Prosím o kontrolu logu

Zpráva

jolobolo · #1 Příspěvek od **jolobolo** » 29 pro 2010 14:17

proces System.exe mi využívá 114 000 kb paměti, myslím že dřív mnohem míň (je to v pořádku?), dávám log z RSIT:

Logfile of random's system information tool 1.08 (written by random/random)
Run by Uzivatel at 2010-12-29 14:15:15
Systém Microsoft Windows XP Professional Service Pack 3
System drive C: has 110 GB (72%) free of 153 GB
Total RAM: 1534 MB (62% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:15:20, on 29.12.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\Program Files\AVG\AVG9\avgchsvx.exe
C:\Program Files\AVG\AVG9\avgrsx.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\PROGRA~1\AVG\AVG9\avgtray.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\windows\system32\oodtray.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
C:\Program Files\AVG\AVG9\avgwdsvc.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\windows\system32\oodag.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\Program Files\AVG\AVG9\avgemc.exe
C:\Program Files\AVG\AVG9\avgnsx.exe
C:\Program Files\AVG\AVG9\avgcsrvx.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\Documents and Settings\Uzivatel\Dokumenty\Stažené soubory\RSIT.exe
C:\Program Files\trend micro\Uzivatel.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.seznam.cz/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Odkazy
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [SoundMan] SOUNDMAN.EXE
O4 - HKLM\..\Run: [AVG9_TRAY] C:\PROGRA~1\AVG\AVG9\avgtray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_2] regsvr32 /s /n /i:U shell32 (User 'Default user')
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe (file missing)
O17 - HKLM\System\CCS\Services\Tcpip\..\{1D03707C-780E-4FBD-A93A-82602A84CE14}: NameServer = 90.183.115.6,90.183.115.11
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll
O20 - Winlogon Notify: avgrsstarter - avgrsstx.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Proces mezipaměti kategorií součástí - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Free E-mail Scanner (avg9emc) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgemc.exe
O23 - Service: AVG Free WatchDog (avg9wd) - AVG Technologies CZ, s.r.o. - C:\Program Files\AVG\AVG9\avgwdsvc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: O&O Defrag - O&O Software GmbH - C:\windows\system32\oodag.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe

--
End of file - 6081 bytes

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search - C:\Program Files\AVG\AVG9\avgssie.dll [2010-11-25 1623392]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-11-27 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-11-27 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"=C:\WINDOWS\SOUNDMAN.EXE [2007-04-16 577536]
"AVG9_TRAY"=C:\PROGRA~1\AVG\AVG9\avgtray.exe [2010-11-25 2069344]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-02-18 248040]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2010-11-25 98304]
"MSConfig"=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2008-04-14 171008]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe /background []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\windows\system32\oodtray.exe [2009-04-08 2553088]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Steam]
C:\Program Files\Steam\Steam.exe -silent []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
C:\PROGRA~1\WI459E~1\WINDOW~1.EXE [2008-05-26 123904]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Uzivatel^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.3.lnk]
C:\PROGRA~1\OPENOF~1.3\program\QUICKS~1.EXE [2007-09-11 393216]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2010-11-26 159744]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avgrsstarter]
C:\WINDOWS\system32\avgrsstx.dll [2010-07-18 12536]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265096]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2009-03-08 133632]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"=C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=1

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\AVG\AVG9\avgemc.exe"="C:\Program Files\AVG\AVG9\avgemc.exe:*:Enabled:avgemc.exe"
"C:\Program Files\AVG\AVG9\avgupd.exe"="C:\Program Files\AVG\AVG9\avgupd.exe:*:Enabled:avgupd.exe"
"C:\Program Files\AVG\AVG9\avgnsx.exe"="C:\Program Files\AVG\AVG9\avgnsx.exe:*:Enabled:avgnsx.exe"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe"="C:\Program Files\EA GAMES\Need for Speed Underground 2\speed2.exe:*:Disabled:speed2"
"C:\Program Files\Codemasters\DiRT\DiRT.exe"="C:\Program Files\Codemasters\DiRT\DiRT.exe:*:Disabled:DiRT Executable"
"C:\Program Files\F1 Delux 2010\F1 DELUX 2010.exe.exe"="C:\Program Files\F1 Delux 2010\F1 DELUX 2010.exe.exe:*:Enabled:F1 DELUX 2010"
"C:\Program Files\Codemasters\DiRT2\dirt2_game.exe"="C:\Program Files\Codemasters\DiRT2\dirt2_game.exe:*:Enabled:DiRT2"
"C:\Program Files\2K Sports\MLB 2K10\mlb2k10.exe"="C:\Program Files\2K Sports\MLB 2K10\mlb2k10.exe:*:Disabled:2K Sports Major League Baseball 2K10"
"C:\Program Files\EA SPORTS\F1 2002\f1_2002.exe"="C:\Program Files\EA SPORTS\F1 2002\f1_2002.exe:*:Disabled:F1 2002"
"C:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe"="C:\Program Files\Atari\Test Drive Unlimited\TestDriveUnlimited.exe:*:Disabled:Test Drive Unlimited"
"C:\Program Files\MotoGP2\motogp2.exe"="C:\Program Files\MotoGP2\motogp2.exe:*:Disabled:motogp2"
"C:\Documents and Settings\Uzivatel\Plocha\utorrent.exe"="C:\Documents and Settings\Uzivatel\Plocha\utorrent.exe:*:Enabled:µTorrent"
"C:\Documents and Settings\Uzivatel\Data aplikací\uTorrent\utorrent.exe"="C:\Documents and Settings\Uzivatel\Data aplikací\uTorrent\utorrent.exe:*:Enabled:µTorrent"
"C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe"="C:\Program Files\KONAMI\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"C:\Program Files\EA SPORTS\FIFA 11 Demo\Game\fifa.exe"="C:\Program Files\EA SPORTS\FIFA 11 Demo\Game\fifa.exe:*:Disabled:FIFA 11"
"C:\Program Files\Sports Interactive\Football Manager 2010\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2010\fm.exe:*:Disabled:Football Manager 2010"
"C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2008\fm.exe:*:Disabled:Football Manager 2008"
"C:\Program Files\Codemasters\F1 2010\F1_2010_game.exe"="C:\Program Files\Codemasters\F1 2010\F1_2010_game.exe:*:Enabled:F1 2010"
"C:\Program Files\Pro Evolution Soccer 2008\PES2008.exe"="C:\Program Files\Pro Evolution Soccer 2008\PES2008.exe:*:Enabled:Pro Evolution Soccer 2008"
"C:\Documents and Settings\Uzivatel\Plocha\PES 2009\pes2009.exe"="C:\Documents and Settings\Uzivatel\Plocha\PES 2009\pes2009.exe:*:Enabled:Pro Evolution Soccer 2009"
"C:\Program Files\Bethesda Softworks\PBA Bowling 2001\BowlingR.exe"="C:\Program Files\Bethesda Softworks\PBA Bowling 2001\BowlingR.exe:*:Enabled:PBA Bowling 2"
"C:\Program Files\rFactor\rFactor.exe"="C:\Program Files\rFactor\rFactor.exe:*:Disabled:rFactor"
"C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe"="C:\Program Files\Sports Interactive\Football Manager 2011 Russian\fm.exe:*:Disabled:Football Manager 2011"
"C:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe"="C:\Program Files\Electronic Arts\Need for Speed(TM) Hot Pursuit\Launcher.exe:*:Enabled:Need for Speed(TM) Hot Pursuit"
"C:\Program Files\EA GAMES\Need For Speed Hot Pursuit 2\NfsHP2.ori"="C:\Program Files\EA GAMES\Need For Speed Hot Pursuit 2\NfsHP2.ori:*:Disabled:NfsHP2"
"C:\Program Files\Java\jre6\bin\javaw.exe"="C:\Program Files\Java\jre6\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary"
"C:\Program Files\Infogrames\Grand Prix 4\GP4.exe"="C:\Program Files\Infogrames\Grand Prix 4\GP4.exe:*:Disabled:GP4"
"C:\Program Files\Steam\Steam.exe"="C:\Program Files\Steam\Steam.exe:*:Enabled:Steam"
"C:\Program Files\Codemasters\GRID\GRID.exe"="C:\Program Files\Codemasters\GRID\GRID.exe:*:Enabled:GRID"
"C:\Program Files\Electronic Arts\Need for Speed Carbon\NFSC.exe"="C:\Program Files\Electronic Arts\Need for Speed Carbon\NFSC.exe:*:Enabled:NFSC"
"C:\Program Files\Java\jre6\bin\java.exe"="C:\Program Files\Java\jre6\bin\java.exe:*:Disabled:Java(TM) Platform SE binary"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======List of files/folders created in the last 3 months======

