Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz

Vypadávání internetu (detailní popis problému)

Máte problém s virem? Vložte sem log z FRST nebo RSIT.

Moderátor: Moderátoři

Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]

Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.

!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Odpovědět
Zpráva
Autor
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Vypadávání internetu (detailní popis problému)

#1 Příspěvek od Wurf »

Dobrý den,

V poslední době se u mého připojení objevil malý problém, občas vypadne internet a musim stisknout "opravit" u mého sítového pripojeni, někdy i to nestačí a musím restartovat OS. Používám MS Windows XP Service Pack 3, nedávno jsem dával novou instalaci, tudíž garantuji, že mám nejnovější ovladače HW, .net framework, direct a všechny aktualizace od Microsoftu, samozřejmě nejnovější verze programů, jako bezpečnostní balík používám licencovaný Eset Smart Security nejnovější verze (aktualizovaný automaticky). Internet mám 6Mb/s od společnosti HELEMIK. Co se týká samotného hardwaru počítače, tak s ním by něměl být problém, vše nejnovější generace (deska, ram, grafika) - nebudu zde vypisovat konfiguraci, ale je to neco skupinou HIGH-END počítačů. Co Vás asi bude více zajímat je sítová karta, sice na desce mam samozřejmě interní, ale nedávno jsem si koupil extérní D-LINK DGE-530T. Nebylo by to zas tak zlé, ale jakožto jsem raidující hráč WoW, tak to činí docela velké problémy, pokud se výpadek stane zrovna v raidu. K softwaru... vše legální, žádné "divné" programy, internetový prohlížeč Mozilla Firefox, ale to myslím nehraje velkou roli. O virus by nemělo jít, už jen proto, že je to čistá instalace a plně zabezpečený program, problém s vypadáváním jsem měl i dřívě, ale až nyní to chci konečně vyřešit, pokud bude někdo hodný a pomůže mi, budu mu opravdu vděčný. Pokud to nebude nutné, nerad bych instaloval nějaké další programy, dodal bych snad jen, že disk je pravidělně defragmentovaný a čištěný přes CCLEANER (soubory/registry).

Výsledek testu přes http://www.rychlost.cz, pingtest pres cmd je zcela normální.
03.11 15:09 Helemik Internet (pevné připojení) 5706 476 11,0 98,9

EDIT: Zajímavý je tento výsledek, který se pořád opakuje v protokolu firewallu mého ESETU (osobně ten řádek utok atd. jsem dnes viděl poprvé, obvykle tam bývá jen řádek detekována stejná ip adresa v síti)... myslím, že tohle je to klíčové.

Obrázek

Děkuji :)


EDIT:
Dočetl jsem se v diskuzi o esetu tuhle zajímavou věc, bojím se to použít, kdyby na mě opravdu někdo útočil.
http://www.viry.cz/forum/viewtopic.php? ... 4&start=15
Psal jsem na Eset a dostal jsem tuto odpověd:

Dobrý den,
klikněte do rozšíženého nastavení (klávesa F5). Zde v položce firewall a IDS a rozšířené nastavení. Zde vyškrtněte Detekce útoků DNS a ARP poisoning a dále TCP a revizní TCP Desynchronizace. Pokud vyptete tyto 4 položky, internet Vám už poběží.
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#2 Příspěvek od Wurf »

Z DŮVODU VELIKOST 2 ODPOVĚDI (viz. max. počet znaků)


Logfile of random's system information tool 1.08 (written by random/random)
Run by Lukáš at 2010-11-03 21:02:57
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 130 GB (85%) free of 153 GB
Total RAM: 2046 MB (73% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:03:05, on 3.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\RTHDCPL.EXE
C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe
C:\Program Files\A4Tech\Mouse\Amoumain.exe
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Download\RSIT.exe
C:\Program Files\trend micro\Lukáš.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: SearchHook Class - {BC86E1AB-EDA5-4059-938F-CE307B0C6F0A} - C:\Program Files\DeviceVM\Browser Configuration Utility\AddressBarSearch.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [BCU] "C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe"
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [WheelMouse] C:\Program Files\A4Tech\Mouse\Amoumain.exe
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microso ... 8719061812
O17 - HKLM\System\CCS\Services\Tcpip\..\{E100474E-8A36-4659-86E9-5284E714CA43}: NameServer = 192.168.10.1
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Browser Configuration Utility Service (BCUService) - DeviceVM, Inc. - C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET Smart Security\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe

