008-07-06 10:50 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2010-07-01 07:29 . 2008-07-06 10:50 597504 ------w- c:\windows\system32\Spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2010-07-01 07:19 . 2010-07-01 07:19 -------- d-----w- c:\program files\MSXML 6.0
2010-06-29 13:04 . 2010-06-29 13:04 6144 ----a-w- c:\windows\system32\InstallerDLL.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-07-07 07:55 . 2007-05-22 18:47 -------- d-----w- c:\program files\Minilyrics
2010-07-02 09:00 . 2006-12-21 19:18 -------- d-----w- c:\program files\Spyware Terminator
2010-07-01 17:27 . 2002-01-11 04:23 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-07-01 17:24 . 2004-11-13 09:42 -------- d-----w- c:\program files\Common Files\soft602
2010-07-01 07:49 . 2005-09-04 15:44 -------- d-----w- c:\program files\Microsoft ActiveSync
2010-07-01 07:32 . 2001-09-20 12:00 87504 ----a-w- c:\windows\system32\perfc005.dat
2010-07-01 07:32 . 2001-09-20 12:00 448036 ----a-w- c:\windows\system32\perfh005.dat
2010-07-01 07:30 . 2007-04-17 12:53 -------- d-----w- c:\program files\MSBuild
2010-06-20 17:49 . 2009-09-27 08:24 -------- d-----w- c:\program files\Spb Wallet
2010-06-13 08:18 . 2010-06-13 08:18 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-06-13 08:18 . 2005-11-27 13:19 -------- d-----w- c:\program files\Java
2010-05-23 17:44 . 2009-12-22 15:19 664 ----a-w- c:\windows\system32\d3d9caps.dat
2010-05-23 17:42 . 2007-07-26 13:42 607 -c--a-w- c:\windows\system32\drivers\fwdrv.err
2008-07-09 18:27 . 2008-07-09 18:27 14290 -c--a-w- c:\program files\settings.dat
2006-08-26 12:51 . 2005-01-12 14:31 101 -c--a-w- c:\program files\ADLSearch.xml
2006-08-26 12:51 . 2005-01-12 14:31 12227 -c--a-w- c:\program files\DCPlusPlus.xml
2006-08-26 12:51 . 2005-01-12 14:13 2344739 -c--a-w- c:\program files\HashIndex.xml
2006-08-26 12:51 . 2005-01-12 14:02 8388608 -c--a-w- c:\program files\HashData.dat
2005-09-11 16:11 . 2005-09-11 16:11 124 -c--a-w- c:\program files\Warez P2P ClientIPGUARD.LOG
2005-04-13 14:22 . 2005-01-13 17:58 3746 -c--a-w- c:\program files\Favorites.xml
2005-04-13 14:22 . 2005-01-13 16:24 89812 -c--a-w- c:\program files\Queue.xml
2005-04-13 14:22 . 2005-01-13 16:22 12873 -c--a-w- c:\program files\Recents.xml
2005-04-13 13:25 . 2005-04-13 13:25 10955 -c--a-w- c:\program files\DCPlusPlus-0.670.zip
2005-04-13 13:15 . 2005-04-13 13:15 2439909 -c--a-w- c:\program files\DCPlusPlus-0.667.exe
2005-04-13 13:15 . 2005-04-13 13:15 10488 -c--a-w- c:\program files\DCPlusPlus-0.667utf.zip
2005-04-13 13:10 . 2005-04-13 13:07 864691 -c--a-w- c:\program files\CZDCPlusPlus-0666[D].7z
2005-04-13 12:15 . 2005-01-13 16:25 89812 -c--a-w- c:\program files\Queue.xml.bak
2005-04-10 14:58 . 2005-01-13 16:30 203269 -c--a-w- c:\program files\files.xml.bz2
2005-03-19 16:32 . 2005-03-19 16:32 10005 -c--a-w- c:\program files\Czech1.rar
2005-02-17 20:23 . 2005-02-17 20:23 5358888 -c--a-w- c:\program files\KazaaLiteResurrection290CZ_install.exe
2005-01-21 17:41 . 2005-03-28 14:44 1119232 -c--a-r- c:\program files\PhotoMerge_setup.msi
2005-01-12 14:47 . 2005-01-12 14:47 12021 -c--a-w- c:\program files\Slovak1.rar
2004-11-13 00:12 . 2004-12-07 20:05 871 -c--a-w- c:\program files\Zoner Media Explorer 6.lnk
2004-10-03 16:27 . 2005-01-12 14:02 911872 -c--a-w- c:\program files\CZDCPlusPlus.exe
2004-09-27 20:51 . 2005-01-12 14:02 18178 -c--a-w- c:\program files\License.txt
2004-08-09 11:13 . 2004-12-19 20:44 1072943 -c----w- c:\program files\fs_setup.exe
2004-06-24 14:57 . 2004-12-19 20:27 17758195 -c----w- c:\program files\panowin_standard.exe
2005-05-13 15:12 . 2005-05-13 15:12 217073 -csha-r- c:\windows\meta4.exe
2005-10-24 09:13 . 2005-10-24 09:13 66560 -csha-r- c:\windows\MOTA113.exe
2005-10-13 19:27 . 2005-10-13 19:27 422400 -csha-r- c:\windows\x2.64.exe
2005-10-07 17:14 . 2005-10-07 17:14 308224 -csha-r- c:\windows\system32\avisynth.dll
2005-07-14 10:31 . 2005-07-14 10:31 27648 -csha-r- c:\windows\system32\AVSredirect.dll
2005-06-26 13:32 . 2005-06-26 13:32 616448 -csha-r- c:\windows\system32\cygwin1.dll
2005-06-21 20:37 . 2005-06-21 20:37 45568 -csha-r- c:\windows\system32\cygz.dll
2004-01-24 22:00 . 2004-01-24 22:00 70656 --sha-r- c:\windows\system32\i420vfw.dll
2006-04-27 08:24 . 2006-04-27 08:24 2945024 -csha-r- c:\windows\system32\Smab.dll
2005-02-28 11:16 . 2005-02-28 11:16 240128 -csha-r- c:\windows\system32\x.264.exe
2004-01-24 22:00 . 2004-01-24 22:00 70656 --sha-r- c:\windows\system32\yv12vfw.dll
.

------- Sigcheck -------

[-] 2004-08-04 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\atapi.sys
[-] 2004-08-03 . CDFE4411A69C224BD1D11B2DA92DAC51 . 95360 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\atapi.sys
[-] 2001-09-20 . A64013E98426E1877CB653685C5C0009 . 86656 . . [5.1.2600.0] . . c:\windows\system32\drivers\atapi.sys
[-] 2001-09-20 . A64013E98426E1877CB653685C5C0009 . 86656 . . [5.1.2600.0] . . c:\windows\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys

[-] 2004-08-04 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\asyncmac.sys
[-] 2004-08-03 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\asyncmac.sys
[-] 2004-08-03 . 02000ABF34AF4C218C35D257024807D6 . 14336 . . [5.1.2600.2180] . . c:\windows\system32\drivers\asyncmac.sys
[-] 2001-09-20 . 03F403B07A884FC2AA54A0916C410931 . 13568 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\asyncmac.sys

[-] 2001-09-20 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\dllcache\beep.sys
[-] 2001-09-20 . DA1F27D85E0D1525F6621372E7B685E9 . 4224 . . [5.1.2600.0] . . c:\windows\system32\drivers\beep.sys

[-] 2004-08-17 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\kbdclass.sys
[-] 2004-08-17 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\kbdclass.sys
[-] 2004-08-17 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\kbdclass.sys
[-] 2004-08-17 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\system32\drivers\kbdclass.sys
[-] 2004-08-17 . 6F877BF8DC01A550CD666F3BEDB2213C . 24576 . . [5.1.2600.2180] . . c:\windows\system32\ReinstallBackups\0020\DriverFiles\i386\kbdclass.sys

[-] 2004-08-04 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ndis.sys
[-] 2004-08-03 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ndis.sys
[-] 2004-08-03 . 558635D3AF1C7546D26067D5D9B6959E . 182912 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ndis.sys
[-] 2001-09-20 . 3EFD4F59BA0A340DE0A3AB984001DBF7 . 161536 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ndis.sys

[-] 2004-08-04 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ntfs.sys
[-] 2004-08-03 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ntfs.sys
[-] 2004-08-03 . B78BE402C3F63DD55521F73876951CDD . 574592 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ntfs.sys
[-] 2001-09-20 . 70FAE0DCFDFAA0838D6778FCA028CE01 . 533504 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ntfs.sys