2010-12-29 14:10:56 ----D---- C:\rsit
2010-12-29 14:10:56 ----D---- C:\Program Files\trend micro
2010-12-29 12:48:46 ----AH---- C:\boot.ini
2010-12-29 08:44:22 ----D---- C:\Documents and Settings\All Users\Data aplikací\ATI
2010-12-29 08:32:44 ----A---- C:\WINDOWS\system32\atibtmon.exe
2010-12-29 08:32:37 ----A---- C:\WINDOWS\system32\ativcoxx.dll
2010-12-29 08:31:32 ----D---- C:\Program Files\ATI Technologies
2010-12-29 08:30:43 ----SHD---- C:\Config.Msi
2010-12-29 08:30:26 ----A---- C:\WINDOWS\system32\ATIODE.exe
2010-12-29 08:30:26 ----A---- C:\WINDOWS\system32\ATIODCLI.exe
2010-12-29 08:30:25 ----A---- C:\WINDOWS\system32\atiiiexx.dll
2010-12-29 08:30:22 ----A---- C:\WINDOWS\system32\atioglxx.dll
2010-12-29 08:30:20 ----A---- C:\WINDOWS\system32\atiok3x2.dll
2010-12-29 08:30:20 ----A---- C:\WINDOWS\system32\aticalrt.dll
2010-12-29 08:30:20 ----A---- C:\WINDOWS\system32\aticalcl.dll
2010-12-29 08:30:19 ----A---- C:\WINDOWS\system32\ATIDEMGX.dll
2010-12-29 08:30:19 ----A---- C:\WINDOWS\system32\aticaldd.dll
2010-12-29 08:30:18 ----A---- C:\WINDOWS\system32\atikvmag.dll
2010-12-29 08:30:16 ----A---- C:\WINDOWS\system32\Oemdspif.dll
2010-12-29 08:30:16 ----A---- C:\WINDOWS\system32\ati2edxx.dll
2010-12-29 08:30:15 ----A---- C:\WINDOWS\system32\atipdlxx.dll
2010-12-29 08:30:14 ----A---- C:\WINDOWS\system32\ati2evxx.dll
2010-12-29 08:30:13 ----A---- C:\WINDOWS\system32\atitvo32.dll
2010-12-29 08:30:13 ----A---- C:\WINDOWS\system32\ati2evxx.exe
2010-12-29 08:30:12 ----A---- C:\WINDOWS\system32\ATIDDC.DLL
2010-12-29 08:30:12 ----A---- C:\WINDOWS\system32\atiapfxx.exe
2010-12-29 08:30:11 ----A---- C:\WINDOWS\system32\atimpc32.dll
2010-12-29 08:30:11 ----A---- C:\WINDOWS\system32\atiadlxx.dll
2010-12-29 08:30:11 ----A---- C:\WINDOWS\system32\amdpcom32.dll
2010-12-29 08:30:06 ----A---- C:\WINDOWS\system32\ativvaxx.dll
2010-12-29 08:30:01 ----A---- C:\WINDOWS\system32\ati3duag.dll
2010-12-29 08:30:01 ----A---- C:\WINDOWS\system32\Ati2mdxx.exe
2010-12-29 08:29:59 ----A---- C:\WINDOWS\system32\ati2cqag.dll
2010-12-29 08:29:57 ----A---- C:\WINDOWS\system32\drivers\ati2erec.dll
2010-12-29 08:29:57 ----A---- C:\WINDOWS\system32\ati2dvag.dll
2010-12-29 08:29:56 ----A---- C:\WINDOWS\system32\drivers\ati2mtag.sys
2010-12-28 18:55:35 ----D---- C:\WINDOWS\system32\oodag
2010-12-28 18:52:56 ----D---- C:\Program Files\OO Software
2010-12-28 17:35:18 ----D---- C:\Documents and Settings\Uzivatel\Data aplikací\uTorrent
2010-12-28 17:17:18 ----RA---- C:\WINDOWS\NPSExec.exe
2010-12-28 14:56:14 ----D---- C:\Program Files\EA GAMES
2010-12-28 14:42:25 ----D---- C:\Program Files\uTorrent
2010-12-25 09:35:42 ----D---- C:\WINDOWS\SPEECH
2010-12-24 20:12:31 ----D---- C:\Program Files\F1 Mania 2010 Astros-Gamez
2010-12-22 15:21:19 ----D---- C:\Program Files\Lavalys
2010-12-15 21:21:07 ----HDC---- C:\WINDOWS\$NtUninstallKB2296199$
2010-12-15 21:20:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2443105$
2010-12-15 21:19:50 ----HDC---- C:\WINDOWS\$NtUninstallKB2440591$
2010-12-15 21:19:42 ----HDC---- C:\WINDOWS\$NtUninstallKB2443685$
2010-12-15 21:19:37 ----HDC---- C:\WINDOWS\$NtUninstallKB2436673$
2010-12-15 21:19:25 ----HDC---- C:\WINDOWS\$NtUninstallKB2467659$
2010-12-15 21:14:39 ----HDC---- C:\WINDOWS\$NtUninstallKB2423089$
2010-12-15 18:12:22 ----A---- C:\WINDOWS\nfsc_patch.ini
2010-12-15 17:56:02 ----A---- C:\WINDOWS\system32\drivers\sptd.sys
2010-12-14 18:00:30 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys
2010-12-11 21:29:54 ----RA---- C:\WINDOWS\system32\tmp141.tmp
2010-12-11 21:29:54 ----RA---- C:\WINDOWS\system32\tmp140.tmp
2010-12-11 16:24:31 ----D---- C:\WINDOWS\system32\appmgmt
2010-12-11 08:23:53 ----A---- C:\WINDOWS\system32\RtNicProp32.dll
2010-12-11 08:23:53 ----A---- C:\WINDOWS\system32\drivers\Rtnicxp.sys
2010-12-11 08:23:52 ----D---- C:\Program Files\Realtek
2010-12-07 18:08:47 ----A---- C:\WINDOWS\system32\drivers\ACEDRV07.sys
2010-12-07 18:06:05 ----D---- C:\Program Files\Ski Alpin Racing 2007
2010-12-06 16:13:08 ----D---- C:\Documents and Settings\All Users\Data aplikací\Trymedia
2010-12-06 16:12:54 ----A---- C:\WINDOWS\system32\OggDSuninst.exe
2010-12-02 12:24:07 ----D---- C:\WINDOWS\Sun
2010-11-27 12:56:09 ----D---- C:\Documents and Settings\All Users\Data aplikací\Sun
2010-11-27 12:56:07 ----D---- C:\Program Files\Common Files\Java
2010-11-27 12:55:56 ----A---- C:\WINDOWS\system32\javaws.exe
2010-11-27 12:55:56 ----A---- C:\WINDOWS\system32\javaw.exe
2010-11-27 12:55:56 ----A---- C:\WINDOWS\system32\java.exe
2010-11-27 12:55:56 ----A---- C:\WINDOWS\system32\deployJava1.dll
2010-11-27 12:55:38 ----D---- C:\Program Files\Java
2010-11-27 12:53:51 ----D---- C:\Documents and Settings\Uzivatel\Data aplikací\Sun
2010-11-27 12:52:04 ----D---- C:\Program Files\JDownloader
2010-11-19 19:58:17 ----A---- C:\WINDOWS\system32\wt_menu.dll
2010-11-19 19:58:17 ----A---- C:\WINDOWS\system32\vbuzip10.DLL
2010-11-19 19:58:16 ----D---- C:\Program Files\Smarty Uninstaller Pro
2010-11-17 15:01:12 ----A---- C:\WINDOWS\oodcnt.INI
2010-11-04 18:45:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\Electronic Arts
2010-11-04 18:45:25 ----D---- C:\Documents and Settings\All Users\Data aplikací\EA Core
2010-11-04 18:31:54 ----D---- C:\Documents and Settings\All Users\Data aplikací\Solidshield
2010-10-28 12:21:09 ----A---- C:\WINDOWS\system32\LMRTREND.dll
2010-10-28 12:21:06 ----A---- C:\WINDOWS\system32\dxtmsft3.dll
2010-10-28 12:21:02 ----A---- C:\WINDOWS\system32\unam4ie.exe
2010-10-28 12:20:59 ----A---- C:\WINDOWS\system32\vidx16.dll
2010-10-28 12:20:59 ----A---- C:\WINDOWS\system32\qcut.dll
2010-10-28 12:20:54 ----A---- C:\WINDOWS\system32\w95inf32.dll
2010-10-28 12:20:54 ----A---- C:\WINDOWS\system32\w95inf16.dll
2010-10-27 16:36:08 ----D---- C:\Program Files\Generic Game Trainer
2010-10-25 15:01:09 ----D---- C:\Documents and Settings\Uzivatel\Data aplikací\OpenOffice.org2
2010-10-25 14:57:26 ----D---- C:\Program Files\OpenOffice.org 2.3
2010-10-25 14:56:25 ----D---- C:\Program Files\open office 2007
2010-10-21 19:01:44 ----HD---- C:\WINDOWS\msdownld.tmp
2010-10-18 17:58:05 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-10-13 12:34:17 ----HDC---- C:\WINDOWS\$NtUninstallKB2387149$
2010-10-13 12:34:09 ----HDC---- C:\WINDOWS\$NtUninstallKB2279986$
2010-10-13 12:34:03 ----HDC---- C:\WINDOWS\$NtUninstallKB2345886$
2010-10-13 12:33:57 ----HDC---- C:\WINDOWS\$NtUninstallKB2296011$
2010-10-13 12:33:48 ----HDC---- C:\WINDOWS\$NtUninstallKB2378111_WM9$
2010-10-13 12:33:42 ----HDC---- C:\WINDOWS\$NtUninstallKB982132$
2010-10-13 12:33:34 ----HDC---- C:\WINDOWS\$NtUninstallKB979687$
2010-10-13 12:30:55 ----HDC---- C:\WINDOWS\$NtUninstallKB981957$
2010-10-13 12:30:46 ----HDC---- C:\WINDOWS\$NtUninstallKB2360937$
2010-10-11 18:12:31 ----SHD---- C:\WINDOWS\ftpcache
2010-10-06 19:25:41 ----D---- C:\Program Files\Common Files\Adobe
2010-10-06 19:25:41 ----D---- C:\Program Files\Adobe

