========== Files/Folders - Created Within 30 Days ==========
[2011/02/05 12:32:57 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Users\Paťo\Desktop\OTL.exe
[2011/02/05 12:27:06 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Roaming\Nero
[2011/02/05 10:33:54 | 000,000,000 | ---D | C] -- C:\Windows\TEMP
[2011/02/05 10:30:09 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2011/02/05 10:30:05 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Local\temp
[2011/02/05 10:14:59 | 000,000,000 | ---D | C] -- C:\ComboFix
[2011/02/05 10:14:01 | 000,212,480 | ---- | C] (SteelWerX) -- C:\Windows\SWXCACLS.exe
[2011/02/04 23:03:59 | 000,000,000 | ---D | C] -- C:\Users\Paťo\Desktop\Vykoupení z věznice Shawshank
[2011/02/04 15:31:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Kaspersky Lab
[2011/02/04 15:30:02 | 000,311,312 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\4425226.sys
[2011/02/04 15:30:02 | 000,128,016 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\44252261.sys
[2011/02/04 15:30:02 | 000,037,392 | ---- | C] (Kaspersky Lab) -- C:\Windows\System32\drivers\44252262.sys
[2011/02/04 15:30:01 | 000,000,000 | ---D | C] -- C:\Program Files\Virus Removal Tool
[2011/02/03 20:59:45 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Roaming\Malwarebytes
[2011/02/03 20:59:41 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamswissarmy.sys
[2011/02/03 20:59:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/02/03 20:59:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2011/02/03 20:59:36 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2011/02/03 20:59:36 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2011/02/03 18:01:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
[2011/02/03 18:01:33 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Counter-Strike 1.6
[2011/02/03 17:58:20 | 000,000,000 | ---D | C] -- C:\Program Files\Counter-Strike 1.6
[2011/02/01 17:38:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2011/02/01 17:38:34 | 000,240,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2011/01/31 22:05:26 | 000,161,792 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2011/01/31 22:05:26 | 000,031,232 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2011/01/31 22:05:25 | 000,136,704 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2011/01/31 22:05:21 | 000,000,000 | ---D | C] -- C:\Windows\ERDNT
[2011/01/31 22:04:59 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/01/31 21:50:57 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2011/01/31 13:15:25 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro
[2011/01/31 13:15:25 | 000,000,000 | ---D | C] -- C:\rsit
[2011/01/31 11:29:28 | 015,047,272 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011/01/31 11:29:28 | 013,011,560 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011/01/31 11:29:28 | 010,467,656 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011/01/31 11:29:28 | 004,941,928 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011/01/31 11:29:28 | 002,895,976 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011/01/31 11:29:28 | 002,251,368 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011/01/31 11:29:28 | 000,941,160 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322090.dll
[2011/01/31 11:29:28 | 000,837,736 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322040.dll
[2011/01/31 11:29:28 | 000,057,960 | ---- | C] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011/01/31 11:29:28 | 000,010,920 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011/01/31 01:07:05 | 000,000,000 | ---D | C] -- C:\Program Files\SystemRequirementsLab
[2011/01/30 20:50:09 | 000,000,000 | ---D | C] -- C:\Users\Paťo\Documents\Downloads
[2011/01/30 15:11:20 | 000,000,000 | ---D | C] -- C:\ProgramData\SUPERAntiSpyware.com
[2011/01/30 12:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Yamicsoft
[2011/01/30 12:23:29 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 Manager
[2011/01/24 22:26:06 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Local\BuildAGadget Content
[2011/01/24 21:35:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\FinalWire
[2011/01/24 21:35:29 | 000,000,000 | ---D | C] -- C:\Program Files\FinalWire
[2011/01/23 17:18:53 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TopCD
[2011/01/23 17:17:18 | 000,000,000 | ---D | C] -- C:\Program Files\FlatOut2
[2011/01/11 22:30:24 | 000,573,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll
[2011/01/11 22:30:22 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll
[2011/01/11 22:30:22 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll
[2011/01/11 22:30:21 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll
[2011/01/11 22:30:20 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2011/01/11 22:30:20 | 000,801,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll
[2011/01/11 22:30:20 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll
[2011/01/11 22:30:19 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL
[2011/01/11 22:30:19 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll
[2011/01/11 22:30:19 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll
[2011/01/11 22:30:18 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll
[2011/01/11 22:30:18 | 000,211,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys
[2011/01/11 22:30:18 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll
[2011/01/11 22:30:18 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll
[2011/01/11 22:30:18 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2011/01/11 22:30:17 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll
[2011/01/09 08:45:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games for Windows Marketplace
[2011/01/08 23:16:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Grand Theft Auto IV - Episodes From Liberty City
[2011/01/08 18:45:21 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\Sports Interactive
[2011/01/07 23:42:42 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Roaming\VitySoft
[2011/01/07 22:19:21 | 000,327,168 | ---- | C] (InstallShield Software Corporation) -- C:\Windows\IsUninst.exe
[2011/01/07 22:18:36 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Sports Interactive
[2011/01/07 22:16:11 | 000,000,000 | ---D | C] -- C:\Program Files\Sports Interactive
[2011/01/07 21:06:44 | 000,580,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\easyUpdatusAPIU.dll
[2011/01/07 21:06:34 | 003,597,416 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2011/01/07 21:06:14 | 002,620,520 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2011/01/07 21:06:02 | 000,111,208 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
[2011/01/07 02:44:14 | 000,000,000 | ---D | C] -- C:\Users\Paťo\AppData\Local\LogMeIn Hamachi
[2011/01/07 02:43:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2011/01/07 02:43:34 | 000,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2010/10/16 17:12:44 | 001,232,896 | ---- | C] ( ) -- C:\Windows\System32\lxddserv.dll
[2010/10/16 17:12:44 | 000,999,424 | ---- | C] ( ) -- C:\Windows\System32\lxddusb1.dll
[2010/10/16 17:12:44 | 000,643,072 | ---- | C] ( ) -- C:\Windows\System32\lxddpmui.dll
[2010/10/16 17:12:44 | 000,585,728 | ---- | C] ( ) -- C:\Windows\System32\lxddlmpm.dll
[2010/10/16 17:12:44 | 000,413,696 | ---- | C] ( ) -- C:\Windows\System32\lxddinpa.dll
[2010/10/16 17:12:44 | 000,397,312 | ---- | C] ( ) -- C:\Windows\System32\lxddiesc.dll
[2010/10/16 17:12:44 | 000,323,584 | ---- | C] ( ) -- C:\Windows\System32\LXDDhcp.dll
[2010/10/16 17:12:44 | 000,163,840 | ---- | C] ( ) -- C:\Windows\System32\lxddprox.dll
[2010/10/16 17:12:44 | 000,094,208 | ---- | C] ( ) -- C:\Windows\System32\lxddpplc.dll
[2010/10/16 17:12:43 | 000,700,416 | ---- | C] ( ) -- C:\Windows\System32\lxddhbn3.dll
[2010/10/16 17:12:43 | 000,684,032 | ---- | C] ( ) -- C:\Windows\System32\lxddcomc.dll
[2010/10/16 17:12:43 | 000,425,984 | ---- | C] ( ) -- C:\Windows\System32\lxddcomm.dll
========== Files - Modified Within 30 Days ==========
[2011/02/05 12:33:07 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Users\Paťo\Desktop\OTL.exe
[2011/02/05 12:27:32 | 000,000,113 | ---- | M] () -- C:\Windows\NeroDigital.ini
[2011/02/05 12:18:32 | 000,621,994 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/02/05 12:18:32 | 000,111,082 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/02/05 12:18:00 | 000,000,996 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011/02/05 12:16:26 | 005,785,600 | ---- | M] () -- C:\Users\Paťo\Desktop\Gerry Rafferty - Baker Street.mp3
[2011/02/05 12:09:17 | 000,248,367 | ---- | M] () -- C:\Qoobox.rar
[2011/02/05 12:05:26 | 000,000,992 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011/02/05 10:27:59 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2011/02/05 10:25:43 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/02/05 10:25:43 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/02/05 10:16:59 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011/02/05 10:16:57 | 2012,717,056 | -HS- | M] () -- C:\hiberfil.sys
[2011/02/05 10:16:56 | 000,430,209 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2011/02/04 22:57:51 | 737,011,712 | ---- | M] () -- C:\Users\Paťo\Desktop\Mlceni jehnatek.avi
[2011/02/04 15:31:57 | 000,002,461 | ---- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_04.02.2011_08-53.lnk
[2011/02/03 20:59:41 | 000,001,031 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/02/03 18:01:36 | 000,000,994 | ---- | M] () -- C:\Users\Paťo\Desktop\Counter-Strike 1.6.lnk
[2011/02/03 13:52:54 | 004,263,406 | R--- | M] () -- C:\Users\Paťo\Desktop\ComboFix.exe
[2011/02/02 17:18:31 | 3554,057,131 | ---- | M] () -- C:\Users\Paťo\Desktop\HUDBA.rar
[2011/02/02 16:26:03 | 039,627,172 | ---- | M] () -- C:\Users\Paťo\Desktop\ZALOHOVAT.rar
[2011/02/01 17:39:45 | 000,002,154 | ---- | M] () -- C:\Windows\epplauncher.mif