--
End of file - 6176 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-02 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-02 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-06-25 17887232]
"BCU"=C:\Program Files\DeviceVM\Browser Configuration Utility\BCU.exe [2009-08-04 346320]
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-02-02 98304]
"WheelMouse"=C:\Program Files\A4Tech\Mouse\Amoumain.exe [2007-05-15 204800]
"egui"=C:\Program Files\ESET\ESET Smart Security\egui.exe [2010-08-12 2215064]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2010-07-12 74752]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-02-03 159744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-01-30 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-11-03 21:02:57 ----D---- C:\rsit
2010-11-03 21:02:57 ----D---- C:\Program Files\trend micro
2010-11-02 21:20:34 ----D---- C:\Program Files\World of Warcraft
2010-11-02 21:20:34 ----D---- C:\Program Files\Common Files\Blizzard Entertainment
2010-11-02 21:19:53 ----D---- C:\Documents and Settings\All Users\Data aplikací\Blizzard Entertainment
2010-11-02 20:31:07 ----D---- C:\WINDOWS\pss
2010-11-02 20:16:11 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\OpenOffice.org
2010-11-02 20:15:01 ----D---- C:\Program Files\OpenOffice.org 3
2010-11-02 20:10:58 ----D---- C:\Program Files\Common Files\LightScribe
2010-11-02 20:09:36 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Ahead
2010-11-02 20:06:57 ----D---- C:\Documents and Settings\All Users\Data aplikací\Nero
2010-11-02 20:06:56 ----D---- C:\Program Files\Nero
2010-11-02 20:06:56 ----D---- C:\Program Files\Common Files\Ahead
2010-11-02 19:59:42 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Ventrilo
2010-11-02 19:59:30 ----D---- C:\Program Files\Ventrilo
2010-11-02 19:59:22 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-11-02 19:57:36 ----D---- C:\Program Files\IrfanView
2010-11-02 19:54:11 ----HD---- C:\Config.Msi
2010-11-02 19:53:58 ----RA---- C:\WINDOWS\system32\drivers\HPZipr12.sys
2010-11-02 19:53:57 ----RA---- C:\WINDOWS\system32\drivers\hpzid412.sys
2010-11-02 19:53:31 ----RA---- C:\WINDOWS\system32\drivers\HPZius12.sys
2010-11-02 19:53:27 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-11-02 19:53:14 ----RA---- C:\WINDOWS\system32\HPZc3212.dll
2010-11-02 19:53:14 ----RA---- C:\WINDOWS\system32\hpovst08.dll
2010-11-02 19:53:13 ----RA---- C:\WINDOWS\system32\hpotscl.dll
2010-11-02 19:53:12 ----RA---- C:\WINDOWS\system32\hpgwiamd.dll
2010-11-02 19:53:11 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-11-02 19:44:25 ----HDC---- C:\WINDOWS\$NtUninstallKB961118$
2010-11-02 19:34:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-11-02 19:34:03 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-11-02 19:31:21 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-11-02 19:31:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$
2010-11-02 19:18:08 ----D---- C:\WINDOWS\system32\XPSViewer
2010-11-02 19:18:05 ----D---- C:\Program Files\MSBuild
2010-11-02 19:17:58 ----D---- C:\Program Files\Reference Assemblies
2010-11-02 19:17:37 ----N---- C:\WINDOWS\system32\xpssvcs.dll
2010-11-02 19:17:37 ----N---- C:\WINDOWS\system32\xpsshhdr.dll
2010-11-02 19:17:37 ----N---- C:\WINDOWS\system32\prntvpt.dll
2010-11-02 19:12:25 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-11-02 19:12:21 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-11-02 19:12:17 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-11-02 19:12:12 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-11-02 19:12:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-11-02 19:12:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-11-02 19:11:59 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-11-02 19:11:54 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-11-02 19:11:50 ----HDC---- C:\WINDOWS\$NtUninstallKB982214$
2010-11-02 19:11:47 ----HDC---- C:\WINDOWS\$NtUninstallKB958869$
2010-11-02 19:11:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2259922$
2010-11-02 19:11:39 ----HDC---- C:\WINDOWS\$NtUninstallKB980195$
2010-11-02 19:11:36 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-11-02 19:11:32 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-11-02 19:11:28 ----HDC---- C:\WINDOWS\$NtUninstallKB2115168$
2010-11-02 19:11:24 ----HDC---- C:\WINDOWS\$NtUninstallKB975558_WM8$
2010-11-02 19:11:20 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-11-02 19:11:15 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-11-02 19:11:11 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-11-02 19:11:06 ----HDC---- C:\WINDOWS\$NtUninstallKB951978$
2010-11-02 19:11:01 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-11-02 19:10:57 ----HDC---- C:\WINDOWS\$NtUninstallKB981349$
2010-11-02 19:10:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-11-02 19:10:07 ----D---- C:\WINDOWS\ie8updates
2010-11-02 19:09:48 ----D---- C:\WINDOWS\WBEM
2010-11-02 19:09:02 ----HDC---- C:\WINDOWS\ie8
2010-11-02 19:06:19 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-11-02 19:06:15 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-11-02 19:06:11 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-11-02 19:06:07 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-11-02 19:06:03 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-11-02 19:04:43 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-11-02 19:04:35 ----HDC---- C:\WINDOWS\$NtUninstallKB2360131$
2010-11-02 19:04:32 ----HDC---- C:\WINDOWS\$NtUninstallKB954155_WM9$
2010-11-02 19:04:29 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-11-02 19:04:24 ----HDC---- C:\WINDOWS\$NtUninstallKB956744$
2010-11-02 19:04:20 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-11-02 19:04:13 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-11-02 19:04:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2347290$
2010-11-02 19:04:05 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-11-02 19:04:00 ----HDC---- C:\WINDOWS\$NtUninstallKB981852$
2010-11-02 19:03:56 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-11-02 19:03:52 ----HDC---- C:\WINDOWS\$NtUninstallKB2079403$
2010-11-02 19:03:47 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-11-02 19:03:43 ----HDC---- C:\WINDOWS\$NtUninstallKB2121546$
2010-11-02 19:03:40 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-11-02 19:03:36 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-11-02 19:03:29 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-11-02 19:03:26 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-11-02 19:03:22 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-11-02 19:03:17 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-11-02 19:03:13 ----HDC---- C:\WINDOWS\$NtUninstallKB977816$
2010-11-02 19:03:09 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-11-02 19:03:05 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-11-02 19:03:01 ----HDC---- C:\WINDOWS\$NtUninstallKB980436$
2010-11-02 19:02:58 ----HDC---- C:\WINDOWS\$NtUninstallKB981322$
2010-11-02 19:02:54 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-11-02 19:02:51 ----HDC---- C:\WINDOWS\$NtUninstallKB978695_WM9$
2010-11-02 19:02:47 ----HDC---- C:\WINDOWS\$NtUninstallKB973904$
2010-11-02 19:02:43 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-11-02 19:02:36 ----HDC---- C:\WINDOWS\$NtUninstallKB973540_WM9$
2010-11-02 19:02:32 ----HDC---- C:\WINDOWS\$NtUninstallKB950760$
2010-11-02 19:02:29 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-11-02 19:02:23 ----HDC---- C:\WINDOWS\$NtUninstallKB954459$
2010-11-02 19:02:19 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-11-02 19:01:27 ----A---- C:\WINDOWS\system32\MRT.exe
2010-11-02 19:01:22 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-11-02 19:01:18 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-11-02 19:01:12 ----HDC---- C:\WINDOWS\$NtUninstallKB2286198$
2010-11-02 19:01:09 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-11-02 19:01:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-11-02 19:01:02 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-11-02 19:00:59 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-11-02 19:00:52 ----HDC---- C:\WINDOWS\$NtUninstallKB981997$
2010-11-02 19:00:48 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-11-02 19:00:45 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-11-02 19:00:41 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-11-02 19:00:37 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-11-02 19:00:34 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-11-02 19:00:30 ----HDC---- C:\WINDOWS\$NtUninstallKB2158563$
2010-11-02 19:00:22 ----HDC---- C:\WINDOWS\$NtUninstallKB982665$
2010-11-02 19:00:18 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-11-02 19:00:14 ----HDC---- C:\WINDOWS\$NtUninstallKB971961$
2010-11-02 19:00:10 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-11-02 19:00:06 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-11-02 19:00:01 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-11-02 18:43:49 ----N---- C:\WINDOWS\system32\browserchoice.exe
2010-11-02 18:35:57 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2010-11-02 18:35:57 ----A---- C:\WINDOWS\system32\mucltui.dll
2010-11-02 18:34:15 ----D---- C:\WINDOWS\system32\PreInstall
2010-11-02 18:34:13 ----HDC---- C:\WINDOWS\$NtUninstallKB898461$
2010-11-02 18:20:59 ----D---- C:\Program Files\CCleaner
2010-11-02 18:17:24 ----A---- C:\WINDOWS\iun6002.exe
2010-11-02 18:17:21 ----D---- C:\Program Files\Codec Pack - All In 1
2010-11-02 18:16:25 ----D---- C:\Program Files\WinRAR
2010-11-02 18:13:55 ----D---- C:\Program Files\Winamp Detect
2010-11-02 18:13:46 ----N---- C:\WINDOWS\system32\drivers\PxHelp20.sys
2010-11-02 18:13:46 ----N---- C:\WINDOWS\system32\drivers\cdr4_xp.sys
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\vxblock.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxwave.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxsfs.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxmas.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxinsa64.exe
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxhpinst.exe
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxdrv.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxcpya64.exe
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\pxafs.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\px.dll
2010-11-02 18:13:45 ----N---- C:\WINDOWS\system32\drivers\cdralw2k.sys
2010-11-02 18:13:44 ----D---- C:\Program Files\Winamp
2010-11-02 18:13:44 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Winamp
2010-11-02 18:12:13 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\BSplayer Pro
2010-11-02 18:12:13 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\BSplayer
2010-11-02 18:12:07 ----D---- C:\Program Files\Webteh
2010-11-02 18:07:18 ----N---- C:\WINDOWS\system32\spmsg.dll
2010-11-02 18:07:15 ----HDC---- C:\WINDOWS\$NtUninstallMSCompPackV1$
2010-11-02 18:07:08 ----A---- C:\WINDOWS\system32\wmpns.dll
2010-11-02 18:07:04 ----D---- C:\Program Files\Windows Media Connect 2
2010-11-02 18:06:55 ----HDC---- C:\WINDOWS\$NtUninstallwmp11$
2010-11-02 18:06:26 ----HDC---- C:\WINDOWS\$NtUninstallWMFDist11$
2010-11-02 18:06:09 ----D---- C:\WINDOWS\system32\LogFiles
2010-11-02 18:06:09 ----D---- C:\WINDOWS\system32\drivers\UMDF
2010-11-02 18:06:03 ----HDC---- C:\WINDOWS\$NtUninstallWudf01000$
2010-11-02 18:01:31 ----D---- C:\Documents and Settings\All Users\Data aplikací\Windows Genuine Advantage
2010-11-02 17:57:34 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Mozilla
2010-11-02 17:57:30 ----D---- C:\Program Files\Mozilla Firefox
2010-11-02 17:55:10 ----D---- C:\Program Files\Microsoft Silverlight
2010-11-02 17:53:59 ----D---- C:\Program Files\Common Files\Java
2010-11-02 17:53:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-11-02 17:53:48 ----A---- C:\WINDOWS\system32\javaws.exe
2010-11-02 17:53:48 ----A---- C:\WINDOWS\system32\javaw.exe
2010-11-02 17:53:48 ----A---- C:\WINDOWS\system32\java.exe
2010-11-02 17:53:48 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-11-02 17:53:39 ----D---- C:\Program Files\Java
2010-11-02 17:53:00 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Sun
2010-11-02 17:50:15 ----D---- C:\Program Files\Common Files\Adobe
2010-11-02 17:49:34 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-11-02 17:49:32 ----D---- C:\Program Files\Common Files\Adobe AIR
2010-11-02 17:49:32 ----D---- C:\Program Files\Adobe
2010-11-02 16:54:37 ----D---- C:\WINDOWS\system32\Adobe
2010-11-02 16:52:04 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Macromedia
2010-11-02 16:52:04 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Adobe
2010-11-02 16:51:59 ----D---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2010-11-02 16:49:34 ----D---- C:\Download
2010-11-02 16:41:38 ----SHD---- C:\RECYCLER
2010-11-02 16:38:59 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\ESET
2010-11-02 16:38:20 ----D---- C:\Program Files\ESET
2010-11-02 16:38:20 ----D---- C:\Documents and Settings\All Users\Data aplikací\ESET
2010-11-02 16:28:23 ----D---- C:\Program Files\A4Tech
2010-11-02 16:24:51 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\ATI
2010-11-02 16:24:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2010-11-02 16:22:19 ----D---- C:\Program Files\Common Files\ATI Technologies
2010-11-02 16:22:14 ----RA---- C:\WINDOWS\system32\drivers\AtiHdmi.sys
2010-11-02 16:22:04 ----RA---- C:\WINDOWS\system32\atiiiexx.dll
2010-11-02 16:22:03 ----RA---- C:\WINDOWS\system32\ATIDEMGX.dll