[-] 2001-09-20 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\dllcache\null.sys
[-] 2001-09-20 . 73C1E1F395918BC2C6DD67AF7591A3AD . 2944 . . [5.1.2600.0] . . c:\windows\system32\drivers\null.sys

[-] 2006-04-20 . B2220C618B42A2212A59D91EBD6FC4B4 . 360576 . . [5.1.2600.2892] . . c:\windows\SoftwareDistribution\Download\8b3f0b76a887dad5988d39ddc24cfa31\sp2qfe\tcpip.sys
[-] 2006-04-20 . 1DBF125862891817F374F407626967F4 . 359808 . . [5.1.2600.2892] . . c:\windows\SoftwareDistribution\Download\8b3f0b76a887dad5988d39ddc24cfa31\sp2gdr\tcpip.sys
[-] 2004-08-04 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\tcpip.sys
[-] 2004-08-03 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\tcpip.sys
[-] 2004-08-03 . 9F4B36614A0FC234525BA224957DE55C . 359040 . . [5.1.2600.2180] . . c:\windows\system32\drivers\tcpip.sys
[-] 2001-09-20 . E7774698BB0D14B0710A9A31E209F9B6 . 327168 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\tcpip.sys

[-] 2004-08-17 . F219E27E88107A50544153898DD8178E . 77312 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\browser.dll
[-] 2004-08-17 . F219E27E88107A50544153898DD8178E . 77312 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\browser.dll
[-] 2004-08-17 . F219E27E88107A50544153898DD8178E . 77312 . . [5.1.2600.2180] . . c:\windows\system32\browser.dll
[-] 2004-03-30 . 4DDD4C30675C68C79E3BCA32A5174765 . 48640 . . [5.1.2600.105] . . c:\windows\$NtServicePackUninstall$\browser.dll
[-] 2001-09-20 . 90D78167EBB14A90DB3F357EDF98109E . 49152 . . [5.1.2600.0] . . c:\windows\$NtUninstallKB835732$\browser.dll

[-] 2004-08-17 . 82A362FE1D4980B71B588D9C10748511 . 13312 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\lsass.exe
[-] 2004-08-17 . 82A362FE1D4980B71B588D9C10748511 . 13312 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\lsass.exe
[-] 2004-08-17 . 82A362FE1D4980B71B588D9C10748511 . 13312 . . [5.1.2600.2180] . . c:\windows\system32\lsass.exe
[-] 2001-09-20 . 9D54015A59D9709D12978F1F31A119E5 . 11776 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\lsass.exe

[-] 2005-08-22 . 86AD5B0E02F2C968FBB096AB4C555C9C . 197632 . . [5.1.2600.2743] . . c:\windows\SoftwareDistribution\Download\6e2ccf29424df6a1513fef8b4d60b6ca\sp2gdr\netman.dll
[-] 2005-08-22 . BB0557B62B95F366464C3C60A0BD6BDF . 197632 . . [5.1.2600.2743] . . c:\windows\SoftwareDistribution\Download\6e2ccf29424df6a1513fef8b4d60b6ca\sp2qfe\netman.dll
[-] 2004-08-17 . AF342D2781225A8769686E0D47E3123E . 198144 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\netman.dll
[-] 2004-08-17 . AF342D2781225A8769686E0D47E3123E . 198144 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\netman.dll
[-] 2004-08-17 . AF342D2781225A8769686E0D47E3123E . 198144 . . [5.1.2600.2180] . . c:\windows\system32\netman.dll
[-] 2001-09-20 . E1EA2582854377BDE9A0CD6150864258 . 147968 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\netman.dll

[-] 2004-08-17 . E774A26610EC92674273486612C11CFC . 382464 . . [6.6.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\qmgr.dll
[-] 2004-08-17 . E774A26610EC92674273486612C11CFC . 382464 . . [6.6.2600.2180] . . c:\windows\ServicePackFiles\i386\qmgr.dll
[-] 2004-08-17 . E774A26610EC92674273486612C11CFC . 382464 . . [6.6.2600.2180] . . c:\windows\system32\qmgr.dll
[-] 2004-07-01 . 8884023F57D39CDFC541478E4087136E . 360448 . . [6.6.2600.1569] . . c:\windows\$NtServicePackUninstall$\qmgr.dll
[-] 2004-07-01 . 8884023F57D39CDFC541478E4087136E . 360448 . . [6.6.2600.1569] . . c:\windows\system32\bits\qmgr.dll
[-] 2001-09-20 . 2FD10EEB346121727C991D5301543CB3 . 179200 . . [6.0.2600.0] . . c:\windows\$NtUninstallKB842773$\qmgr.dll

[-] 2005-07-26 . DBDE980506B54AE928D151D12419B425 . 397824 . . [5.1.2600.2726] . . c:\windows\SoftwareDistribution\Download\4eb89d2162da1a584b809080d66223f7\sp2gdr\rpcss.dll
[-] 2005-07-26 . 46C3197AAC32EBA82453ACDD84114DC2 . 398336 . . [5.1.2600.2726] . . c:\windows\SoftwareDistribution\Download\4eb89d2162da1a584b809080d66223f7\sp2qfe\rpcss.dll
[-] 2005-04-28 . 5DE239E9CC9DB7430233EA7BE10EAD32 . 396288 . . [5.1.2600.2665] . . c:\windows\SoftwareDistribution\Download\b70932353029c8ba64387748781c48c9\sp2qfe\rpcss.dll
[-] 2005-04-28 . 676E6C3C8F3B4F8B64BE33FD20ADFCE2 . 395776 . . [5.1.2600.2665] . . c:\windows\SoftwareDistribution\Download\b70932353029c8ba64387748781c48c9\sp2gdr\rpcss.dll
[-] 2004-08-17 . C72C15EE57E248C66E57C76CAB086CF2 . 395776 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\rpcss.dll
[-] 2004-08-17 . C72C15EE57E248C66E57C76CAB086CF2 . 395776 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\rpcss.dll
[-] 2004-08-17 . C72C15EE57E248C66E57C76CAB086CF2 . 395776 . . [5.1.2600.2180] . . c:\windows\system32\rpcss.dll
[-] 2004-03-06 . 8B48B080B8B3BD5349300C8FE361CEB5 . 263680 . . [5.1.2600.1361] . . c:\windows\$xpsp1hfm$\KB828741\rpcss.dll
[-] 2004-03-06 . C9AFA30CEE902A58436BEDA8C37C7683 . 214528 . . [5.1.2600.135] . . c:\windows\$NtServicePackUninstall$\rpcss.dll
[-] 2001-09-20 . DABAB21EAE0D1EE80B50B49015FE4559 . 259072 . . [5.1.2600.0] . . c:\windows\$NtUninstallKB828741$\rpcss.dll

[-] 2004-08-17 . 6E401E61F952FBBF708AFBECEFAFAE81 . 108544 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\services.exe
[-] 2004-08-17 . 6E401E61F952FBBF708AFBECEFAFAE81 . 108544 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\services.exe
[-] 2004-08-17 . 6E401E61F952FBBF708AFBECEFAFAE81 . 108544 . . [5.1.2600.2180] . . c:\windows\system32\services.exe
[-] 2001-09-20 . 4480807A4EEBFFAC6F786E8E41C575F6 . 101376 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\services.exe

[-] 2005-06-11 . AD3D9D191AEA7B5445FE1D82FFBB4788 . 57856 . . [5.1.2600.2696] . . c:\windows\SoftwareDistribution\Download\a25ecfc361977be77521d4ce0798cbae\sp2qfe\spoolsv.exe
[-] 2005-06-10 . DA81EC57ACD4CDC3D4C51CF3D409AF9F . 57856 . . [5.1.2600.2696] . . c:\windows\SoftwareDistribution\Download\a25ecfc361977be77521d4ce0798cbae\sp2gdr\spoolsv.exe
[-] 2004-08-17 . 21B6FAA88044A41640E03EBB68BE93E8 . 57856 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\spoolsv.exe
[-] 2004-08-17 . 21B6FAA88044A41640E03EBB68BE93E8 . 57856 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\spoolsv.exe
[-] 2004-08-17 . 21B6FAA88044A41640E03EBB68BE93E8 . 57856 . . [5.1.2600.2180] . . c:\windows\system32\spoolsv.exe
[-] 2001-09-20 . CABA27AE4D78B8702C11EDDE3ED219F2 . 51200 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\spoolsv.exe