[2011/01/23 14:50:25 | 000,004,608 | ---- | M] () -- C:\Users\Paťo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/01/19 21:22:06 | 000,000,896 | ---- | M] () -- C:\Users\Paťo\AppData\Local\SRDownloader.nast
[2011/01/19 18:45:18 | 000,004,896 | ---- | M] () -- C:\Users\Paťo\AppData\Local\SRDownloader.err
[2011/01/08 04:27:00 | 015,047,272 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvoglv32.dll
[2011/01/08 04:27:00 | 013,011,560 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcompiler.dll
[2011/01/08 04:27:00 | 010,467,656 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys
[2011/01/08 04:27:00 | 010,078,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll
[2011/01/08 04:27:00 | 005,653,096 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvwgf2um.dll
[2011/01/08 04:27:00 | 004,941,928 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuda.dll
[2011/01/08 04:27:00 | 002,895,976 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvid.dll
[2011/01/08 04:27:00 | 002,251,368 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcuvenc.dll
[2011/01/08 04:27:00 | 001,965,672 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll
[2011/01/08 04:27:00 | 000,941,160 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvdispco322090.dll
[2011/01/08 04:27:00 | 000,837,736 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvgenco322040.dll
[2011/01/08 04:27:00 | 000,057,960 | ---- | M] (Khronos Group) -- C:\Windows\System32\OpenCL.dll
[2011/01/08 04:27:00 | 000,010,920 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvBridge.kmd
[2011/01/08 04:27:00 | 000,004,756 | ---- | M] () -- C:\Windows\System32\nvinfo.pb
[2011/01/07 22:51:37 | 000,103,959 | -H-- | M] () -- C:\treeinfo.wc
[2011/01/07 21:06:44 | 000,580,200 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\easyUpdatusAPIU.dll
[2011/01/07 21:06:34 | 003,597,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.dll
[2011/01/07 21:06:14 | 002,620,520 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvsvc.dll
[2011/01/07 21:06:02 | 000,111,208 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll
========== Files Created - No Company Name ==========
[2011/02/05 12:27:05 | 000,000,113 | ---- | C] () -- C:\Windows\NeroDigital.ini
[2011/02/05 12:16:11 | 005,785,600 | ---- | C] () -- C:\Users\Paťo\Desktop\Gerry Rafferty - Baker Street.mp3
[2011/02/05 12:09:16 | 000,248,367 | ---- | C] () -- C:\Qoobox.rar
[2011/02/04 22:54:49 | 734,040,063 | ---- | C] () -- C:\Users\Paťo\Desktop\Na kridlech vazky.avi
[2011/02/04 22:51:43 | 737,011,712 | ---- | C] () -- C:\Users\Paťo\Desktop\Mlceni jehnatek.avi
[2011/02/04 15:31:57 | 000,002,461 | ---- | C] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\setup_9.0.0.722_04.02.2011_08-53.lnk
[2011/02/03 20:59:41 | 000,001,031 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes' Anti-Malware.lnk
[2011/02/03 18:01:36 | 000,000,994 | ---- | C] () -- C:\Users\Paťo\Desktop\Counter-Strike 1.6.lnk
[2011/02/02 16:24:46 | 3554,057,131 | ---- | C] () -- C:\Users\Paťo\Desktop\HUDBA.rar
[2011/02/02 16:24:46 | 039,627,172 | ---- | C] () -- C:\Users\Paťo\Desktop\ZALOHOVAT.rar
[2011/02/01 17:39:45 | 000,002,154 | ---- | C] () -- C:\Windows\epplauncher.mif
[2011/02/01 17:38:44 | 000,001,857 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2011/01/31 22:05:26 | 000,256,512 | ---- | C] () -- C:\Windows\PEV.exe
[2011/01/31 22:05:26 | 000,089,088 | ---- | C] () -- C:\Windows\MBR.exe
[2011/01/31 22:05:25 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2011/01/31 22:05:25 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2011/01/31 22:05:25 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2011/01/31 22:03:25 | 004,263,406 | R--- | C] () -- C:\Users\Paťo\Desktop\ComboFix.exe
[2011/01/09 08:45:01 | 000,001,298 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live ID.lnk
[2011/01/02 23:23:59 | 000,004,896 | ---- | C] () -- C:\Users\Paťo\AppData\Local\SRDownloader.err
[2011/01/02 23:23:55 | 000,000,896 | ---- | C] () -- C:\Users\Paťo\AppData\Local\SRDownloader.nast
[2010/12/05 13:44:34 | 000,004,608 | ---- | C] () -- C:\Users\Paťo\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/11/15 16:54:18 | 000,000,321 | ---- | C] () -- C:\Windows\System32\Remover.ini
[2010/11/15 16:54:17 | 000,000,566 | ---- | C] () -- C:\Windows\System32\SP7302.ini
[2010/11/10 15:03:04 | 000,000,175 | ---- | C] () -- C:\Windows\System32\MRT.INI
[2010/10/29 11:54:20 | 000,000,319 | ---- | C] () -- C:\Windows\game.ini
[2010/10/22 22:36:08 | 000,000,042 | ---- | C] () -- C:\Windows\oodjobd.INI
[2010/10/16 17:15:48 | 000,000,867 | ---- | C] () -- C:\ProgramData\lxdd
[2010/10/16 17:12:44 | 000,286,720 | ---- | C] () -- C:\Windows\System32\LXDDinst.dll
[2010/10/16 17:12:43 | 000,208,896 | ---- | C] () -- C:\Windows\System32\lxddgrd.dll
[2010/10/16 12:54:09 | 000,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2010/10/14 01:36:44 | 000,179,263 | ---- | C] () -- C:\Windows\System32\xlive.dll.cat
[2010/09/28 20:44:48 | 001,196,032 | ---- | C] () -- C:\Program Files\Game CD Key List 3.90.exe
[2010/04/06 17:33:10 | 000,025,864 | ---- | C] () -- C:\Windows\System32\drivers\btnetBus.sys
[2009/07/14 00:51:43 | 000,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009/07/14 00:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2007/03/28 13:16:44 | 000,344,064 | ---- | C] () -- C:\Windows\System32\lxddcoin.dll
[2007/01/23 18:40:04 | 000,065,536 | ---- | C] () -- C:\Windows\System32\lxddcaps.dll
[2007/01/09 16:13:08 | 000,692,224 | ---- | C] () -- C:\Windows\System32\lxdddrs.dll
[2006/10/06 16:08:04 | 000,069,632 | ---- | C] () -- C:\Windows\System32\lxddcnv4.dll
[2006/05/18 01:47:12 | 000,040,960 | ---- | C] () -- C:\Windows\System32\lxddvs.dll
[2002/10/15 23:54:04 | 000,153,088 | ---- | C] () -- C:\Windows\System32\unrar.dll
========== LOP Check ==========
[2011/01/07 11:30:50 | 000,000,000 | ---D | M] -- C:\Users\eL_Lucho\AppData\Roaming\AIMP
[2010/10/16 11:38:10 | 000,000,000 | ---D | M] -- C:\Users\eL_Lucho\AppData\Roaming\ESET
[2011/01/24 17:34:28 | 000,000,000 | ---D | M] -- C:\Users\eL_Lucho\AppData\Roaming\GetRightToGo
[2011/01/07 11:27:23 | 000,000,000 | ---D | M] -- C:\Users\eL_Lucho\AppData\Roaming\HandBrake
[2010/10/29 13:01:19 | 000,000,000 | ---D | M] -- C:\Users\eL_Lucho\AppData\Roaming\PC Suite
[2010/11/02 12:00:02 | 000,000,000 | ---D | M] -- C:\Users\eL_Lucho\AppData\Roaming\TuneUp Software
[2011/02/05 12:17:11 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\AIMP
[2010/10/16 14:38:39 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Ashampoo
[2010/12/29 09:29:42 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Audacity
[2010/10/16 13:40:32 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\DAEMON Tools Lite
[2010/10/16 11:31:48 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\ESET
[2010/10/16 15:14:21 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\GHISLER
[2011/01/05 12:59:52 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\HandBrake
[2011/01/29 01:37:13 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\ICQ
[2010/10/16 15:55:50 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Leadertech
[2010/10/29 11:33:23 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\PC Suite
[2010/10/16 15:45:31 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\PhotoFiltre Studio X
[2010/12/30 23:44:08 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Publish Providers
[2010/11/28 19:52:45 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Screaming Bee
[2010/12/30 23:44:05 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Sony
[2010/11/01 22:51:10 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\TuneUp Software
[2011/02/04 23:44:48 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\uTorrent
[2011/01/07 23:42:42 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\VitySoft
[2010/11/18 15:55:52 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\VSO
[2010/10/16 11:58:44 | 000,000,000 | ---D | M] -- C:\Users\Zorka\AppData\Roaming\ESET
[2010/10/29 13:15:49 | 000,000,000 | ---D | M] -- C:\Users\Zorka\AppData\Roaming\PC Suite
[2011/01/08 10:24:50 | 000,032,554 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
========== Purity Check ==========
========== Custom Scans ==========
< HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run /s >
"Sidebar" = C:\Program Files\Windows Sidebar\sidebar.exe /autoRun -- [2009/07/14 02:14:38 | 001,173,504 | ---- | M] (Microsoft Corporation)
< c:\windows\*.* /U >
< %SYSTEMDRIVE%\*.exe >
< %ALLUSERSPROFILE%\Application Data\*. >
< %ALLUSERSPROFILE%\Application Data\*.exe /s >
< %APPDATA%\*. >
[2010/11/21 16:02:59 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Adobe
[2010/11/03 22:21:17 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Ahead
[2011/02/05 12:17:11 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\AIMP
[2010/10/16 14:38:39 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Ashampoo
[2010/12/29 09:29:42 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Audacity
[2010/10/16 13:40:32 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\DAEMON Tools Lite
[2010/10/16 11:31:48 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\ESET
[2010/10/16 15:14:21 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\GHISLER
[2010/10/22 15:48:18 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Hamachi
[2011/01/05 12:59:52 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\HandBrake
[2011/01/29 01:37:13 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\ICQ
[2010/10/16 15:45:27 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Identities
[2010/10/16 15:55:50 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Leadertech
[2010/10/16 10:33:41 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Macromedia
[2011/02/03 20:59:45 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Malwarebytes
[2009/07/14 08:48:45 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Media Center Programs
[2011/02/01 17:37:32 | 000,000,000 | --SD | M] -- C:\Users\Paťo\AppData\Roaming\Microsoft
[2010/10/16 13:21:17 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Mozilla