2010-11-02 16:21:59 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2010-11-02 16:21:58 ----A---- C:\WINDOWS\system32\atitvo32.dll
2010-11-02 16:21:58 ----A---- C:\WINDOWS\system32\aticalrt.dll
2010-11-02 16:21:58 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\atimpc32.dll
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\aticaldd.dll
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\atibtmon.exe
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2010-11-02 16:21:57 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2010-11-02 16:21:51 ----A---- C:\WINDOWS\system32\atioglxx.dll
2010-11-02 16:21:50 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2010-11-02 16:21:50 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2010-11-02 16:21:48 ----A---- C:\WINDOWS\system32\aticalcl.dll
2010-11-02 16:21:45 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2010-11-02 16:21:45 ----A---- C:\WINDOWS\system32\ATIODE.exe
2010-11-02 16:21:45 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2010-11-02 16:21:45 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2010-11-02 16:21:44 ----A---- C:\WINDOWS\system32\atikvmag.dll
2010-11-02 16:18:40 ----D---- C:\Program Files\ATI Technologies
2010-11-02 16:18:35 ----D---- C:\Program Files\ATI
2010-11-02 16:12:56 ----HD---- C:\Program Files\DeviceVM
2010-11-02 16:09:02 ----D---- C:\WINDOWS\system32\Lang
2010-11-02 16:07:53 ----A---- C:\WINDOWS\system32\drivers\splitter.sys
2010-11-02 16:07:51 ----A---- C:\WINDOWS\system32\drivers\wdmaud.sys
2010-11-02 16:07:50 ----A---- C:\WINDOWS\system32\drivers\DMusic.sys
2010-11-02 16:07:49 ----A---- C:\WINDOWS\system32\drivers\swmidi.sys
2010-11-02 16:07:48 ----A---- C:\WINDOWS\system32\drivers\aec.sys
2010-11-02 16:07:46 ----A---- C:\WINDOWS\system32\drivers\kmixer.sys
2010-11-02 16:07:46 ----A---- C:\WINDOWS\system32\drivers\drmkaud.sys
2010-11-02 16:07:45 ----A---- C:\WINDOWS\system32\drivers\sysaudio.sys
2010-11-02 16:07:43 ----A---- C:\WINDOWS\system32\drivers\MSKSSRV.sys
2010-11-02 16:07:42 ----A---- C:\WINDOWS\system32\drivers\MSPQM.sys
2010-11-02 16:07:41 ----A---- C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2010-11-02 16:07:35 ----D---- C:\WINDOWS\system32\RTCOM
2010-11-02 16:07:33 ----A---- C:\WINDOWS\system32\ksuser.dll
2010-11-02 16:07:33 ----A---- C:\WINDOWS\system32\drivers\portcls.sys
2010-11-02 16:07:32 ----A---- C:\WINDOWS\system32\drivers\drmk.sys
2010-11-02 16:07:28 ----A---- C:\WINDOWS\vncutil.exe
2010-11-02 16:07:28 ----A---- C:\WINDOWS\system32\RtkCoInstXP.dll
2010-11-02 16:07:28 ----A---- C:\WINDOWS\SOUNDMAN.EXE
2010-11-02 16:07:28 ----A---- C:\WINDOWS\SkyTel.exe
2010-11-02 16:07:28 ----A---- C:\WINDOWS\RtlUpd.exe
2010-11-02 16:07:28 ----A---- C:\WINDOWS\RtkAudioService.exe
2010-11-02 16:07:26 ----A---- C:\WINDOWS\system32\drivers\RtkHDAud.sys
2010-11-02 16:07:26 ----A---- C:\WINDOWS\RTLCPL.EXE
2010-11-02 16:07:23 ----A---- C:\WINDOWS\system32\drivers\Monfilt.sys
2010-11-02 16:07:23 ----A---- C:\WINDOWS\RTHDCPL.EXE
2010-11-02 16:07:20 ----A---- C:\WINDOWS\MicCal.exe
2010-11-02 16:07:17 ----A---- C:\WINDOWS\ALCWZRD.EXE
2010-11-02 16:07:17 ----A---- C:\WINDOWS\ALCMTR.EXE
2010-11-02 16:07:16 ----A---- C:\WINDOWS\system32\drivers\Ambfilt.sys
2010-11-02 16:07:11 ----R---- C:\WINDOWS\RtlExUpd.dll
2010-11-02 16:03:25 ----RA---- C:\WINDOWS\system32\RtNicProp32.dll
2010-11-02 16:03:25 ----RA---- C:\WINDOWS\system32\drivers\Rtenicxp.sys
2010-11-02 16:03:16 ----D---- C:\Program Files\Realtek
2010-11-02 16:03:15 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-02 15:58:29 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-11-02 15:58:28 ----RA---- C:\WINDOWS\system32\CSVer.dll
2010-11-02 15:58:28 ----D---- C:\Program Files\Intel
2010-11-02 15:56:18 ----RA---- C:\WINDOWS\GSetup.exe
2010-11-02 15:56:18 ----A---- C:\WINDOWS\GSetup.ini
2010-11-01 22:09:34 ----RSD---- C:\WINDOWS\assembly
2010-11-01 22:09:12 ----D---- C:\WINDOWS\system32\en-US
2010-11-01 22:09:08 ----D---- C:\Program Files\Microsoft.NET
2010-11-01 22:09:07 ----D---- C:\WINDOWS\Microsoft.NET
2010-11-01 22:08:26 ----A---- C:\WINDOWS\system32\h323log.txt
2010-11-01 22:06:52 ----D---- C:\WINDOWS\system32\SoftwareDistribution
2010-11-01 22:05:27 ----D---- C:\WINDOWS\Prefetch
2010-11-01 22:03:50 ----A---- C:\WINDOWS\system32\drivers\audstub.sys
2010-11-01 22:02:58 ----A---- C:\WINDOWS\system32\drivers\redbook.sys
2010-11-01 22:02:09 ----A---- C:\WINDOWS\system32\usbui.dll
2010-11-01 22:01:56 ----N---- C:\WINDOWS\system32\msxml6r.dll
2010-11-01 22:01:56 ----N---- C:\WINDOWS\system32\msxml6.dll
2010-11-01 22:01:50 ----N---- C:\WINDOWS\system32\azroles.dll
2010-11-01 22:01:50 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2010-11-01 22:01:50 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2010-11-01 22:01:50 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2010-11-01 22:01:50 ----N---- C:\WINDOWS\system32\aaclient.dll
2010-11-01 22:01:50 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2010-11-01 22:01:50 ----A---- C:\WINDOWS\system32\ati3duag.dll
2010-11-01 22:01:50 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2010-11-01 22:01:50 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eapsvc.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eapqec.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eappprxy.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eapphost.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eappgnui.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eappcfg.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\eapolqec.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3ui.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3svc.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3msm.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dot3api.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dimsroam.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\credssp.dll
2010-11-01 22:01:49 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2010-11-01 22:01:48 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2010-11-01 22:01:48 ----N---- C:\WINDOWS\system32\kmsvc.dll
2010-11-01 22:01:48 ----N---- C:\WINDOWS\system32\kbdpash.dll
2010-11-01 22:01:48 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2010-11-01 22:01:48 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2010-11-01 22:01:48 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\onex.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\napstat.exe
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\napmontr.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\napipsec.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\mssha.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\mmcperf.exe
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\mmcex.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-11-01 22:01:47 ----N---- C:\WINDOWS\system32\mdmxsdk.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\tspkg.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\tsgqec.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\slserv.exe
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\slrundll.exe
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\slgen.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\slextspk.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\slcoinst.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\setupn.exe
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\s3gnb.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\rasqec.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\qutil.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\qcliprov.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\qagentrt.dll
2010-11-01 22:01:46 ----N---- C:\WINDOWS\system32\qagent.dll
2010-11-01 22:01:45 ----N---- C:\WINDOWS\system32\wmphoto.dll
2010-11-01 22:01:45 ----N---- C:\WINDOWS\system32\wlanapi.dll
2010-11-01 22:01:45 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2010-11-01 22:01:45 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2010-11-01 22:01:45 ----N---- C:\WINDOWS\system32\verclsid.exe
2010-11-01 22:01:45 ----N---- C:\WINDOWS\system32\tzchange.exe
2010-11-01 22:01:44 ----N---- C:\WINDOWS\slrundll.exe
2010-11-01 22:01:44 ----D---- C:\WINDOWS\system32\cs-cz
2010-11-01 22:01:44 ----D---- C:\WINDOWS\system32\cs
2010-11-01 22:01:44 ----D---- C:\WINDOWS\l2schemas
2010-11-01 22:01:44 ----A---- C:\WINDOWS\system32\xmllite.dll
2010-11-01 22:01:43 ----D---- C:\WINDOWS\system32\bits
2010-11-01 22:01:19 ----SHD---- C:\WINDOWS\Installer
2010-11-01 22:01:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-11-01 22:01:18 ----D---- C:\Program Files\Common Files\ODBC
2010-11-01 22:01:18 ----A---- C:\WINDOWS\ODBCINST.INI
2010-11-01 22:01:16 ----D---- C:\Program Files\Common Files\SpeechEngines
2010-11-01 22:01:15 ----RD---- C:\Program Files
2010-11-01 22:01:15 ----D---- C:\Program Files\Common Files\Microsoft Shared
2010-11-01 22:01:15 ----D---- C:\Program Files\Common Files
2010-11-01 22:01:13 ----RA---- C:\WINDOWS\system32\kbdtuq.dll
2010-11-01 22:01:13 ----RA---- C:\WINDOWS\system32\kbdtuf.dll
2010-11-01 22:01:13 ----RA---- C:\WINDOWS\system32\kbdazel.dll
2010-11-01 22:01:12 ----RA---- C:\WINDOWS\system32\kbdmon.dll
2010-11-01 22:01:12 ----RA---- C:\WINDOWS\system32\kbdkyr.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdycc.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbduzb.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdur.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdtat.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdru1.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdru.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdkaz.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdbu.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdblr.dll
2010-11-01 22:01:11 ----RA---- C:\WINDOWS\system32\kbdaze.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdhept.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdhela3.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdhela2.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdhe319.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdhe220.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdhe.dll
2010-11-01 22:01:10 ----RA---- C:\WINDOWS\system32\kbdgkl.dll
2010-11-01 22:01:09 ----RA---- C:\WINDOWS\system32\kbdlv1.dll
2010-11-01 22:01:09 ----RA---- C:\WINDOWS\system32\kbdlv.dll
2010-11-01 22:01:09 ----RA---- C:\WINDOWS\system32\kbdlt1.dll
2010-11-01 22:01:09 ----RA---- C:\WINDOWS\system32\kbdlt.dll
2010-11-01 22:01:09 ----RA---- C:\WINDOWS\system32\kbdest.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdsl1.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdsl.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdro.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdpl1.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdpl.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdhu1.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdhu.dll
2010-11-01 22:01:07 ----A---- C:\WINDOWS\system32\kbdcr.dll
2010-11-01 22:01:06 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-11-01 22:01:06 ----A---- C:\WINDOWS\system32\kbdycl.dll
2010-11-01 22:01:06 ----A---- C:\WINDOWS\system32\KBDAL.DLL
2010-11-01 22:01:06 ----A---- C:\WINDOWS\system32\irclass.dll
2010-11-01 22:01:06 ----A---- C:\WINDOWS\system32\dgsetup.dll
2010-11-01 22:01:06 ----A---- C:\WINDOWS\system32\dgrpsetu.dll
2010-11-01 22:01:05 ----A---- C:\WINDOWS\system32\EqnClass.Dll
2010-11-01 22:01:04 ----N---- C:\WINDOWS\system32\CONFIG.TMP
2010-11-01 22:01:04 ----A---- C:\WINDOWS\TASKMAN.EXE
2010-11-01 22:01:04 ----A---- C:\WINDOWS\system32\drivers\irenum.sys
2010-11-01 22:01:04 ----A---- C:\WINDOWS\system32\batt.dll
2010-11-01 22:01:03 ----A---- C:\WINDOWS\notepad.exe
2010-11-01 22:01:00 ----A---- C:\WINDOWS\system32\storprop.dll
2010-11-01 22:00:54 ----ASH---- C:\Documents and Settings\All Users\Data aplikací\desktop.ini
2010-11-01 22:00:51 ----D---- C:\WINDOWS\ServicePackFiles
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\bthusb.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\bthprint.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\bthport.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\bthpan.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\bthmodem.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\bthenum.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\amdagp.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\alim1541.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\agpcpq.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\agp440.sys
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2010-11-01 21:59:45 ----N---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2010-11-01 21:59:45 ----D---- C:\WINDOWS\network diagnostic
2010-11-01 21:59:45 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-11-01 21:59:44 ----RA---- C:\WINDOWS\SET21.tmp
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\smbali.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\sisagp.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\siint5.dll
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\rfcomm.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\recagent.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\nv4_mini.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\mutohpen.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\hidir.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\hidbth.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\hdaudbus.sys