======List of files/folders modified in the last 3 months======

2010-12-29 14:11:08 ----D---- C:\WINDOWS\Prefetch
2010-12-29 14:10:56 ----RD---- C:\Program Files
2010-12-29 13:23:17 ----D---- C:\WINDOWS\system32\LogFiles
2010-12-29 13:23:16 ----D---- C:\WINDOWS\Temp
2010-12-29 13:23:16 ----D---- C:\WINDOWS\Minidump
2010-12-29 13:23:16 ----D---- C:\WINDOWS
2010-12-29 12:55:54 ----A---- C:\WINDOWS\win.ini
2010-12-29 12:55:54 ----A---- C:\WINDOWS\system.ini
2010-12-29 12:55:29 ----D---- C:\WINDOWS\pss
2010-12-29 12:52:08 ----D---- C:\WINDOWS\system32\CatRoot2
2010-12-29 12:49:06 ----N---- C:\WINDOWS\SchedLgU.Txt
2010-12-29 09:11:53 ----D---- C:\WINDOWS\system32\drivers\Avg
2010-12-29 08:43:42 ----D---- C:\WINDOWS\system32\drivers
2010-12-29 08:43:41 ----D---- C:\WINDOWS\system32
2010-12-29 08:43:36 ----HD---- C:\WINDOWS\inf
2010-12-29 08:39:41 ----A---- C:\WINDOWS\DUMP69b6.tmp
2010-12-29 08:33:05 ----SHD---- C:\WINDOWS\Installer
2010-12-29 08:32:03 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-12-29 08:31:59 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-12-29 08:30:04 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-12-29 07:59:31 ----D---- C:\WINDOWS\system32\config
2010-12-28 17:34:59 ----D---- C:\WINDOWS\Help
2010-12-28 17:13:05 ----D---- C:\Documents and Settings\Uzivatel\Data aplikací\XnView
2010-12-28 15:04:22 ----D---- C:\WINDOWS\Debug
2010-12-28 14:55:43 ----D---- C:\WINDOWS\system32\DirectX
2010-12-28 14:55:42 ----RSD---- C:\WINDOWS\assembly
2010-12-28 14:45:45 ----D---- C:\Documents and Settings\Uzivatel\Data aplikací\Sports Interactive
2010-12-28 14:29:42 ----D---- C:\Program Files\Common Files\Logitech
2010-12-28 14:27:26 ----D---- C:\Program Files\Common Files\InstallShield
2010-12-28 14:27:22 ----HD---- C:\Program Files\InstallShield Installation Information
2010-12-28 13:43:54 ----D---- C:\Program Files\ATI
2010-12-24 17:30:13 ----D---- C:\Program Files\Czech Soccer Manager 2009 FE
2010-12-23 09:19:44 ----A---- C:\WINDOWS\DUMP633e.tmp
2010-12-22 13:25:12 ----D---- C:\Program Files\Mozilla Firefox
2010-12-21 18:53:16 ----D---- C:\Program Files\WinRAR
2010-12-19 20:37:17 ----D---- C:\Program Files\Windows Media Connect 2
2010-12-19 20:24:49 ----SD---- C:\Documents and Settings\All Users\Data aplikací\Microsoft
2010-12-19 20:02:11 ----A---- C:\WINDOWS\disney.ini
2010-12-19 19:42:10 ----D---- C:\Program Files\Common Files
2010-12-17 20:48:22 ----A---- C:\WINDOWS\NeroDigital.ini
2010-12-15 21:20:41 ----D---- C:\Program Files\Internet Explorer
2010-12-15 21:20:13 ----D---- C:\WINDOWS\ie8updates
2010-12-15 21:19:57 ----HD---- C:\WINDOWS\$hf_mig$
2010-12-15 21:15:21 ----A---- C:\WINDOWS\system32\MRT.exe
2010-12-15 21:14:44 ----D---- C:\Program Files\Outlook Express
2010-12-11 21:29:55 ----D---- C:\Program Files\OpenAL
2010-12-11 16:25:17 ----D---- C:\Program Files\Common Files\Wise Installation Wizard
2010-12-11 12:50:54 ----D---- C:\Program Files\Czech Soccer Manager 2001
2010-12-11 09:57:59 ----SD---- C:\WINDOWS\Tasks
2010-11-19 19:58:49 ----AD---- C:\Documents and Settings\All Users\Data aplikací\TEMP
2010-11-18 19:15:47 ----A---- C:\WINDOWS\system32\isign32.dll
2010-11-06 01:23:38 ----N---- C:\WINDOWS\system32\occache.dll
2010-11-06 01:23:38 ----A---- C:\WINDOWS\system32\wininet.dll
2010-11-06 01:23:38 ----A---- C:\WINDOWS\system32\urlmon.dll
2010-11-06 01:23:38 ----A---- C:\WINDOWS\system32\mstime.dll
2010-11-06 01:23:37 ----N---- C:\WINDOWS\system32\jsproxy.dll
2010-11-06 01:23:37 ----A---- C:\WINDOWS\system32\mshtmled.dll
2010-11-06 01:23:37 ----A---- C:\WINDOWS\system32\mshtml.dll
2010-11-06 01:23:37 ----A---- C:\WINDOWS\system32\msfeedsbs.dll
2010-11-06 01:23:37 ----A---- C:\WINDOWS\system32\msfeeds.dll
2010-11-06 01:23:37 ----A---- C:\WINDOWS\system32\licmgr10.dll
2010-11-06 01:23:36 ----N---- C:\WINDOWS\system32\iepeers.dll
2010-11-06 01:23:36 ----A---- C:\WINDOWS\system32\iertutil.dll
2010-11-06 01:23:36 ----A---- C:\WINDOWS\system32\ieframe.dll
2010-11-06 01:23:35 ----N---- C:\WINDOWS\system32\iedkcs32.dll
2010-11-04 13:06:18 ----SD---- C:\Documents and Settings\Uzivatel\Data aplikací\Microsoft
2010-11-03 14:12:40 ----A---- C:\WINDOWS\system32\tzchange.exe
2010-11-03 13:26:18 ----N---- C:\WINDOWS\system32\ie4uinit.exe
2010-10-31 17:12:02 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-10-28 14:09:00 ----A---- C:\WINDOWS\system32\atmfd.dll
2010-10-28 12:21:09 ----D---- C:\Program Files\Windows Media Player
2010-10-27 12:25:15 ----D---- C:\WINDOWS\system32\wbem
2010-10-27 12:25:14 ----D---- C:\WINDOWS\Registration
2010-10-27 12:14:44 ----D---- C:\WINDOWS\system32\Restore
2010-10-25 14:57:49 ----RSD---- C:\WINDOWS\Fonts
2010-10-13 12:33:58 ----D---- C:\WINDOWS\WinSxS
2010-10-08 16:30:44 ----D---- C:\WINDOWS\Microsoft.NET
2010-10-06 19:25:51 ----D---- C:\Documents and Settings\All Users\Data aplikací\Adobe