[2011/02/05 12:27:06 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Nero
[2010/10/29 11:33:23 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\PC Suite
[2010/10/16 15:45:31 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\PhotoFiltre Studio X
[2010/12/30 23:44:08 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Publish Providers
[2010/11/28 19:52:45 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Screaming Bee
[2011/02/02 23:23:40 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Skype
[2011/02/02 16:23:54 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\skypePM
[2010/12/30 23:44:05 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Sony
[2010/11/01 22:51:10 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\TuneUp Software
[2011/02/04 23:44:48 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\uTorrent
[2011/01/07 23:42:42 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\VitySoft
[2010/11/18 15:55:52 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\VSO
[2011/01/31 11:53:54 | 000,000,000 | ---D | M] -- C:\Users\Paťo\AppData\Roaming\Winamp
< %APPDATA%\*.exe /s >
[2011/01/07 22:18:36 | 000,007,886 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{EC0AB585-B279-4A77-8BB5-64C403E43EE7}\ARPPRODUCTICON.exe
[2011/01/07 22:18:36 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{EC0AB585-B279-4A77-8BB5-64C403E43EE7}\editor_EC0AB585B2794A778BB564C403E43EE7.exe
[2011/01/07 22:18:36 | 000,049,152 | R--- | M] (InstallShield Software Corp.) -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{EC0AB585-B279-4A77-8BB5-64C403E43EE7}\fm2005segatest1_EC0AB585B2794A778BB564C403E43EE7.exe
[2011/01/07 22:18:36 | 000,007,886 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{EC0AB585-B279-4A77-8BB5-64C403E43EE7}\fm2005segatest_EC0AB585B2794A778BB564C403E43EE7.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\ClickCleaner.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\ContextMenuManager.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\DesktopCleaner.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\DiskAnalyzer.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\DuplicateFilesFinder.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\FileSecurity.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\FileSplitter.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\FreeMemory.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\IEManager.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\IPSwitcher.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\JumpListQuickLauncher.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\JunkFileCleaner.exe
[2011/01/30 12:23:32 | 000,005,430 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\LiveUpdate.exe
[2011/01/30 12:23:32 | 000,013,262 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\OptimizationWizard.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\PrivacyProtector.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\ProcessManager.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\RegistryCleaner.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\RegistryDefrag.exe
[2011/01/30 12:23:32 | 000,304,886 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\RegistryTools.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\RepairCenter.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\RunShortcutCreator.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\ServiceManager.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\SmartUninstaller.exe
[2011/01/30 12:23:32 | 000,015,086 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\StartupManager.exe
[2011/01/30 12:23:32 | 000,082,726 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\SuperCopy.exe
[2011/01/30 12:23:32 | 000,014,534 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\SystemFolder_msiexec.exe
[2011/01/30 12:23:32 | 000,007,886 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\SystemInfo.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\TaskSchedulerManager.exe
[2011/01/30 12:23:32 | 000,017,542 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\VisualCustomizer.exe
[2011/01/30 12:23:32 | 000,092,560 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\Windows7Manager.exe
[2011/01/30 12:23:32 | 000,013,262 | R--- | M] () -- C:\Users\Paťo\AppData\Roaming\Microsoft\Installer\{F6E271A7-B642-4CCD-A501-5F8374E9C3CB}\WinUtilities.exe
< MD5 for: AGP440.SYS >
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\ERDNT\cache\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\drivers\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\AGP440.sys
[2009/07/14 02:26:15 | 000,053,312 | ---- | M] (Microsoft Corporation) MD5=507812C3054C21CEF746B6EE3D04DD6E -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\AGP440.sys
< MD5 for: ATAPI.SYS >
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\ERDNT\cache\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\drivers\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_x86_neutral_f64b9c35a3a5be81\atapi.sys
[2009/07/14 02:26:15 | 000,021,584 | ---- | M] (Microsoft Corporation) MD5=338C86357871C167A96AB976519BF59E -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.1.7600.16385_none_dd0e7e3d82dd640d\atapi.sys
< MD5 for: CDROM.SYS >
[2009/07/14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\drivers\cdrom.sys
[2009/07/14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_x86_neutral_db87d184bc84f910\cdrom.sys
[2009/07/14 00:11:26 | 000,108,544 | ---- | M] (Microsoft Corporation) MD5=BA6E70AA0E6091BC39DE29477D866A77 -- C:\Windows\winsxs\x86_cdrom.inf_31bf3856ad364e35_6.1.7600.16385_none_5f7fb206051affbb\cdrom.sys
< MD5 for: CNGAUDIT.DLL >
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\ERDNT\cache\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\System32\cngaudit.dll
[2009/07/14 02:15:06 | 000,012,288 | ---- | M] (Microsoft Corporation) MD5=50BA656134F78AF64E4DD3C8B6FEFD7E -- C:\Windows\winsxs\x86_microsoft-windows-cngaudit-dll_31bf3856ad364e35_6.1.7600.16385_none_e83a414890e8132b\cngaudit.dll
< MD5 for: CRYPTSVC.DLL >
[2009/07/14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\ERDNT\cache\cryptsvc.dll
[2009/07/14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\System32\cryptsvc.dll
[2009/07/14 02:15:07 | 000,135,680 | ---- | M] (Microsoft Corporation) MD5=9C231178CE4FB385F4B54B0A9080B8A4 -- C:\Windows\winsxs\x86_microsoft-windows-cryptsvc-dll_31bf3856ad364e35_6.1.7600.16385_none_75d5ef87fc22e35a\cryptsvc.dll
< MD5 for: EXPLORER.EXE >
[2009/07/14 02:14:20 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=15BC38A7492BEFE831966ADB477CF76F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\ERDNT\cache\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\explorer.exe
[2009/10/31 06:45:39 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=2626FC9755BE22F805D3CFA0CE3EE727 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2009/08/03 06:49:47 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=9FF6C4C91A3711C0A3B18F87B08B518D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2009/08/03 06:35:50 | 002,613,248 | ---- | M] (Microsoft Corporation) MD5=B95EEB0F4E5EFBF1038A35B3351CF047 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2009/10/31 07:00:51 | 002,614,272 | ---- | M] (Microsoft Corporation) MD5=C76153C7ECA00FA852BB0C193378F917 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
< MD5 for: HAL.DLL >
[2009/07/14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\System32\hal.dll
[2009/07/14 02:20:28 | 000,194,640 | ---- | M] (Microsoft Corporation) MD5=9A557EAE64ABAB3BA67A9BB035D24CB9 -- C:\Windows\winsxs\x86_microsoft-windows-hal_31bf3856ad364e35_6.1.7600.16385_none_aaff48c7bafdccc6\hal.dll
< MD5 for: IASTORV.SYS >
[2009/07/14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\drivers\iaStorV.sys
[2009/07/14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\System32\DriverStore\FileRepository\iastorv.inf_x86_neutral_18cccb83b34e1453\iaStorV.sys
[2009/07/14 02:20:36 | 000,332,352 | ---- | M] (Intel Corporation) MD5=934AF4D7C5F457B9F0743F4299B77B67 -- C:\Windows\winsxs\x86_iastorv.inf_31bf3856ad364e35_6.1.7600.16385_none_aee7a89be91b9000\iaStorV.sys
< MD5 for: ISAPNP.SYS >
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\drivers\isapnp.sys
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_x86_neutral_65848c2d7375a720\isapnp.sys
[2009/07/14 02:20:36 | 000,046,656 | ---- | M] (Microsoft Corporation) MD5=1F32BB6B38F62F7DF1A7AB7292638A35 -- C:\Windows\winsxs\x86_machine.inf_31bf3856ad364e35_6.1.7600.16385_none_b9e9435f20046eeb\isapnp.sys
< MD5 for: LSASS.EXE >
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\ERDNT\cache\lsass.exe
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\System32\lsass.exe
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16385_none_a620e0e5be1ecda7\lsass.exe
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.16484_none_a61fe281be1fb177\lsass.exe
[2009/07/14 02:14:23 | 000,022,528 | ---- | M] (Microsoft Corporation) MD5=F42309C4191C506B71DB5D1126D26318 -- C:\Windows\winsxs\x86_microsoft-windows-lsa_31bf3856ad364e35_6.1.7600.20594_none_a69eaf60d7456d32\lsass.exe
< MD5 for: NDIS.SYS >
[2009/07/14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\ERDNT\cache\ndis.sys
[2009/07/14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\System32\drivers\ndis.sys
[2009/07/14 02:20:44 | 000,710,720 | ---- | M] (Microsoft Corporation) MD5=23759D175A0A9BAAF04D05047BC135A8 -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.1.7600.16385_none_a79d81ea7d62a289\ndis.sys
< MD5 for: NETLOGON.DLL >
[2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\ERDNT\cache\netlogon.dll
[2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\System32\netlogon.dll
[2009/07/14 02:16:02 | 000,563,712 | ---- | M] (Microsoft Corporation) MD5=EAA75D9000B71F10EEC04D2AE6C60E81 -- C:\Windows\winsxs\x86_microsoft-windows-security-netlogon_31bf3856ad364e35_6.1.7600.16385_none_fd8e0d66994d7dc8\netlogon.dll