[-] 2004-08-17 . 221C29AE1B4CC61D11D8B27DE78B2307 . 502272 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\winlogon.exe
[-] 2004-08-17 . 221C29AE1B4CC61D11D8B27DE78B2307 . 502272 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\winlogon.exe
[-] 2004-08-17 . 221C29AE1B4CC61D11D8B27DE78B2307 . 502272 . . [5.1.2600.2180] . . c:\windows\system32\winlogon.exe
[-] 2001-09-20 . D2313F9EAE471F8E572561D5D115ADB5 . 430080 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\winlogon.exe

[-] 2006-08-25 . 3ABCC88C3C67D873170A96A25C93616F . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\acce8888a2025362d898d606b12a9a53\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2006-08-25 . E26B26189B786E6B092F002041D5A1E2 . 617472 . . [5.82] . . c:\windows\SoftwareDistribution\Download\acce8888a2025362d898d606b12a9a53\sp2qfe\comctl32.dll
[-] 2006-08-25 . 6CB1BAC5FA7E692B63C3D5AAA348E76A . 1054208 . . [6.0] . . c:\windows\SoftwareDistribution\Download\acce8888a2025362d898d606b12a9a53\sp2qfe\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2006-07-13 . C6D88AE5F7192ABC477C3D2655E28DCA . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\b3fcbdb02bfe19358640e48956949d42\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2006-03-17 . 33DFA99B7ACF485A51E96C18CA68D473 . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\3bf6999727ddb1d518f5b60a6000e8ba\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2005-08-31 . 7EEDB3AF3DDBB57CA98A00D0280613AB . 925184 . . [6.0] . . c:\windows\SoftwareDistribution\Download\d74a58a2257733dd923587d311758d6c\sp1qfe\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2004-08-17 . 876C658C44F2BF4AF050E5534A9F066F . 611328 . . [5.82] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\comctl32.dll
[-] 2004-08-17 . F76B3003366A205E05AFC0D034C7D3E9 . 1050624 . . [6.0] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\asms\60\msft\windows\common\controls\comctl32.dll
[-] 2004-08-17 . 876C658C44F2BF4AF050E5534A9F066F . 611328 . . [5.82] . . c:\windows\ServicePackFiles\i386\comctl32.dll
[-] 2004-08-17 . 876C658C44F2BF4AF050E5534A9F066F . 611328 . . [5.82] . . c:\windows\system32\comctl32.dll
[-] 2001-09-20 . EAD53B5FC5054EA19C3A9202B1381740 . 557568 . . [5.82] . . c:\windows\$NtServicePackUninstall$\comctl32.dll

[-] 2004-08-17 . 70D2A1756F4B2067658A186C963FCABD . 60416 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\cryptsvc.dll
[-] 2004-08-17 . 70D2A1756F4B2067658A186C963FCABD . 60416 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\cryptsvc.dll
[-] 2004-08-17 . 70D2A1756F4B2067658A186C963FCABD . 60416 . . [5.1.2600.2180] . . c:\windows\system32\cryptsvc.dll
[-] 2001-09-20 . 05B4C667E5CE23FE4A1AE7D643CCC5EB . 51200 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\cryptsvc.dll

[-] 2005-07-26 04:42 . 8B1B932554B6317E97AE3B9D05344470 . 243200 . . [2001.12.4414.308] . . c:\windows\SoftwareDistribution\Download\4eb89d2162da1a584b809080d66223f7\sp2gdr\es.dll
[-] 2005-07-26 04:30 . 7B9199B6809586DC2CF30D411CECBD33 . 243200 . . [2001.12.4414.308] . . c:\windows\SoftwareDistribution\Download\4eb89d2162da1a584b809080d66223f7\sp2qfe\es.dll
[-] 2004-08-17 22:49 . 972378B907070F64932A87C90A035487 . 243200 . . [2001.12.4414.258] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\es.dll
[-] 2004-08-17 14:49 . 972378B907070F64932A87C90A035487 . 243200 . . [2001.12.4414.258] . . c:\windows\ServicePackFiles\i386\es.dll
[-] 2004-08-17 14:49 . 972378B907070F64932A87C90A035487 . 243200 . . [2001.12.4414.258] . . c:\windows\system32\es.dll
[-] 2004-03-06 02:20 . 51A3FEF7D25332013E436F894F03B485 . 226816 . . [2001.12.4414.53] . . c:\windows\$xpsp1hfm$\KB828741\es.dll
[-] 2004-03-06 02:16 . 3E64EF64045BDE1A3ED524D00E8E158F . 226816 . . [2001.12.4414.53] . . c:\windows\$NtServicePackUninstall$\es.dll
[-] 2001-09-20 12:00 . 42CAA2CAEFE4DEBD077DA4D6D97B25DB . 224768 . . [2001.12.4414.42] . . c:\windows\$NtUninstallKB828741$\es.dll

[-] 2004-08-17 . 2413635113361E54B62F0C40E4E4DAE6 . 110080 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\imm32.dll
[-] 2004-08-17 . 2413635113361E54B62F0C40E4E4DAE6 . 110080 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\imm32.dll
[-] 2004-08-17 . 2413635113361E54B62F0C40E4E4DAE6 . 110080 . . [5.1.2600.2180] . . c:\windows\system32\imm32.dll
[-] 2001-09-20 . 5EB45B91EFE6B63633C8D530EA2DD83F . 96768 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\imm32.dll

[-] 2006-07-05 . A0B58CBB3ADCD79F1414A8E62D2F719F . 983552 . . [5.1.2600.2945] . . c:\windows\SoftwareDistribution\Download\a9e1788caadf2376705ad7bbcfae62e7\sp2qfe\kernel32.dll
[-] 2006-07-05 . 72FB9AA607A21FD2485286C478FB9B01 . 982528 . . [5.1.2600.2945] . . c:\windows\SoftwareDistribution\Download\a9e1788caadf2376705ad7bbcfae62e7\sp2gdr\kernel32.dll
[-] 2004-08-17 . 98DA079F61265BC26D4587E280B79F30 . 982016 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\kernel32.dll
[-] 2004-08-17 . 98DA079F61265BC26D4587E280B79F30 . 982016 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\kernel32.dll
[-] 2004-08-17 . 98DA079F61265BC26D4587E280B79F30 . 982016 . . [5.1.2600.2180] . . c:\windows\system32\kernel32.dll
[-] 2001-09-20 . F68AB709B8CA70E30B0FA6CDE510E81D . 926720 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\kernel32.dll

[-] 2005-09-01 . 3E611531CC70649635FC890B421AECD0 . 19968 . . [5.1.2600.2751] . . c:\windows\SoftwareDistribution\Download\d74a58a2257733dd923587d311758d6c\sp2qfe\linkinfo.dll
[-] 2005-09-01 . B5DE324E0F9AEBEC885ABF5DB6B2F73D . 19968 . . [5.1.2600.2751] . . c:\windows\SoftwareDistribution\Download\d74a58a2257733dd923587d311758d6c\sp2gdr\linkinfo.dll
[-] 2004-08-20 . 4256BCF1434FD4BB61DEEC603F17CCE1 . 15872 . . [5.1.2600.1579] . . c:\windows\$hf_mig$\KB841356\SP1QFE\linkinfo.dll
[-] 2004-08-20 . BE34EEF190C2E58CD6A1470B21ED46FC . 15872 . . [5.1.2600.165] . . c:\windows\$NtServicePackUninstall$\linkinfo.dll
[-] 2004-08-17 . EE1F842DB2AE412136643B0814D770A6 . 18944 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\linkinfo.dll
[-] 2004-08-17 . EE1F842DB2AE412136643B0814D770A6 . 18944 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\linkinfo.dll
[-] 2004-08-17 . EE1F842DB2AE412136643B0814D770A6 . 18944 . . [5.1.2600.2180] . . c:\windows\system32\linkinfo.dll
[-] 2001-09-20 . 235E28E7E066DB22A0BBA950018B4F23 . 15360 . . [5.1.2600.0] . . c:\windows\$NtUninstallKB841356$\linkinfo.dll

[-] 2004-08-17 . BFE8DC7AAE7CB1C86243D77B340DC304 . 22016 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\lpk.dll
[-] 2004-08-17 . BFE8DC7AAE7CB1C86243D77B340DC304 . 22016 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\lpk.dll
[-] 2004-08-17 . BFE8DC7AAE7CB1C86243D77B340DC304 . 22016 . . [5.1.2600.2180] . . c:\windows\system32\lpk.dll
[-] 2001-09-20 . 3408F1A9ADF8C09B3BCA3E5C295737AC . 18944 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\lpk.dll