2010-11-01 21:59:44 ----N---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\wacompen.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\viaagp.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\vchnt5.dll
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\usbvideo.sys
2010-11-01 21:59:43 ----N---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-11-01 21:59:13 ----RA---- C:\WINDOWS\SET8.tmp
2010-11-01 21:59:11 ----RA---- C:\WINDOWS\SET4.tmp
2010-11-01 21:59:10 ----RA---- C:\WINDOWS\SET3.tmp
2010-11-01 21:59:05 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-01 21:59:05 ----D---- C:\WINDOWS\system32\CatRoot
2010-11-01 21:59:00 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-11-01 21:58:54 ----A---- C:\WINDOWS\002553_.tmp
2010-11-01 21:58:50 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-11-01 21:58:46 ----A---- C:\WINDOWS\system32\spupdsvc.exe
2010-11-01 21:58:33 ----SHD---- C:\System Volume Information
2010-11-01 21:58:33 ----D---- C:\Documents and Settings
2010-11-01 21:57:43 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-11-01 21:57:43 ----D---- C:\WINDOWS\EHome
2010-11-01 21:57:42 ----SH---- C:\boot.ini
2010-11-01 21:54:28 ----A---- C:\WINDOWS\system32\XAudio2_7.dll
2010-11-01 21:54:28 ----A---- C:\WINDOWS\system32\XAPOFX1_5.dll
2010-11-01 21:54:28 ----A---- C:\WINDOWS\system32\xactengine3_7.dll
2010-11-01 21:54:28 ----A---- C:\WINDOWS\system32\d3dcsx_43.dll
2010-11-01 21:54:28 ----A---- C:\WINDOWS\system32\D3DCompiler_43.dll
2010-11-01 21:54:27 ----A---- C:\WINDOWS\system32\XAudio2_6.dll
2010-11-01 21:54:27 ----A---- C:\WINDOWS\system32\XAPOFX1_4.dll
2010-11-01 21:54:27 ----A---- C:\WINDOWS\system32\xactengine3_6.dll
2010-11-01 21:54:27 ----A---- C:\WINDOWS\system32\D3DX9_43.dll
2010-11-01 21:54:27 ----A---- C:\WINDOWS\system32\d3dx11_43.dll
2010-11-01 21:54:27 ----A---- C:\WINDOWS\system32\d3dx10_43.dll
2010-11-01 21:54:26 ----A---- C:\WINDOWS\system32\XAudio2_5.dll
2010-11-01 21:54:26 ----A---- C:\WINDOWS\system32\xactengine3_5.dll
2010-11-01 21:54:26 ----A---- C:\WINDOWS\system32\X3DAudio1_7.dll
2010-11-01 21:54:26 ----A---- C:\WINDOWS\system32\D3DCompiler_42.dll
2010-11-01 21:54:25 ----A---- C:\WINDOWS\system32\D3DX9_42.dll
2010-11-01 21:54:25 ----A---- C:\WINDOWS\system32\d3dx11_42.dll
2010-11-01 21:54:25 ----A---- C:\WINDOWS\system32\d3dx10_42.dll
2010-11-01 21:54:25 ----A---- C:\WINDOWS\system32\d3dx10_41.dll
2010-11-01 21:54:25 ----A---- C:\WINDOWS\system32\d3dcsx_42.dll
2010-11-01 21:54:25 ----A---- C:\WINDOWS\system32\D3DCompiler_41.dll
2010-11-01 21:54:24 ----A---- C:\WINDOWS\system32\XAudio2_4.dll
2010-11-01 21:54:24 ----A---- C:\WINDOWS\system32\XAPOFX1_3.dll
2010-11-01 21:54:24 ----A---- C:\WINDOWS\system32\xactengine3_4.dll
2010-11-01 21:54:24 ----A---- C:\WINDOWS\system32\X3DAudio1_6.dll
2010-11-01 21:54:24 ----A---- C:\WINDOWS\system32\D3DX9_41.dll
2010-11-01 21:54:23 ----A---- C:\WINDOWS\system32\XAudio2_3.dll
2010-11-01 21:54:23 ----A---- C:\WINDOWS\system32\XAPOFX1_2.dll
2010-11-01 21:54:23 ----A---- C:\WINDOWS\system32\xactengine3_3.dll
2010-11-01 21:54:23 ----A---- C:\WINDOWS\system32\D3DX9_40.dll
2010-11-01 21:54:23 ----A---- C:\WINDOWS\system32\d3dx10_40.dll
2010-11-01 21:54:23 ----A---- C:\WINDOWS\system32\D3DCompiler_40.dll
2010-11-01 21:54:22 ----A---- C:\WINDOWS\system32\XAudio2_2.dll
2010-11-01 21:54:22 ----A---- C:\WINDOWS\system32\XAPOFX1_1.dll
2010-11-01 21:54:22 ----A---- C:\WINDOWS\system32\xactengine3_2.dll
2010-11-01 21:54:22 ----A---- C:\WINDOWS\system32\X3DAudio1_5.dll
2010-11-01 21:54:22 ----A---- C:\WINDOWS\system32\d3dx10_39.dll
2010-11-01 21:54:22 ----A---- C:\WINDOWS\system32\D3DCompiler_39.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\XAudio2_1.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\XAPOFX1_0.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\xactengine3_1.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\X3DAudio1_4.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\D3DX9_39.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\d3dx10_38.dll
2010-11-01 21:54:21 ----A---- C:\WINDOWS\system32\D3DCompiler_38.dll
2010-11-01 21:54:20 ----A---- C:\WINDOWS\system32\XAudio2_0.dll
2010-11-01 21:54:20 ----A---- C:\WINDOWS\system32\xactengine3_0.dll
2010-11-01 21:54:20 ----A---- C:\WINDOWS\system32\D3DX9_38.dll
2010-11-01 21:54:19 ----A---- C:\WINDOWS\system32\xactengine2_10.dll
2010-11-01 21:54:19 ----A---- C:\WINDOWS\system32\X3DAudio1_3.dll
2010-11-01 21:54:19 ----A---- C:\WINDOWS\system32\D3DX9_37.dll
2010-11-01 21:54:19 ----A---- C:\WINDOWS\system32\d3dx10_37.dll
2010-11-01 21:54:19 ----A---- C:\WINDOWS\system32\D3DCompiler_37.dll
2010-11-01 21:54:18 ----A---- C:\WINDOWS\system32\xactengine2_9.dll
2010-11-01 21:54:18 ----A---- C:\WINDOWS\system32\d3dx9_36.dll
2010-11-01 21:54:18 ----A---- C:\WINDOWS\system32\d3dx10_36.dll
2010-11-01 21:54:18 ----A---- C:\WINDOWS\system32\D3DCompiler_36.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\xactengine2_8.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\X3DAudio1_2.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\d3dx9_35.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\d3dx10_35.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\d3dx10_34.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\D3DCompiler_35.dll
2010-11-01 21:54:17 ----A---- C:\WINDOWS\system32\D3DCompiler_34.dll
2010-11-01 21:54:16 ----A---- C:\WINDOWS\system32\xinput1_3.dll
2010-11-01 21:54:16 ----A---- C:\WINDOWS\system32\xactengine2_7.dll
2010-11-01 21:54:16 ----A---- C:\WINDOWS\system32\d3dx9_34.dll
2010-11-01 21:54:16 ----A---- C:\WINDOWS\system32\d3dx10_33.dll
2010-11-01 21:54:16 ----A---- C:\WINDOWS\system32\D3DCompiler_33.dll
2010-11-01 21:54:15 ----A---- C:\WINDOWS\system32\xactengine2_6.dll
2010-11-01 21:54:15 ----A---- C:\WINDOWS\system32\xactengine2_5.dll
2010-11-01 21:54:15 ----A---- C:\WINDOWS\system32\xactengine2_4.dll
2010-11-01 21:54:15 ----A---- C:\WINDOWS\system32\x3daudio1_1.dll
2010-11-01 21:54:15 ----A---- C:\WINDOWS\system32\d3dx9_33.dll
2010-11-01 21:54:15 ----A---- C:\WINDOWS\system32\d3dx9_32.dll
2010-11-01 21:54:14 ----A---- C:\WINDOWS\system32\xinput1_2.dll
2010-11-01 21:54:14 ----A---- C:\WINDOWS\system32\xinput1_1.dll
2010-11-01 21:54:14 ----A---- C:\WINDOWS\system32\xactengine2_3.dll
2010-11-01 21:54:14 ----A---- C:\WINDOWS\system32\xactengine2_2.dll
2010-11-01 21:54:14 ----A---- C:\WINDOWS\system32\xactengine2_1.dll
2010-11-01 21:54:14 ----A---- C:\WINDOWS\system32\d3dx9_31.dll
2010-11-01 21:54:13 ----A---- C:\WINDOWS\system32\xactengine2_0.dll
2010-11-01 21:54:13 ----A---- C:\WINDOWS\system32\x3daudio1_0.dll
2010-11-01 21:54:13 ----A---- C:\WINDOWS\system32\d3dx9_30.dll
2010-11-01 21:54:13 ----A---- C:\WINDOWS\system32\d3dx9_29.dll
2010-11-01 21:54:13 ----A---- C:\WINDOWS\system32\d3dx9_28.dll
2010-11-01 21:54:12 ----A---- C:\WINDOWS\system32\xinput9_1_0.dll
2010-11-01 21:54:12 ----A---- C:\WINDOWS\system32\d3dx9_27.dll
2010-11-01 21:54:12 ----A---- C:\WINDOWS\system32\d3dx9_26.dll
2010-11-01 21:54:12 ----A---- C:\WINDOWS\system32\d3dx9_25.dll
2010-11-01 21:54:11 ----A---- C:\WINDOWS\system32\d3dx9_24.dll
2010-11-01 21:53:20 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-11-01 21:53:20 ----RSD---- C:\WINDOWS\Fonts
2010-11-01 21:53:20 ----RD---- C:\WINDOWS\Web
2010-11-01 21:53:20 ----HD---- C:\WINDOWS\inf
2010-11-01 21:53:20 ----D---- C:\WINDOWS\WinSxS
2010-11-01 21:53:20 ----D---- C:\WINDOWS\twain_32
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Temp
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\wins
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\wbem
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\usmt
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\spool
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\ShellExt
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\Setup
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\ras
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\oobe
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\npp
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\mui
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\inetsrv
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\IME
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\icsxml
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\ias
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\export
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\drivers\etc
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\drivers\disdn
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\drivers
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\dhcp
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\config
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\3com_dmi
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\3076
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\2052
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1054
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1042
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1041
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1037
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1033
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1031
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1029
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1028
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32\1025
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system32
2010-11-01 21:53:20 ----D---- C:\WINDOWS\system
2010-11-01 21:53:20 ----D---- C:\WINDOWS\security
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Resources
2010-11-01 21:53:20 ----D---- C:\WINDOWS\repair
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Provisioning
2010-11-01 21:53:20 ----D---- C:\WINDOWS\pchealth
2010-11-01 21:53:20 ----D---- C:\WINDOWS\PeerNet
2010-11-01 21:53:20 ----D---- C:\WINDOWS\mui
2010-11-01 21:53:20 ----D---- C:\WINDOWS\msapps
2010-11-01 21:53:20 ----D---- C:\WINDOWS\msagent
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Media
2010-11-01 21:53:20 ----D---- C:\WINDOWS\java
2010-11-01 21:53:20 ----D---- C:\WINDOWS\ime
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Help
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Driver Cache
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Debug
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Cursors
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Connection Wizard
2010-11-01 21:53:20 ----D---- C:\WINDOWS\Config
2010-11-01 21:53:20 ----D---- C:\WINDOWS\AppPatch
2010-11-01 21:53:20 ----D---- C:\WINDOWS\addins
2010-11-01 21:53:20 ----D---- C:\WINDOWS
2010-11-01 21:53:20 ----ASH---- C:\pagefile.sys
2010-11-01 21:49:51 ----A---- C:\WINDOWS\system32\wpa.bak
2010-11-01 21:40:30 ----D---- C:\Program Files\D-Link
2010-11-01 21:40:20 ----D---- C:\Program Files\Common Files\InstallShield
2010-11-01 21:23:05 ----HD---- C:\WINDOWS\msdownld.tmp
2010-11-01 21:23:01 ----D---- C:\WINDOWS\Logs
2010-11-01 21:18:23 ----A---- C:\WINDOWS\system32\hidserv.dll
2010-11-01 21:18:20 ----A---- C:\WINDOWS\system32\drivers\kbdhid.sys
2010-11-01 21:18:10 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2010-11-01 21:16:20 ----D---- C:\Documents and Settings\Lukáš\Data aplikací\Identities
2010-11-01 21:16:19 ----HD---- C:\Program Files\Uninstall Information
2010-11-01 21:16:04 ----ASH---- C:\Documents and Settings\Lukáš\Data aplikací\desktop.ini
2010-11-01 21:16:03 ----SD---- C:\Documents and Settings\Lukáš\Data aplikací\Microsoft
2010-11-01 21:15:31 ----D---- C:\WINDOWS\SoftwareDistribution
2010-11-01 21:15:30 ----SD---- C:\WINDOWS\system32\Microsoft
2010-11-01 21:15:30 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-01 21:13:00 ----D---- C:\WINDOWS\system32\xircom
2010-11-01 21:13:00 ----D---- C:\Program Files\xerox
2010-11-01 21:13:00 ----D---- C:\Program Files\microsoft frontpage
2010-11-01 21:12:51 ----HD---- C:\WINDOWS\$hf_mig$
2010-11-01 21:12:38 ----RASH---- C:\MSDOS.SYS
2010-11-01 21:12:38 ----RASH---- C:\IO.SYS
2010-11-01 21:12:38 ----A---- C:\WINDOWS\control.ini
2010-11-01 21:12:38 ----A---- C:\CONFIG.SYS
2010-11-01 21:12:38 ----A---- C:\AUTOEXEC.BAT
2010-11-01 21:12:27 ----A---- C:\WINDOWS\system32\mapi32.dll
2010-11-01 21:11:49 ----SD---- C:\WINDOWS\Downloaded Program Files
2010-11-01 21:11:49 ----RD---- C:\WINDOWS\Offline Web Pages
2010-11-01 21:11:49 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-11-01 21:11:44 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-11-01 21:11:41 ----HD---- C:\Program Files\WindowsUpdate
2010-11-01 21:11:37 ----D---- C:\Program Files\Online Services
2010-11-01 21:11:25 ----D---- C:\WINDOWS\system32\DirectX
2010-11-01 21:11:11 ----A---- C:\WINDOWS\system32\atrace.dll
2010-11-01 21:11:09 ----A---- C:\WINDOWS\system32\desktop.ini
2010-11-01 21:11:09 ----A---- C:\WINDOWS\desktop.ini
2010-11-01 21:11:05 ----A---- C:\WINDOWS\system32\nmevtmsg.dll
2010-11-01 21:11:04 ----A---- C:\WINDOWS\system32\acctres.dll
2010-11-01 21:11:03 ----D---- C:\Program Files\Common Files\Services
2010-11-01 21:11:02 ----SD---- C:\WINDOWS\Tasks
2010-11-01 21:11:02 ----A---- C:\WINDOWS\system32\icfgnt5.dll
2010-11-01 21:11:01 ----D---- C:\Program Files\Common Files\MSSoap
2010-11-01 21:10:58 ----D---- C:\WINDOWS\system32\Macromed
2010-11-01 21:10:58 ----D---- C:\WINDOWS\srchasst
2010-11-01 21:10:56 ----A---- C:\WINDOWS\system32\wuweb.dll
2010-11-01 21:10:56 ----A---- C:\WINDOWS\system32\wucltui.dll
2010-11-01 21:10:56 ----A---- C:\WINDOWS\system32\wuauserv.dll
2010-11-01 21:10:56 ----A---- C:\WINDOWS\system32\wuaueng1.dll
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#3 Příspěvek od Wurf »