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 gagp30kx;Filtr Microsoft Generic AGPv3.0 pro procesorovou platformu K8; C:\WINDOWS\system32\DRIVERS\gagp30kx.sys [2008-04-14 46464]
R0 sfdrv01;StarForce Protection Environment Driver (version 1.x); C:\WINDOWS\System32\drivers\sfdrv01.sys [2005-08-10 50688]
R0 sfhlp02;StarForce Protection Helper Driver (version 2.x); C:\WINDOWS\System32\drivers\sfhlp02.sys [2005-05-16 6656]
R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x); C:\WINDOWS\System32\drivers\sfsync03.sys [2005-12-06 35328]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-12-15 611064]
R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2010-03-09 13976]
R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\WINDOWS\system32\DRIVERS\xfilt.sys [2010-03-09 22168]
R1 AvgLdx86;AVG Free AVI Loader Driver x86; C:\WINDOWS\System32\Drivers\avgldx86.sys [2010-07-18 216400]
R1 AvgMfx86;AVG Free On-access Scanner Minifilter Driver x86; C:\WINDOWS\System32\Drivers\avgmfx86.sys [2010-06-03 29584]
R1 AvgTdiX;AVG Free Network Redirector; C:\WINDOWS\System32\Drivers\avgtdix.sys [2010-07-18 243024]
R1 SCDEmu;SCDEmu; C:\WINDOWS\system32\drivers\SCDEmu.sys [2009-11-09 59388]
R2 ACEDRV07;ACEDRV07; \??\C:\WINDOWS\system32\drivers\ACEDRV07.sys []
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2008-09-24 4122368]
R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2010-11-26 5555712]
R3 RTL8023xp;Realtek 10/100/1000 PCI NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys [2009-03-25 130432]
R3 usbuhci;Ovladač Microsoft univerzálního hostitelského řadiče USB od společnosti Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R3 WmBEnum;Logitech Virtual Bus Enumerator Driver; C:\WINDOWS\system32\drivers\WmBEnum.sys [2009-09-11 22792]
R3 WmXlCore;Logitech Translation Layer Driver; C:\WINDOWS\system32\drivers\WmXlCore.sys [2009-09-11 66056]
S1 kbdhid;Ovladač klávesnice standardu HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2008-04-14 14592]
S3 BthEnum;Služba Bluetooth Enumerator; C:\WINDOWS\system32\DRIVERS\BthEnum.sys [2008-04-13 17024]
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2010-04-13 25280]
S3 HidUsb;Ovladač třídy standardu HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
S3 mouhid;Ovladač myši standardu HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-24 12160]
S3 RFCOMM;Zařízení Bluetooth (RFCOMM protokol TDI); C:\WINDOWS\system32\DRIVERS\rfcomm.sys [2008-04-13 59136]
S3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\system32\DRIVERS\RTL8139.SYS [2008-04-13 20992]
S3 usbccgp;Obecný nadřazený ovladač Microsoft USB; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Třída USB Printer; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-13 25856]
S3 USBSTOR;Ovladač velkokapacitního paměťového zařízení USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368]
S3 WmFilter;Logitech Gaming HID Filter Driver; C:\WINDOWS\system32\drivers\WmFilter.sys [2009-09-11 35592]
S3 WmVirHid;Logitech Virtual Hid Device Driver; C:\WINDOWS\system32\drivers\WmVirHid.sys [2009-09-11 14984]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-03-08 77568]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-03-08 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2010-11-26 614400]
R2 avg9emc;AVG Free E-mail Scanner; C:\Program Files\AVG\AVG9\avgemc.exe [2010-07-25 921952]
R2 avg9wd;AVG Free WatchDog; C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-07-18 308136]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-11-27 153376]
R2 O&O Defrag;O&O Defrag; C:\windows\system32\oodag.exe [2009-04-08 1377536]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-03-20 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2010-03-20 107832]
S2 WSearch;Windows Search; C:\WINDOWS\system32\SearchIndexer.exe [2008-05-26 439808]
S3 aspnet_state;Stavová služba ASP.NET; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-29 46104]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-03 69632]
S3 idsvc;Služba Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-29 881664]
S3 WMPNetworkSvc;Služba Windows Media Player Network Sharing; C:\Program Files\Windows Media Player\WMPNetwk.exe [2007-01-05 913920]
S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-14 14336]
S4 NetTcpPortSharing;Služba sdílení portů Net.Tcp; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-29 132096]