[-] 2006-07-28 . 33ADCCB10AA16753363DA639B7ABD271 . 3079168 . . [6.00.2900.2963] . . c:\windows\SoftwareDistribution\Download\de2191b3a819eb982752efb6e73c92d3\sp2qfe\mshtml.dll
[-] 2006-07-28 . 31516EBD32683E67EF7845A6A7F614E2 . 3075072 . . [6.00.2900.2963] . . c:\windows\SoftwareDistribution\Download\de2191b3a819eb982752efb6e73c92d3\sp2gdr\mshtml.dll
[-] 2004-09-29 08:03 . 3403693B1F35E976C911D7741BEFF301 . 2772992 . . [6.00.2745.2800] . . c:\windows\$NtServicePackUninstall$\mshtml.dll
[-] 2004-08-17 . EF74351C9098210CC9C1A3679DB62041 . 3003392 . . [6.00.2900.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\mshtml.dll
[-] 2004-08-17 . EF74351C9098210CC9C1A3679DB62041 . 3003392 . . [6.00.2900.2180] . . c:\windows\ServicePackFiles\i386\mshtml.dll
[-] 2004-08-17 . EF74351C9098210CC9C1A3679DB62041 . 3003392 . . [6.00.2900.2180] . . c:\windows\system32\mshtml.dll
[-] 2001-09-20 . 74876F0640F5A75432B9803705DC1FEF . 2793984 . . [6.00.2600.0000] . . c:\windows\$NtUninstallKB834707-IE6-20040929.115007$\mshtml.dll

[-] 2004-08-17 . 91CC3E4CCDBBF8E224182C76C87E454F . 343040 . . [7.0.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\msvcrt.dll
[-] 2004-08-17 . AB47015B67531572BE46C0C08222C84C . 343040 . . [7.0.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\asms\70\msft\windows\mswincrt\msvcrt.dll
[-] 2004-08-17 . 91CC3E4CCDBBF8E224182C76C87E454F . 343040 . . [7.0.2600.2180] . . c:\windows\ServicePackFiles\i386\msvcrt.dll
[-] 2004-08-17 . 91CC3E4CCDBBF8E224182C76C87E454F . 343040 . . [7.0.2600.2180] . . c:\windows\system32\msvcrt.dll
[-] 2001-09-20 . 644D518D5BD077AD12E5C9EA2E1F8E73 . 322560 . . [7.0.2600.0] . . c:\windows\$NtServicePackUninstall$\msvcrt.dll

[-] 2004-08-17 . 64C078BD4EFD441C3F159EDC5EA4420A . 247296 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\mswsock.dll
[-] 2004-08-17 . 64C078BD4EFD441C3F159EDC5EA4420A . 247296 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\mswsock.dll
[-] 2004-08-17 . 64C078BD4EFD441C3F159EDC5EA4420A . 247296 . . [5.1.2600.2180] . . c:\windows\system32\mswsock.dll
[-] 2001-09-20 . A8487BA51712E1C1559B60C2DA4F1D99 . 230400 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\mswsock.dll

[-] 2004-08-17 . 2591CADAEF7D2242039255028E577688 . 407040 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\netlogon.dll
[-] 2004-08-17 . 2591CADAEF7D2242039255028E577688 . 407040 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\netlogon.dll
[-] 2004-08-17 . 2591CADAEF7D2242039255028E577688 . 407040 . . [5.1.2600.2180] . . c:\windows\system32\netlogon.dll
[-] 2001-09-20 . 7A6C28BE075A3DF87A8E48C542779230 . 397824 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\netlogon.dll

[-] 2005-03-02 . 7FABE135EAC02A4BC8094B831ADC0CC3 . 2181632 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\8084f39e8152f1987d7302c85e1ce96f\sp2qfe\ntoskrnl.exe
[-] 2005-03-02 . B0DAE70164CC79D1289EF3530A3646F1 . 2181504 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\8084f39e8152f1987d7302c85e1ce96f\sp2gdr\ntoskrnl.exe
[-] 2004-08-17 . 12C80E46DCEC9B82473D1B1B9DA1F16B . 2183168 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ntoskrnl.exe
[-] 2004-08-17 . 12C80E46DCEC9B82473D1B1B9DA1F16B . 2183168 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ntoskrnl.exe
[-] 2004-08-17 . 12C80E46DCEC9B82473D1B1B9DA1F16B . 2183168 . . [5.1.2600.2180] . . c:\windows\system32\ntoskrnl.exe
[-] 2001-09-20 . 0900356044C55EE076D98FB9AE9333ED . 1984384 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ntoskrnl.exe

[-] 2004-08-17 . 134B95A1D8FAFD74A68E4B2116DEFA7D . 17408 . . [6.00.2900.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\powrprof.dll
[-] 2004-08-17 . 134B95A1D8FAFD74A68E4B2116DEFA7D . 17408 . . [6.00.2900.2180] . . c:\windows\ServicePackFiles\i386\powrprof.dll
[-] 2004-08-17 . 134B95A1D8FAFD74A68E4B2116DEFA7D . 17408 . . [6.00.2900.2180] . . c:\windows\system32\powrprof.dll
[-] 2001-09-20 . 2F53B2F168760EA55FBAA891A4DB48B7 . 14848 . . [6.00.2600.0000] . . c:\windows\$NtServicePackUninstall$\powrprof.dll

[-] 2004-08-17 . 07119058D451CB7EA4317BCFDA8599A6 . 184832 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\scecli.dll
[-] 2004-08-17 . 07119058D451CB7EA4317BCFDA8599A6 . 184832 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\scecli.dll
[-] 2004-08-17 . 07119058D451CB7EA4317BCFDA8599A6 . 184832 . . [5.1.2600.2180] . . c:\windows\system32\scecli.dll
[-] 2001-09-20 . D501AFA1E4C7E395739ABD1BF8583EBD . 178688 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\scecli.dll

[-] 2004-08-17 . 6CC2D21488333133AE0C9F44F6051CB7 . 5120 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\sfc.dll
[-] 2004-08-17 . 6CC2D21488333133AE0C9F44F6051CB7 . 5120 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\sfc.dll
[-] 2004-08-17 . 6CC2D21488333133AE0C9F44F6051CB7 . 5120 . . [5.1.2600.2180] . . c:\windows\system32\sfc.dll
[-] 2001-09-20 . BABDF35F393E77A0237CC5985E2861BB . 4096 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\sfc.dll

[-] 2004-08-17 . DFBA2915B0BF58ABB288CD4C9318CB3F . 14336 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\svchost.exe
[-] 2004-08-17 . DFBA2915B0BF58ABB288CD4C9318CB3F . 14336 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\svchost.exe
[-] 2004-08-17 . DFBA2915B0BF58ABB288CD4C9318CB3F . 14336 . . [5.1.2600.2180] . . c:\windows\system32\svchost.exe
[-] 2001-09-20 . C3A0EF5EF2DB54843C53077372508A0A . 12800 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\svchost.exe

[-] 2005-07-08 . 2EB5536278D697C5895A48514682BF64 . 249344 . . [5.1.2600.2716] . . c:\windows\SoftwareDistribution\Download\1313556cf4668634c20d6ef132a12f60\sp2qfe\tapisrv.dll
[-] 2005-07-08 . 250241D65CCF692AEACC318A266413C2 . 249344 . . [5.1.2600.2716] . . c:\windows\SoftwareDistribution\Download\1313556cf4668634c20d6ef132a12f60\sp2gdr\tapisrv.dll
[-] 2004-08-17 . 37162D29CD61519E6F5EA0DE99786FF6 . 246272 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\tapisrv.dll
[-] 2004-08-17 . 37162D29CD61519E6F5EA0DE99786FF6 . 246272 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\tapisrv.dll
[-] 2004-08-17 . 37162D29CD61519E6F5EA0DE99786FF6 . 246272 . . [5.1.2600.2180] . . c:\windows\system32\tapisrv.dll
[-] 2001-09-20 . 85E25E2CD6143F476225025AFFAC7EED . 233984 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\tapisrv.dll

[-] 2005-03-02 . 3EF380290CE2CA8598E475CEAC4ADB13 . 577024 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\8084f39e8152f1987d7302c85e1ce96f\sp2qfe\user32.dll
[-] 2005-03-02 . 9267BC598E271BC3FA69F36CF1C8BD36 . 577024 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\8084f39e8152f1987d7302c85e1ce96f\sp2gdr\user32.dll
[-] 2004-08-17 . 1B4CCC59980DA34E75F20E42B283B027 . 577024 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\user32.dll
[-] 2004-08-17 . 1B4CCC59980DA34E75F20E42B283B027 . 577024 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\user32.dll
[-] 2004-08-17 . 1B4CCC59980DA34E75F20E42B283B027 . 577024 . . [5.1.2600.2180] . . c:\windows\system32\user32.dll
[-] 2001-09-20 . 5113DA748E1E062A0812653810CCE8ED . 561152 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\user32.dll