2010-11-01 21:10:56 ----A---- C:\WINDOWS\system32\wuaueng.dll
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\wups.dll
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\wuauclt1.exe
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\wuauclt.exe
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\wuapi.dll
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\qmgrprxy.dll
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\qmgr.dll
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\bitsprx3.dll
2010-11-01 21:10:55 ----A---- C:\WINDOWS\system32\bitsprx2.dll
2010-11-01 21:10:52 ----D---- C:\Program Files\Movie Maker
2010-11-01 21:10:50 ----A---- C:\WINDOWS\system32\safrslv.dll
2010-11-01 21:10:50 ----A---- C:\WINDOWS\system32\safrdm.dll
2010-11-01 21:10:50 ----A---- C:\WINDOWS\system32\safrcdlg.dll
2010-11-01 21:10:50 ----A---- C:\WINDOWS\system32\racpldlg.dll
2010-11-01 21:10:47 ----D---- C:\WINDOWS\system32\Restore
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\srsvc.dll
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\srrstr.dll
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\srclient.dll
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\fltmc.exe
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\fltlib.dll
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\drivers\sr.sys
2010-11-01 21:10:47 ----A---- C:\WINDOWS\system32\drivers\fltmgr.sys
2010-11-01 21:10:46 ----A---- C:\WINDOWS\system32\nmmkcert.dll
2010-11-01 21:10:46 ----A---- C:\WINDOWS\system32\msconf.dll
2010-11-01 21:10:46 ----A---- C:\WINDOWS\system32\mnmsrvc.exe
2010-11-01 21:10:46 ----A---- C:\WINDOWS\system32\mnmdd.dll
2010-11-01 21:10:46 ----A---- C:\WINDOWS\system32\isrdbg32.dll
2010-11-01 21:10:46 ----A---- C:\WINDOWS\system32\ils.dll
2010-11-01 21:10:44 ----D---- C:\Program Files\NetMeeting
2010-11-01 21:10:44 ----A---- C:\WINDOWS\system32\msoert2.dll
2010-11-01 21:10:44 ----A---- C:\WINDOWS\system32\msoeacct.dll
2010-11-01 21:10:43 ----A---- C:\WINDOWS\system32\inetres.dll
2010-11-01 21:10:43 ----A---- C:\WINDOWS\system32\inetcomm.dll
2010-11-01 21:10:42 ----D---- C:\Program Files\Outlook Express
2010-11-01 21:10:42 ----A---- C:\WINDOWS\system32\schedsvc.dll
2010-11-01 21:10:42 ----A---- C:\WINDOWS\system32\mstinit.exe
2010-11-01 21:10:42 ----A---- C:\WINDOWS\system32\mstask.dll
2010-11-01 21:10:41 ----A---- C:\WINDOWS\system32\isign32.dll
2010-11-01 21:10:41 ----A---- C:\WINDOWS\system32\inetcfg.dll
2010-11-01 21:10:41 ----A---- C:\WINDOWS\system32\icwphbk.dll
2010-11-01 21:10:41 ----A---- C:\WINDOWS\system32\icwdial.dll
2010-11-01 21:10:38 ----D---- C:\Program Files\Common Files\System
2010-11-01 21:10:37 ----D---- C:\Program Files\Internet Explorer
2010-11-01 21:10:26 ----D---- C:\Program Files\ComPlus Applications
2010-11-01 21:10:24 ----A---- C:\WINDOWS\vbaddin.ini
2010-11-01 21:10:24 ----A---- C:\WINDOWS\vb.ini
2010-11-01 21:10:20 ----D---- C:\WINDOWS\Registration
2010-11-01 21:09:57 ----D---- C:\Program Files\Windows Media Player
2010-11-01 21:09:54 ----D---- C:\Program Files\Messenger
2010-11-01 21:09:51 ----D---- C:\Program Files\MSN Gaming Zone
2010-11-01 21:09:51 ----A---- C:\WINDOWS\system32\write.exe
2010-11-01 21:09:45 ----A---- C:\WINDOWS\system32\sndvol32.exe
2010-11-01 21:09:45 ----A---- C:\WINDOWS\system32\hticons.dll
2010-11-01 21:09:45 ----A---- C:\WINDOWS\system32\avwav.dll
2010-11-01 21:09:45 ----A---- C:\WINDOWS\system32\avtapi.dll
2010-11-01 21:09:45 ----A---- C:\WINDOWS\system32\avmeter.dll
2010-11-01 21:09:44 ----A---- C:\WINDOWS\system32\winchat.exe
2010-11-01 21:09:40 ----A---- C:\WINDOWS\system32\getuname.dll
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\winmine.exe
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\sol.exe
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\reset.exe
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\mshearts.exe
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\charmap.exe
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\freecell.exe
2010-11-01 21:09:39 ----A---- C:\WINDOWS\system32\calc.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\usrlogon.cmd
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\tsshutdn.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\tslabels.ini
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\tskill.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\tsdiscon.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\tscon.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\shadow.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\rwinsta.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\regini.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\rdpcfgex.dll
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\qwinsta.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\qappsrv.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\msg.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\msdtcprf.ini
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\logoff.exe
2010-11-01 21:09:38 ----A---- C:\WINDOWS\system32\cdmodem.dll
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\stclient.dll
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\mtxlegih.dll
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\mtxex.dll
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\mtxdm.dll
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\dcomcnfg.exe
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\comrepl.dll
2010-11-01 21:09:37 ----A---- C:\WINDOWS\system32\comaddin.dll
2010-11-01 21:09:36 ----A---- C:\WINDOWS\system32\comsnap.dll
2010-11-01 21:09:33 ----A---- C:\WINDOWS\system32\wmimgmt.msc
2010-11-01 21:09:33 ----A---- C:\WINDOWS\system32\sndrec32.exe
2010-11-01 21:09:33 ----A---- C:\WINDOWS\system32\accwiz.exe
2010-11-01 21:09:32 ----D---- C:\Program Files\Windows NT
2010-11-01 21:09:32 ----A---- C:\WINDOWS\system32\mspaint.exe
2010-11-01 21:09:32 ----A---- C:\WINDOWS\system32\mplay32.exe
2010-11-01 21:09:32 ----A---- C:\WINDOWS\system32\hypertrm.dll
2010-11-01 21:09:32 ----A---- C:\WINDOWS\system32\clipbrd.exe
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\tscfgwmi.dll
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\spider.exe
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\sessmgr.exe
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\remotepg.dll
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\rdshost.exe
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\rdsaddin.exe
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\rdchost.dll
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\mstscax.dll
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\mstsc.exe
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\drivers\tdtcp.sys
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\drivers\tdpipe.sys
2010-11-01 21:09:31 ----A---- C:\WINDOWS\system32\drivers\rdpwd.sys
2010-11-01 21:09:30 ----D---- C:\WINDOWS\system32\MsDtc
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\tscupgrd.exe
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\termsrv.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\rdpwsx.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\rdpsnd.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\rdpclip.exe
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\qprocess.exe
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\mtxoci.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\msdtcuiu.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\msdtcprx.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\icaapi.dll
2010-11-01 21:09:30 ----A---- C:\WINDOWS\system32\cfgbkend.dll
2010-11-01 21:09:29 ----D---- C:\WINDOWS\system32\Com
2010-11-01 21:09:29 ----A---- C:\WINDOWS\system32\xolehlp.dll
2010-11-01 21:09:29 ----A---- C:\WINDOWS\system32\msdtctm.dll
2010-11-01 21:09:29 ----A---- C:\WINDOWS\system32\msdtclog.dll
2010-11-01 21:09:29 ----A---- C:\WINDOWS\system32\msdtc.exe
2010-11-01 21:09:29 ----A---- C:\WINDOWS\system32\colbact.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\comuid.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\comsvcs.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\clbcatq.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\clbcatex.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\catsrvut.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\catsrvps.dll
2010-11-01 21:09:28 ----A---- C:\WINDOWS\system32\catsrv.dll
2010-11-01 21:09:24 ----A---- C:\WINDOWS\system32\servdeps.dll
2010-11-01 21:09:24 ----A---- C:\WINDOWS\system32\mmfutil.dll
2010-11-01 21:09:24 ----A---- C:\WINDOWS\system32\licwmi.dll
2010-11-01 21:09:24 ----A---- C:\WINDOWS\system32\cmprops.dll
2010-11-01 21:09:18 ----A---- C:\WINDOWS\system32\drivers\termdd.sys
2010-11-01 21:09:18 ----A---- C:\WINDOWS\system32\drivers\rdpdr.sys
2010-10-22 12:43:18 ----A---- C:\WINDOWS\system32\msvcr71.dll
2010-10-22 12:43:18 ----A---- C:\WINDOWS\system32\msvcp71.dll