< MD5 for: NVRAID.SYS >
[2009/07/14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\drivers\nvraid.sys
[2009/07/14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvraid.sys
[2009/07/14 02:20:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) MD5=3F3D04B1D08D43C16EA7963954EC768D -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvraid.sys
< MD5 for: NVSTOR.SYS >
[2009/07/14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\drivers\nvstor.sys
[2009/07/14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\System32\DriverStore\FileRepository\nvraid.inf_x86_neutral_5bde3fe2945bce9e\nvstor.sys
[2009/07/14 02:20:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) MD5=C99F251A5DE63C6F129CF71933ACED0F -- C:\Windows\winsxs\x86_nvraid.inf_31bf3856ad364e35_6.1.7600.16385_none_39b1194b205239d8\nvstor.sys
< MD5 for: SCECLI.DLL >
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\ERDNT\cache\scecli.dll
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\System32\scecli.dll
[2009/07/14 02:16:13 | 000,175,616 | ---- | M] (Microsoft Corporation) MD5=26073302DAEA83CC5B944C546D6B47D2 -- C:\Windows\winsxs\x86_microsoft-windows-s..urationengineclient_31bf3856ad364e35_6.1.7600.16385_none_37e4387f3a6f0483\scecli.dll
< MD5 for: SMSS.EXE >
[2009/07/14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\System32\smss.exe
[2009/07/14 02:14:39 | 000,069,632 | ---- | M] (Microsoft Corporation) MD5=16742790895960690237A5143CEDEC8B -- C:\Windows\winsxs\x86_microsoft-windows-smss_31bf3856ad364e35_6.1.7600.16385_none_ac10fe207a85352b\smss.exe
< MD5 for: SVCHOST.EXE >
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\ERDNT\cache\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 02:14:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe
< MD5 for: TCPIP.SYS >
[2009/07/14 02:19:10 | 001,285,712 | ---- | M] (Microsoft Corporation) MD5=2CC3D75488ABD3EC628BBB9A4FC84EFC -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16385_none_b2f46875c7b9d667\tcpip.sys
[2010/04/09 08:16:33 | 001,289,096 | ---- | M] (Microsoft Corporation) MD5=5D6A83E928F22AF5AC9868B162FFAD0D -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20687_none_b38009a0e0d5a32d\tcpip.sys
[2010/04/09 08:24:54 | 001,285,000 | ---- | M] (Microsoft Corporation) MD5=63170B9EE1D0EF0032F0408605671D1A -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16569_none_b30e0d41c7a5fe2f\tcpip.sys
[2010/06/14 07:06:58 | 001,288,576 | ---- | M] (Microsoft Corporation) MD5=A39EA325C081AD27461F630C8E3E56E0 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.20733_none_b3b219fae0b0af43\tcpip.sys
[2010/06/14 07:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\ERDNT\cache\tcpip.sys
[2010/06/14 07:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\System32\drivers\tcpip.sys
[2010/06/14 07:12:30 | 001,286,016 | ---- | M] (Microsoft Corporation) MD5=BB7F39C31C4A4417FD318E7CD184E225 -- C:\Windows\winsxs\x86_microsoft-windows-tcpip-binaries_31bf3856ad364e35_6.1.7600.16610_none_b33b1c29c7858b92\tcpip.sys
< MD5 for: USERINIT.EXE >
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\ERDNT\cache\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\System32\userinit.exe
[2009/07/14 02:14:43 | 000,026,112 | ---- | M] (Microsoft Corporation) MD5=6DE80F60D7DE9CE6B8C2DDFDF79EF175 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7600.16385_none_dbff103933038d7c\userinit.exe
< MD5 for: WINLOGON.EXE >
[2009/10/28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\ERDNT\cache\winlogon.exe
[2009/10/28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\System32\winlogon.exe
[2009/10/28 07:17:59 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=37CDB7E72EB66BA85A87CBE37E7F03FD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2009/10/28 06:52:08 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=3BABE6767C78FBF5FB8435FEED187F30 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2009/07/14 02:14:45 | 000,285,696 | ---- | M] (Microsoft Corporation) MD5=8EC6A4AB12B8F3759E21F8E3A388F2CF -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
< MD5 for: WS2_32.DLL >
[2009/07/14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\ERDNT\cache\ws2_32.dll
[2009/07/14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\System32\ws2_32.dll
[2009/07/14 02:16:20 | 000,206,336 | ---- | M] (Microsoft Corporation) MD5=DAAE8A9B8C0ACC7F858454132553C30D -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-ws232_31bf3856ad364e35_6.1.7600.16385_none_f28e06e62fa99b35\ws2_32.dll
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
[2010/10/24 21:25:38 | 000,043,392 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\Windows\System32\drivers\MpNWMon.sys
[2010/10/16 12:54:09 | 000,691,696 | ---- | M] () Unable to obtain MD5 -- C:\Windows\System32\drivers\sptd.sys
< %systemroot%\System32\config\*.sav >
< %systemroot%\system32\*.dll /lockedfiles >
< reg query "HKLM\Software\Microsoft\Windows NT\CurrentVersion\winlogon" /v GinaDLL /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\wuauserv" /v ImagePath /c >
No captured output from command...
< reg query "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\BITS" /v ImagePath /c >
No captured output from command...
< %systemroot%\system32\drivers\*.sys /3 >
< %systemroot%\system32\*.* /3 >
[2011/02/05 10:25:43 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011/02/05 10:25:43 | 000,014,224 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011/02/05 10:16:56 | 000,430,209 | ---- | M] () -- C:\Windows\System32\oodbs.lor
[2011/02/05 12:18:32 | 000,111,082 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2011/02/05 12:18:32 | 000,621,994 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2011/02/05 12:18:32 | 000,738,000 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
========== Files - Unicode (All) ==========
[2011/01/31 18:06:02 | 010,541,705 | ---- | M] ()(C:\Users\Paťo\Desktop\Dj Next - ??? ???? _ SuMMeR HiT (2010).mp4) -- C:\Users\Paťo\Desktop\Dj Next - Хит Лета _ SuMMeR HiT (2010).mp4
[2011/01/31 18:02:49 | 010,541,705 | ---- | C] ()(C:\Users\Paťo\Desktop\Dj Next - ??? ???? _ SuMMeR HiT (2010).mp4) -- C:\Users\Paťo\Desktop\Dj Next - Хит Лета _ SuMMeR HiT (2010).mp4
< End of report >
Odvirování PC, zrychlení počítače, vzdálená pomoc prostřednictvím služby neslape.cz
Olmarik.ZC
Moderátor: Moderátoři
Pravidla fóra
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Pokud chcete pomoc, vložte log z FRST [návod zde] nebo RSIT [návod zde]
Jednotlivé thready budou po vyřešení uzamčeny. Stejně tak ty, které budou nečinné déle než 14 dní. Vizte Pravidlo o zamykání témat. Děkujeme za pochopení.
!NOVINKA!
Nově lze využívat služby vzdálené pomoci, kdy se k vašemu počítači připojí odborník a bližší informace o problému si od vás získá telefonicky! Více na www.neslape.cz
Re: Olmarik.ZC
Otestuj na www.virustotal.com
C:\Windows\System32\drivers\MpNWMon.sys
Prosím tě dej mi ten odkaz na leteckou poštu znovu, já si ho omylem smazala
C:\Windows\System32\drivers\MpNWMon.sys
Prosím tě dej mi ten odkaz na leteckou poštu znovu, já si ho omylem smazala
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
15tomasp15
- Návštěvník
- Příspěvky: 37
- Registrován: 07 dub 2009 06:21
Re: Olmarik.ZC
Kód: Vybrat vše
http://leteckaposta.cz/432810709
123Kód: Vybrat vše
http://www.virustotal.com/file-scan/report.html?id=663146c14dd49d346a2ba7bc403162e5f6cf99119555fedb62c0cfc2a553bea4-1296943756
...Re: Olmarik.ZC
Promin, musím od počítače, budu tu zítra večer.
Jinak jak to vypadá s počítačem?
Jinak jak to vypadá s počítačem?
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
15tomasp15
- Návštěvník
- Příspěvky: 37
- Registrován: 07 dub 2009 06:21
Re: Olmarik.ZC
V pohode
No, ako som už predtým písal že ja som predtým ani nevedel že tu niečo je
čo sa týka tých zamrznutí tak to vírusom nebolo/neni; detailnejšie som sa na to pozrel, a denníku systému windows a vždy 2-3 sekundy pred tým zamrznutím tam blbla jedna služba, tak som ju vypal a som zvedavý či sa to ešte sekne
No, ako som už predtým písal že ja som predtým ani nevedel že tu niečo je
čo sa týka tých zamrznutí tak to vírusom nebolo/neni; detailnejšie som sa na to pozrel, a denníku systému windows a vždy 2-3 sekundy pred tým zamrznutím tam blbla jedna služba, tak som ju vypal a som zvedavý či sa to ešte sekne Re: Olmarik.ZC
Sice je to divné, ale ty soubory v karanténě combofixu vůbec nebyly. Bud je vracíš do systému , nebo má combofix nějakou paranoiu 
. V otl taky nic není.
Prosím Tě udělej ještě tohle
Stahněte ASWMBR http://public.avast.com/~gmerek/aswMBR.exe na plochu
- otevřte program dvojklikem na ikonu
-klikněte na volbu scan
-program provede krátký sken Mbr, pak klikněte na volbu save log
-program zavřete a log mi zkopírujete zde
, nebo má combofix nějakou paranoiu . V otl taky nic není.Prosím Tě udělej ještě tohle
Stahněte ASWMBR http://public.avast.com/~gmerek/aswMBR.exe na plochu- otevřte program dvojklikem na ikonu
-klikněte na volbu scan
-program provede krátký sken Mbr, pak klikněte na volbu save log
-program zavřete a log mi zkopírujete zde
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
15tomasp15
- Návštěvník
- Příspěvky: 37
- Registrován: 07 dub 2009 06:21
Re: Olmarik.ZC
no keď som sa pozeral tak tie súbory ani neexistovali(ani zložka Roaming neexistuje )aswMBR version 0.9.1 Copyright(c) 2011 avast! Software
Run date: 2011-02-06 18:50:11
-----------------------------
19:50:11.537 OS Version: Windows 6.1.7600
19:50:11.537 Number of processors: 2 586 0x4B02
19:50:11.539 ComputerName: PATO-PC UserName: Paťo
19:50:12.828 Initialize success
19:50:27.828 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T1L0-4
19:50:27.828 Disk 0 Vendor: WDC_WD1001FALS-00J7B0 05.00K05 Size: 953869MB BusType: 3
19:50:27.833 Disk 0 MBR read successfully
19:50:27.834 Disk 0 scanning MBR
19:50:27.840 Disk 0 scanning sectors +1953509376
19:50:27.868 Disk 0 scanning C:\Windows\system32\drivers
19:50:30.009 Scan finished successfully
okrem txt súboru z logom sa vytvoril aj nejaký súbor .dat - mám uploadnuť aj ten?