[-] 2004-08-17 . 836F7960362FF95C5D49E40B891F2CFC . 24576 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\userinit.exe
[-] 2004-08-17 . 836F7960362FF95C5D49E40B891F2CFC . 24576 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\userinit.exe
[-] 2004-08-17 . 836F7960362FF95C5D49E40B891F2CFC . 24576 . . [5.1.2600.2180] . . c:\windows\system32\userinit.exe
[-] 2001-09-20 . 5322CCF04599C323DC08EE00896B2DF7 . 21504 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\userinit.exe

[-] 2006-06-23 . B12340414F3F9E9AD2FC44F270E7F20D . 665600 . . [6.00.2900.2937] . . c:\windows\SoftwareDistribution\Download\de2191b3a819eb982752efb6e73c92d3\sp2qfe\wininet.dll
[-] 2006-06-23 . EC4A8AEE77A4E4919AD1B8049FD93302 . 659968 . . [6.00.2900.2937] . . c:\windows\SoftwareDistribution\Download\de2191b3a819eb982752efb6e73c92d3\sp2gdr\wininet.dll
[-] 2004-08-23 16:14 . 2AF2E159013EF91F666C179461259B71 . 586240 . . [6.00.2737.800] . . c:\windows\$NtServicePackUninstall$\wininet.dll
[-] 2004-08-17 . 50D263E3454E8357D13BB598129185AD . 657408 . . [6.00.2900.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\wininet.dll
[-] 2004-08-17 . 50D263E3454E8357D13BB598129185AD . 657408 . . [6.00.2900.2180] . . c:\windows\ServicePackFiles\i386\wininet.dll
[-] 2004-08-17 . 50D263E3454E8357D13BB598129185AD . 657408 . . [6.00.2900.2180] . . c:\windows\system32\wininet.dll
[-] 2001-09-20 . 79DC2FD582302282745152E6B8F9C159 . 594944 . . [6.00.2600.0000] . . c:\windows\$NtUninstallKB834707-IE6-20040929.115007$\wininet.dll

[-] 2004-08-17 . 382E9B87F1282E697C67AF84E34E35E2 . 82944 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ws2_32.dll
[-] 2004-08-17 . 382E9B87F1282E697C67AF84E34E35E2 . 82944 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ws2_32.dll
[-] 2004-08-17 . 382E9B87F1282E697C67AF84E34E35E2 . 82944 . . [5.1.2600.2180] . . c:\windows\system32\ws2_32.dll
[-] 2001-09-20 . DEB54E4F9718CB8B4DD5883B13B40AB0 . 75264 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ws2_32.dll

[-] 2004-08-17 . C2B86666FC44B48903AD6016D15A23DF . 19968 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ws2help.dll
[-] 2004-08-17 . C2B86666FC44B48903AD6016D15A23DF . 19968 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ws2help.dll
[-] 2004-08-17 . C2B86666FC44B48903AD6016D15A23DF . 19968 . . [5.1.2600.2180] . . c:\windows\system32\ws2help.dll
[-] 2001-09-20 . D03141E9521252C111B5E7329A8B5D7E . 18944 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ws2help.dll

[-] 2004-08-17 . 53114D57AB73A406AC7F602227781A99 . 1032704 . . [6.00.2900.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\explorer.exe
[-] 2004-08-17 . 53114D57AB73A406AC7F602227781A99 . 1032704 . . [6.00.2900.2180] . . c:\windows\explorer.exe
[-] 2004-08-17 . 53114D57AB73A406AC7F602227781A99 . 1032704 . . [6.00.2900.2180] . . c:\windows\ServicePackFiles\i386\explorer.exe
[-] 2001-09-20 . 4782DCA49145C437E985A582827A6C03 . 1001472 . . [6.00.2600.0000] . . c:\windows\$NtServicePackUninstall$\explorer.exe

[-] 2004-08-17 . 3CD57F31A64D32FDB28918B16D1E6AAC . 170496 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\srsvc.dll
[-] 2004-08-17 . 3CD57F31A64D32FDB28918B16D1E6AAC . 170496 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\srsvc.dll
[-] 2004-08-17 . 3CD57F31A64D32FDB28918B16D1E6AAC . 170496 . . [5.1.2600.2180] . . c:\windows\system32\srsvc.dll
[-] 2001-09-20 . BAFD768A978602EB865903A204D0CA4D . 155136 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\srsvc.dll

[-] 2004-08-17 . 93F75FF033BAA186D08115D73BFE3D32 . 13824 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\wscntfy.exe
[-] 2004-08-17 . 93F75FF033BAA186D08115D73BFE3D32 . 13824 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\wscntfy.exe
[-] 2004-08-17 . 93F75FF033BAA186D08115D73BFE3D32 . 13824 . . [5.1.2600.2180] . . c:\windows\system32\wscntfy.exe

[-] 2004-08-17 . 9B835D4C64860B155A1701D5092EC9E4 . 129536 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\xmlprov.dll
[-] 2004-08-17 . 9B835D4C64860B155A1701D5092EC9E4 . 129536 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\xmlprov.dll
[-] 2004-08-17 . 9B835D4C64860B155A1701D5092EC9E4 . 129536 . . [5.1.2600.2180] . . c:\windows\system32\xmlprov.dll

[-] 2004-08-17 . 6EB66066D5C0175320CFEA0A4C74C88F . 55808 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\eventlog.dll
[-] 2004-08-17 . 6EB66066D5C0175320CFEA0A4C74C88F . 55808 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\eventlog.dll
[-] 2004-08-17 . 6EB66066D5C0175320CFEA0A4C74C88F . 55808 . . [5.1.2600.2180] . . c:\windows\system32\eventlog.dll
[-] 2001-09-20 . 66339D9F926FEB6A2E6C54A5537B0AC6 . 47616 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\eventlog.dll

[-] 2004-08-17 . 5CA2E2BA624D6F2C7A581C91E70394CB . 1548288 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\sfcfiles.dll
[-] 2004-08-17 . 5CA2E2BA624D6F2C7A581C91E70394CB . 1548288 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\sfcfiles.dll
[-] 2004-08-17 . 5CA2E2BA624D6F2C7A581C91E70394CB . 1548288 . . [5.1.2600.2180] . . c:\windows\system32\sfcfiles.dll
[-] 2001-09-20 . 51CEBB7455F5690A18A5A49DB71D4BCD . 1564672 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\sfcfiles.dll

[-] 2004-08-17 . A5BAA91475167161DEA02BA3C4CA4F59 . 15360 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ctfmon.exe
[-] 2004-08-17 . A5BAA91475167161DEA02BA3C4CA4F59 . 15360 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ctfmon.exe
[-] 2004-08-17 . A5BAA91475167161DEA02BA3C4CA4F59 . 15360 . . [5.1.2600.2180] . . c:\windows\system32\ctfmon.exe
[-] 2001-09-20 . D87A652E936DBAD39ED1C546F506B9C3 . 13312 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ctfmon.exe

[-] 2004-08-17 . 8BA76BD2A943F642F267A296A15776D2 . 134656 . . [6.00.2900.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\shsvcs.dll
[-] 2004-08-17 . 8BA76BD2A943F642F267A296A15776D2 . 134656 . . [6.00.2900.2180] . . c:\windows\ServicePackFiles\i386\shsvcs.dll
[-] 2004-08-17 . 8BA76BD2A943F642F267A296A15776D2 . 134656 . . [6.00.2900.2180] . . c:\windows\system32\shsvcs.dll
[-] 2001-09-20 . D8057C74CF7E8FFABAF72087518BB47B . 114688 . . [6.00.2600.0000] . . c:\windows\$NtServicePackUninstall$\shsvcs.dll

[-] 2004-08-17 . 5B21208FCF8970BB61FE98E19D828714 . 59904 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\regsvc.dll
[-] 2004-08-17 . 5B21208FCF8970BB61FE98E19D828714 . 59904 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\regsvc.dll
[-] 2004-08-17 . 5B21208FCF8970BB61FE98E19D828714 . 59904 . . [5.1.2600.2180] . . c:\windows\system32\regsvc.dll
[-] 2001-09-20 . 175AFCDDF875F234DC7F82188EC8313E . 51712 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\regsvc.dll

