Restarty

[taringa]

Vcera sem si koupil novy LCD monitor BenQ GL2040M http://www.alza.cz/20-benq-gl2040m-d192825.htm ,vse vypadalo v pohode ale jak sem zapl neco narocnejsiho na vykon napr. World of Warcraft zacal se mi pocitac restartovavat skusil sem to projet Avastem 5 nic,nainstalovat aktualizace na Grafarnu ale nic uz vazne nwm co delat vlozim vam sem radsi dyby to bylo virem LOG z Rsitu

[taringa]

zde byt posvatny LOG:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Lifaen at 2010-11-17 09:16:20
Microsoft Windows XP Home Edition Service Pack 3
System drive C: has 4 GB (12%) free of 36 GB
Total RAM: 959 MB (42% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:16:30, on 17.11.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\COMODO\EasyVPN\crdphService.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\COMODO\EasyVPN\Vpnservice.exe
C:\PROGRA~1\COMMON~1\Stardock\SDMCP.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Jookz Toolbar\tbsvc.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Documents and Settings\All Users\Data aplikací\TabDiscover\tabdiscover151.exe
C:\PROGRA~1\Bandoo\Bandoo.exe
C:\Program Files\TabDiscover\tabdiscover.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\RTHDCPL.EXE
C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe
C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Internet Download Manager\IDMan.exe
C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\gwum.exe
C:\Program Files\Internet Download Manager\IEMonitor.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\RelevantKnowledge\rlvknlg.exe
C:\WINDOWS\system32\wbem\unsecapp.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Lifaen\Dokumenty\Downloads\Programs\RSIT.exe
C:\Program Files\trend micro\Lifaen.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://search.bearshare.com/sidebar.htm ... sb&sysid=2
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://search.bearshare.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com
R1 - HKCU\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.htm ... sb&sysid=2
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://search.bearshare.com/sidebar.htm ... sb&sysid=2
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
R3 - URLSearchHook: ToggleEN Toolbar - {038cb5c7-48ea-4af9-94e0-a1646542e62b} - C:\Program Files\ToggleEN\tbTog0.dll
R3 - URLSearchHook: (no name) - {9CB65206-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Yahoo! Companion BHO - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll
O2 - BHO: ToggleEN Toolbar - {038cb5c7-48ea-4af9-94e0-a1646542e62b} - C:\Program Files\ToggleEN\tbTog0.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - D:\ActiveX\AcroIEHelper.dll
O2 - BHO: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll
O2 - BHO: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngin0.dll
O2 - BHO: UrlHelper Class - {74322BF9-DF26-493f-B0DA-6D2FC5E6429E} - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll
O2 - BHO: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} - C:\Program Files\Windows Searchqu Toolbar\ToolBar\SearchquDx.dll
O2 - BHO: Ask Search Assistant BHO - {9CB65201-89C4-402c-BA80-02D8C59F9B1D} - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Bandoo IE Plugin - {EB5CEE80-030A-4ED8-8E20-454E9C68380F} - C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll
O2 - BHO: Ask Toolbar BHO - {FE063DB1-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: &Yahoo! Companion - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll
O3 - Toolbar: Jookz Toolbar - {4C350B19-6CA1-4569-B14C-296D8D6535B2} - "C:\Program Files\Jookz Toolbar\jookztoolbar.dll" (file missing)
O3 - Toolbar: ToggleEN Toolbar - {038cb5c7-48ea-4af9-94e0-a1646542e62b} - C:\Program Files\ToggleEN\tbTog0.dll
O3 - Toolbar: Conduit Engine - {30F9B915-B755-4826-820B-08FBA6BD249D} - C:\Program Files\ConduitEngine\ConduitEngin0.dll
O3 - Toolbar: Ask Toolbar - {FE063DB9-4EC0-403e-8DD8-394C54984B2C} - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL
O3 - Toolbar: MediaBar - {0974BA1E-64EC-11DE-B2A5-E43756D89593} - C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll
O3 - Toolbar: Searchqu Toolbar - {7FF99715-3016-4381-84CE-E4E4C9673020} - C:\Program Files\Windows Searchqu Toolbar\ToolBar\SearchquDx.dll
O4 - HKLM\..\Run: [NVCLOCK] Rundll32 nvclock.dll,fnNvclock
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [avast5] C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe /nogui
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [DATAMNGR] C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [scheduler_monitor] C:\Program Files\ReaConverter 5.5 Pro\init_scheduler.exe
O4 - HKCU\..\Run: [STYLEXP] C:\Program Files\TGTSoft\StyleXP\StyleXP.exe -Hide
O4 - HKCU\..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe"
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [DAEMON Tools Pro Agent] "C:\Program Files\DAEMON Tools Pro\DTAgent.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Global Startup: 3D!Turbo Experience.lnk = C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = D:\Reader\reader_sl.exe
O4 - Global Startup: gwum.lnk = C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\gwum.exe
O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download FLV video content with IDM - C:\Program Files\Internet Download Manager\IEGetVL.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: c:\progra~1\bearsh~1\mediabar\datamngr\datamngr.dll c:\progra~1\bearsh~1\mediabar\datamngr\iebho.dll c:\progra~1\bandoo\bndhook.dll
O20 - Winlogon Notify: RelevantKnowledge - C:\Program Files\RelevantKnowledge\rlls.dll
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Mail Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: avast! Web Scanner - AVAST Software - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
O23 - Service: Bandoo Coordinator - Discordia Limited - C:\PROGRA~1\Bandoo\Bandoo.exe
O23 - Service: COMODO EasyVPN VNC Service (CrdphService) - COMODO - C:\Program Files\COMODO\EasyVPN\crdphService.exe
O23 - Service: COMODO EasyVPN Service (EasyVpnAdpt) - Unknown owner - C:\Program Files\COMODO\EasyVPN\Vpnservice.exe
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Jookz Toolbar Helper - Unknown owner - C:\Program Files\Jookz Toolbar\tbsvc.exe
O23 - Service: NBService - Nero AG - D:\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: ReaConverter scheduler service (rcp_service) - ReaSoft - C:\Program Files\ReaConverter 5.5 Pro\rcp_scheduler.exe
O23 - Service: StyleXPService - Unknown owner - C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe
O23 - Service: TabDiscover Service - Unknown owner - C:\Documents and Settings\All Users\Data aplikací\TabDiscover\tabdiscover151.exe