======List of files/folders modified in the last 1 months======

2010-11-02 18:07:08 ----A---- C:\WINDOWS\win.ini
2010-11-01 22:01:14 ----A---- C:\WINDOWS\system.ini
2010-11-01 21:12:18 ----ASH---- C:\WINDOWS\fonts\desktop.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944]
R1 Amfilter;A4Tech Mouse Filter Driver; C:\WINDOWS\system32\DRIVERS\Amfilter.sys [2007-05-14 9216]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-07-29 115008]
R1 epfwtdi;epfwtdi; C:\WINDOWS\system32\DRIVERS\epfwtdi.sys [2010-08-03 55256]
R1 intelppm;Řadič procesoru Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40192]
R1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-08-04 140752]
R2 epfw;epfw; C:\WINDOWS\system32\DRIVERS\epfw.sys [2010-07-29 134512]
R3 Amusbprt;A4Tech HID-compliant Mouse Driver; C:\WINDOWS\system32\DRIVERS\Amusbprt.sys [2007-05-14 14336]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-02-03 4605952]
R3 AtiHdmiService;ATI Function Driver for High Definition Audio Service; C:\WINDOWS\system32\drivers\AtiHdmi.sys [2010-01-28 95232]
R3 Epfwndis;Eset Personal Firewall; C:\WINDOWS\system32\DRIVERS\Epfwndis.sys [2010-07-29 32608]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-14 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-06-25 5095936]
R3 m4cxw2k3;NDIS5.1 Miniport Driver for D-Link DGE-5xx Gigabit Ethernet Adapter; C:\WINDOWS\system32\DRIVERS\m4cxw2k3.sys [2008-02-04 285952]
R3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-14 32128]
R3 usbstor;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-14 20608]
S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-06-25 1684736]
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2004-06-21 51088]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2004-06-21 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2004-06-21 21744]
S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-06-25 1389056]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2006-03-02 12160]
S3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-06-29 142592]
S3 SkLaggProtocol;Marvell Link Aggregation Protocol; C:\WINDOWS\system32\DRIVERS\yk51x32l.sys [2007-12-14 57344]
S3 SkVlanProtocol;Marvell VLAN Protocol; C:\WINDOWS\system32\DRIVERS\yk51x32v.sys [2007-11-23 20992]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Ovladač skeneru USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-02-03 602112]
R2 BCUService;Browser Configuration Utility Service; C:\Program Files\DeviceVM\Browser Configuration Utility\BCUService.exe [2009-08-04 219360]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET Smart Security\ekrn.exe [2010-08-12 810144]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-02 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2006-10-19 61440]
R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe [2010-03-18 35160]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe [2010-08-12 33584]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-05 774144]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2009-02-04 913920]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------
Nahoru
Uživatelský avatar
Rudy
Site Admin
Site Admin
Příspěvky: 119426
Registrován: 30 říj 2003 13:42
Bydliště: Plzeň
Kontaktovat uživatele:
Kontaktovat uživatele Rudy

Re: Vypadávání internetu (detailní popis problému)

#4 Příspěvek od Rudy »

Udělejte sken ComboFix a dejte log.
Stahnete a ulozte nejlepe na plochu ComboFix: http://download.bleepingcomputer.com/sUBs/ComboFix.exe

pote spustte aplikaci pod uctem s administratorskym opravnenim

hned po startu se zobrazi obrazovka s licencnimi podminkami, pokracujte kliknutim na tlacitko Ano.

v klidu si postavte na kafe (cela akce trva cca. 5-10 minut, nekdy i dele - dle toho, o jak rychly stroj se jedna a kolika soubory se skener bude muset prodirat), behem skenu se nepokousejte spoustet zadne jine aplikace ani nic jineho

behem skenovani nepropadejte panice, vas stroj muze byt restartovan (predevsim pri prvni aplikaci skeneru)

upozorneni: pokud pouzivate antispyware s rezidentnim stitem, prepnete jeho rezidentni stit do Install Mode, pripadne jej po dobu skenu uplne deaktivujte, protoze dochazi pri skenu a vymazu pripadneho malware k nezadoucim kolizim s rezidentem antispyware
Dotazy a logy vkládejte pouze do vašich threadů. Soukromé zprávy, icq a e-maily neslouží k řešení vašich problémů.