[-] 2004-08-17 . 29AC93307C6182DBE336BCA314947F28 . 190976 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\schedsvc.dll
[-] 2004-08-17 . 29AC93307C6182DBE336BCA314947F28 . 190976 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\schedsvc.dll
[-] 2004-08-17 . 29AC93307C6182DBE336BCA314947F28 . 190976 . . [5.1.2600.2180] . . c:\windows\system32\schedsvc.dll
[-] 2001-09-20 . 05E05240705A97364F2634609B83077A . 158720 . . [4.71.2600.1] . . c:\windows\$NtServicePackUninstall$\schedsvc.dll

[-] 2004-08-17 . 88C28F53F53438DAFCD95E99C837C61E . 71680 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ssdpsrv.dll
[-] 2004-08-17 . 88C28F53F53438DAFCD95E99C837C61E . 71680 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ssdpsrv.dll
[-] 2004-08-17 . 88C28F53F53438DAFCD95E99C837C61E . 71680 . . [5.1.2600.2180] . . c:\windows\system32\ssdpsrv.dll
[-] 2001-09-20 . CD05298850D0275EBE572AEE8DC8F5FF . 39936 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ssdpsrv.dll

[-] 2004-08-17 . 2F5919F2F6EE7A845893D9C3AA2BC56A . 295936 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\termsrv.dll
[-] 2004-08-17 . 2F5919F2F6EE7A845893D9C3AA2BC56A . 295936 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\termsrv.dll
[-] 2004-08-17 . 2F5919F2F6EE7A845893D9C3AA2BC56A . 295936 . . [5.1.2600.2180] . . c:\windows\system32\termsrv.dll
[-] 2001-09-20 . 16620DFC72CB098CAB3C380467FD9D38 . 198144 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\termsrv.dll

[-] 2004-08-17 . 421184F91EAE5C6E78E653C6B32AAE84 . 171008 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\appmgmts.dll
[-] 2004-08-17 . 421184F91EAE5C6E78E653C6B32AAE84 . 171008 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\appmgmts.dll
[-] 2004-08-17 . 421184F91EAE5C6E78E653C6B32AAE84 . 171008 . . [5.1.2600.2180] . . c:\windows\system32\appmgmts.dll
[-] 2001-09-20 . 8825442990B8EDEB3219BDAF5251B277 . 158720 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\appmgmts.dll

[-] 2001-09-20 . AFDFF022A01F0B11C776F0860C3B282F . 11776 . . [5.1.2600.0] . . c:\windows\system32\dllcache\acpiec.sys
[-] 2001-09-20 . AFDFF022A01F0B11C776F0860C3B282F . 11776 . . [5.1.2600.0] . . c:\windows\system32\drivers\acpiec.sys

[-] 2006-02-15 00:30 . 1EE7B434BA961EF845DE136224C30FEC . 142464 . . [5.1.2601.2180] . . c:\windows\SoftwareDistribution\Download\798c2b1d212eb7352400a51d77fd6ecb\sp2qfe\aec.sys
[-] 2006-02-15 00:22 . 1EE7B434BA961EF845DE136224C30FEC . 142464 . . [5.1.2601.2180] . . c:\windows\SoftwareDistribution\Download\798c2b1d212eb7352400a51d77fd6ecb\sp2gdr\aec.sys
[-] 2004-08-04 05:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\aec.sys
[-] 2004-08-03 21:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\ServicePackFiles\i386\aec.sys
[-] 2004-08-03 21:39 . 841F385C6CFAF66B58FBD898722BB4F0 . 142464 . . [5.1.2601.2078] . . c:\windows\system32\drivers\aec.sys
[-] 2001-07-24 . B45A744CA0A15A59D8B0307CE9741E92 . 122472 . . [5.1.2520.0] . . c:\windows\$NtServicePackUninstall$\aec.sys

[-] 2004-08-04 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\agp440.sys
[-] 2004-08-03 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\agp440.sys
[-] 2004-08-03 . 2C428FA0C3E3A01ED93C9B2A27D8D4BB . 42368 . . [5.1.2600.2180] . . c:\windows\system32\drivers\agp440.sys

[-] 2004-08-04 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ip6fw.sys
[-] 2004-08-03 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ip6fw.sys
[-] 2004-08-03 . 4448006B6BC60E6C027932CFC38D6855 . 29056 . . [5.1.2600.2180] . . c:\windows\system32\drivers\ip6fw.sys

[-] 2001-09-20 12:00 . 15AFB5576C32CC292E5DD469D96B4909 . 924432 . . [4.1.6140] . . c:\windows\system32\mfc40u.dll
[-] 2001-09-20 12:00 . 15AFB5576C32CC292E5DD469D96B4909 . 924432 . . [4.1.6140] . . c:\windows\system32\dllcache\mfc40u.dll

[-] 2004-08-17 . 8B2FCBD881879B55BE40B41F12FFC431 . 33792 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\msgsvc.dll
[-] 2004-08-17 . 8B2FCBD881879B55BE40B41F12FFC431 . 33792 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\msgsvc.dll
[-] 2004-08-17 . 8B2FCBD881879B55BE40B41F12FFC431 . 33792 . . [5.1.2600.2180] . . c:\windows\system32\msgsvc.dll
[-] 2001-09-20 . 9FA5055D12FBCD91D52231B4A02801BC . 34304 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\msgsvc.dll

[-] 2004-08-17 22:49 . E02E913B3841717A890A644EE167B9A5 . 52224 . . [9.0.1.56] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\mspmsnsv.dll
[-] 2004-08-17 14:49 . E02E913B3841717A890A644EE167B9A5 . 52224 . . [9.0.1.56] . . c:\windows\ServicePackFiles\i386\mspmsnsv.dll
[-] 2004-08-10 23:45 . A477391B7A8B0A0DAABADB17CF533A4B . 25088 . . [10.0.3790.3646] . . c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSNSv.dll
[-] 2004-08-10 23:45 . A477391B7A8B0A0DAABADB17CF533A4B . 25088 . . [10.0.3790.3646] . . c:\windows\system32\MsPMSNSv.dll

[-] 2005-03-02 . 9355304DD565E23F8EE294720B2C03E5 . 2059008 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\8084f39e8152f1987d7302c85e1ce96f\sp2qfe\ntkrnlpa.exe
[-] 2005-03-02 . E32780E8939338B80EDFF39E2314C223 . 2059008 . . [5.1.2600.2622] . . c:\windows\SoftwareDistribution\Download\8084f39e8152f1987d7302c85e1ce96f\sp2gdr\ntkrnlpa.exe
[-] 2004-08-17 . E86DD06F2B8F919DDF23F78A3BF2AA23 . 2059008 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ntkrnlpa.exe
[-] 2004-08-17 . E86DD06F2B8F919DDF23F78A3BF2AA23 . 2059008 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\ntkrnlpa.exe
[-] 2004-08-17 . E86DD06F2B8F919DDF23F78A3BF2AA23 . 2059008 . . [5.1.2600.2180] . . c:\windows\system32\ntkrnlpa.exe
[-] 2001-09-20 . 5589BB6E76C4762CDC10F017DC5A0CBC . 1898880 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\ntkrnlpa.exe

[-] 2004-08-17 22:49 . D8D2B13BA93AE830B1A637DF571D1195 . 435712 . . [5.1.2400.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ntmssvc.dll
[-] 2004-08-17 14:49 . D8D2B13BA93AE830B1A637DF571D1195 . 435712 . . [5.1.2400.2180] . . c:\windows\ServicePackFiles\i386\ntmssvc.dll
[-] 2004-08-17 14:49 . D8D2B13BA93AE830B1A637DF571D1195 . 435712 . . [5.1.2400.2180] . . c:\windows\system32\ntmssvc.dll
[-] 2001-09-20 12:00 . 2CC7FD0DFCB84C3439A6FC681C29FFE3 . 392704 . . [5.1.2400.1] . . c:\windows\$NtServicePackUninstall$\ntmssvc.dll

[-] 2004-08-17 . 984FC1518B0D5B31D76F0E63608E0500 . 185344 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\upnphost.dll
[-] 2004-08-17 . 984FC1518B0D5B31D76F0E63608E0500 . 185344 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\upnphost.dll
[-] 2004-08-17 . 984FC1518B0D5B31D76F0E63608E0500 . 185344 . . [5.1.2600.2180] . . c:\windows\system32\upnphost.dll
[-] 2004-08-17 . 984FC1518B0D5B31D76F0E63608E0500 . 185344 . . [5.1.2600.2180] . . c:\windows\system32\dllcache\upnphost.dll
[-] 2001-09-20 . 271B6005C253B1433673E12F0BD0CC82 . 163328 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\upnphost.dll