--
End of file - 10560 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0055C089-8582-441B-A0BF-17B458C2A3A8}]
IDMIEHlprObj Class - C:\Program Files\Internet Download Manager\IDMIECC.dll [2010-09-29 197984]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4efb-9B51-7695ECA05670}]
Yahoo! Companion BHO - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll [2005-04-22 328275]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{038cb5c7-48ea-4af9-94e0-a1646542e62b}]
ToggleEN Toolbar - C:\Program Files\ToggleEN\tbTog0.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
AcroIEHlprObj Class - D:\ActiveX\AcroIEHelper.dll [2004-12-14 63136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0974BA1E-64EC-11DE-B2A5-E43756D89593}]
MediaBar - C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll [2009-12-20 87480]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}]
Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngin0.dll [2010-10-18 3908192]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{74322BF9-DF26-493f-B0DA-6D2FC5E6429E}]
UrlHelper Class - C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\IEBHO.dll [2010-10-19 585136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7FF99715-3016-4381-84CE-E4E4C9673020}]
Searchqu Toolbar - C:\Program Files\Windows Searchqu Toolbar\ToolBar\SearchquDx.dll [2010-02-10 87488]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9CB65201-89C4-402c-BA80-02D8C59F9B1D}]
Ask Search Assistant BHO - C:\Program Files\AskTBar\SrchAstt\1.bin\A5SRCHAS.DLL [2010-10-07 57344]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype Plug-In - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-09-27 1250696]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{EB5CEE80-030A-4ED8-8E20-454E9C68380F}]
BandooIEPlugin Class - C:\Program Files\Bandoo\Plugins\IE\ieplugin.dll [2010-09-20 2194944]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FE063DB1-4EC0-403e-8DD8-394C54984B2C}]
Ask Toolbar BHO - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL [2010-10-07 245760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - &Yahoo! Companion - C:\Program Files\Yahoo!\Companion\Installs\cpn\ycomp5_6_2_0.dll [2005-04-22 328275]
{4C350B19-6CA1-4569-B14C-296D8D6535B2} - Jookz Toolbar - C:\Program Files\Jookz Toolbar\jookztoolbar.dll [2010-05-04 1043624]
{038cb5c7-48ea-4af9-94e0-a1646542e62b} - ToggleEN Toolbar - C:\Program Files\ToggleEN\tbTog0.dll [2010-10-18 3908192]
{30F9B915-B755-4826-820B-08FBA6BD249D} - Conduit Engine - C:\Program Files\ConduitEngine\ConduitEngin0.dll [2010-10-18 3908192]
{FE063DB9-4EC0-403e-8DD8-394C54984B2C} - Ask Toolbar - C:\Program Files\AskTBar\bar\1.bin\ASKTBAR.DLL [2010-10-07 245760]
{0974BA1E-64EC-11DE-B2A5-E43756D89593} - MediaBar - C:\PROGRA~1\BEARSH~1\MediaBar\ToolBar\BearshareMediabarDx.dll [2009-12-20 87480]
{7FF99715-3016-4381-84CE-E4E4C9673020} - Searchqu Toolbar - C:\Program Files\Windows Searchqu Toolbar\ToolBar\SearchquDx.dll [2010-02-10 87488]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NVCLOCK"=Rundll32 nvclock.dll,fnNvclock []
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2006-10-31 7634944]
"nwiz"=nwiz.exe /install []
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2006-10-31 86016]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-07-05 16380416]
"Alcmtr"=C:\WINDOWS\ALCMTR.EXE [2005-05-03 69632]
"avast5"=C:\PROGRA~1\ALWILS~1\Avast5\avastUI.exe [2010-09-07 2838912]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"DATAMNGR"=C:\PROGRA~1\BEARSH~1\MediaBar\Datamngr\DATAMN~1.EXE [2010-10-19 983480]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]
"MSMSGS"=C:\Program Files\Messenger\msmsgs.exe [2008-04-14 1695232]
"scheduler_monitor"=C:\Program Files\ReaConverter 5.5 Pro\init_scheduler.exe [2007-06-15 27136]
"STYLEXP"=C:\Program Files\TGTSoft\StyleXP\StyleXP.exe [2006-05-24 1372160]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe [2006-11-16 139264]
"IDMan"=C:\Program Files\Internet Download Manager\IDMan.exe [2010-09-29 3245408]
"DAEMON Tools Pro Agent"=C:\Program Files\DAEMON Tools Pro\DTAgent.exe [2010-11-11 570688]

C:\Documents and Settings\All Users\Nabídka Start\Programy\Po spuštění
3D!Turbo Experience.lnk - C:\Program Files\MSI\3D!Turbo Experience\3D!Turbo.exe
Adobe Reader Speed Launch.lnk - D:\Reader\reader_sl.exe
gwum.lnk - C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\gwum.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLs"="c:\progra~1\bearsh~1\mediabar\datamngr\datamngr.dll c:\progra~1\bearsh~1\mediabar\datamngr\iebho.dll c:\progra~1\bandoo\bndhook.dll "