Podpořte, prosím, naše fórum : https://platba.viry.cz/payment/.

Navštivte: Obrázek

e-mail: rudy(zavináč)forum.viry.cz

Varování: Před odvirováním PC si udělejte zálohy svých důležitých dat (pošta, kontakty, dokumenty, fotografie, videa, hudba apod.). Virus mimo svých "viditelných" aktivit může poškodit systém!


Po dořešení vašeho problému bude vlákno zamknuto. Stejně tak tehdy, pokud bude nečinné více než 14dnů. Pokud budete chtít vlákno aktivovat, napište mi na mail uvedený výše.
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#5 Příspěvek od Wurf »

Po rozhovoru po ICQ jsem tedy provedl AVPTool (podle http://www.viry.cz/forum/viewtopic.php?t=58179), protože combofix nefungungoval, respektivě nikdy se nedokončil (restart po části 50 a v logu byla jen hlavička) scan stále probíhá... po dokončení sem hodím výsledný log. Pokud můžu požádat i ostatní rádce, jestli by se na to nepodívali.
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: Vypadávání internetu (detailní popis problému)

#6 Příspěvek od riffman »

ok, podivame se na to :)
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#7 Příspěvek od Wurf »

GMER 1.0.15.15507 - http://www.gmer.net
Rootkit quick scan 2010-11-04 14:11:44
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-16 WDC_WD1600AAJS-00PSA0 05.06H05
Running: gmer.exe; Driver: C:\DOCUME~1\LUK~1\LOCALS~1\Temp\kwlyypoc.sys


---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
AttachedDevice \Driver\Tcpip \Device\Ip epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)
AttachedDevice \Driver\Tcpip \Device\Udp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)
AttachedDevice \Driver\Tcpip \Device\RawIp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)

---- EOF - GMER 1.0.15 ----
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#8 Příspěvek od Wurf »

GMER 1.0.15.15507 - http://www.gmer.net
Rootkit scan 2010-11-04 14:32:49
Windows 5.1.2600 Service Pack 3 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-16 WDC_WD1600AAJS-00PSA0 05.06H05
Running: gmer.exe; Driver: C:\DOCUME~1\LUK~1\LOCALS~1\Temp\kwlyypoc.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwAssignProcessToJobObject [0xAD083610]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwDebugActiveProcess [0xAD083C10]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwDuplicateObject [0xAD083730]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwOpenProcess [0xAD0834B0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwOpenThread [0xAD083570]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwProtectVirtualMemory [0xAD0836D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetContextThread [0xAD083690]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetInformationThread [0xAD083650]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSetSecurityObject [0xAD0837D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSuspendProcess [0xAD083510]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwSuspendThread [0xAD083590]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwTerminateProcess [0xAD0834D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwTerminateThread [0xAD0835D0]
SSDT \SystemRoot\system32\DRIVERS\ehdrv.sys (ESET Helper driver/ESET) ZwWriteVirtualMemory [0xAD083750]

---- Kernel code sections - GMER 1.0.15 ----

.text C:\WINDOWS\system32\DRIVERS\ati2mtag.sys section is writeable [0xB9917000, 0x22F0B7, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\ESET\ESET Smart Security\ekrn.exe[612] kernel32.dll!SetUnhandledExceptionFilter 7C84495D 4 Bytes [C2, 04, 00, 00]
? C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] C:\WINDOWS\system32\ntdll.dll time/date stamp mismatch;
? C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] C:\WINDOWS\system32\kernel32.dll time/date stamp mismatch;
.text C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] USER32.dll!AlignRects + FFFA5598 7E362A78 4 Bytes [70, 11, 33, 6D]
.text C:\Program Files\Mozilla Firefox\firefox.exe[2904] ntdll.dll!LdrLoadDll 7C9163C3 5 Bytes JMP 004013F0 C:\Program Files\Mozilla Firefox\firefox.exe (Firefox/Mozilla Corporation)
.text C:\Program Files\Mozilla Firefox\plugin-container.exe[4024] USER32.dll!TrackPopupMenu 7E3B531E 5 Bytes JMP 10405CF5 C:\Program Files\Mozilla Firefox\xul.dll (Mozilla Foundation)

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlAllocateHeap] 003C01D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlFreeHeap] 003C0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlSizeHeap] 003C02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\kernel32.dll [ntdll.dll!RtlReAllocateHeap] 003C0320
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetModuleFileNameA] 00B60860
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryA] 00B608D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!LoadLibraryW] 00B60940
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!GetProcAddress] 00B609B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!FreeLibrary] 00B60A20
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B60A90
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualAlloc] 003C0550
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [KERNEL32.dll!VirtualFree] 003C05C0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlFreeHeap] 003C0630
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\RPCRT4.dll [ntdll.dll!RtlAllocateHeap] 003C06A0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetErrorMode] 00B60B00
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryExW] 00B60B70
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetModuleFileNameW] 00B60BE0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B60C50
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryW] 00B60CC0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!FreeLibrary] 00B60D30
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!LoadLibraryA] 00B60DA0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!GetProcAddress] 00B60E10
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualAlloc] 003C07F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [KERNEL32.dll!VirtualFree] 003C0860
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlFreeHeap] 003C08D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlAllocateHeap] 003C0940
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ADVAPI32.dll [ntdll.dll!RtlReAllocateHeap] 003C09B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B60E80
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryA] 00B60EF0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!LoadLibraryW] 00B60F60
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F0550
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!GetProcAddress] 7D1F05C0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [KERNEL32.dll!FreeLibrary] 7D1F0630
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlFreeHeap] 003C0A20
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\Secur32.dll [ntdll.dll!RtlAllocateHeap] 003C0A90
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F06A0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!CreateProcessW] 7D1F0710
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0780
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryA] 7D1F07F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F0860
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetProcAddress] 7D1F08D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0940
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!FreeLibrary] 7D1F09B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F0A20
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlAllocateHeap] 003C0CC0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\USER32.dll [ntdll.dll!RtlFreeHeap] 003C0D30
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F0A90
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0B00
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryA] 7D1F0B70
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!FreeLibrary] 7D1F0BE0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!GetProcAddress] 7D1F0C50
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0CC0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlAllocateHeap] 003C0DA0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\GDI32.dll [ntdll.dll!RtlFreeHeap] 003C0E10
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetErrorMode] 00B70240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B702B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetProcAddress] 00B70320
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!LoadLibraryA] 00B70390
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!FreeLibrary] 00B70400
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessA] 00B70470
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!CreateProcessW] 00B704E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameA] 00B70550
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!HeapDestroy] 7D1E0630
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualFree] 7D1E06A0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!VirtualAlloc] 7D1E0710
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\msvcrt.dll [KERNEL32.dll!GetModuleFileNameW] 00B705C0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualAlloc] 7D1E08D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!VirtualFree] 7D1E0940
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!HeapDestroy] 7D1E0B00
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B70710
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryA] 00B70780
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!CreateProcessW] 00B707F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetModuleFileNameW] 00B70860
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!SetErrorMode] 00B708D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryW] 00B70940
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!GetProcAddress] 00B709B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExW] 00B70A20
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!FreeLibrary] 00B70A90
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [KERNEL32.dll!LoadLibraryExA] 00B70B00
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHELL32.dll [ntdll.dll!RtlFreeHeap] 7D1E0B70
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B70B70
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!SetErrorMode] 00B70BE0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameW] 00B70C50
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExA] 00B70CC0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryExW] 00B70D30
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryW] 00B70DA0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessA] 00B70E10
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!CreateProcessW] 00B70E80
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!FreeLibrary] 00B70EF0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!HeapDestroy] 7D1E0BE0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!LoadLibraryA] 00B70F60
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetProcAddress] 00B80010
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\SHLWAPI.dll [KERNEL32.dll!GetModuleFileNameA] 00B80080
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetProcAddress] 00B800F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryA] 00B80160
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!FreeLibrary] 00B801D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryW] 00B80240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!GetModuleFileNameW] 00B802B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExW] 00B80320
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!LoadLibraryExA] 00B80390
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!CreateProcessW] 00B80400
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!VirtualAlloc] 7D1E0E80
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B80470
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\ole32.dll [ntdll.dll!RtlFreeHeap] 7D1E0EF0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!LoadLibraryA] 00B904E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!FreeLibrary] 00B90550
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!GetProcAddress] 00B905C0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\PSAPI.DLL [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90630
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetErrorMode] 00B90A20
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryW] 00B90A90
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryExA] 00B90B00
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!CreateProcessW] 00B90B70
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetModuleFileNameW] 00B90BE0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!GetProcAddress] 00B90C50
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!FreeLibrary] 00B90CC0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!LoadLibraryA] 00B90D30
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 00B90DA0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\userenv.dll [ntdll.dll!RtlFreeHeap] 7D1E0080
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryW] 7D1F0400
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlAllocateHeap] 7D1E0010
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\NETAPI32.dll [ntdll.dll!RtlFreeHeap] 7D1E0080
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!HeapDestroy] 7D1E01D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2_32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\WS2HELP.dll [KERNEL32.dll!GetProcAddress] 7D1F0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!HeapDestroy] 7D1E01D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!GetProcAddress] 7D1F0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlFreeHeap] 7D1E0080
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\iphlpapi.dll [ntdll.dll!RtlAllocateHeap] 7D1E0010
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetProcAddress] 7D1F0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExA] 7D1F0320
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0390
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F01D0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\CRYPT32.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryW] 7D1F0400
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetErrorMode] 7D1F0470
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameA] 7D1F0160
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!SetUnhandledExceptionFilter] 7D1F04E0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryExW] 7D1F0390
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetProcAddress] 7D1F0240
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!LoadLibraryA] 7D1F02B0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!FreeLibrary] 7D1F00F0
IAT C:\Documents and Settings\Lukáš\Plocha\Virus Removal Tool\setup_9.0.0.722_04.11.2010_14-08\setup_9.0.0.722_04.11.2010_14-08.exe[1284] @ C:\WINDOWS\system32\wininet.dll [KERNEL32.dll!GetModuleFileNameW] 7D1F01D0