Re: Olmarik.ZC
Ne, můžeš log i soubor dat smazat.
Odinstalujte combofix přes Start - Spustit
- zkopírujte do okénka:
ComboFix /Uninstall
-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.
***********
Stáhněte T-Cleaner
http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir
***********
Z mého podpisu stahněte Ccleaner
- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru
záložka čistič
- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner
záložka Registry
- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy ok zavřít
Záložka Nástroje
- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.
Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.
***********
Stahněte OTC a použijte
http://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech
***********
Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?
Odinstalujte combofix přes Start - Spustit- zkopírujte do okénka:
ComboFix /Uninstall
-stiskněte Enter
-To odinstaluje ComboFix a smaže s ním související soubory a složky.
***********
Stáhněte T-Cleaner http://vyosek.ic.cz/pro_usery/T-Cleaner.exe
-Spusťte,pro potvrzení volby mačkejte klávesu A, Enter
-po použití prográmek vymažte.Pozor,antiviry ho mohou falešně označit za vir
***********
Z mého podpisu stahněte Ccleaner- nainstalujte, při výběru, co se má nainstalovat, dejte pryč fajfku u instalace yahoo toolbaru
záložka čistič- nechejte v levém sloupečku zatrhnuté vše jak je, klikněte na analyzovat
- po analýze klikněte na Spustit Ccleaner
záložka Registry- klikněte na hledej problémy
- pak klikněte na opravit vybrané problémy -- udělat zálohu registrů - nemusíte
- kliknete opravit všechny problémy
ok zavřít Záložka Nástroje- zde můžete odinstalovat programy. Je to důkladnější odinstalace než u přidat/odebrat programy ve Windows.
Ccleaner - čistič doporučuji používat, krásně pročistí pc od dočasných souborů.
Registry pročistí třeba po odinstalaci nějakého programu.
***********
Stahněte OTC a použijtehttp://oldtimer.geekstogo.com/OTC.exe
-vyčistí tempy a po použitých programech
***********
Vložte nový log ze RSIT a řekněte co počítač, jak se chová, už je vše v pořádku?Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
15tomasp15
- Návštěvník
- Příspěvky: 37
- Registrován: 07 dub 2009 06:21
Re: Olmarik.ZC
ComboFix som odinštaloval ešte včera
T-Cleaner som použil
CCleaner používam pravidelne
OTC som použil
No počítač sa chová dobre on bol taký aj predtým len ten ESET mi vyhadzoval toho olmarika, ale ten už je zmazaný(MSE); ešte som sa chcel opýtať či OTL nejak neresetoval sieťové nastavenia, lebo sa mi vrátil problém ktorý som kedysi mal, že po zapnutí PC a prihlásení musím čakať asi minútu dokedy sa mi načíta sieť - už mi to kedysi robilo a vyriešil to reinstall ovládača na sieťovú kartu, tak to zajtra spravím znova, len som chcel vedieť či OLT niečo resetoval lebo začalo to robiť po jeho použití
log z RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Paťo at 2011-02-06 22:37:26
Microsoft Windows 7 Ultimate
System drive C: has 79 GB (38%) free of 206 GB
Total RAM: 2559 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:37:50, on 6. 2. 2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Paťo\Desktop\RSIT.exe
C:\Program Files\trend micro\Paťo.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Startup: _uninst_setup_9.0.0.722_04.02.2011_08-53.exe.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - http://content.systemrequirementslab.co ... 4.16.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: lxdd_device - - C:\Windows\system32\lxddcoms.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
--
End of file - 4548 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 501400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.2\ICQ.exe [2011-01-05 133432]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-12-06 1910152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddamon]
C:\Program Files\Lexmark 2500 Series\lxddamon.exe [2009-04-27 25256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddmon.exe]
C:\Program Files\Lexmark 2500 Series\lxddmon.exe [2009-04-27 291496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe [2010-09-30 2773320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe [2007-03-14 83608]
C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
_uninst_setup_9.0.0.722_04.02.2011_08-53.exe.lnk - C:\Users\Paťo\AppData\Local\temp\_uninst_setup_9.0.0.722_04.02.2011_08-53.exe.bat
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-02-06 22:37:26 ----D---- C:\rsit
2011-02-05 12:27:06 ----D---- C:\Users\Paťo\AppData\Roaming\Nero
2011-02-05 12:27:05 ----A---- C:\Windows\NeroDigital.ini
2011-02-05 10:33:54 ----D---- C:\Windows\TEMP
2011-02-05 10:30:09 ----SHD---- C:\$RECYCLE.BIN
2011-02-04 15:31:58 ----D---- C:\ProgramData\Kaspersky Lab
2011-02-04 15:30:01 ----D---- C:\Program Files\Virus Removal Tool
2011-02-03 20:59:45 ----D---- C:\Users\Paťo\AppData\Roaming\Malwarebytes
2011-02-03 20:59:41 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-02-03 20:59:40 ----D---- C:\ProgramData\Malwarebytes
2011-02-03 20:59:36 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-02-03 20:59:36 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-02-03 17:58:20 ----D---- C:\Program Files\Counter-Strike 1.6
2011-02-01 17:38:41 ----D---- C:\Program Files\Microsoft Security Client
2011-02-01 17:38:34 ----A---- C:\Windows\system32\drivers\netio.sys
2011-01-31 21:50:57 ----D---- C:\Windows\pss
2011-01-31 13:15:25 ----D---- C:\Program Files\trend micro
2011-01-31 11:29:28 ----A---- C:\Windows\system32\OpenCL.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvoglv32.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvgenco322040.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvdispco322090.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcuvid.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcuda.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcompiler.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-01-31 01:07:05 ----D---- C:\Program Files\SystemRequirementsLab
2011-01-30 15:11:20 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2011-01-30 12:23:29 ----D---- C:\Program Files\Yamicsoft
2011-01-24 21:35:29 ----D---- C:\Program Files\FinalWire
2011-01-23 17:17:18 ----D---- C:\Program Files\FlatOut2
2011-01-11 22:30:24 ----A---- C:\Windows\system32\odbc32.dll
2011-01-11 22:30:22 ----A---- C:\Windows\system32\d3d10warp.dll
2011-01-11 22:30:22 ----A---- C:\Windows\system32\d2d1.dll
2011-01-11 22:30:21 ----A---- C:\Windows\system32\DWrite.dll
2011-01-11 22:30:20 ----A---- C:\Windows\system32\XpsPrint.dll
2011-01-11 22:30:20 ----A---- C:\Windows\system32\mf.dll
2011-01-11 22:30:20 ----A---- C:\Windows\system32\FntCache.dll
2011-01-11 22:30:19 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-01-11 22:30:19 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-01-11 22:30:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-01-11 22:30:19 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-01-11 22:30:18 ----A---- C:\Windows\system32\cdd.dll
2011-01-11 22:30:17 ----A---- C:\Windows\system32\d3d10_1.dll
2011-01-07 23:42:42 ----D---- C:\Users\Paťo\AppData\Roaming\VitySoft
2011-01-07 22:19:21 ----A---- C:\Windows\IsUninst.exe
2011-01-07 22:16:11 ----D---- C:\Program Files\Sports Interactive
2011-01-07 21:06:44 ----A---- C:\Windows\system32\easyUpdatusAPIU.dll
2011-01-07 21:06:34 ----A---- C:\Windows\system32\nvcpl.dll
2011-01-07 21:06:14 ----A---- C:\Windows\system32\nvsvc.dll
2011-01-07 21:06:02 ----A---- C:\Windows\system32\nvvsvc.exe
2011-01-07 21:06:02 ----A---- C:\Windows\system32\nvmctray.dll
2011-01-07 02:43:34 ----D---- C:\Program Files\LogMeIn Hamachi
======List of files/folders modified in the last 1 months======
2011-02-06 22:37:48 ----D---- C:\Windows\Prefetch
2011-02-06 22:35:03 ----D---- C:\Windows\system32\config
2011-02-06 22:34:53 ----D---- C:\ProgramData\NVIDIA
2011-02-06 22:33:41 ----D---- C:\Windows\system32\drivers
2011-02-06 22:32:41 ----D---- C:\Windows
2011-02-06 22:30:17 ----D---- C:\Users\Paťo\AppData\Roaming\Winamp
2011-02-06 22:27:49 ----D---- C:\Users\Paťo\AppData\Roaming\uTorrent
2011-02-06 18:48:31 ----D---- C:\Users\Paťo\AppData\Roaming\AIMP
2011-02-06 18:45:27 ----A---- C:\Windows\win.ini
2011-02-06 14:11:31 ----D---- C:\Users\Paťo\AppData\Roaming\ICQ
2011-02-06 10:58:09 ----SHD---- C:\System Volume Information
2011-02-05 23:56:50 ----SHD---- C:\Windows\Installer
2011-02-05 23:56:42 ----AD---- C:\Program Files
2011-02-05 23:46:56 ----D---- C:\Windows\system32\catroot2
2011-02-05 23:46:04 ----RSD---- C:\Windows\assembly
2011-02-05 19:21:03 ----D---- C:\Windows\system32\NDF
2011-02-05 12:18:32 ----D---- C:\Windows\System32