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\MCPClient]
C:\PROGRA~1\COMMON~1\Stardock\mcpstub.dll [2005-01-31 49152]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\RelevantKnowledge]
C:\Program Files\RelevantKnowledge\rlls.dll [2010-11-08 541312]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
0aMCPClient - {F5DF91F9-15E9-416B-A7C3-7519B11ECBFC} - C:\PROGRA~1\COMMON~1\stardock\MCPCore.dll [2005-05-10 86016]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\{1a3e09be-1e45-494b-9174-d7385b45bbf5}]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Documents and Settings\Lifaen\Local Settings\Temp\usmt\migwiz.exe"="C:\Documents and Settings\Lifaen\Local Settings\Temp\usmt\migwiz.exe:*:Enabled:Průvodce přenesením souborů a nastavení"
"C:\Documents and Settings\Lifaen\Plocha\ChromeSetup.exe"="C:\Documents and Settings\Lifaen\Plocha\ChromeSetup.exe:*:Enabled:ChromeSetup"
"C:\Program Files\MSN Gaming Zone\Windows\shvlzm.exe"="C:\Program Files\MSN Gaming Zone\Windows\shvlzm.exe:*:Enabled:Piky v Internetu"
"C:\Program Files\World of Warcraft\Wow.exe"="C:\Program Files\World of Warcraft\Wow.exe:*:Enabled:Wow"
"C:\Program Files\D-Link\AirPlus for DWL-900AP+\AirPlus_Manager.exe"="C:\Program Files\D-Link\AirPlus for DWL-900AP+\AirPlus_Manager.exe:*:Enabled:AirPlus_Manager"
"C:\Program Files\NHL09\nhl 2009\nhl2009.exe"="C:\Program Files\NHL09\nhl 2009\nhl2009.exe:*:Enabled:nhl2009"
"C:\Program Files\Opera\opera.exe"="C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox"
"C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\bios\Gwflash.exe"="C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\bios\Gwflash.exe:*:Disabled:@BIOS"
"D:\Program Files\ICQ6.5\ICQ.exe"="D:\Program Files\ICQ6.5\ICQ.exe:*:Enabled:ICQ"
"C:\Program Files\Metin2\metin2.bin"="C:\Program Files\Metin2\metin2.bin:*:Enabled:metin2"
"C:\Program Files\Metin2\metin2client.bin"="C:\Program Files\Metin2\metin2client.bin:*:Enabled:metin2client"
"D:\Program Files\Strategy First\Disciples II Gold\Rise of the Elves\Discipl2.exe"="D:\Program Files\Strategy First\Disciples II Gold\Rise of the Elves\Discipl2.exe:*:Enabled:Disciples II v3.01"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"D:\EasyVPN.exe"="D:\EasyVPN.exe:*:Enabled:COMODO EasyVPN"
"D:\Warcraft III\Warcraft III.exe"="D:\Warcraft III\Warcraft III.exe:*:Enabled:Warcraft III"
"C:\Program Files\COMODO\EasyVPN\EasyVPN.exe"="C:\Program Files\COMODO\EasyVPN\EasyVPN.exe:*:Enabled:COMODO EasyVPN"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"D:\Warcraft III\War3.exe"="D:\Warcraft III\War3.exe:*:Enabled:Warcraft III"
"C:\Program Files\Valve\hl.exe"="C:\Program Files\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\WINDOWS\Temp\~osA.tmp\rlvknlg.exe"="C:\WINDOWS\Temp\~osA.tmp\rlvknlg.exe:*:Enabled:rlvknlg.exe"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\WINDOWS\Temp\~osE.tmp\rlvknlg.exe"="C:\WINDOWS\Temp\~osE.tmp\rlvknlg.exe:*:Enabled:rlvknlg.exe"
"c:\program files\relevantknowledge\rlvknlg.exe"="c:\program files\relevantknowledge\rlvknlg.exe:*:Enabled:rlvknlg.exe"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\BearShare Applications\BearShare\BearShare.exe"="C:\Program Files\BearShare Applications\BearShare\BearShare.exe:*:Enabled:BearShare"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-11-17 09:16:20 ----DC---- C:\rsit
2010-11-17 09:16:20 ----DC---- C:\Program Files\trend micro
2010-11-17 09:03:48 ----DC---- C:\Documents and Settings\All Users\Data aplikací\McAfee
2010-11-16 23:00:02 ----DC---- C:\WINDOWS\system32\XPSViewer
2010-11-16 22:59:57 ----DC---- C:\Program Files\MSBuild
2010-11-16 22:59:55 ----DC---- C:\WINDOWS\system32\en-US
2010-11-16 22:59:48 ----DC---- C:\Program Files\Reference Assemblies
2010-11-16 22:46:51 ----HDC---- C:\WINDOWS\$NtUninstallKB959772_WM11$
2010-11-16 22:46:43 ----HDC---- C:\WINDOWS\$NtUninstallKB936782_WMP11$
2010-11-16 22:40:41 ----AC---- C:\WINDOWS\system32\MRT.exe
2010-11-16 22:40:32 ----HDC---- C:\WINDOWS\$NtUninstallKB941569$
2010-11-16 22:37:29 ----HDC---- C:\WINDOWS\$NtUninstallKB929399$
2010-11-16 22:37:17 ----HDC---- C:\WINDOWS\$NtUninstallKB939683$
2010-11-16 22:36:54 ----DC---- C:\Program Files\MSXML 4.0
2010-11-16 22:36:46 ----HDC---- C:\WINDOWS\$NtUninstallKB954154_WM11$
2010-11-16 22:33:12 ----DC---- C:\WINDOWS\Prefetch
2010-11-16 22:30:49 ----HDC---- C:\WINDOWS\$NtUninstallKB982381$
2010-11-16 22:30:42 ----HDC---- C:\WINDOWS\$NtUninstallKB980232$
2010-11-16 22:30:35 ----HDC---- C:\WINDOWS\$NtUninstallKB980218$
2010-11-16 22:30:26 ----HDC---- C:\WINDOWS\$NtUninstallKB979683$
2010-11-16 22:30:18 ----HDC---- C:\WINDOWS\$NtUninstallKB979559$
2010-11-16 22:30:12 ----HDC---- C:\WINDOWS\$NtUninstallKB979482$
2010-11-16 22:30:06 ----HDC---- C:\WINDOWS\$NtUninstallKB979309$
2010-11-16 22:30:00 ----HDC---- C:\WINDOWS\$NtUninstallKB978706$
2010-11-16 22:29:54 ----HDC---- C:\WINDOWS\$NtUninstallKB978601$
2010-11-16 22:29:47 ----HDC---- C:\WINDOWS\$NtUninstallKB978542$
2010-11-16 22:29:41 ----HDC---- C:\WINDOWS\$NtUninstallKB978338$
2010-11-16 22:29:34 ----HDC---- C:\WINDOWS\$NtUninstallKB978037$
2010-11-16 22:29:28 ----HDC---- C:\WINDOWS\$NtUninstallKB977914$
2010-11-16 22:29:15 ----HDC---- C:\WINDOWS\$NtUninstallKB975713$
2010-11-16 22:29:08 ----HDC---- C:\WINDOWS\$NtUninstallKB975562$
2010-11-16 22:29:01 ----HDC---- C:\WINDOWS\$NtUninstallKB975561$
2010-11-16 22:28:55 ----HDC---- C:\WINDOWS\$NtUninstallKB975560$
2010-11-16 22:28:48 ----HDC---- C:\WINDOWS\$NtUninstallKB975467$
2010-11-16 22:28:42 ----HDC---- C:\WINDOWS\$NtUninstallKB975025$
2010-11-16 22:28:36 ----HDC---- C:\WINDOWS\$NtUninstallKB974571$
2010-11-16 22:28:30 ----HDC---- C:\WINDOWS\$NtUninstallKB974392$
2010-11-16 22:28:24 ----HDC---- C:\WINDOWS\$NtUninstallKB974318$
2010-11-16 22:28:18 ----HDC---- C:\WINDOWS\$NtUninstallKB974112$
2010-11-16 22:28:10 ----HDC---- C:\WINDOWS\$NtUninstallKB973869$
2010-11-16 22:28:04 ----HDC---- C:\WINDOWS\$NtUninstallKB973815$
2010-11-16 22:27:57 ----HDC---- C:\WINDOWS\$NtUninstallKB973687$