[-] 2004-08-17 . 8ECC475F5BAD26DB85943F888D62E364 . 367616 . . [5.3.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\dsound.dll
[-] 2004-08-17 . 8ECC475F5BAD26DB85943F888D62E364 . 367616 . . [5.3.2600.2180] . . c:\windows\ServicePackFiles\i386\dsound.dll
[-] 2004-08-17 . 8ECC475F5BAD26DB85943F888D62E364 . 367616 . . [5.3.2600.2180] . . c:\windows\system32\dsound.dll
[-] 2004-07-09 03:27 . 033A45AB696EEF481707C2808C806E1A . 381952 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\$NtServicePackUninstall$\dsound.dll
[-] 2004-07-09 03:27 . 033A45AB696EEF481707C2808C806E1A . 381952 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dsound.dll

[-] 2004-08-17 . A19F5837E52D57DB66D9DB55BFCC7796 . 1689088 . . [5.03.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\d3d9.dll
[-] 2004-08-17 . A19F5837E52D57DB66D9DB55BFCC7796 . 1689088 . . [5.03.2600.2180] . . c:\windows\ServicePackFiles\i386\d3d9.dll
[-] 2004-08-17 . A19F5837E52D57DB66D9DB55BFCC7796 . 1689088 . . [5.03.2600.2180] . . c:\windows\system32\d3d9.dll
[-] 2004-07-09 03:27 . 0E51BD586D186F61A9E4453DB8AEC774 . 1703936 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\$NtServicePackUninstall$\d3d9.dll

[-] 2004-08-17 . 0F9A5DD4503E82B085D8B1336B961A81 . 266240 . . [5.03.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\ddraw.dll
[-] 2004-08-17 . 0F9A5DD4503E82B085D8B1336B961A81 . 266240 . . [5.03.2600.2180] . . c:\windows\ServicePackFiles\i386\ddraw.dll
[-] 2004-08-17 . 0F9A5DD4503E82B085D8B1336B961A81 . 266240 . . [5.03.2600.2180] . . c:\windows\system32\ddraw.dll
[-] 2004-07-09 03:27 . 90114704C17A581DA1BAE029F20932BE . 292864 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\$NtServicePackUninstall$\ddraw.dll
[-] 2004-07-09 03:27 . 90114704C17A581DA1BAE029F20932BE . 292864 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\ddraw.dll

[-] 2004-08-17 22:49 . 33F14F23DFAE4B43CDD4E535CD7C1963 . 83456 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\olepro32.dll
[-] 2004-08-17 14:49 . 33F14F23DFAE4B43CDD4E535CD7C1963 . 83456 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\olepro32.dll
[-] 2004-08-17 14:49 . 33F14F23DFAE4B43CDD4E535CD7C1963 . 83456 . . [5.1.2600.2180] . . c:\windows\system32\olepro32.dll
[-] 2001-09-20 12:00 . 37A92D8F58CD9A6C33657E99767F8D78 . 106496 . . [5.0.5014] . . c:\windows\$NtServicePackUninstall$\olepro32.dll

[-] 2004-08-17 . 6C08FF4B76506676617E03C34ECCFB11 . 39936 . . [5.1.2600.2180] . . c:\windows\SoftwareDistribution\Download\4df038d60d071da9e4afe55fba7cbfbf\perfctrs.dll
[-] 2004-08-17 . 6C08FF4B76506676617E03C34ECCFB11 . 39936 . . [5.1.2600.2180] . . c:\windows\ServicePackFiles\i386\perfctrs.dll
[-] 2004-08-17 . 6C08FF4B76506676617E03C34ECCFB11 . 39936 . . [5.1.2600.2180] . . c:\windows\system32\perfctrs.dll
[-] 2001-09-20 . 64044E7608825E8C0442F4328570BB9F . 37376 . . [5.1.2600.0] . . c:\windows\$NtServicePackUninstall$\perfctrs.dll
.

zdenpok · #4 Příspěvek od **zdenpok** » 16 črc 2010 07:23

Pokračování:

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"nwiz"="nwiz.exe" [2008-10-07 1630208]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144]
"OpwareSE4"="c:\program files\ScanSoft\OmniPageSE4.0\OpwareSE4.exe" [2006-10-11 75304]
"SpywareTerminator"="c:\progra~1\SPYWAR~1\SpywareTerminatorShield.exe" [2008-07-24 1817600]
"WinSys2"="c:\windows\system32\winsys2.exe" [2008-10-21 208896]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016]
"KBD"="c:\hp\KBD\KBD.EXE" [2005-02-02 61440]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2009-10-13 198160]
"SunJavaUpdateSched"="c:\program files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 144784]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-17 15360]

[HKLM\~\startupfolder\C:^Documents and Settings^Administrator^Nabídka Start^Programy^Po spuštění^MutiKeyboard Driver.lnk]
backup=c:\windows\pss\MutiKeyboard Driver.lnkStartup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Adobe Reader Synchronizer.lnk]
backup=c:\windows\pss\Adobe Reader Synchronizer.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BlueSoleil.lnk]
backup=c:\windows\pss\BlueSoleil.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^BTTray.lnk]
backup=c:\windows\pss\BTTray.lnkCommon Startup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\365dní]
2006-09-01 11:37 155648 ----a-w- c:\program files\365dni\tray_365.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\avast!]
2007-01-15 17:28 108160 ----a-w- f:\programy\ashDisp.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
2004-08-17 14:49 15360 ----a-w- c:\windows\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools]
2005-12-10 14:57 133016 ----a-w- c:\program files\DAEMON Tools\daemon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gibo SMS]
2006-12-01 16:23 962560 ----a-w- c:\program files\Gibo SMS\GiboSMS.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\H/PC Connection Agent]
2006-11-13 15:50 1289000 ----a-w- c:\progra~1\MICROS~4\wcescomm.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Hotkey]
2004-04-03 17:38 36864 ----a-w- c:\program files\Hotkey\Hotkey.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechVideoTray]
2004-10-08 11:24 217088 -c--a-w- c:\program files\Logitech\Video\LogiTray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LVCOMSX]
2004-10-08 10:52 221184 ----a-w- c:\windows\system32\LVCOMSX.EXE

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MailCtrl]
2006-12-08 09:05 90112 ----a-w- c:\program files\Kerio\MailServer\mailctrl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
2001-07-09 08:50 155648 -c--a-w- c:\windows\system32\NeroCheck.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2008-10-07 05:33 13574144 ----a-w- c:\windows\system32\nvcpl.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2008-10-07 05:33 86016 ----a-w- c:\windows\system32\nvmctray.dll

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RepliGo Assistant]
2004-05-06 07:09 167936 -c--a-w- c:\program files\Cerience\RepliGo\RepliGoMon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareTerminator]
2008-07-24 09:58 1817600 ----a-w- c:\program files\Spyware Terminator\SpywareTerminatorShield.Exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TrojanScanner]
2007-02-19 01:57 296032 -c--a-w- c:\program files\Trojan Remover\Trjscan.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\USB Keyboard]
2004-03-30 20:57 155648 ----a-w- c:\program files\USB Keyboard Driver\Kb_2k.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"c:\\Program Files\\Logitech\\Desktop Messenger\\8876480\\Program\\LogitechDesktopMessenger.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Sprite Software\\Sprite Backup\\SpriteService.exe"=
"c:\\Program Files\\Messenger\\msmsgs.exe"=
"c:\\Program Files\\IVT Corporation\\BlueSoleil\\BlueSoleil.exe"=
"c:\\Program Files\\QIP\\qip.exe"=
"f:\\Program Files\\Office12\\OUTLOOK.EXE"=
"f:\\Program Files\\Office12\\GROOVE.EXE"=
"f:\\Program Files\\Office12\\ONENOTE.EXE"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"f:\\Program Files\\ICQ6.5\\ICQ.exe"=
"c:\program files\Microsoft ActiveSync\rapimgr.exe"= c:\program files\Microsoft ActiveSync\rapimgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync RAPI Manager
"c:\program files\Microsoft ActiveSync\wcescomm.exe"= c:\program files\Microsoft ActiveSync\wcescomm.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Connection Manager
"c:\program files\Microsoft ActiveSync\WCESMgr.exe"= c:\program files\Microsoft ActiveSync\WCESMgr.exe:169.254.2.0/255.255.255.0:Enabled:ActiveSync Application
"f:\\Programy\\Phone\\Skype.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009
"26675:TCP"= 26675:TCP:169.254.2.0/255.255.255.0:Enabled:ActiveSync Service