---- Devices - GMER 1.0.15 ----

AttachedDevice \FileSystem\Ntfs \Ntfs eamon.sys (Amon monitor/ESET)
AttachedDevice \Driver\Tcpip \Device\Ip epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)
AttachedDevice \Driver\Tcpip \Device\Tcp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)
AttachedDevice \Driver\Tcpip \Device\Udp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)
AttachedDevice \Driver\Tcpip \Device\RawIp epfwtdi.sys (ESET Personal Firewall TDI filter/ESET)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@DeviceNotSelectedTimeout 15
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@GDIProcessHandleQuota 10000
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@Spooler yes
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@swapdisk
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@TransmissionRetryTimeout 90
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@USERProcessHandleQuota 10000
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows@RequireSignedAppInit_DLLs 1

---- EOF - GMER 1.0.15 ----
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: Vypadávání internetu (detailní popis problému)

#9 Příspěvek od riffman »

stahnete TDSSKiller , rozbalte do slozky C:\WINDOWS\system32\drivers a spustte


v operacnich systemech Windows Vista a Windows 7 spoustejte aplikaci jako spravce (kliknutim pravym mysitkem na ikonu aplikace a volbou "Spustit jako spravce" :!:

zobrazi se nasledujici okno:

Obrázek

probehne sken, na jehoz konci se v pripade infekce zobrazi nasledujici okno:

Obrázek

Pokud uvidite na poslednim radku hlasku "Close all programs and choose Y to restart or N to continue", zmacknete klavesu Y a vas stroj bude restartovan
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#10 Příspěvek od Wurf »

Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com

Program version: 1.2.0.0
OS Version: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)

System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000`00007e00
Boot sector MD5 is: ee7fe9f24bc949ea3a78cf7064fbe50b

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Unknown boot code

Unknown boot code has been found on some of your physical disks.
To inspect the boot code manually, dump the master boot sector:
remover.exe dump <device_name> [output_file]
To disinfect the master boot sector, use the following command:
remover.exe fix <device_name>


Done;
Press any key to quit...
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: Vypadávání internetu (detailní popis problému)

#11 Příspěvek od riffman »

Start/Spustit a do chlivku zkopirujte nasledujici text:
"c:\documents and settings\jmeno_uzivatele - doplnte dle jmena uzivatele, pod kterym jste prave prihlasen\Plocha\remover.exe" fix \\.\PhysicalDrive0
potvrdit, restart a novy sken jako v predchozim pripade bootkit removerem, log sem ;)
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#12 Příspěvek od Wurf »

Bootkit Remover
(c) 2009 eSage Lab
www.esagelab.com

Program version: 1.2.0.0
OS Version: Microsoft Windows XP Home Edition Service Pack 3 (build 2600)

System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000`00007e00
Boot sector MD5 is: 6def5ffcbcdbdb4082f1015625e597bd

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 OK (DOS/Win32 Boot code found)


Done;
Press any key to quit...
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#13 Příspěvek od Wurf »

ComboFix 10-11-03.03 - Lukáš 04.11.2010 16:23:46.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1250.420.1029.18.2046.1646 [GMT 1:00]
Spuštěný z: c:\download\ComboFix.exe
AV: ESET Smart Security 4.2 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET personal firewall *disabled* {E5E70D32-0101-4340-86A3-A7B0F1C8FFE0}
* Rezidentní štít AV je zapnutý


VAROVÁNÍ - NA TOMTO POČÍTAČI NENÍ NAINSTALOVÁNA KONZOLA PRO ZOTAVENÍ !!
.

((((((((((((((((((((((((( Soubory vytvořené od 2010-10-04 do 2010-11-04 )))))))))))))))))))))))))))))))
.

2010-11-02 15:49 . 2010-11-04 15:20 -------- d-----w- C:\Download
2010-11-01 21:01 . 2010-11-04 14:31 -------- d-----r- C:\Program Files

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-18 11:23 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42u.dll
2010-09-18 06:53 . 2006-03-02 12:00 974848 ----a-w- c:\windows\system32\mfc42.dll
2010-09-18 06:53 . 2006-03-02 12:00 954368 ----a-w- c:\windows\system32\mfc40.dll
2010-09-18 06:53 . 2006-03-02 12:00 953856 ----a-w- c:\windows\system32\mfc40u.dll
2010-09-10 05:52 . 2006-03-02 12:00 916480 ----a-w- c:\windows\system32\wininet.dll
2010-09-10 05:52 . 2006-03-02 12:00 43520 ------w- c:\windows\system32\licmgr10.dll
2010-09-10 05:52 . 2006-03-02 12:00 1469440 ------w- c:\windows\system32\inetcpl.cpl
2010-09-09 14:23 . 2006-03-02 12:00 1510912 ----a-w- c:\windows\system32\shdocvw.dll
2010-09-01 11:52 . 2006-03-02 12:00 285824 ----a-w- c:\windows\system32\atmfd.dll
2010-09-01 07:57 . 2006-03-02 12:00 1852800 ----a-w- c:\windows\system32\win32k.sys
2010-08-27 08:03 . 2006-03-02 12:00 119808 ----a-w- c:\windows\system32\t2embed.dll
2010-08-27 05:54 . 2006-03-02 12:00 99840 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-27 01:43 . 2010-08-13 17:44 5632 ----a-w- c:\windows\system32\xpsp4res.dll
2010-08-26 13:39 . 2006-03-02 12:00 357248 ----a-w- c:\windows\system32\drivers\srv.sys
2010-08-23 16:12 . 2006-03-02 12:00 617472 ----a-w- c:\windows\system32\comctl32.dll
2010-08-17 13:17 . 2006-03-02 12:00 58880 ----a-w- c:\windows\system32\spoolsv.exe
2010-08-16 08:45 . 2006-03-02 12:00 590848 ----a-w- c:\windows\system32\rpcrt4.dll
.

(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2006-12-23 143360]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2009-06-25 17887232]
"BCU"="c:\program files\DeviceVM\Browser Configuration Utility\BCU.exe" [2009-08-04 346320]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-02 98304]
"WheelMouse"="c:\program files\A4Tech\Mouse\Amoumain.exe" [2007-05-15 204800]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-09-23 35760]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-09-20 932288]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2010-07-12 74752]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"egui"="c:\program files\ESET\ESET Smart Security\egui.exe" [2010-08-12 2215064]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [29.7.2010 13:31 115008]
R2 BCUService;Browser Configuration Utility Service;c:\program files\DeviceVM\Browser Configuration Utility\BCUService.exe [2.11.2010 16:12 219360]
R2 ekrn;ESET Service;c:\program files\ESET\ESET Smart Security\ekrn.exe [12.8.2010 14:16 810144]
R3 m4cxw2k3;NDIS5.1 Miniport Driver for D-Link DGE-5xx Gigabit Ethernet Adapter;c:\windows\system32\drivers\m4cxw2k3.sys [4.2.2008 10:52 285952]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [18.3.2010 13:16 130384]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2.11.2010 16:07 1684736]
S3 SkLaggProtocol;Marvell Link Aggregation Protocol;c:\windows\system32\drivers\yk51x32l.sys [14.12.2007 10:10 57344]
S3 SkVlanProtocol;Marvell VLAN Protocol;c:\windows\system32\drivers\yk51x32v.sys [23.11.2007 10:10 20992]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [18.3.2010 13:16 753504]
.
.
------- Doplňkový sken -------
.
TCP: {E100474E-8A36-4659-86E9-5284E714CA43} = 192.168.10.1
FF - ProfilePath - c:\documents and settings\Lukáš\Data aplikací\Mozilla\Firefox\Profiles\nv6cpmbs.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.cz/
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\

---- NASTAVENÍ FIREFOXU ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified
c:\program files\Mozilla Firefox\defaults\pref\firefox-l10n.js - pref("browser.fixup.alternate.suffix", ".cz");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-11-04 16:27
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(988)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll
.
Celkový čas: 2010-11-04 16:28:38
ComboFix-quarantined-files.txt 2010-11-04 15:28

Před spuštěním: Volných bajtů: 136 216 551 424
Po spuštění: Volných bajtů: 136 181 329 920

- - End Of File - - 46F56AB222BBC360D4612F6CB4E301B4
Nahoru
Wurf
Návštěvník
Návštěvník
Příspěvky: 52
Registrován: 03 lis 2010 18:57

Re: Vypadávání internetu (detailní popis problému)

#14 Příspěvek od Wurf »

2010-11-04 13:04:52 . 2010-11-04 15:26:27 4,616 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2010-11-04 12:57:29 . 2010-11-04 15:23:15 204 ----a-w- C:\Qoobox\Quarantine\catchme.log
Nahoru
Uživatelský avatar
riffman
VIP
VIP
Příspěvky: 3203
Registrován: 20 říj 2004 07:00
Bydliště: České Budějovice
Kontaktovat uživatele:
Kontaktovat uživatele riffman

Re: Vypadávání internetu (detailní popis problému)

#15 Příspěvek od riffman »

myslim, ze to muzeme uzavrit - puvodce problemu byl Whistler bootkit, ktery byl uspesne odstranen :)
Give us a chance to live
Give us a chance to die
Give us a chance to be free
Without fire from the sky
Give us a chance to love
Give us a chance to hate
Give us a chance, before you kill us all
Nahoru
Odpovědět

Zpět na „Řešení problémů, logy“