2010-11-16 22:27:51 ----HDC---- C:\WINDOWS\$NtUninstallKB973507$
2010-11-16 22:27:45 ----HDC---- C:\WINDOWS\$NtUninstallKB972270$
2010-11-16 22:27:39 ----HDC---- C:\WINDOWS\$NtUninstallKB971737$
2010-11-16 22:27:33 ----HDC---- C:\WINDOWS\$NtUninstallKB971657$
2010-11-16 22:27:27 ----HDC---- C:\WINDOWS\$NtUninstallKB971468$
2010-11-16 22:27:20 ----HDC---- C:\WINDOWS\$NtUninstallKB970430$
2010-11-16 22:27:14 ----HDC---- C:\WINDOWS\$NtUninstallKB970238$
2010-11-16 22:27:08 ----HDC---- C:\WINDOWS\$NtUninstallKB969059$
2010-11-16 22:27:01 ----HDC---- C:\WINDOWS\$NtUninstallKB968389$
2010-11-16 22:26:53 ----HDC---- C:\WINDOWS\$NtUninstallKB967715$
2010-11-16 22:26:47 ----HDC---- C:\WINDOWS\$NtUninstallKB961501$
2010-11-16 22:26:41 ----HDC---- C:\WINDOWS\$NtUninstallKB960859$
2010-11-16 22:26:34 ----HDC---- C:\WINDOWS\$NtUninstallKB960803$
2010-11-16 22:26:28 ----HDC---- C:\WINDOWS\$NtUninstallKB960225$
2010-11-16 22:26:22 ----HDC---- C:\WINDOWS\$NtUninstallKB959426$
2010-11-16 22:26:16 ----HDC---- C:\WINDOWS\$NtUninstallKB958644$
2010-11-16 22:26:09 ----HDC---- C:\WINDOWS\$NtUninstallKB956844$
2010-11-16 22:26:04 ----HDC---- C:\WINDOWS\$NtUninstallKB956803$
2010-11-16 22:25:57 ----HDC---- C:\WINDOWS\$NtUninstallKB956802$
2010-11-16 22:25:48 ----HDC---- C:\WINDOWS\$NtUninstallKB956572$
2010-11-16 22:25:41 ----HDC---- C:\WINDOWS\$NtUninstallKB955759$
2010-11-16 22:25:34 ----HDC---- C:\WINDOWS\$NtUninstallKB973687_1$
2010-11-16 22:25:28 ----HDC---- C:\WINDOWS\$NtUninstallKB955069$
2010-11-16 22:25:22 ----HDC---- C:\WINDOWS\$NtUninstallKB952954$
2010-11-16 22:25:15 ----HDC---- C:\WINDOWS\$NtUninstallKB952287$
2010-11-16 22:25:09 ----HDC---- C:\WINDOWS\$NtUninstallKB952004$
2010-11-16 22:25:01 ----HDC---- C:\WINDOWS\$NtUninstallKB951748$
2010-11-16 22:24:55 ----HDC---- C:\WINDOWS\$NtUninstallKB951376-v2$
2010-11-16 22:24:49 ----HDC---- C:\WINDOWS\$NtUninstallKB950974$
2010-11-16 22:24:43 ----HDC---- C:\WINDOWS\$NtUninstallKB950762$
2010-11-16 22:24:35 ----HDC---- C:\WINDOWS\$NtUninstallKB946648$
2010-11-16 22:24:29 ----HDC---- C:\WINDOWS\$NtUninstallKB923561$
2010-11-16 22:24:22 ----HDC---- C:\WINDOWS\$NtUninstallKB2229593$
2010-11-16 22:22:10 ----DC---- C:\WINDOWS\system32\cs-cz
2010-11-16 22:22:09 ----DC---- C:\WINDOWS\system32\cs
2010-11-16 22:22:09 ----DC---- C:\WINDOWS\system32\bits
2010-11-16 22:22:09 ----DC---- C:\WINDOWS\l2schemas
2010-11-16 22:18:58 ----DC---- C:\WINDOWS\network diagnostic
2010-11-16 22:16:27 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2010-11-16 22:16:23 ----DC---- C:\WINDOWS\EHome
2010-11-16 21:54:16 ----C---- C:\WINDOWS\system32\xmllite.dll
2010-11-16 21:54:07 ----C---- C:\WINDOWS\system32\wlanapi.dll
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\watv10nt.sys
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\watv06nt.sys
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\wadv11nt.sys
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\wadv09nt.sys
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\wadv08nt.sys
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\wadv07nt.sys
2010-11-16 21:54:03 ----C---- C:\WINDOWS\system32\drivers\wacompen.sys
2010-11-16 21:54:02 ----C---- C:\WINDOWS\system32\drivers\viaagp.sys
2010-11-16 21:54:01 ----C---- C:\WINDOWS\system32\verclsid.exe
2010-11-16 21:54:01 ----C---- C:\WINDOWS\system32\drivers\vchnt5.dll
2010-11-16 21:54:00 ----C---- C:\WINDOWS\system32\drivers\usbvideo.sys
2010-11-16 21:53:59 ----C---- C:\WINDOWS\system32\drivers\usb8023x.sys
2010-11-16 21:53:57 ----C---- C:\WINDOWS\system32\drivers\uagp35.sys
2010-11-16 21:53:56 ----C---- C:\WINDOWS\system32\tspkg.dll
2010-11-16 21:53:56 ----C---- C:\WINDOWS\system32\tsgqec.dll
2010-11-16 21:53:49 ----C---- C:\WINDOWS\system32\spupdwxp.exe
2010-11-16 21:53:48 ----AC---- C:\WINDOWS\system32\spdwnwxp.exe
2010-11-16 21:53:47 ----C---- C:\WINDOWS\system32\slserv.exe
2010-11-16 21:53:47 ----C---- C:\WINDOWS\system32\slrundll.exe
2010-11-16 21:53:47 ----C---- C:\WINDOWS\system32\drivers\smbali.sys
2010-11-16 21:53:47 ----C---- C:\WINDOWS\system32\drivers\slwdmsup.sys
2010-11-16 21:53:47 ----C---- C:\WINDOWS\slrundll.exe
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\slgen.dll
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\slextspk.dll
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\slcoinst.dll
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\drivers\slnthal.sys
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\drivers\slntamr.sys
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\drivers\slnt7554.sys
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\drivers\sisagp.sys
2010-11-16 21:53:46 ----C---- C:\WINDOWS\system32\drivers\siint5.dll
2010-11-16 21:53:43 ----C---- C:\WINDOWS\system32\setupn.exe
2010-11-16 21:53:43 ----C---- C:\WINDOWS\system32\drivers\sffp_mmc.sys
2010-11-16 21:53:40 ----C---- C:\WINDOWS\system32\s3gnb.dll
2010-11-16 21:53:40 ----C---- C:\WINDOWS\system32\drivers\s3gnbm.sys
2010-11-16 21:53:39 ----C---- C:\WINDOWS\system32\drivers\rndismpx.sys
2010-11-16 21:53:38 ----C---- C:\WINDOWS\system32\rhttpaa.dll
2010-11-16 21:53:38 ----C---- C:\WINDOWS\system32\drivers\rfcomm.sys
2010-11-16 21:53:37 ----C---- C:\WINDOWS\system32\drivers\recagent.sys
2010-11-16 21:53:36 ----C---- C:\WINDOWS\system32\rasqec.dll
2010-11-16 21:53:35 ----C---- C:\WINDOWS\system32\qutil.dll
2010-11-16 21:53:33 ----C---- C:\WINDOWS\system32\qcliprov.dll
2010-11-16 21:53:33 ----C---- C:\WINDOWS\system32\qagentrt.dll
2010-11-16 21:53:33 ----C---- C:\WINDOWS\system32\qagent.dll
2010-11-16 21:53:28 ----C---- C:\WINDOWS\system32\onex.dll
2010-11-16 21:53:24 ----C---- C:\WINDOWS\system32\drivers\ntmtlfax.sys
2010-11-16 21:53:18 ----C---- C:\WINDOWS\system32\napstat.exe
2010-11-16 21:53:18 ----C---- C:\WINDOWS\system32\napmontr.dll
2010-11-16 21:53:18 ----C---- C:\WINDOWS\system32\napipsec.dll
2010-11-16 21:53:17 ----C---- C:\WINDOWS\system32\mtxparhd.dll
2010-11-16 21:53:17 ----C---- C:\WINDOWS\system32\drivers\mutohpen.sys
2010-11-16 21:53:17 ----C---- C:\WINDOWS\system32\drivers\mtxparhm.sys