R1 oxser;OX16C95x Serial port driver;c:\windows\system32\DRIVERS\oxser.sys [2003-04-28 51169]
R2 appdrvrem01;Application Driver Auto Removal Service (01);c:\windows\System32\appdrvrem01.exe svc [x]
R3 eusk3usb;SmartKey 3 USB;c:\windows\system32\Drivers\eusk3usb.sys [2004-11-18 45534]
R3 SetupNTGLM7X;SetupNTGLM7X;E:\NTGLM7X.sys [x]
R3 Start BT in service;Start BT in service;c:\program files\IVT Corporation\BlueSoleil\StartSkysolSvc.exe [2007-04-21 52080]
R3 usb2vcom;USB Data Cable;c:\windows\system32\DRIVERS\usb2vcom.sys [2005-08-06 28704]
R3 vaxscsi;vaxscsi;c:\windows\System32\Drivers\vaxscsi.sys [2006-03-04 223128]
R4 sptd;sptd;c:\windows\system32\Drivers\sptd.sys [2008-05-23 642560]
R4 Vax347b;Vax347b;c:\windows\system32\DRIVERS\Vax347b.sys [2005-04-25 159616]
S0 tffsport;M-Systems DiskOnChip 2000;c:\windows\System32\DRIVERS\tffsport.sys [2004-08-03 149376]
S0 Vax347s;Vax347s;c:\windows\System32\Drivers\Vax347s.sys [2004-04-30 5248]
S1 appdrv01;Application Driver (01);c:\windows\system32\Drivers\appdrv01.sys [2009-12-14 3069040]
S1 eusk2par;EUTRON SmartKey Parallel Driver;c:\windows\system32\Drivers\eusk2par.sys [2004-11-18 24786]
S1 fwdrv;Firewall Driver;c:\windows\system32\drivers\fwdrv.sys [2007-04-26 302000]
S1 khips;Kerio HIPS Driver;c:\windows\system32\drivers\khips.sys [2007-04-26 72624]
S1 prodrv04;Star Force copy protection driver v4;c:\windows\System32\drivers\prodrv04.sys [2004-11-12 114496]
S1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [2008-07-24 141312]
S2 port_nt;port_nt;c:\windows\system32\drivers\port_nt.sys [2002-10-18 3608]
S2 SPF4;Sunbelt Personal Firewall 4;c:\program files\Sunbelt Software\Personal Firewall\kpf4ss.exe [2007-04-26 1234480]

.
Obsah adresáře 'Naplánované úlohy'
.
.
------- Doplňkový sken -------
.
mSearch Bar = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uCustomizeSearch =
uSearchURL,(Default) = hxxp://www.google.com/keyword/%s
IE: E&xportovat do aplikace Microsoft Excel - f:\progra~1\Office12\EXCEL.EXE/3000
IE: Send To &Bluetooth
IE: Stáhnout pomocí NetXferu - c:\program files\Xi\NetXfer\NXAddLink.html
IE: Stáhnout Star Downloaderem - f:\program files\Star Downloader\sdie.htm
IE: Stáhnout vše pomocí Net&Xferu - c:\program files\Xi\NetXfer\NXAddList.html
IE: Zobrazit originál
IE: {{7E6A20FB-153F-402c-A84B-1A64E1955D3D} - {7E6A20FB-153F-402c-A84B-1A64E1955D3D} - c:\translat\WEBIE.DLL
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748450} - {CC963627-B1DC-40E0-B52A-CF21EE748450} - c:\translat\WEBIE.DLL
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748451} - {CC963627-B1DC-40E0-B52A-CF21EE748451} - c:\translat\WEBIE.DLL
IE: {{CC963627-B1DC-40E0-B52A-CF21EE748452} - {CC963627-B1DC-40E0-B52A-CF21EE748452} - c:\translat\WEBIE.DLL
Trusted Zone: ladronka.cz\www
Handler: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - c:\program files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
DPF: Microsoft XML Parser for Java
FF - ProfilePath - c:\documents and settings\Administrator\Data aplikací\Mozilla\Firefox\Profiles\rt4u0evu.Nepojmenovaný\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.seznam.cz/
FF - prefs.js: keyword.URL - hxxp://search.icq.com/search/afe_results.php?ch_id=afex&q=
FF - component: c:\program files\Mozilla Firefox\extensions\SpbWalletToolbar@SpbSoftwareHouse.com\components\SpbWalletToolbar.dll
FF - component: c:\program files\real\realplayer\browserrecord\firefox\ext\components\nprpffbrowserrecordext.dll
FF - plugin: c:\program files\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\np-mswmp.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npbx3d.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npbx3dpro.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npCortona.dll

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

MSConfigStartUp-ICQ - f:\program files\ICQ6\ICQ.exe
MSConfigStartUp-iTunesHelper - c:\program files\iTunes\iTunesHelper.exe
AddRemove-MemTurbo - f:\programy\Uninst.isu

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-07-15 21:29
Windows 5.1.2600 Service Pack 2 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Internet Explorer\URLSearchHooks]
@Ace=(Denied: NO_PROPAGATE_INHERIT_ACE) ) (Everyone)
"{6AB38406-E353-1EAD-8251-13175D8C8922}"=""

[HKEY_LOCAL_MACHINE\software\Microsoft\lrjfs]
@Ace=(Denied: NO_PROPAGATE_INHERIT_ACE) ) (Everyone)
"{CFBFAE00-17A6-11D0-99CB-00C04FD64497}"=""
"{4DF50DB0-746C-F32F-FF0B-48F6F520A204}"=""

[HKEY_LOCAL_MACHINE\software\Microsoft\neytu]
@Ace=(Denied: NO_PROPAGATE_INHERIT_ACE) ) (Everyone)
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'explorer.exe'(1172)
c:\windows\system32\nview.dll
c:\windows\system32\NVWRSCS.DLL
c:\program files\ScanSoft\OmniPageSE4.0\OpHookSE4.dll
c:\program files\Common Files\Ahead\Lib\NeroDigitalExt.dll
.
------------------------ Jiné spuštené procesy ------------------------
.
f:\programy\aswUpdSv.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\nvsvc32.exe
c:\progra~1\SPYWAR~1\sp_rsser.exe
c:\program files\Alcohol Soft\Alcohol 120\StarWind\StarWindService.exe
c:\program files\Kerio\MailServer\mailserver.exe
c:\program files\Sunbelt Software\Personal Firewall\kpf4gui.exe
c:\program files\kerio\mailserver\plugins\avserver.exe
c:\program files\kerio\mailserver\plugins\spamserver.exe
c:\windows\system32\RUNDLL32.EXE
c:\windows\system32\rundll32.exe
c:\program files\EnhanceKeyboard\kb_2k.exe
c:\program files\Sunbelt Software\Personal Firewall\kpf4gui.exe
.
**************************************************************************
.
Celkový čas: 2010-07-15 21:42:25 - počítač byl restartován
ComboFix-quarantined-files.txt 2010-07-15 19:42

Před spuštěním: 1 145 397 248
Po spuštění: 1 041 051 648

Current=4 Default=4 Failed=3 LastKnownGood=2 Sets=1,2,3,4
- - End Of File - - 1BD04C9E446F6E30582FCECC8808B63E

#5 Příspěvek od **Rudy** » 16 črc 2010 17:57

Ještě dočistíme. Přesuňte ComboFix na plochu. Otevřte poznámkový blok a zkopírujte do něj:

Collect::
c:\windows\system32\winsys2.exe

Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"WinSys2"=-

Uložte na plochu jako CFScript.txt. Pak jej myší přetáhněte nad ikonu ComboFix a pusťte. CF se spustí a vykoná příkazy ze skriptu.

Obrázek

zdenpok · #6 Příspěvek od **zdenpok** » 17 črc 2010 00:17

Bohužel mi nefunguje kopírování a vkládání ani nejde na ploše nic přetáhnout

#7 Příspěvek od **Rudy** » 17 črc 2010 10:17

Zkuste obnovu systému k datu, kdy systém korektně fungoval a pak akci s CF zopakujte.

zdenpok · #8 Příspěvek od **zdenpok** » 17 črc 2010 10:26

To už jsem zkoušel, bohužel se obnovení systému nějakým způsobem zrušilo.

#9 Příspěvek od **Rudy** » 17 črc 2010 11:36

Pak nezbude, než opravit systém XPManagerem: http://www.viry.cz/forum/viewtopic.php?f=46&t=17549 , příp. z instal. CD.

VIRY.CZ

Nelze vypnout počítač, zmizela spodní lišta

Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta

Re: Nelze vypnout počítač, zmizela spodní lišta