-----------------EOF-----------------

info.txt logfile of random's system information tool 1.08 2010-12-29 14:11:09

======Uninstall list======

-->MsiExec /X{DEA314C4-0929-4250-BC92-98E4C105F28D}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
µTorrent-->"C:\Program Files\uTorrent\uTorrent.exe" /UNINSTALL
Adobe Flash Player 10 ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10i_Plugin.exe -maintain plugin
Adobe Reader 9.4.1 - Czech-->MsiExec.exe /I{AC76BA86-7AD7-1029-7B44-A94000000001}
Aktualizace systému Windows Internet Explorer 8 (KB976662)-->"C:\WINDOWS\ie8updates\KB976662-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows Internet Explorer 8 (KB978506)-->"C:\WINDOWS\ie8updates\KB978506-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows Internet Explorer 8 (KB980182)-->"C:\WINDOWS\ie8updates\KB980182-IE8\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2141007)-->"C:\WINDOWS\$NtUninstallKB2141007$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2345886)-->"C:\WINDOWS\$NtUninstallKB2345886$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB2467659)-->"C:\WINDOWS\$NtUninstallKB2467659$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB898461)-->"C:\WINDOWS\$NtUninstallKB898461$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB955759)-->"C:\WINDOWS\$NtUninstallKB955759$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB968389)-->"C:\WINDOWS\$NtUninstallKB968389$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB971737)-->"C:\WINDOWS\$NtUninstallKB971737$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973687)-->"C:\WINDOWS\$NtUninstallKB973687$\spuninst\spuninst.exe"
Aktualizace systému Windows XP (KB973815)-->"C:\WINDOWS\$NtUninstallKB973815$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB2378111)-->"C:\WINDOWS\$NtUninstallKB2378111_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB954155)-->"C:\WINDOWS\$NtUninstallKB954155_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB968816)-->"C:\WINDOWS\$NtUninstallKB968816_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB973540)-->"C:\WINDOWS\$NtUninstallKB973540_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB975558)-->"C:\WINDOWS\$NtUninstallKB975558_WM8$\spuninst\spuninst.exe"
Aktualizace zabezpečení aplikace Windows Media Player (KB978695)-->"C:\WINDOWS\$NtUninstallKB978695_WM9$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 7 (KB978207)-->"C:\WINDOWS\ie7updates\KB978207-IE7\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2183461)-->"C:\WINDOWS\ie8updates\KB2183461-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2360131)-->"C:\WINDOWS\ie8updates\KB2360131-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB2416400)-->"C:\WINDOWS\ie8updates\KB2416400-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB971961)-->"C:\WINDOWS\ie8updates\KB971961-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB976325)-->"C:\WINDOWS\ie8updates\KB976325-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB978207)-->"C:\WINDOWS\ie8updates\KB978207-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB981332)-->"C:\WINDOWS\ie8updates\KB981332-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows Internet Explorer 8 (KB982381)-->"C:\WINDOWS\ie8updates\KB982381-IE8\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2079403)-->"C:\WINDOWS\$NtUninstallKB2079403$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2115168)-->"C:\WINDOWS\$NtUninstallKB2115168$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2121546)-->"C:\WINDOWS\$NtUninstallKB2121546$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2160329)-->"C:\WINDOWS\$NtUninstallKB2160329$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2229593)-->"C:\WINDOWS\$NtUninstallKB2229593$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2259922)-->"C:\WINDOWS\$NtUninstallKB2259922$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2279986)-->"C:\WINDOWS\$NtUninstallKB2279986$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2286198)-->"C:\WINDOWS\$NtUninstallKB2286198$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296011)-->"C:\WINDOWS\$NtUninstallKB2296011$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2296199)-->"C:\WINDOWS\$NtUninstallKB2296199$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2347290)-->"C:\WINDOWS\$NtUninstallKB2347290$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2360937)-->"C:\WINDOWS\$NtUninstallKB2360937$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2387149)-->"C:\WINDOWS\$NtUninstallKB2387149$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2423089)-->"C:\WINDOWS\$NtUninstallKB2423089$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2436673)-->"C:\WINDOWS\$NtUninstallKB2436673$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2440591)-->"C:\WINDOWS\$NtUninstallKB2440591$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB2443105)-->"C:\WINDOWS\$NtUninstallKB2443105$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923561)-->"C:\WINDOWS\$NtUninstallKB923561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf
Aktualizace zabezpečení systému Windows XP (KB952004)-->"C:\WINDOWS\$NtUninstallKB952004$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956572)-->"C:\WINDOWS\$NtUninstallKB956572$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956744)-->"C:\WINDOWS\$NtUninstallKB956744$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB956844)-->"C:\WINDOWS\$NtUninstallKB956844$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB958869)-->"C:\WINDOWS\$NtUninstallKB958869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB959426)-->"C:\WINDOWS\$NtUninstallKB959426$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960225)-->"C:\WINDOWS\$NtUninstallKB960225$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960803)-->"C:\WINDOWS\$NtUninstallKB960803$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB960859)-->"C:\WINDOWS\$NtUninstallKB960859$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB961501)-->"C:\WINDOWS\$NtUninstallKB961501$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969059)-->"C:\WINDOWS\$NtUninstallKB969059$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB969947)-->"C:\WINDOWS\$NtUninstallKB969947$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970238)-->"C:\WINDOWS\$NtUninstallKB970238$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB970430)-->"C:\WINDOWS\$NtUninstallKB970430$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971468)-->"C:\WINDOWS\$NtUninstallKB971468$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971486)-->"C:\WINDOWS\$NtUninstallKB971486$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971657)-->"C:\WINDOWS\$NtUninstallKB971657$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB971961)-->"C:\WINDOWS\$NtUninstallKB971961$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB972270)-->"C:\WINDOWS\$NtUninstallKB972270$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973354)-->"C:\WINDOWS\$NtUninstallKB973354$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973507)-->"C:\WINDOWS\$NtUninstallKB973507$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973869)-->"C:\WINDOWS\$NtUninstallKB973869$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB973904)-->"C:\WINDOWS\$NtUninstallKB973904$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974112)-->"C:\WINDOWS\$NtUninstallKB974112$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974318)-->"C:\WINDOWS\$NtUninstallKB974318$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974392)-->"C:\WINDOWS\$NtUninstallKB974392$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB974571)-->"C:\WINDOWS\$NtUninstallKB974571$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975025)-->"C:\WINDOWS\$NtUninstallKB975025$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975467)-->"C:\WINDOWS\$NtUninstallKB975467$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975560)-->"C:\WINDOWS\$NtUninstallKB975560$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975561)-->"C:\WINDOWS\$NtUninstallKB975561$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975562)-->"C:\WINDOWS\$NtUninstallKB975562$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB975713)-->"C:\WINDOWS\$NtUninstallKB975713$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977165-v2)-->"C:\WINDOWS\$NtUninstallKB977165-v2$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977816)-->"C:\WINDOWS\$NtUninstallKB977816$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB977914)-->"C:\WINDOWS\$NtUninstallKB977914$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978037)-->"C:\WINDOWS\$NtUninstallKB978037$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978251)-->"C:\WINDOWS\$NtUninstallKB978251$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978262)-->"C:\WINDOWS\$NtUninstallKB978262$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978338)-->"C:\WINDOWS\$NtUninstallKB978338$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978542)-->"C:\WINDOWS\$NtUninstallKB978542$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978601)-->"C:\WINDOWS\$NtUninstallKB978601$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB978706)-->"C:\WINDOWS\$NtUninstallKB978706$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979309)-->"C:\WINDOWS\$NtUninstallKB979309$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979482)-->"C:\WINDOWS\$NtUninstallKB979482$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979559)-->"C:\WINDOWS\$NtUninstallKB979559$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979683)-->"C:\WINDOWS\$NtUninstallKB979683$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB979687)-->"C:\WINDOWS\$NtUninstallKB979687$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980195)-->"C:\WINDOWS\$NtUninstallKB980195$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980218)-->"C:\WINDOWS\$NtUninstallKB980218$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980232)-->"C:\WINDOWS\$NtUninstallKB980232$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB980436)-->"C:\WINDOWS\$NtUninstallKB980436$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981322)-->"C:\WINDOWS\$NtUninstallKB981322$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981852)-->"C:\WINDOWS\$NtUninstallKB981852$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981957)-->"C:\WINDOWS\$NtUninstallKB981957$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB981997)-->"C:\WINDOWS\$NtUninstallKB981997$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982132)-->"C:\WINDOWS\$NtUninstallKB982132$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982214)-->"C:\WINDOWS\$NtUninstallKB982214$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982665)-->"C:\WINDOWS\$NtUninstallKB982665$\spuninst\spuninst.exe"
Aktualizace zabezpečení systému Windows XP (KB982802)-->"C:\WINDOWS\$NtUninstallKB982802$\spuninst\spuninst.exe"
AVG Free 9.0-->C:\Program Files\AVG\AVG9\setup.exe /UNINSTALL
Catalyst Control Center - Branding-->MsiExec.exe /I{6AB57823-3580-4CE0-9CF0-072E2A39460C}
CCleaner-->"C:\Program Files\CCleaner\uninst.exe"
Czech Soccer Manager 2001-->"C:\Program Files\Czech Soccer Manager 2001\uninstall.exe" "/U:C:\Program Files\Czech Soccer Manager 2001\uninstall.xml"
Direct Show Ogg Vorbis Filter (remove only)-->"C:\WINDOWS\system32\OggDSuninst.exe"
EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe"
F1 2010-->MsiExec.exe /I{434D0831-A4CC-401A-9E74-621000018401}
F1 2010-->MsiExec.exe /X{434D0831-3E0C-4D03-A5D4-5E1000008400}
F1 Mania 2010 Astros-Gamez-->C:\Program Files\F1 Mania 2010 Astros-Gamez\Desinstalador.exe
Fraps-->"C:\Program Files\Fraps\uninstall.exe"
Generic Game Trainer-->MsiExec.exe /X{FEF198EE-DF2E-47B3-A556-B195706E667D}
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall /qb+ REBOOTPROMPT=""
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A7EEA2F2-BFCD-4A54-A575-7B81A786E658} /qb+ REBOOTPROMPT=""
Hotfix for Windows XP (KB915800-v4)-->"C:\WINDOWS\$NtUninstallKB915800-v4$\spuninst\spuninst.exe"
Java(TM) 6 Update 20-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216020FF}
JDownloader-->C:\Program Files\JDownloader\uninstall.exe
Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - CSY-->MsiExec.exe /I{A2C9CD1B-2551-3AED-B244-6698FB929FA6}
Microsoft .NET Framework 2.0 Service Pack 2-->MsiExec.exe /I{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}
Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - CSY-->MsiExec.exe /I{546C143E-68DC-314D-97BC-1E454E3BA429}
Microsoft .NET Framework 3.0 Service Pack 2-->MsiExec.exe /I{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}
Microsoft .NET Framework 3.5 Language Pack SP1 - csy-->MsiExec.exe /I{DD73CA82-EA82-38AA-863D-9A24A018DC96}
Microsoft .NET Framework 3.5 SP1 – jazyková sada – CSY-->c:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 Language Pack SP1 - csy\setup.exe
Microsoft .NET Framework 3.5 SP1-->C:\WINDOWS\Microsoft.NET\Framework\v3.5\Microsoft .NET Framework 3.5 SP1\setup.exe
Microsoft .NET Framework 3.5 SP1-->MsiExec.exe /I{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{A49F249F-0C91-497F-86DF-B2585E8E76B7}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022-->MsiExec.exe /X{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475}
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}
Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13}
Mozilla Firefox (3.6.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MSXML 4.0 SP2 (KB954430)-->MsiExec.exe /I{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}
MSXML 4.0 SP2 (KB973688)-->MsiExec.exe /I{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}
MSXML 4.0 SP2 Parser and SDK-->MsiExec.exe /I{716E0306-8318-4364-8B8F-0CC4E9376BAC}
Need for Speed™ Most Wanted-->C:\Program Files\EA GAMES\Need for Speed Most Wanted\EAUninstall.exe
O&O Defrag Professional-->MsiExec.exe /I{F530581E-12FE-43B4-A28D-E5257AAD63E6}
OpenAL-->"C:\Program Files\OpenAL\OalinstGridRelease.exe" /U
OpenOffice.org 2.3-->MsiExec.exe /I{519556CC-4382-4B35-80F5-DD8E9460EEAC}
Oprava Hotfix systému Windows XP (KB2158563)-->"C:\WINDOWS\$NtUninstallKB2158563$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB2443685)-->"C:\WINDOWS\$NtUninstallKB2443685$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB938759)-->"C:\WINDOWS\$NtUninstallKB938759$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB979306)-->"C:\WINDOWS\$NtUninstallKB979306$\spuninst\spuninst.exe"
Oprava Hotfix systému Windows XP (KB981793)-->"C:\WINDOWS\$NtUninstallKB981793$\spuninst\spuninst.exe"
PowerISO-->"C:\Program Files\PowerISO\uninstall.exe"
PunkBuster Services-->C:\WINDOWS\system32\pbsvc.exe -u
Realtek AC'97 Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\50\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{FB08F381-6533-4108-B7DD-039E11FBC27E}\setup.exe" -l0x5 -removeonly
REALTEK GbE & FE Ethernet PCI NIC Driver-->C:\Program Files\InstallShield Installation Information\{ACCA20B0-C4D1-4BF5-BF21-0A0EB5EF9730}\setup.exe -runfromtemp -removeonly
Sada Compatibility Pack pro systém Office 2007-->MsiExec.exe /X{90120000-0020-0405-0000-0000000FF1CE}
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {A8894F19-59C8-38D2-8A75-36C0CCE56A5B} /qb+ REBOOTPROMPT=""
Security Update for Windows Search 4 - KB963093-->"C:\WINDOWS\$NtUninstallKB963093$\spuninst\spuninst.exe"
Ski Alpin Racing 2007-->"C:\Program Files\Ski Alpin Racing 2007\setup.exe" -u
Smarty Uninstaller Pro-->"C:\Program Files\Smarty Uninstaller Pro\unins000.exe"
The KMPlayer (remove only)-->"C:\Program Files\The KMPlayer\uninstall.exe"
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)-->C:\WINDOWS\system32\msiexec.exe /package {CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9} /uninstall {B2AE9C82-DC7B-3641-BFC8-87275C4F3607} /qb+ REBOOTPROMPT=""
VIA Platforma Ovladače zařízení-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\7\INTEL3~1\IDriver.exe /M{20D4A895-748C-4D88-871C-FDB1695B0169}
Windows Internet Explorer 8-->"C:\WINDOWS\ie8\spuninst\spuninst.exe"
Windows Search 4.0-->"C:\WINDOWS\$NtUninstallKB940157$\spuninst\spuninst.exe"
WinRAR-->C:\Program Files\WinRAR\uninstall.exe
XML Paper Specification Shared Components Language Pack 1.0-->"C:\WINDOWS\$NtUninstallXPSEPSCLP$\spuninst\spuninst.exe"
XnView 1.97.4-->"C:\Program Files\XnView\unins000.exe"

======Security center information======

AV: AVG Anti-Virus Free

======System event log======

Computer Name: PC-8F5DEC7BE64B
Event Code: 7036
Message: Stav služby Služba modelu COM pro zápis na disk CD (IMAPI) byl změněn na: Spuštěno

Record Number: 10677
Source Name: Service Control Manager
Time Written: 20101118121319.000000+060
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Služba modelu COM pro zápis na disk CD (IMAPI) úspěšně odeslán.