2010-11-16 21:53:17 ----C---- C:\WINDOWS\system32\drivers\mtlstrm.sys
2010-11-16 21:53:17 ----C---- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2010-11-16 21:53:17 ----AC---- C:\WINDOWS\system32\msxml6r.dll
2010-11-16 21:53:14 ----C---- C:\WINDOWS\system32\msshavmsg.dll
2010-11-16 21:53:14 ----C---- C:\WINDOWS\system32\mssha.dll
2010-11-16 21:52:59 ----C---- C:\WINDOWS\system32\mmcperf.exe
2010-11-16 21:52:59 ----C---- C:\WINDOWS\system32\mmcfxcommon.dll
2010-11-16 21:52:58 ----C---- C:\WINDOWS\system32\mmcex.dll
2010-11-16 21:52:58 ----C---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2010-11-16 21:52:56 ----C---- C:\WINDOWS\system32\mdmxsdk.dll
2010-11-16 21:52:56 ----C---- C:\WINDOWS\system32\drivers\mdmxsdk.sys
2010-11-16 21:52:44 ----C---- C:\WINDOWS\system32\l2gpstore.dll
2010-11-16 21:52:44 ----C---- C:\WINDOWS\system32\kmsvc.dll
2010-11-16 21:52:43 ----C---- C:\WINDOWS\system32\kbdpash.dll
2010-11-16 21:52:43 ----C---- C:\WINDOWS\system32\kbdnepr.dll
2010-11-16 21:52:42 ----C---- C:\WINDOWS\system32\kbdiultn.dll
2010-11-16 21:52:42 ----C---- C:\WINDOWS\system32\kbdbhc.dll
2010-11-16 21:52:30 ----C---- C:\WINDOWS\system32\hsfcisp2.dll
2010-11-16 21:52:30 ----C---- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2010-11-16 21:52:30 ----C---- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2010-11-16 21:52:30 ----C---- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2010-11-16 21:52:29 ----C---- C:\WINDOWS\system32\drivers\hidir.sys
2010-11-16 21:52:29 ----C---- C:\WINDOWS\system32\drivers\hidbth.sys
2010-11-16 21:52:27 ----C---- C:\WINDOWS\system32\drivers\gagp30kx.sys
2010-11-16 21:52:23 ----C---- C:\WINDOWS\system32\faxpatch.exe
2010-11-16 21:52:23 ----AC---- C:\WINDOWS\002738_.tmp
2010-11-16 21:52:20 ----C---- C:\WINDOWS\system32\eapsvc.dll
2010-11-16 21:52:20 ----C---- C:\WINDOWS\system32\eapqec.dll
2010-11-16 21:52:20 ----C---- C:\WINDOWS\system32\eappprxy.dll
2010-11-16 21:52:20 ----C---- C:\WINDOWS\system32\eapphost.dll
2010-11-16 21:52:20 ----C---- C:\WINDOWS\system32\eappgnui.dll
2010-11-16 21:52:20 ----C---- C:\WINDOWS\system32\eappcfg.dll
2010-11-16 21:52:19 ----C---- C:\WINDOWS\system32\eapp3hst.dll
2010-11-16 21:52:19 ----C---- C:\WINDOWS\system32\eapolqec.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3ui.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3svc.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3msm.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3gpclnt.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3dlg.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3cfg.dll
2010-11-16 21:52:15 ----C---- C:\WINDOWS\system32\dot3api.dll
2010-11-16 21:52:12 ----C---- C:\WINDOWS\system32\dimsroam.dll
2010-11-16 21:52:12 ----C---- C:\WINDOWS\system32\dimsntfy.dll
2010-11-16 21:52:12 ----C---- C:\WINDOWS\system32\dhcpqec.dll
2010-11-16 21:52:08 ----C---- C:\WINDOWS\system32\credssp.dll
2010-11-16 21:52:01 ----C---- C:\WINDOWS\system32\drivers\ch7xxnt5.dll
2010-11-16 21:51:59 ----C---- C:\WINDOWS\system32\drivers\bthusb.sys
2010-11-16 21:51:59 ----C---- C:\WINDOWS\system32\drivers\bthprint.sys
2010-11-16 21:51:59 ----C---- C:\WINDOWS\system32\drivers\bthpan.sys
2010-11-16 21:51:59 ----C---- C:\WINDOWS\system32\drivers\bthmodem.sys
2010-11-16 21:51:59 ----C---- C:\WINDOWS\system32\drivers\bthenum.sys
2010-11-16 21:51:58 ----C---- C:\WINDOWS\system32\bitsprx4.dll
2010-11-16 21:51:57 ----C---- C:\WINDOWS\system32\azroles.dll
2010-11-16 21:51:56 ----C---- C:\WINDOWS\system32\drivers\atv10nt5.dll
2010-11-16 21:51:56 ----C---- C:\WINDOWS\system32\drivers\atv06nt5.dll
2010-11-16 21:51:56 ----C---- C:\WINDOWS\system32\drivers\atv04nt5.dll
2010-11-16 21:51:56 ----C---- C:\WINDOWS\system32\drivers\atv02nt5.dll
2010-11-16 21:51:56 ----C---- C:\WINDOWS\system32\drivers\atv01nt5.dll
2010-11-16 21:51:56 ----C---- C:\WINDOWS\system32\ativvaxx.dll
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinxsxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinxbxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atintuxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinttxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinsnxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinrvxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinraxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinpdxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\drivers\atinmdxx.sys
2010-11-16 21:51:55 ----C---- C:\WINDOWS\system32\ativtmxx.dll
2010-11-16 21:51:54 ----C---- C:\WINDOWS\system32\drivers\atinbtxx.sys
2010-11-16 21:51:54 ----C---- C:\WINDOWS\system32\ati3duag.dll
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\drivers\ati1xsxx.sys
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\drivers\ati1xbxx.sys
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\drivers\ati1tuxx.sys
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\ati3d1ag.dll
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\ati2dvag.dll
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\ati2dvaa.dll
2010-11-16 21:51:53 ----C---- C:\WINDOWS\system32\ati2cqag.dll
2010-11-16 21:51:52 ----C---- C:\WINDOWS\system32\drivers\ati1snxx.sys
2010-11-16 21:51:52 ----C---- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2010-11-16 21:51:52 ----C---- C:\WINDOWS\system32\drivers\ati1raxx.sys
2010-11-16 21:51:52 ----C---- C:\WINDOWS\system32\drivers\ati1pdxx.sys
2010-11-16 21:51:52 ----C---- C:\WINDOWS\system32\drivers\ati1mdxx.sys
2010-11-16 21:51:52 ----C---- C:\WINDOWS\system32\drivers\ati1btxx.sys
2010-11-16 21:51:46 ----C---- C:\WINDOWS\system32\drivers\amdagp.sys
2010-11-16 21:51:46 ----C---- C:\WINDOWS\system32\drivers\alim1541.sys
2010-11-16 21:51:43 ----C---- C:\WINDOWS\system32\drivers\agpcpq.sys
2010-11-16 21:51:43 ----C---- C:\WINDOWS\system32\drivers\agp440.sys
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv11nt5.dll
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv09nt5.dll
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv08nt5.dll