2011-02-05 12:18:32 ----D---- C:\Windows\inf
2011-02-05 12:18:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-05 10:28:08 ----A---- C:\Windows\system.ini
2011-02-05 10:27:59 ----D---- C:\Windows\system32\drivers\etc
2011-02-05 10:24:34 ----D---- C:\Windows\AppPatch
2011-02-05 10:24:32 ----D---- C:\Program Files\Common Files
2011-02-04 15:31:58 ----HD---- C:\ProgramData
2011-02-02 23:23:40 ----D---- C:\Users\Paťo\AppData\Roaming\Skype
2011-02-02 16:23:54 ----D---- C:\Users\Paťo\AppData\Roaming\skypePM
2011-02-02 07:31:43 ----D---- C:\Program Files\Lx_cats
2011-02-01 18:02:23 ----D---- C:\Windows\winsxs
2011-02-01 17:38:52 ----D---- C:\Windows\system32\catroot
2011-02-01 17:38:50 ----SD---- C:\ProgramData\Microsoft
2011-02-01 17:38:17 ----D---- C:\Windows\SoftwareDistribution
2011-02-01 17:37:32 ----SD---- C:\Users\Paťo\AppData\Roaming\Microsoft
2011-01-31 22:17:31 ----RD---- C:\Users
2011-01-31 21:54:12 ----D---- C:\Program Files\ESET
2011-01-31 11:30:20 ----D---- C:\Program Files\NVIDIA Corporation
2011-01-31 11:29:39 ----D---- C:\Windows\system32\DriverStore
2011-01-31 10:38:17 ----D---- C:\Program Files\Czech Soccer Manager 2002 FE
2011-01-31 01:07:03 ----D---- C:\Windows\Downloaded Program Files
2011-01-30 16:43:22 ----D---- C:\Windows\debug
2011-01-21 06:56:22 ----D---- C:\Windows\system32\oodag
2011-01-17 19:42:00 ----D---- C:\Windows\system32\Tasks
2011-01-11 22:34:15 ----A---- C:\Windows\system32\MRT.exe
2011-01-11 22:34:02 ----D---- C:\ProgramData\Microsoft Help
2011-01-09 08:45:12 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2011-01-09 08:45:01 ----D---- C:\Program Files\Common Files\microsoft shared
2011-01-08 23:50:47 ----D---- C:\Program Files\Activision
2011-01-08 21:35:23 ----D---- C:\Program Files\Rockstar Games
2011-01-08 04:27:00 ----A---- C:\Windows\system32\nvwgf2um.dll
2011-01-08 04:27:00 ----A---- C:\Windows\system32\nvd3dum.dll
2011-01-08 04:27:00 ----A---- C:\Windows\system32\nvapi.dll
2011-01-07 19:57:17 ----D---- C:\Program Files\ICQ7.2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2010-04-06 20104]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-10-16 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 MpKslcfea32f2;MpKslcfea32f2; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E935C7D2-4760-4965-A0B3-64301F17CA6C}\MpKslcfea32f2.sys [2011-02-06 28752]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 nvmpu401;Service for NVIDIA(R) nForce(TM) MIDI UART; C:\Windows\system32\drivers\nvmpu401.sys [2005-04-13 10240]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
S1 MpKsl6ec3c61b;MpKsl6ec3c61b; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKsl6ec3c61b.sys []
S1 MpKsl7ee1a270;MpKsl7ee1a270; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKsl7ee1a270.sys []
S1 MpKslc063c7ee;MpKslc063c7ee; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKslc063c7ee.sys []
S1 MpKsld148ac02;MpKsld148ac02; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKsld148ac02.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 aq6dsrqi;aq6dsrqi; C:\Windows\system32\drivers\aq6dsrqi.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys []
S3 BTCOM;Bluetooth Serial port driver; C:\Windows\system32\DRIVERS\btcomport.sys []
S3 BTCOMBUS;Bluetooth Serial Port Bus Service; C:\Windows\System32\Drivers\btcombus.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys []
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2010-04-06 25864]
S3 CFcatchme;CFcatchme; \??\C:\Users\PAO~1\AppData\Local\Temp\CFcatchme.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2008-01-19 20992]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2010-04-06 23048]
S3 PAC7302;PC Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-11-08 458752]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s116bus;Sony Ericsson Device 116 driver (WDM); C:\Windows\system32\DRIVERS\s116bus.sys [2007-04-03 83336]
S3 s116nd5;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (NDIS); C:\Windows\system32\DRIVERS\s116nd5.sys [2007-04-03 23176]
S3 s116obex;Sony Ericsson Device 116 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s116obex.sys [2007-04-03 98696]
S3 s116unic;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (WDM); C:\Windows\system32\DRIVERS\s116unic.sys [2007-04-03 99080]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\Windows\system32\drivers\ScreamingBAudio.sys [2009-11-26 34384]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-12-06 1238408]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 lxdd_device;lxdd_device; C:\Windows\system32\lxddcoms.exe [2007-05-25 537520]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-01-07 608872]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2010-09-30 2397512]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-01-05 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-09-08 575488]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-16 1343400]
S4 lxddCATSCustConnectService;lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [2007-05-25 99248]
-----------------EOF-----------------
Ďakujem
T-Cleaner som použil
CCleaner používam pravidelne
OTC som použil
No počítač sa chová dobre
on bol taký aj predtým len ten ESET mi vyhadzoval toho olmarika, ale ten už je zmazaný(MSE); ešte som sa chcel opýtať či OTL nejak neresetoval sieťové nastavenia, lebo sa mi vrátil problém ktorý som kedysi mal, že po zapnutí PC a prihlásení musím čakať asi minútu dokedy sa mi načíta sieť - už mi to kedysi robilo a vyriešil to reinstall ovládača na sieťovú kartu, tak to zajtra spravím znova, len som chcel vedieť či OLT niečo resetoval lebo začalo to robiť po jeho použitílog z RSIT:
Logfile of random's system information tool 1.08 (written by random/random)
Run by Paťo at 2011-02-06 22:37:26
Microsoft Windows 7 Ultimate
System drive C: has 79 GB (38%) free of 206 GB
Total RAM: 2559 MB (71% free)
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 22:37:50, on 6. 2. 2011
Platform: Windows 7 (WinNT 6.00.3504)
MSIE: Internet Explorer v8.00 (8.00.7600.16700)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Users\Paťo\Desktop\RSIT.exe
C:\Program Files\trend micro\Paťo.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
R3 - URLSearchHook: (no name) - - (no file)
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll
O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: URLRedirectionBHO - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL
O4 - HKLM\..\Run: [MSC] "C:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - Startup: _uninst_setup_9.0.0.722_04.02.2011_08-53.exe.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office14\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_01\bin\npjpi160_01.dll
O9 - Extra button: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O9 - Extra 'Tools' menuitem: ICQ7.2 - {72EFBFE4-C74F-4187-AEFD-73EA3BE968D6} - C:\Program Files\ICQ7.2\ICQ.exe
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} (System Requirements Lab) - http://www.nvidia.com/content/DriverDow ... ab_nvd.cab
O16 - DPF: {74DBCB52-F298-4110-951D-AD2FF67BC8AB} (NVIDIA Smart Scan) - http://www.nvidia.com/content/DriverDow ... rtScan.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/f ... wflash.cab
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - http://content.systemrequirementslab.co ... 4.16.0.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O18 - Filter hijack: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE14\MSOXMLMF.DLL
O23 - Service: Služba Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: LogMeIn Hamachi 2.0 Tunneling Engine (Hamachi2Svc) - LogMeIn Inc. - C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
O23 - Service: lxdd_device - - C:\Windows\system32\lxddcoms.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NVIDIA Display Driver Service (nvsvc) - NVIDIA Corporation - C:\Windows\system32\nvvsvc.exe
O23 - Service: O&O Defrag Agent (OODefragAgent) - O&O Software GmbH - C:\Program Files\OO Software\Defrag\oodag.exe
O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe
--
End of file - 4548 bytes
======Scheduled tasks folder======
C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_01\bin\ssv.dll [2007-03-14 501400]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live ID Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18 403840]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B4F3A835-0E21-4959-BA22-42B3008E02FF}]
Office Document Cache Handler - C:\PROGRA~1\MICROS~2\Office14\URLREDIR.DLL [2010-02-28 561552]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"MSC"=C:\Program Files\Microsoft Security Client\msseces.exe [2010-11-30 997408]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2009-07-14 1173504]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BCSSync]