Record Number: 10676
Source Name: Service Control Manager
Time Written: 20101118121319.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

Computer Name: PC-8F5DEC7BE64B
Event Code: 7036
Message: Stav služby Služba modelu COM pro zápis na disk CD (IMAPI) byl změněn na: Zastaveno

Record Number: 10675
Source Name: Service Control Manager
Time Written: 20101118121257.000000+060
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 7036
Message: Stav služby Služba modelu COM pro zápis na disk CD (IMAPI) byl změněn na: Spuštěno

Record Number: 10674
Source Name: Service Control Manager
Time Written: 20101118121251.000000+060
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 7035
Message: Řídící příkaz Spuštěno byl službě Služba modelu COM pro zápis na disk CD (IMAPI) úspěšně odeslán.

Record Number: 10673
Source Name: Service Control Manager
Time Written: 20101118121251.000000+060
Event Type: Informace
User: NT AUTHORITY\SYSTEM

=====Application event log=====

Computer Name: PC-8F5DEC7BE64B
Event Code: 1002
Message: Čítače výkonu služby .NET CLR Data (.NET CLR Data) jsou již v registru výkonu zaznamenány.
Není třeba je instalovat znovu.

Record Number: 2017
Source Name: LoadPerf
Time Written: 20100611223606.000000+120
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 1002
Message: Čítače výkonu služby .NET CLR Networking (.NET CLR Networking) jsou již v registru výkonu zaznamenány.
Není třeba je instalovat znovu.

Record Number: 2016
Source Name: LoadPerf
Time Written: 20100611223606.000000+120
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 1002
Message: Čítače výkonu služby .NET Data Provider for SqlServer (.NET Data Provider for SqlServer) jsou již v registru výkonu zaznamenány.
Není třeba je instalovat znovu.

Record Number: 2015
Source Name: LoadPerf
Time Written: 20100611223606.000000+120
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 1002
Message: Čítače výkonu služby .NET Data Provider for Oracle (.NET Data Provider for Oracle) jsou již v registru výkonu zaznamenány.
Není třeba je instalovat znovu.

Record Number: 2014
Source Name: LoadPerf
Time Written: 20100611223606.000000+120
Event Type: Informace
User:

Computer Name: PC-8F5DEC7BE64B
Event Code: 1019
Message: Ukončení registrace ASP.NET (verze 2.0.50727.0). Podrobné záznamy o registraci najdete v souboru C:\WINDOWS\TEMP\ASPNETSetup_00000.log.

Record Number: 2013
Source Name: ASP.NET 2.0.50727.0
Time Written: 20100611223555.000000+120
Event Type: Informace
User:

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"Path"=C:\Program Files\NVIDIA Corporation\PhysX\Common;%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Smart Projects\IsoBuster
"windir"=%SystemRoot%
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"PROCESSOR_LEVEL"=15
"PROCESSOR_IDENTIFIER"=x86 Family 15 Model 28 Stepping 0, AuthenticAMD
"PROCESSOR_REVISION"=1c00
"NUMBER_OF_PROCESSORS"=1
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP

-----------------EOF-----------------

jolobolo · #2 Příspěvek od **jolobolo** » 29 pro 2010 19:29

Odpovězte prosím, děkuji

#3 Příspěvek od **motji** » 29 pro 2010 22:07

Dobrý večer

Mám takový pocit, že tohle dělá AVG. jestli ho máte ve free verzi, vyměnte ho třeba za Avast nebo Aviru

jolobolo · #4 Příspěvek od **jolobolo** » 30 pro 2010 08:28

Odinstaloval jsem AVG, nainstaloval Aviru.
Proces System.exe už paměť nežere.
Ale při skenování mně Avira našla 4 viry.

#5 Příspěvek od **motji** » 30 pro 2010 10:05

V jakých souborech je našla?

Stahněte MBAM z mého podpisu
-Nainstalujte,dejte úplný sken

NIC NEMAZAT

-MBAM má občas falešné detekce,proto budeme mazat až po kontrole logu.
-Log zkopírujte sem.

jolobolo · #6 Příspěvek od **jolobolo** » 30 pro 2010 14:04

Avira hlásila:
C:\System Volume Information\_restore{419F4648-D7A4-4B6C-BD51-77436E2EF628}\RP87\A0017230.exe
[DETECTION] This file has been compressed using unusual runtime compression (PCK/YodaProt). Please verify the origin of this file.
[NOTE] The file was moved to the quarantine directory under the name '4e759095.qua'.
C:\System Volume Information\_restore{419F4648-D7A4-4B6C-BD51-77436E2EF628}\RP47\A0010204.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '56e2bf32.qua'.
C:\System Volume Information\_restore{419F4648-D7A4-4B6C-BD51-77436E2EF628}\RP47\A0010202.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '04bde5db.qua'.
C:\System Volume Information\_restore{419F4648-D7A4-4B6C-BD51-77436E2EF628}\RP18\A0004500.exe
[DETECTION] Is the TR/Crypt.XPACK.Gen Trojan
[NOTE] The file was moved to the quarantine directory under the name '628aaa19.qua'.

Za chvíli přidám log z MBAM

jolobolo · #7 Příspěvek od **jolobolo** » 30 pro 2010 14:16

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Verze databáze: 5417

Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

30.12.2010 14:16:10
mbam-log-2010-12-30 (14-16-06).txt

Typ kontroly: Úplný test (A:\|C:\|E:\|)
Testované objekty: 193004
Uplynulý čas: 35 minut, 48 sekund

Infikované procesy v paměti: 0
Infikované moduly v paměti: 0
Infikované klíče v registru: 0
Infikované hodnoty v registru: 0
Infikované datové položky v registru: 0
Infikované složky: 0
Infikované soubory: 2

Infikované procesy v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované moduly v paměti:
(Žádné škodlivé položky nebyly zjištěny)

Infikované klíče v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované hodnoty v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované datové položky v registru:
(Žádné škodlivé položky nebyly zjištěny)

Infikované složky:
(Žádné škodlivé položky nebyly zjištěny)

Infikované soubory:
c:\system volume information\_restore{419f4648-d7a4-4b6c-bd51-77436e2ef628}\RP77\A0015658.dll (Trojan.KillDisk) -> No action taken.
c:\WINDOWS\system32\h@tkeysh@@k.dll (Trojan.Agent) -> No action taken.

#8 Příspěvek od **motji** » 30 pro 2010 21:19

V mbamu vše smažte.
Klikněte mi do podpisu na SVI a smažte obnovu systému podle návodu

.

Co počítač?

jolobolo · #9 Příspěvek od **jolobolo** » 30 pro 2010 21:48

Hotovo.
Počítač je nějak pomalejší; mám problém, že v biosu nemůžu nastavit např. rychlost AGP - dřív to šlo; taky se mi občas stává, že PC zamrzne a objeví se modrá obrazovka, že ati2dvag přestal pracovat a počítač musím restartovat.

#10 Příspěvek od **motji** » 30 pro 2010 22:11

Přeinstalujte ovladače od grafické karty.

Spusťte combofix podle tohoto návodu
http://www.bleepingcomputer.com/combofi ... t-combofix

jolobolo · #11 Příspěvek od **jolobolo** » 30 pro 2010 22:59

Ovladače přeinstalovány.
Log z ComboFix:

ComboFix 10-12-30.01 - Uzivatel 30.12.2010 22:46:46.1.1 - x86
Systém Microsoft Windows XP Professional 5.1.2600.3.1250.420.1029.18.1534.1049 [GMT 1:00]
Spuštěný z: c:\documents and settings\Uzivatel\Plocha\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {11638345-E4FC-4BEE-BB73-EC754659C5F6}
FW: Avira FireWall *Disabled* {11638345-E4FC-4BEE-BB73-EC754659C5F6}
.

((((((((((((((((((((((((((((((((((((((( Ostatní výmazy )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\OggDSuninst.exe

.
((((((((((((((((((((((((( Soubory vytvořené od 2010-11-28 do 2010-12-30 )))))))))))))))))))))))))))))))
.