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv07nt5.dll
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv05nt5.dll
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv02nt5.dll
2010-11-16 21:51:41 ----C---- C:\WINDOWS\system32\drivers\adv01nt5.dll
2010-11-16 21:51:38 ----C---- C:\WINDOWS\system32\aaclient.dll
2010-11-16 21:51:04 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Bandoo
2010-11-16 21:48:06 ----DC---- C:\Documents and Settings\All Users\Data aplikací\UAB
2010-11-16 21:47:55 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Easy Driver Pro
2010-11-16 21:45:45 ----DC---- C:\Program Files\Easy Driver Pro
2010-11-16 17:30:54 ----DC---- C:\WINDOWS\Minidump
2010-11-16 17:03:39 ----AC---- C:\WINDOWS\system32\drivers\dtsoftbus01.sys
2010-11-16 17:03:16 ----DC---- C:\Program Files\DAEMON Tools Pro
2010-11-16 17:03:01 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\DAEMON Tools Pro
2010-11-16 17:03:01 ----DC---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Pro
2010-11-13 11:02:47 ----DC---- C:\Documents and Settings\All Users\Data aplikací\DAEMON Tools Lite
2010-11-12 19:46:29 ----DC---- C:\Program Files\CSConfigurator
2010-11-12 15:40:33 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\searchqutb
2010-11-12 15:40:30 ----DC---- C:\Program Files\Windows Searchqu Toolbar
2010-11-12 15:39:59 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Bandoo
2010-11-12 15:38:14 ----DC---- C:\Program Files\Bandoo
2010-11-12 15:27:21 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\bearsharemediabartb
2010-11-12 15:26:30 ----DC---- C:\Program Files\BearShare Applications
2010-11-12 15:26:30 ----DC---- C:\Documents and Settings\All Users\Data aplikací\BearShare
2010-11-12 15:24:10 ----HDC---- C:\Documents and Settings\All Users\Data aplikací\{A471C4AE-B27B-4761-9BCF-82FAAAAA2D01}
2010-11-09 21:34:50 ----DC---- C:\videooutput
2010-11-09 21:34:46 ----AC---- C:\WINDOWS\system32\xvidvfw.dll
2010-11-09 21:34:46 ----AC---- C:\WINDOWS\system32\xvidcore.dll
2010-11-09 21:30:37 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Eltima Software
2010-11-09 21:30:34 ----DC---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-11-09 21:15:43 ----AC---- C:\WINDOWS\system32\ConduitEngine.tmp
2010-11-09 21:14:47 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Jookz Toolbar
2010-11-09 21:13:05 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\IDM
2010-11-09 21:13:04 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\DMCache
2010-11-09 21:12:50 ----DC---- C:\Program Files\Internet Download Manager
2010-11-07 17:24:55 ----AC---- C:\WINDOWS\PhotoSnapViewer.INI
2010-11-06 11:59:53 ----DC---- C:\LunarSphereImports
2010-11-06 11:59:53 ----DC---- C:\LunarSphereExporter
2010-11-06 11:59:53 ----DC---- C:\Broker_LunarSphere
2010-11-06 11:59:52 ----DC---- C:\LunarSphere
2010-11-05 08:50:37 ----RHDC---- C:\AHCache
2010-11-01 19:38:19 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\AdobeUM
2010-11-01 19:37:07 ----DC---- C:\Program Files\Common Files\Adobe
2010-11-01 19:36:41 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Adobe
2010-11-01 19:34:05 ----DC---- C:\Program Files\Adobe
2010-11-01 15:36:05 ----DC---- C:\Program Files\Common Files\Skype
2010-10-29 15:48:57 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\TS3Client
2010-10-29 15:45:39 ----DC---- C:\Program Files\TeamSpeak 3 Client
2010-10-28 17:19:13 ----AC---- C:\WINDOWS\NeroDigital.ini
2010-10-28 12:15:32 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Ahead
2010-10-28 12:12:10 ----DC---- C:\Program Files\Common Files\Ahead
2010-10-28 12:12:10 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Nero
2010-10-28 09:45:17 ----AC---- C:\WINDOWS\system32\xactengine2_5.dll
2010-10-28 09:45:16 ----AC---- C:\WINDOWS\system32\xactengine2_4.dll
2010-10-28 09:45:16 ----AC---- C:\WINDOWS\system32\x3daudio1_1.dll
2010-10-28 09:45:16 ----AC---- C:\WINDOWS\system32\d3dx9_32.dll
2010-10-28 09:45:15 ----AC---- C:\WINDOWS\system32\xinput1_3.dll
2010-10-28 09:45:15 ----AC---- C:\WINDOWS\system32\d3dx9_31.dll
2010-10-28 09:45:14 ----AC---- C:\WINDOWS\system32\xinput1_2.dll
2010-10-28 09:45:14 ----AC---- C:\WINDOWS\system32\xinput1_1.dll
2010-10-28 09:45:14 ----AC---- C:\WINDOWS\system32\xactengine2_3.dll
2010-10-28 09:45:14 ----AC---- C:\WINDOWS\system32\xactengine2_2.dll
2010-10-28 09:45:13 ----AC---- C:\WINDOWS\system32\xactengine2_1.dll
2010-10-28 09:45:04 ----AC---- C:\WINDOWS\system32\d3dx9_30.dll
2010-10-28 09:45:03 ----AC---- C:\WINDOWS\system32\xactengine2_0.dll
2010-10-28 09:45:03 ----AC---- C:\WINDOWS\system32\x3daudio1_0.dll
2010-10-28 09:45:03 ----AC---- C:\WINDOWS\system32\d3dx9_29.dll
2010-10-28 09:45:02 ----AC---- C:\WINDOWS\system32\xinput9_1_0.dll
2010-10-28 09:45:02 ----AC---- C:\WINDOWS\system32\d3dx9_28.dll
2010-10-28 09:45:01 ----AC---- C:\WINDOWS\system32\d3dx9_27.dll
2010-10-28 09:45:01 ----AC---- C:\WINDOWS\system32\d3dx9_26.dll
2010-10-28 09:45:00 ----AC---- C:\WINDOWS\system32\d3dx9_25.dll
2010-10-28 09:44:58 ----AC---- C:\WINDOWS\system32\d3dx9_24.dll
2010-10-28 09:32:05 ----DC---- C:\Documents and Settings\All Users\Data aplikací\nView_Profiles
2010-10-28 08:38:53 ----AC---- C:\WINDOWS\level.ini
2010-10-26 20:15:54 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Blizzard
2010-10-26 16:19:25 ----DC---- C:\Program Files\Valve
2010-10-19 15:07:08 ----AC---- C:\WINDOWS\system32\ff_vfw.dll.manifest
2010-10-19 15:07:08 ----AC---- C:\WINDOWS\system32\ff_vfw.dll
2010-10-19 15:00:05 ----AC---- C:\WINDOWS\system32\rmoc3260.dll
2010-10-19 15:00:05 ----AC---- C:\WINDOWS\system32\pndx5032.dll
2010-10-19 15:00:05 ----AC---- C:\WINDOWS\system32\pndx5016.dll
2010-10-19 15:00:05 ----AC---- C:\WINDOWS\system32\pncrt.dll
2010-10-19 15:00:03 ----DC---- C:\Program Files\Real Alternative
2010-10-19 14:59:19 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Apple Computer
2010-10-19 14:59:10 ----AC---- C:\WINDOWS\system32\QTCF.dll
2010-10-19 14:50:50 ----DC---- C:\MTV_OUTPUT
2010-10-18 14:06:16 ----DC---- C:\Program Files\COMODO