C:\Program Files\Microsoft Office\Office14\BCSSync.exe [2010-03-13 91520]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ICQ]
C:\Program Files\ICQ7.2\ICQ.exe [2011-01-05 133432]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [2010-12-06 1910152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddamon]
C:\Program Files\Lexmark 2500 Series\lxddamon.exe [2009-04-27 25256]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\lxddmon.exe]
C:\Program Files\Lexmark 2500 Series\lxddmon.exe [2009-04-27 291496]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OODefragTray]
C:\Program Files\OO Software\Defrag\oodtray.exe [2010-09-30 2773320]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PAC7302_Monitor]
C:\Windows\PixArt\PAC7302\Monitor.exe [2006-11-03 319488]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.6.0_01\bin\jusched.exe [2007-03-14 83608]
C:\Users\Paťo\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
_uninst_setup_9.0.0.722_04.02.2011_08-53.exe.lnk - C:\Users\Paťo\AppData\Local\temp\_uninst_setup_9.0.0.722_04.02.2011_08-53.exe.bat
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - C:\Windows\system32\webcheck.dll [2009-07-14 229376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"= []
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"=credssp.dll
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AFD]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Hamachi2Svc]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\MsMpSvc]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"ConsentPromptBehaviorAdmin"=0
"ConsentPromptBehaviorUser"=3
"EnableLUA"=0
"EnableUIADesktopToggle"=0
"PromptOnSecureDesktop"=0
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
======File associations======
.js - edit - C:\Windows\System32\Notepad.exe %1
======List of files/folders created in the last 1 months======
2011-02-06 22:37:26 ----D---- C:\rsit
2011-02-05 12:27:06 ----D---- C:\Users\Paťo\AppData\Roaming\Nero
2011-02-05 12:27:05 ----A---- C:\Windows\NeroDigital.ini
2011-02-05 10:33:54 ----D---- C:\Windows\TEMP
2011-02-05 10:30:09 ----SHD---- C:\$RECYCLE.BIN
2011-02-04 15:31:58 ----D---- C:\ProgramData\Kaspersky Lab
2011-02-04 15:30:01 ----D---- C:\Program Files\Virus Removal Tool
2011-02-03 20:59:45 ----D---- C:\Users\Paťo\AppData\Roaming\Malwarebytes
2011-02-03 20:59:41 ----A---- C:\Windows\system32\drivers\mbamswissarmy.sys
2011-02-03 20:59:40 ----D---- C:\ProgramData\Malwarebytes
2011-02-03 20:59:36 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2011-02-03 20:59:36 ----A---- C:\Windows\system32\drivers\mbam.sys
2011-02-03 17:58:20 ----D---- C:\Program Files\Counter-Strike 1.6
2011-02-01 17:38:41 ----D---- C:\Program Files\Microsoft Security Client
2011-02-01 17:38:34 ----A---- C:\Windows\system32\drivers\netio.sys
2011-01-31 21:50:57 ----D---- C:\Windows\pss
2011-01-31 13:15:25 ----D---- C:\Program Files\trend micro
2011-01-31 11:29:28 ----A---- C:\Windows\system32\OpenCL.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvoglv32.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvgenco322040.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvdispco322090.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcuvid.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcuvenc.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcuda.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\nvcompiler.dll
2011-01-31 11:29:28 ----A---- C:\Windows\system32\drivers\nvlddmkm.sys
2011-01-31 01:07:05 ----D---- C:\Program Files\SystemRequirementsLab
2011-01-30 15:11:20 ----D---- C:\ProgramData\SUPERAntiSpyware.com
2011-01-30 12:23:29 ----D---- C:\Program Files\Yamicsoft
2011-01-24 21:35:29 ----D---- C:\Program Files\FinalWire
2011-01-23 17:17:18 ----D---- C:\Program Files\FlatOut2
2011-01-11 22:30:24 ----A---- C:\Windows\system32\odbc32.dll
2011-01-11 22:30:22 ----A---- C:\Windows\system32\d3d10warp.dll
2011-01-11 22:30:22 ----A---- C:\Windows\system32\d2d1.dll
2011-01-11 22:30:21 ----A---- C:\Windows\system32\DWrite.dll
2011-01-11 22:30:20 ----A---- C:\Windows\system32\XpsPrint.dll
2011-01-11 22:30:20 ----A---- C:\Windows\system32\mf.dll
2011-01-11 22:30:20 ----A---- C:\Windows\system32\FntCache.dll
2011-01-11 22:30:19 ----A---- C:\Windows\system32\XpsGdiConverter.dll
2011-01-11 22:30:19 ----A---- C:\Windows\system32\WMVDECOD.DLL
2011-01-11 22:30:19 ----A---- C:\Windows\system32\drivers\dxgkrnl.sys
2011-01-11 22:30:19 ----A---- C:\Windows\system32\d3d10_1core.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\XpsRasterService.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\mfreadwrite.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\ExplorerFrame.dll
2011-01-11 22:30:18 ----A---- C:\Windows\system32\drivers\dxgmms1.sys
2011-01-11 22:30:18 ----A---- C:\Windows\system32\cdd.dll
2011-01-11 22:30:17 ----A---- C:\Windows\system32\d3d10_1.dll
2011-01-07 23:42:42 ----D---- C:\Users\Paťo\AppData\Roaming\VitySoft
2011-01-07 22:19:21 ----A---- C:\Windows\IsUninst.exe
2011-01-07 22:16:11 ----D---- C:\Program Files\Sports Interactive
2011-01-07 21:06:44 ----A---- C:\Windows\system32\easyUpdatusAPIU.dll
2011-01-07 21:06:34 ----A---- C:\Windows\system32\nvcpl.dll
2011-01-07 21:06:14 ----A---- C:\Windows\system32\nvsvc.dll
2011-01-07 21:06:02 ----A---- C:\Windows\system32\nvvsvc.exe
2011-01-07 21:06:02 ----A---- C:\Windows\system32\nvmctray.dll
2011-01-07 02:43:34 ----D---- C:\Program Files\LogMeIn Hamachi
======List of files/folders modified in the last 1 months======
2011-02-06 22:37:48 ----D---- C:\Windows\Prefetch
2011-02-06 22:35:03 ----D---- C:\Windows\system32\config
2011-02-06 22:34:53 ----D---- C:\ProgramData\NVIDIA
2011-02-06 22:33:41 ----D---- C:\Windows\system32\drivers
2011-02-06 22:32:41 ----D---- C:\Windows
2011-02-06 22:30:17 ----D---- C:\Users\Paťo\AppData\Roaming\Winamp
2011-02-06 22:27:49 ----D---- C:\Users\Paťo\AppData\Roaming\uTorrent
2011-02-06 18:48:31 ----D---- C:\Users\Paťo\AppData\Roaming\AIMP
2011-02-06 18:45:27 ----A---- C:\Windows\win.ini
2011-02-06 14:11:31 ----D---- C:\Users\Paťo\AppData\Roaming\ICQ
2011-02-06 10:58:09 ----SHD---- C:\System Volume Information
2011-02-05 23:56:50 ----SHD---- C:\Windows\Installer
2011-02-05 23:56:42 ----AD---- C:\Program Files
2011-02-05 23:46:56 ----D---- C:\Windows\system32\catroot2
2011-02-05 23:46:04 ----RSD---- C:\Windows\assembly
2011-02-05 19:21:03 ----D---- C:\Windows\system32\NDF
2011-02-05 12:18:32 ----D---- C:\Windows\System32
2011-02-05 12:18:32 ----D---- C:\Windows\inf
2011-02-05 12:18:32 ----A---- C:\Windows\system32\PerfStringBackup.INI
2011-02-05 10:28:08 ----A---- C:\Windows\system.ini
2011-02-05 10:27:59 ----D---- C:\Windows\system32\drivers\etc
2011-02-05 10:24:34 ----D---- C:\Windows\AppPatch
2011-02-05 10:24:32 ----D---- C:\Program Files\Common Files
2011-02-04 15:31:58 ----HD---- C:\ProgramData
2011-02-02 23:23:40 ----D---- C:\Users\Paťo\AppData\Roaming\Skype
2011-02-02 16:23:54 ----D---- C:\Users\Paťo\AppData\Roaming\skypePM
2011-02-02 07:31:43 ----D---- C:\Program Files\Lx_cats
2011-02-01 18:02:23 ----D---- C:\Windows\winsxs
2011-02-01 17:38:52 ----D---- C:\Windows\system32\catroot
2011-02-01 17:38:50 ----SD---- C:\ProgramData\Microsoft
2011-02-01 17:38:17 ----D---- C:\Windows\SoftwareDistribution
2011-02-01 17:37:32 ----SD---- C:\Users\Paťo\AppData\Roaming\Microsoft
2011-01-31 22:17:31 ----RD---- C:\Users
2011-01-31 21:54:12 ----D---- C:\Program Files\ESET
2011-01-31 11:30:20 ----D---- C:\Program Files\NVIDIA Corporation
2011-01-31 11:29:39 ----D---- C:\Windows\system32\DriverStore
2011-01-31 10:38:17 ----D---- C:\Program Files\Czech Soccer Manager 2002 FE
2011-01-31 01:07:03 ----D---- C:\Windows\Downloaded Program Files
2011-01-30 16:43:22 ----D---- C:\Windows\debug
2011-01-21 06:56:22 ----D---- C:\Windows\system32\oodag
2011-01-17 19:42:00 ----D---- C:\Windows\system32\Tasks
2011-01-11 22:34:15 ----A---- C:\Windows\system32\MRT.exe
2011-01-11 22:34:02 ----D---- C:\ProgramData\Microsoft Help
2011-01-09 08:45:12 ----D---- C:\Program Files\Microsoft Games for Windows - LIVE
2011-01-09 08:45:01 ----D---- C:\Program Files\Common Files\microsoft shared
2011-01-08 23:50:47 ----D---- C:\Program Files\Activision
2011-01-08 21:35:23 ----D---- C:\Program Files\Rockstar Games
2011-01-08 04:27:00 ----A---- C:\Windows\system32\nvwgf2um.dll
2011-01-08 04:27:00 ----A---- C:\Windows\system32\nvd3dum.dll
2011-01-08 04:27:00 ----A---- C:\Windows\system32\nvapi.dll
2011-01-07 19:57:17 ----D---- C:\Program Files\ICQ7.2
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R0 BtHidBus;Bluetooth HID Bus Service; C:\Windows\System32\Drivers\BtHidBus.sys [2010-04-06 20104]