2010-12-30 21:23 . 2010-12-30 21:23 -------- d-----w- c:\program files\ATI
2010-12-30 08:19 . 2008-04-14 06:51 21504 -c--a-w- c:\windows\system32\dllcache\hidserv.dll
2010-12-30 08:19 . 2008-04-14 06:51 21504 ----a-w- c:\windows\system32\hidserv.dll
2010-12-30 07:31 . 2010-12-30 07:31 -------- d-----r- c:\documents and settings\LocalService\Dokumenty
2010-12-30 07:05 . 2010-12-30 07:05 -------- d-----r- c:\documents and settings\LocalService\Oblíbené položky
2010-12-30 06:41 . 2010-12-30 07:22 -------- d-----w- c:\windows\system32\NtmsData
2010-12-29 22:13 . 2010-12-29 22:13 -------- d-----w- c:\documents and settings\Uzivatel\Data aplikací\Avira
2010-12-29 22:11 . 2010-12-13 07:31 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2010-12-29 22:11 . 2010-12-13 07:31 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-12-29 22:11 . 2010-12-13 07:31 102856 ----a-w- c:\windows\system32\drivers\avfwot.sys
2010-12-29 22:11 . 2010-06-17 13:23 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2010-12-29 22:11 . 2010-06-17 13:23 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2010-12-29 22:11 . 2010-06-17 13:23 79432 ----a-w- c:\windows\system32\drivers\avfwim.sys
2010-12-29 22:11 . 2010-12-29 22:12 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Avira
2010-12-29 22:11 . 2010-12-29 22:11 -------- d-----w- c:\program files\Avira
2010-12-29 18:10 . 2010-12-29 18:10 -------- d-----w- c:\documents and settings\Uzivatel\Data aplikací\Malwarebytes
2010-12-29 18:09 . 2010-12-29 18:09 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Malwarebytes
2010-12-29 18:09 . 2010-12-20 17:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-12-29 18:09 . 2010-12-20 17:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-12-29 18:09 . 2010-12-29 18:09 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2010-12-29 13:10 . 2010-12-29 13:15 -------- d-----w- c:\program files\trend micro
2010-12-29 13:10 . 2010-12-29 13:11 -------- d-----w- C:\rsit
2010-12-29 07:44 . 2010-12-29 07:44 -------- d-----w- c:\documents and settings\All Users\Data aplikací\ATI
2010-12-29 07:32 . 2009-05-11 22:35 118784 ----a-w- c:\windows\system32\atibtmon.exe
2010-12-29 07:32 . 2001-11-09 16:01 24064 ----a-w- c:\windows\system32\ativcoxx.dll
2010-12-29 07:31 . 2010-12-29 07:32 -------- d-----w- c:\program files\ATI Technologies
2010-12-29 07:29 . 2010-11-26 02:18 765952 ----a-w- c:\windows\system32\ati2cqag.dll
2010-12-29 07:29 . 2010-11-26 02:54 302080 ----a-w- c:\windows\system32\ati2dvag.dll
2010-12-29 07:29 . 2010-11-26 02:39 53248 ----a-w- c:\windows\system32\drivers\ati2erec.dll
2010-12-29 07:29 . 2010-11-26 04:17 5555712 -c--a-w- c:\windows\system32\dllcache\ati2mtag.sys
2010-12-29 07:29 . 2010-11-26 04:17 5555712 ----a-w- c:\windows\system32\drivers\ati2mtag.sys
2010-12-28 17:55 . 2010-12-28 17:55 -------- d-----w- c:\windows\system32\oodag
2010-12-28 17:53 . 2010-12-28 17:53 -------- d-----w- c:\documents and settings\Uzivatel\Local Settings\Data aplikací\O&O
2010-12-28 17:52 . 2010-12-28 17:52 -------- d-----w- c:\program files\OO Software
2010-12-28 16:35 . 2010-12-29 22:10 -------- d-----w- c:\documents and settings\Uzivatel\Data aplikací\uTorrent
2010-12-28 16:17 . 1999-04-02 15:37 33792 ----a-r- c:\windows\NPSExec.exe
2010-12-28 13:56 . 2010-12-29 18:58 -------- d-----w- c:\program files\EA GAMES
2010-12-28 13:42 . 2010-12-28 16:36 -------- d-----w- c:\program files\uTorrent
2010-12-25 08:35 . 2010-12-25 08:35 -------- d-----w- c:\windows\SPEECH
2010-12-24 19:12 . 2010-12-27 18:33 -------- d-----w- c:\program files\F1 Mania 2010 Astros-Gamez
2010-12-22 14:21 . 2010-12-22 14:21 -------- d-----w- c:\program files\Lavalys
2010-12-15 16:56 . 2010-12-15 16:56 611064 ----a-w- c:\windows\system32\drivers\sptd.sys
2010-12-14 17:00 . 2008-04-13 22:15 32128 -c--a-w- c:\windows\system32\dllcache\usbccgp.sys
2010-12-14 17:00 . 2008-04-13 22:15 32128 ----a-w- c:\windows\system32\drivers\usbccgp.sys
2010-12-11 20:29 . 2008-04-28 14:53 805400 ----a-r- c:\windows\system32\tmp141.tmp
2010-12-11 20:29 . 2008-04-28 14:53 805400 ----a-r- c:\windows\system32\tmp140.tmp
2010-12-11 07:23 . 2009-03-25 13:29 130432 ----a-w- c:\windows\system32\drivers\Rtnicxp.sys
2010-12-11 07:23 . 2009-03-03 19:18 73728 ----a-w- c:\windows\system32\RtNicProp32.dll
2010-12-11 07:23 . 2010-12-11 07:23 -------- d-----w- c:\program files\Realtek
2010-12-07 17:08 . 2010-12-07 17:08 101376 ----a-w- c:\windows\system32\drivers\ACEDRV07.sys
2010-12-07 17:06 . 2010-12-07 17:16 -------- d-----w- c:\program files\Ski Alpin Racing 2007
2010-12-06 15:13 . 2010-12-06 15:13 -------- d-----w- c:\documents and settings\All Users\Data aplikací\Trymedia
2010-12-02 11:24 . 2010-12-02 11:24 -------- d-----w- c:\windows\Sun

.
(((((((((((((((((((((((((((((((((((((((( Find3M výpis ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-12-30 12:24 . 2010-03-09 10:30 737280 ----a-w- c:\windows\iun6002.exe
2010-12-29 07:39 . 2010-03-09 10:02 102400 ----a-w- c:\windows\DUMP69b6.tmp
2010-12-23 08:19 . 2010-03-09 10:02 110592 ----a-w- c:\windows\DUMP633e.tmp
2010-11-27 11:55 . 2010-11-27 11:55 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-27 11:55 . 2010-11-27 11:55 411368 ----a-w- c:\windows\system32\deployJava1.dll
2010-11-18 18:15 . 2010-03-09 09:14 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-06 00:23 . 2008-12-20 22:03 916480 ----a-w- c:\windows\system32\wininet.dll
2010-11-06 00:23 . 2009-03-07 16:25 43520 ----a-w- c:\windows\system32\licmgr10.dll
2010-11-06 00:23 . 2008-12-20 22:03 1469440 ------w- c:\windows\system32\inetcpl.cpl
2010-11-03 12:25 . 2009-03-07 16:25 385024 ----a-w- c:\windows\system32\html.iec
2010-11-02 15:17 . 2008-04-13 21:27 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:09 . 2008-04-14 05:37 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-28 11:20 . 2010-10-28 11:20 4608 ----a-w- c:\windows\system32\w95inf32.dll
2010-10-28 11:20 . 2010-10-28 11:20 2272 ----a-w- c:\windows\system32\w95inf16.dll
2010-10-27 15:36 . 2010-10-27 15:36 5632 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE3.exe
2010-10-27 15:36 . 2010-10-27 15:36 5632 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE3.exe
2010-10-27 15:36 . 2010-10-27 15:36 5632 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE.exe
2010-10-27 15:36 . 2010-10-27 15:36 5632 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE.exe
2010-10-27 15:36 . 2010-10-27 15:36 4608 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE4.exe
2010-10-27 15:36 . 2010-10-27 15:36 4608 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE4.exe
2010-10-27 15:36 . 2010-10-27 15:36 4608 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE1.exe
2010-10-27 15:36 . 2010-10-27 15:36 4608 ----a-r- c:\documents and settings\Uzivatel\Data aplikací\Microsoft\Installer\{FEF198EE-DF2E-47B3-A556-B195706E667D}\IconFEF198EE1.exe
2010-10-26 14:04 . 2009-03-08 15:30 1862272 ----a-w- c:\windows\system32\win32k.sys
.