======List of files/folders modified in the last 1 months======

2010-11-17 09:16:20 ----RDC---- C:\Program Files
2010-11-17 08:51:00 ----DC---- C:\WINDOWS\Temp
2010-11-17 08:20:59 ----DC---- C:\WINDOWS\system32
2010-11-17 08:20:59 ----AC---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-11-17 08:17:19 ----DC---- C:\WINDOWS
2010-11-17 08:06:58 ----DC---- C:\WINDOWS\system32\CatRoot2
2010-11-17 08:05:28 ----DC---- C:\WINDOWS\Microsoft.NET
2010-11-17 08:05:24 ----RSDC---- C:\WINDOWS\assembly
2010-11-17 07:56:17 ----SHDC---- C:\Config.Msi
2010-11-17 07:56:17 ----DC---- C:\WINDOWS\system32\dllcache
2010-11-17 07:56:17 ----DC---- C:\Program Files\RelevantKnowledge
2010-11-16 23:04:20 ----AC---- C:\WINDOWS\SchedLgU.Txt
2010-11-16 23:04:13 ----SHDC---- C:\WINDOWS\Installer
2010-11-16 23:02:55 ----DC---- C:\WINDOWS\WinSxS
2010-11-16 22:59:53 ----RSDC---- C:\WINDOWS\Fonts
2010-11-16 22:59:40 ----HDC---- C:\WINDOWS\inf
2010-11-16 22:46:49 ----AC---- C:\WINDOWS\imsins.BAK
2010-11-16 22:40:45 ----DC---- C:\WINDOWS\Debug
2010-11-16 22:34:42 ----AC---- C:\WINDOWS\OEWABLog.txt
2010-11-16 22:33:06 ----AC---- C:\WINDOWS\setuplog.txt
2010-11-16 22:32:37 ----DC---- C:\WINDOWS\AppPatch
2010-11-16 22:32:37 ----DC---- C:\Program Files\Messenger
2010-11-16 22:32:36 ----DC---- C:\WINDOWS\system32\wbem
2010-11-16 22:32:36 ----DC---- C:\WINDOWS\system32\Setup
2010-11-16 22:32:36 ----DC---- C:\Program Files\Internet Explorer
2010-11-16 22:32:34 ----DC---- C:\WINDOWS\system32\drivers
2010-11-16 22:31:26 ----DC---- C:\WINDOWS\system32\CatRoot
2010-11-16 22:30:12 ----DC---- C:\WINDOWS\security
2010-11-16 22:29:48 ----DC---- C:\Program Files\Outlook Express
2010-11-16 22:29:02 ----DC---- C:\Program Files\Movie Maker
2010-11-16 22:22:23 ----DC---- C:\WINDOWS\ime
2010-11-16 22:22:22 ----DC---- C:\WINDOWS\Help
2010-11-16 22:22:10 ----DC---- C:\WINDOWS\system32\usmt
2010-11-16 22:22:09 ----DC---- C:\WINDOWS\PeerNet
2010-11-16 22:20:12 ----DC---- C:\WINDOWS\ServicePackFiles
2010-11-16 22:20:08 ----DC---- C:\WINDOWS\system32\Restore
2010-11-16 22:20:08 ----DC---- C:\WINDOWS\system32\npp
2010-11-16 22:20:07 ----DC---- C:\WINDOWS\srchasst
2010-11-16 22:20:07 ----DC---- C:\WINDOWS\msagent
2010-11-16 22:20:06 ----DC---- C:\WINDOWS\system32\Com
2010-11-16 22:20:06 ----DC---- C:\Program Files\NetMeeting
2010-11-16 22:20:05 ----DC---- C:\Program Files\Windows NT
2010-11-16 22:20:05 ----DC---- C:\Program Files\Windows Media Player
2010-11-16 22:20:03 ----DC---- C:\Program Files\Common Files\System
2010-11-16 22:19:52 ----DC---- C:\WINDOWS\system32\oobe
2010-11-16 22:19:52 ----DC---- C:\WINDOWS\system
2010-11-16 22:18:12 ----DC---- C:\WINDOWS\system32\ReinstallBackups
2010-11-16 21:52:14 ----DC---- C:\WINDOWS\SoftwareDistribution
2010-11-16 21:45:15 ----DC---- C:\WINDOWS\system32\config
2010-11-16 20:29:08 ----DC---- C:\Program Files\World of Warcraft
2010-11-15 20:54:53 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Skype
2010-11-15 20:50:06 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\skypePM
2010-11-13 14:35:35 ----DC---- C:\Program Files\TabDiscover
2010-11-13 08:56:03 ----DC---- C:\WINDOWS\pchealth
2010-11-13 08:56:03 ----DC---- C:\Documents and Settings\All Users\Data aplikací\TabDiscover
2010-11-12 15:27:25 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Mozilla
2010-11-10 06:59:58 ----DC---- C:\Program Files\Common Files
2010-11-09 21:28:07 ----DC---- C:\Program Files\ffdshow
2010-11-09 21:15:44 ----DC---- C:\Program Files\ConduitEngine
2010-11-09 21:15:41 ----DC---- C:\Program Files\ToggleEN
2010-11-01 19:37:44 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Adobe
2010-11-01 19:27:01 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\RCP 5
2010-11-01 15:37:53 ----RDC---- C:\Program Files\Skype
2010-11-01 15:35:34 ----DC---- C:\Documents and Settings\All Users\Data aplikací\Skype
2010-10-28 09:45:18 ----DC---- C:\WINDOWS\system32\DirectX
2010-10-26 16:19:24 ----HDC---- C:\Program Files\InstallShield Installation Information
2010-10-22 21:22:14 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Hamachi
2010-10-21 17:38:31 ----DC---- C:\Program Files\Mozilla Firefox
2010-10-18 14:08:54 ----DC---- C:\Documents and Settings\Lifaen\Data aplikací\Comodo
2010-10-18 14:06:20 ----DC---- C:\WINDOWS\system32\DRVSTORE

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvata;nvata; C:\WINDOWS\system32\DRIVERS\nvata.sys [2006-10-18 105472]
R0 ohci1394;Hostitelský řadič IEEE 1394 dle standardu OHCI Texas Instruments; C:\WINDOWS\system32\DRIVERS\ohci1394.sys [2008-04-13 61696]
R1 Aavmker4;avast! Asynchronous Virus Monitor; C:\WINDOWS\system32\drivers\Aavmker4.sys [2010-09-07 28880]
R1 AmdK8;Ovladač procesoru AMD; C:\WINDOWS\system32\DRIVERS\AmdK8.sys [2006-06-18 43008]
R1 aswSP;aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [2010-09-07 165584]
R1 aswTdi;avast! Network Shield Support; C:\WINDOWS\system32\drivers\aswTdi.sys [2010-09-07 46672]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2010-11-16 219200]
R1 DumaNT;NVIDIA Stereo Helper Service; C:\WINDOWS\system32\DRIVERS\dumant.sys [2002-11-18 399700]
R1 StyleXPHelper;StyleXPHelper; \??\C:\Program Files\TGTSoft\StyleXP\StyleXPHelper.exe []
R1 WS2IFSL;Podpůrné prostředí zprostředkovatele služeb Windows Socket 2.0 bez podpory IFS; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2004-08-18 12032]
R2 aswFsBlk;aswFsBlk; C:\WINDOWS\system32\drivers\aswFsBlk.sys [2010-09-07 17744]
R2 aswMon2;avast! Standard Shield Support; C:\WINDOWS\system32\drivers\aswMon2.sys [2010-09-07 100176]
R2 ETDrv;ETDrv; C:\WINDOWS\system32\drivers\ETDrv.sys [2003-11-12 170128]
R3 aswRdr;aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [2010-09-07 23376]
R3 HDAudBus;Ovladač Microsoft UAA pro sběrnici High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-07-18 4547584]
R3 MarkFun_NT;MarkFun_NT; \??\C:\Program Files\Gigabyte\Gigabyte Windows Utility Manager\markfun.w32 []
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2006-10-31 3964256]
R3 NVENETFD;NVIDIA nForce Networking Controller Driver; C:\WINDOWS\system32\DRIVERS\NVENETFD.sys [2006-11-27 58368]
R3 nvnetbus;NVIDIA Network Bus Enumerator; C:\WINDOWS\system32\DRIVERS\nvnetbus.sys [2006-11-27 19968]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 Arp1394;Protokol 1394 ARP Client; C:\WINDOWS\system32\DRIVERS\arp1394.sys [2008-04-13 60800]
S3 ATP;Comodo EasyVPN Miniport Driver; C:\WINDOWS\system32\DRIVERS\cmdatp.sys [2008-12-10 17424]
S3 cpuz132;cpuz132; \??\C:\DOCUME~1\Lifaen\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys []
S3 gdrv;gdrv; \??\C:\WINDOWS\gdrv.sys []
S3 GMSIPCI;GMSIPCI; \??\F:\INSTALL\GMSIPCI.SYS []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-08-11 17480]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 huadio;huadio; \??\c:\huadio.tmp []
S3 NIC1394;1394 Net Driver; C:\WINDOWS\system32\DRIVERS\nic1394.sys [2008-04-13 61824]
S3 sermouse;Ovladač sériové myši; C:\WINDOWS\system32\DRIVERS\sermouse.sys [2001-10-24 17664]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 avast! Antivirus;avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R2 Bandoo Coordinator;Bandoo Coordinator; C:\PROGRA~1\Bandoo\Bandoo.exe [2010-09-20 1940928]
R2 CrdphService;COMODO EasyVPN VNC Service; C:\Program Files\COMODO\EasyVPN\crdphService.exe [2009-08-11 491768]
R2 EasyVpnAdpt;COMODO EasyVPN Service; C:\Program Files\COMODO\EasyVPN\Vpnservice.exe [2010-01-12 34552]
R2 Jookz Toolbar Helper;Jookz Toolbar Helper; C:\Program Files\Jookz Toolbar\tbsvc.exe [2010-07-26 237224]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2006-10-31 155715]
R2 StyleXPService;StyleXPService; C:\Program Files\TGTSoft\StyleXP\StyleXPService.exe [2006-05-24 372736]
R2 TabDiscover Service;TabDiscover Service; C:\Documents and Settings\All Users\Data aplikací\TabDiscover\tabdiscover151.exe [2010-11-13 61712]
R3 avast! Mail Scanner;avast! Mail Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
R3 avast! Web Scanner;avast! Web Scanner; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [2010-09-07 40384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-10-07 136176]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 NBService;NBService; D:\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 rcp_service;ReaConverter scheduler service; C:\Program Files\ReaConverter 5.5 Pro\rcp_scheduler.exe [2007-11-30 558592]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