R0 pciide;pciide; C:\Windows\system32\DRIVERS\pciide.sys [2009-07-14 12368]
R0 rdyboost;ReadyBoost; C:\Windows\System32\drivers\rdyboost.sys [2009-07-14 173648]
R0 sptd;sptd; C:\Windows\System32\Drivers\sptd.sys [2010-10-16 691696]
R1 CSC;@%systemroot%\system32\cscsvc.dll,-202; C:\Windows\system32\drivers\csc.sys [2009-07-14 387584]
R1 MpFilter;Microsoft Malware Protection Driver; C:\Windows\system32\DRIVERS\MpFilter.sys [2010-10-24 165264]
R1 MpKslcfea32f2;MpKslcfea32f2; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E935C7D2-4760-4965-A0B3-64301F17CA6C}\MpKslcfea32f2.sys [2011-02-06 28752]
R2 eamonm;eamonm; C:\Windows\system32\DRIVERS\eamonm.sys [2010-07-29 136632]
R2 irda;IrDA Protocol; C:\Windows\system32\DRIVERS\irda.sys [2009-07-14 96768]
R2 Parvdm;Parvdm; C:\Windows\system32\DRIVERS\parvdm.sys [2009-07-14 8704]
R3 MpNWMon;Microsoft Malware Protection Network Driver; C:\Windows\system32\DRIVERS\MpNWMon.sys [2010-10-24 43392]
R3 NisDrv;Microsoft Network Inspection System; C:\Windows\system32\DRIVERS\NisDrvWFP.sys [2010-10-24 54144]
R3 nvmpu401;Service for NVIDIA(R) nForce(TM) MIDI UART; C:\Windows\system32\drivers\nvmpu401.sys [2005-04-13 10240]
R3 RTL8167;Realtek 8167 NT Driver; C:\Windows\system32\DRIVERS\Rt86win7.sys [2009-03-01 139776]
S1 MpKsl6ec3c61b;MpKsl6ec3c61b; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKsl6ec3c61b.sys []
S1 MpKsl7ee1a270;MpKsl7ee1a270; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKsl7ee1a270.sys []
S1 MpKslc063c7ee;MpKslc063c7ee; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKslc063c7ee.sys []
S1 MpKsld148ac02;MpKsld148ac02; \??\C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{76114694-0145-4FAB-BD52-21C6C31C03AB}\MpKsld148ac02.sys []
S3 aic78xx;aic78xx; C:\Windows\system32\DRIVERS\djsvs.sys [2009-07-14 70720]
S3 amdagp;AMD AGP Bus Filter Driver; C:\Windows\system32\DRIVERS\amdagp.sys [2009-07-14 53312]
S3 aq6dsrqi;aq6dsrqi; C:\Windows\system32\drivers\aq6dsrqi.sys []
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0; C:\Windows\system32\DRIVERS\b57nd60x.sys [2009-07-13 229888]
S3 BT;Bluetooth PAN Network Adapter; C:\Windows\system32\DRIVERS\btnetdrv.sys []
S3 BTCOM;Bluetooth Serial port driver; C:\Windows\system32\DRIVERS\btcomport.sys []
S3 BTCOMBUS;Bluetooth Serial Port Bus Service; C:\Windows\System32\Drivers\btcombus.sys []
S3 Btcsrusb;Bluetooth USB For Bluetooth Service; C:\Windows\System32\Drivers\btcusb.sys []
S3 BthEnum;Bluetooth Request Block Driver; C:\Windows\system32\DRIVERS\BthEnum.sys [2009-07-14 34816]
S3 BthPan;Bluetooth Device (Personal Area Network); C:\Windows\system32\DRIVERS\bthpan.sys [2009-07-14 93696]
S3 BTHPORT;Bluetooth Port Driver; C:\Windows\System32\Drivers\BTHport.sys [2009-07-14 392704]
S3 BTHUSB;Bluetooth Radio USB Driver; C:\Windows\System32\Drivers\BTHUSB.sys [2009-07-14 58880]
S3 btnetBUs;Bluetooth PAN Bus Service; C:\Windows\System32\Drivers\btnetBus.sys [2010-04-06 25864]
S3 CFcatchme;CFcatchme; \??\C:\Users\PAO~1\AppData\Local\Temp\CFcatchme.sys []
S3 hamachi;Hamachi Network Interface; C:\Windows\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 irsir;Microsoft Serial Infrared Driver; C:\Windows\system32\DRIVERS\irsir.sys [2008-01-19 20992]
S3 IvtBtBUs;IVT Bluetooth Bus Service; C:\Windows\System32\Drivers\IvtBtBus.sys [2010-04-06 23048]
S3 PAC7302;PC Camera; C:\Windows\system32\DRIVERS\PAC7302.SYS [2007-11-08 458752]
S3 pccsmcfd;PCCS Mode Change Filter Driver; C:\Windows\system32\DRIVERS\pccsmcfd.sys [2008-08-26 18816]
S3 RDPDR;Terminal Server Device Redirector Driver; C:\Windows\System32\drivers\rdpdr.sys [2009-07-14 133120]
S3 RFCOMM;Bluetooth Device (RFCOMM Protocol TDI); C:\Windows\system32\DRIVERS\rfcomm.sys [2009-07-14 129536]
S3 s116bus;Sony Ericsson Device 116 driver (WDM); C:\Windows\system32\DRIVERS\s116bus.sys [2007-04-03 83336]
S3 s116nd5;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (NDIS); C:\Windows\system32\DRIVERS\s116nd5.sys [2007-04-03 23176]
S3 s116obex;Sony Ericsson Device 116 USB WMC OBEX Interface; C:\Windows\system32\DRIVERS\s116obex.sys [2007-04-03 98696]
S3 s116unic;Sony Ericsson Device 116 USB Ethernet Emulation SEMC116 (WDM); C:\Windows\system32\DRIVERS\s116unic.sys [2007-04-03 99080]
S3 s3cap;s3cap; C:\Windows\system32\DRIVERS\vms3cap.sys [2009-07-14 5632]
S3 SCREAMINGBDRIVER;Screaming Bee Audio; C:\Windows\system32\drivers\ScreamingBAudio.sys [2009-11-26 34384]
S3 sisagp;SIS AGP Bus Filter; C:\Windows\system32\DRIVERS\sisagp.sys [2009-07-14 52304]
S3 storvsc;storvsc; C:\Windows\system32\DRIVERS\storvsc.sys [2009-07-14 28224]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2009-07-14 35840]
S3 VComm;Virtual Serial port driver; C:\Windows\system32\DRIVERS\VComm.sys []
S3 VcommMgr;Bluetooth VComm Manager Service; C:\Windows\System32\Drivers\VcommMgr.sys []
S3 viaagp;VIA AGP Bus Filter; C:\Windows\system32\DRIVERS\viaagp.sys [2009-07-14 53328]
S3 ViaC7;VIA C7 Processor Driver; C:\Windows\system32\DRIVERS\viac7.sys [2009-07-14 52736]
S3 vmbus;@%SystemRoot%\system32\vmbusres.dll,-1000; C:\Windows\system32\DRIVERS\vmbus.sys [2009-07-14 175824]
S3 VMBusHID;VMBusHID; C:\Windows\system32\DRIVERS\VMBusHID.sys [2009-07-14 17920]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 CscService;@%systemroot%\system32\cscsvc.dll,-200; C:\Windows\System32\svchost.exe [2009-07-14 20992]
R2 Hamachi2Svc;LogMeIn Hamachi 2.0 Tunneling Engine; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [2010-12-06 1238408]
R2 Irmon;@%SystemRoot%\System32\irmon.dll,-2000; C:\Windows\system32\svchost.exe [2009-07-14 20992]
R2 lxdd_device;lxdd_device; C:\Windows\system32\lxddcoms.exe [2007-05-25 537520]
R2 MsMpSvc;Microsoft Antimalware Service; C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe [2010-11-11 11736]
R2 nvsvc;NVIDIA Display Driver Service; C:\Windows\system32\nvvsvc.exe [2011-01-07 608872]
R2 OODefragAgent;O&O Defrag Agent; C:\Program Files\OO Software\Defrag\oodag.exe [2010-09-30 2397512]
R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-01-07 378984]
R2 wlidsvc;Windows Live ID Sign-in Assistant; C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE [2009-08-18 1529728]
R3 NisSrv;@C:\Program Files\Microsoft Security Client\Antimalware\MpAsDesc.dll,-243; C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2010-11-11 206360]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86; C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
S2 gupdate;Služba Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-01-05 136176]
S3 AppMgmt;@appmgmts.dll,-3250; C:\Windows\system32\svchost.exe [2009-07-14 20992]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-11-10 774144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2010-01-09 149352]
S3 osppsvc;Office Software Protection Platform; C:\Program Files\Common Files\Microsoft Shared\OfficeSoftwareProtectionPlatform\OSPPSVC.EXE [2010-01-09 4640000]
S3 PeerDistSvc;@%SystemRoot%\system32\peerdistsvc.dll,-9000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 ServiceLayer;ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [2008-09-08 575488]
S3 UmRdpService;@%SystemRoot%\system32\umrdp.dll,-1000; C:\Windows\System32\svchost.exe [2009-07-14 20992]
S3 WatAdminSvc;@%SystemRoot%\system32\Wat\WatUX.exe,-601; C:\Windows\system32\Wat\WatAdminSvc.exe [2010-10-16 1343400]
S4 lxddCATSCustConnectService;lxddCATSCustConnectService; C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxddserv.exe [2007-05-25 99248]
-----------------EOF-----------------
Ďakujem
Re: Olmarik.ZC
Ještě odinstaluj Avptool.
Akorát resetoval Hosts, jinak do ničeho takového nezasahoval.
Zkus to, uvidíš.
Pokud nejsou problémy, je to vše
Akorát resetoval Hosts, jinak do ničeho takového nezasahoval.
Zkus to, uvidíš.
Pokud nejsou problémy, je to vše
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
-
15tomasp15
- Návštěvník
- Příspěvky: 37
- Registrován: 07 dub 2009 06:21
Re: Olmarik.ZC
AVPTools som zmazal hneď po použití OTC, zajtra skúsim ten driver preinštalovať(už idem konečne spať )tak dúfam že to pôjde, pokial hej tak to už bude komplet
Stále ale nechápem tomu ComboFixu a tým súborom čo to vyhadzovalo
Ďakujem ešte raz
)tak dúfam že to pôjde, pokial hej tak to už bude komplet Stále ale nechápem tomu ComboFixu a tým súborom čo to vyhadzovalo
Ďakujem ešte raz
Re: Olmarik.ZC
Combofix ted trochu zlobí 
.
Nemáš zač, ahoj
.Nemáš zač, ahoj
Nepoužívejte COMBOFIX bez doporučení rádce, může dojít k poškození systému!
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Vždy před odvirováním počítače zazálohujte důležitá data
Chcete podpořit naše forum? Informace zde
K zastižení jsem spíše v noci, mezi 21.-23. hodinou
Pokud máte nějaké dotazy, můžete mi napsat na email Motji(zavináč)forum.viry.cz.
Přispějete na provoz fóra?