------- Sigcheck -------

[-] 2009-09-20 . 1E603EA2A3FDBAE9E5B88A8CB3C03124 . 1571840 . . [5.1.2600.5512] . . c:\windows\system32\sfcfiles.dll
.
(((((((((((((((((((((((((((((((((( Spouštěcí body v registru )))))))))))))))))))))))))))))))))))))))))))))
.
.
*Poznámka* prázdné záznamy a legitimní výchozí údaje nejsou zobrazeny.
REGEDIT4

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SoundMan"="SOUNDMAN.EXE" [2007-04-16 577536]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-02-18 248040]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-11-25 98304]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-12-13 281768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http:" [X]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"_nltide_2"="shell32" [X]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-24 304128]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0OODBS

[HKLM\~\startupfolder\C:^Documents and Settings^All Users^Nabídka Start^Programy^Po spuštění^Windows Search.lnk]
path=c:\documents and settings\All Users\Nabídka Start\Programy\Po spuštění\Windows Search.lnk
backup=c:\windows\pss\Windows Search.lnkCommon Startup

[HKLM\~\startupfolder\C:^Documents and Settings^Uzivatel^Nabídka Start^Programy^Po spuštění^OpenOffice.org 2.3.lnk]
path=c:\documents and settings\Uzivatel\Nabídka Start\Programy\Po spuštění\OpenOffice.org 2.3.lnk
backup=c:\windows\pss\OpenOffice.org 2.3.lnkStartup

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2010-09-20 21:07 932288 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
2009-04-08 00:39 2553088 ----a-w- c:\windows\system32\oodtray.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\javaw.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=

R0 sfsync03;StarForce Protection Synchronization Driver (version 3.x);c:\windows\system32\drivers\sfsync03.sys [6.12.2005 16:11 35328]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [15.12.2010 17:56 611064]
R1 avfwot;avfwot;c:\windows\system32\drivers\avfwot.sys [29.12.2010 23:11 102856]
R2 AntiVirFirewallService;Avira FireWall;c:\program files\Avira\AntiVir Desktop\avfwsvc.exe [29.12.2010 23:11 539304]
R2 AntiVirMailService;Avira AntiVir MailGuard;c:\program files\Avira\AntiVir Desktop\avmailc.exe [29.12.2010 23:11 339624]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [29.12.2010 23:11 135336]
R2 AntiVirWebService;Avira AntiVir WebGuard;c:\program files\Avira\AntiVir Desktop\avwebgrd.exe [29.12.2010 23:11 403624]
R3 avfwim;AvFw Packet Filter Miniport;c:\windows\system32\drivers\avfwim.sys [29.12.2010 23:11 79432]
S3 GPU-Z;GPU-Z;\??\c:\docume~1\Uzivatel\LOCALS~1\Temp\GPU-Z.sys --> c:\docume~1\Uzivatel\LOCALS~1\Temp\GPU-Z.sys [?]
.
.
------- Doplňkový sken -------
.
uStart Page = hxxp://www.seznam.cz/
LSP: c:\program files\Avira\AntiVir Desktop\avsda.dll
TCP: {1D03707C-780E-4FBD-A93A-82602A84CE14} = 90.183.115.6,90.183.115.11
FF - ProfilePath - c:\documents and settings\Uzivatel\Data aplikací\Mozilla\Firefox\Profiles\m38me4lr.default\
FF - prefs.js: browser.startup.homepage - www.seznam.cz
FF - Ext: Default: {972ce4c6-7e08-4474-a285-3208198ce6fd} - c:\program files\Mozilla Firefox\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}
FF - Ext: Java Console: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA} - c:\program files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - %profile%\extensions\{20a82645-c095-46ed-80e3-08825760534b}
FF - Ext: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF - Ext: Java Quick Starter: jqs@sun.com - c:\program files\Java\jre6\lib\deploy\jqs\ff
.
- - - - NEPLATNÉ POLOŽKY ODSTRANĚNÉ Z REGISTRU - - - -

MSConfigStartUp-MSMSGS - c:\program files\Messenger\msmsgs.exe
MSConfigStartUp-Steam - c:\program files\Steam\Steam.exe
AddRemove-OggDS - c:\windows\system32\OggDSuninst.exe

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-12-30 22:52
Windows 5.1.2600 Service Pack 3 NTFS

skenování skrytých procesů ...

skenování skrytých položek 'Po spuštění' ...

skenování skrytých souborů ...

sken byl úspešně dokončen
skryté soubory: 0

**************************************************************************
.
--------------------- ZAMKNUTÉ KLÍČE V REGISTRU ---------------------

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\System*]
"OODEFRAG12.00.00.01PROFESSIONAL"="D78CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74CFEBC9E127BECC74C5D575E7D6A3B9808A2D97226D213B5558EDD5E5BE2F6E6678EDD5E5BE2F6E667BD5F4E3FD0DB6D7E975AD708401F7B04BC636A68681402CF1611E461EA605607425BD0038867649A4527BCE14AC150E8B6A7A45441FB261D8A837182D532236D6E577D4BA56C7F242400B26FF159D7F00238B4949D539D1A758218933D2D96EF1868B39F35E17596DB05732DE4FCF39FB9E4C8BAEB6A8F6F7E2CA1D97003C3781E19F3198674DE451B4F582A95F466CAFCF1366A5EC809175890F9AE84159D48606863E5AF053B5213E7600A3A3F579AEE96F35DECA879DF35B5B2FE507B0071C2C6CDC90B296DB77ACFAE834D0E510FB4809D5ED3F9B66C4C14804C710326DBAE9AA098B4A7BB4189F80A610CC4C4F77ACC74CE105DF735DA99BB2BC7A933C4913EEBBE0DFD4F12FE4A5D83F97F047CEE935B22E52BD9039F2662C576A3ABBADA00E7B9BADB381C9B9E375DDB0B4895C259DA61DDECDDF3DD0F94D8E6D8782300216D9CA6A7E72BA5C54B76BCE8AA11AD1C1EA7BF60E67D5D9C973644E368B378597A8B7CF8B359E682F0696B4DAB91EACA75271EF8BD646B0E55427E94ABF842D03142AE1BD897AC8CA065F7A22F0CB9CAD422CA5D1045D49258F74BEDD852DD26588FF11073ACC78CFA2FB9877B4A5A715471DBE76C0D70CE5362A129E775CEEA57D4408B072F1024449BCB4C3D6A160E2F82ADA6C8FD13DD1B24BDB037E71EA6BD09D677798EDCE560180AF582DE355F46D3DFDD7B31994B27F220A4080659D13DB6B5ED16090ED65C2299BF406B88199C7B5481C311E31816160D577F8011DAACF9A14189340374E64F5D16CC2CE1E2D9A033BD405AD53AA86D8B51285AD8A4840725766778A2AC5144021AE20D97D8CB7FE6707521D599C168694D6DEACA8463248DC4A51456E2943EF422A351848CDFE81FAC4BCCD093EC0DB53CA15F03C38A2B6A199F168BEDCA8B67B7918C07802C414FB98F97B5F9D574C4407B362122E00A919312E3B5183290D11894AB01AC6700AD10F10F78104D4CAEB012444AD0EF449D0AA1374722AEC3EA35F6E9DB7D6CB2355F0798919148D4501B6430A7F4646E6A83529B3CBCC6AFB334E85B00D3BDF7A58AC6E8FA29DFE4C93DD2F5E52A1234183D90F2129125746DEDFDE25C837D0503A60F0B34F8D0E3FD8A2466357DED538D27A9704A3998451FF02EBCE3D2F3A113809DDDC215FBD0152C01244B70121EF2E64F9DE8C494E911FED2740E7F0DABE1949815AD87673B7CFA76A7DEF93CF9375599D77A36B03D528CAC6ED339D8113E170937004DB94A648976BC2E044E6288FC02CF0A0426AE3543DF5E34240BD73BEC591EC9D641B54119D503F9EC4E665E9F670A2B9A54C05002"
"OODEFRAG11.00.00.01WORKSTATION"="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"
.
--------------------- Knihovny navázané na běžící procesy ---------------------

- - - - - - - > 'winlogon.exe'(1168)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\atiadlxx.dll

- - - - - - - > 'lsass.exe'(1224)
c:\program files\Avira\AntiVir Desktop\avsda.dll
.
Celkový čas: 2010-12-30 22:54:34
ComboFix-quarantined-files.txt 2010-12-30 21:54

Před spuštěním: Volných bajtů: 120 054 890 496
Po spuštění: Volných bajtů: 120 111 058 944

WindowsXP-KB310994-SP2-Pro-BootDisk-CSY.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect

- - End Of File - - 3F6933B572D9D0B7BCA126759A4630A1

#12 Příspěvek od **motji** » 31 pro 2010 09:51

Otestujte na www.virustotal.com
c:\windows\NPSExec.exe

jolobolo · #13 Příspěvek od **jolobolo** » 31 pro 2010 16:28

File name:
NPSExec.exe
Submission date:
2010-12-31 15:26:16 (UTC)
Current status:
queued (#3080) queued analysing finished
Result:
0/ 43 (0.0%)

#14 Příspěvek od **motji** » 31 pro 2010 16:37

Jak je na tom počítač?

jolobolo · #15 Příspěvek od **jolobolo** » 31 pro 2010 17:12

Při práci na ploše nebo na internetu je to v pohodě, ale ve hrách se asi každých 5 sekund snižuje FPS, hra se pak strašně trhá. V biosu stále nejde nastavit rychlost AGP (je na 8x - nejde měnit, dřív to šlo), v NFS Mos Wanted nejde zapnout Antialiasing - dřív to šlo. Při startu počítače, když se objeví Plocha, tak asi 4x probliknou ikony.

Od včerejška se mi zatím modrá obrazovka, že přestal pracovat ati2dvag nezobrazila.

VIRY.CZ

Prosím o kontrolu logu

Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu

Re: Prosím o kontrolu logu