[cernohous13]

Zdravím,

monitor v tom bude nevinně

Odinstaluj C:\Program Files\RelevantKnowledge

Stáhni a nainstaluj MBAM zde http://www.download.com/Malwarebytes-An ... tag=button
Spustit > na 3.záložce "Aktualizace" > Kontrola aktualizací
následně na 1.záložce "Skener" > Provést rychlý sken > Skenovat
po dokončení scanu vyskočí okno Notepad s výsledkem - obsah zkopíruj do své odpovědi
zatím nic nemazat - počkej na posouzení

Ostatní dočistíme později.

[taringa]

Relevant ..... odinstalováno ! ted du na ten MBAM, vim ze to pisu asi nevhod a neni to k tematu ale muj pocitac vydava pisklavy zvuk nevim asi jak frekvecni ale je to hruza,taky mam od te doby spomaleny pocitac např.mam zaply moc veci treba 4 a tak po 2 hodinkach nekdy nestiha a kdyz zapnu CTR ALT DELETE procesy nikdy tam neni vyuziti nula ale vzdycky aspon 30 procent co mam vymenit popr koupit dekuju a ted zpatky k MBAM du na to

[taringa]

tady je mbamlog:


Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Verze databáze: 4052

Windows 5.1.2600 Service Pack 3
Internet Explorer 6.0.2900.5512

17.11.2010 11:20:07
mbam-log-2010-11-17 (11-20-07).txt

Typ skenu: Rychlý sken
Skenované objekty: 126419
Uplynulý čas: 9 minuta(y), 23 sekunda(y)

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče registru: 1
Infikované hodnoty registru: 0
Infikované datové položky registru: 0
Infikované složky: 2
Infikované soubory: 0

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče registru:
HKEY_CLASSES_ROOT\CLSID\{147a976f-eee1-4377-8ea7-4716e4cdd239} (Adware.MyWebSearch) -> No action taken.

Infikované hodnoty registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
C:\Program Files\RelevantKnowledge (Spyware.MarketScore) -> No action taken.
C:\Program Files\RelevantKnowledge\components (Spyware.MarketScore) -> No action taken.

Infikované soubory:
(Žádné škodlivé položky nebyly zjištěny)

[taringa]

omlouvam se ze pisu jenom jak to vypada snad ne zle? pisteni sem zjistil bude vetrackem ale ty restarty s erorr sysdata.xml snad to bude dobré

[cernohous13]

MBAM spustit znovu - dát Kompletní kontrola
po ukončení -> Zobrazit výsledky -> zkontrolovat zda je vše označeno -> Odstranit označené
vyběhne log, ve kterém budou záznamy tohoto typu:
Infikované adresáře:
C:\Program Files\xxxxxx -> Quarantined and deleted successfully.
ten bych taky rád viděl

Podívej se do složky Windows\Minidump - pokud tam máš nějaké soubory *.dmp, tak je zararuj a upni na http://leteckaposta.cz/ - sem dej odkaz

[taringa]

Takze mel sem tam 5 souboru .dmp du je dat na letecka posta,scan se dela a slozka xxxxx tam neni ja nwm co myslite za slozku a du na to

[taringa]

na Letecka Posta uz sem to tam poslal ale nwm komu xD

[taringa]

ted jak mi to skenoval MBAM se mi to resetlo a do slozky Minidump pribyl dalsi soubor dmp je to jasny neco s tema minidumpama prosíím pomoztemi

[cernohous13]

v Minidump jsou uloženy soubory s informacemi, ze kterých se dá poznat, proč systém padá.

Zabal složku v raru nebo zipu a odešli na http://leteckaposta.cz
Po odeslání se ti objeví nové okno s hláškou o úspěšném nahrání souboru
+ návod:
Nyní je váš soubor přístupný on-line pod následujícím odkazem. Najeďte na něj kurzorem myši, pomocí Ctrl+C odkaz zkopírujete, kombinací Ctrl+V odkaz vložíte.

Sem zkopíruješ odkaz z okénka http://leteckaposta.cz/xxxxxxxxx

[taringa]

takze odeslal sem ale po te se mi nacetla zase stranka http://leteckaposta.cz a zadny odkaz na stazeni ani tak se mi tam neobjevilo je to funkcni? momentalne? nemuzu vam to poslat na e-mail snad mate omlouvam se ze se mi tam nic neobjevilo jen hlavni stranka a nic

[cernohous13]

stránka je funkční
můžeš to poslat na cernohous13-gmail.com

[cernohous13]

Stáhni si ComboFix
a ulož ho na plochu.
návod na použití: http://www.bleepingcomputer.com/combofi ... t-combofix
Ukonči všechna aktivní okna,vypni Antispy a Antivir a spusť ho.
- Po spuštění se zobrazí podmínky užití, potvrď je stiskem tlačítka Ano
- Dále postupuj dle pokynů, během aplikování ComboFixu neklikej do zobrazujícího se okna a nic nespouštěj
- Po dokončení skenování by měl program vytvořit log - C:\ComboFix.txt - zkopíruj sem prosím celý jeho obsah
Kdyby ti po použití ComboFixu systém nenaběhl - při restartu F8 a poslední známá funkční konfigurace

[taringa]

Minidump v raru jsem vam poslal na mail,du na ten ComboFix kamarad rikal ze je to pry dost nebezpecny? snad se nic nestane mam vypnout i branu Firewall?